How to Lock GPG/SSH Agents when Screen Locks or After a Timeout
When we aren’t using GPG/SSH, it’s best to lock it. We can set this to happen after a set time, and/or when the screensaver activates. This helps to keep our credentials secure.
Security
Make an Easier SSH Multifactor Login
Tired of Multifactor Authentication codes for SSH, even though you just logged in? Here’s how SSH can reuse an existing connection, so you can quickly run single commands, open multiple SSH logins, and still have the same level of security.
Multifactor Authentication for SSH Logins
How to setup MFA/2FA/Two Factor Authentication to enhance the security of your SSH logins.
The Meltdown and Spectre Vulnerabilities
Most every cpu made since 1995 is vulnerable to a set of vulnerabilities that could compromise secret data on computers, servers, and containers.
Listing users via the CVE-2016-6210 vulnerability
OpenSSH 7.2p2 and before had a vulnerability where it would use Blowfish for users that don’t exist, and SHA256/SHA512 for real users. Here’s how to test for it. (Note that i)
Exclude False Positives from chkrootkit
Here’s how to exclude items from chkrootkit’s output, be it due to changing PIDs or network interfaces that change.
Checking for Rootkits with chkrootkit
Simple way to check for rootkits using chkrootkit
Checking for Rootkits with rkhunter
Simple way to check for rootkits
How to Deny Access to Dokuwiki Login Page via a Cookie
Do you ever have bots or hackers try to log into your dokuwiki login page? Here’s a way to block them with a simple cookie.
Software Integrity Matters
Software is a great thing, giving us the able to do some wonderful things. But what about Trust and Integrity?