Security

SPF macros explained

Learn everything you need to know about SPF macros to take better control over your SPF records. And one example how resolve spf macro with dns queries.

Networking Security

Set up DMARC (verification) for Postfix on Debian server

This tutorial will be showing you how to set up OpenDMARC with Postfix SMTP server on Debian/Ubuntu server to block email spoofing and spam.

Security Networking

Configure OpenDKIM with Postfix on Debian

What are opendkim signing criteria? And how Configure OpenDKIM with Postfix on Debian? Our goal is configure OpenDKIM to sign emails for multiple domains.

Linux Debian Security Networking

DMARC - Domain-based Message Authentication, Reporting and Conformance

Domain-based Message Authentication, Reporting, and Conformance, or DMARC, is a technical standard that helps protect email senders and recipients from spam, spoofing, and phishing...

Networking Security

Explanation DKIM (DomainKeys Identified Mail) in all details

DKIM (DomainKeys Identified Mail) is a system that lets your official mail servers add a signature to headers of outgoing email and identifies your domain’s public key so other mail servers can verify the signature. As with SPF (Sender Policy Framework helps keep your mail from being considered spam. It also lets mail servers detect when your mail has been tampered with in transit.

Networking Security

SPF - Sender Policy Framework

Sender Policy Framework (SPF) is an email authentication method designed to detect forged sender addresses in emails (email spoofing), a technique often used in phishing and email spam. SPF allows the receiver to check that an email claiming to come from a specific domain comes from an IP address authorized by that domain's administrators.

Networking Security

What is email envelope and email header

The key for understand smtp protocol is learn, what is difference between email envelope and email header. Another words, what is email envelope vs email header.

Networking Security

Nginx TLS TCP Proxy server for tcp upstream servers

This article explains how to set up SSL termination for NGINX server and a load-balanced group of servers that accept TCP connections. And how configure NGINX as tcp proxy server for multiple tcp backends with SSL/TLS support.

Web Servers Security

Arpwatch - monitor mac addresses change

Arpwatch is a computer software open source program. It monitors the ARP activity over the network and detects ARP spoofing. It also maintains the database of Ethernet/IP address pairings. Arpwatch gives a list of noticed pairing IP and MAC addresses. Techniques to monitor Ethernet Activity using Arpwatch Tool in Linux is illustrated in this tutorial with examples.

Networking Linux Security

Python - How To Refresh an JWT Access Token Using Decorators

When you create a big python application, you can began to run into challenges with longer scripts that extended beyond the expiration of a single JWT.

To elegantly solve this, You can use decorators to check the token’s expiration and request a new token if necessary. This article goes over the framework I set up so that you can apply a similar mechanism in your own scripts.

Setting the Scene

import time
import requests

class myAPI():
    host = None
    key = None
    secret = None
    access_token = None
    access_token_expiration = None

    def __init__(self,host,key,secret):
        # the function that is executed when
        # an instance of the class is created
        pass

    def getAccessToken(self):
        # the function that is 
        # used to request the JWT
        pass

    class Decorators():
        @staticmethod
        def refreshToken(decorated):
            # the function that is used to check
            # the JWT and refresh if necessary
            pass

Our class will work by requiring the fields necessary to request the JWT. Without access, there is nothing more our class will do.

Python Security Development

Active and Passive FTP Simplified - Understanding FTP Ports

File transfer protocol (FTP) is a popular application-layer protocol that is used for file transfers across TCP networks. FTP supports two modes: active and passive. These modes use different connection mechanisms, and each require different firewall configurations to allow access. This article discusses the differences between these modes.

Networking Security

Certbot - Let's Encrypt certificates on Debian server with Apache webserver

How install and use certbot on Debian system, examples how create Let's Encrypt certificates for multiple domains, how handling certbot automatic renewal. It covers a apache2 webserver configuration for using cerbot generated certificates. Setup is made for Debian and debian based linux distributions

Linux Debian Security Web Servers