Security

The Complete SSH Guide for 2026: Keys, Config, Tunneling, and Security

Everything you need to know about SSH in 2026 — from Ed25519 keys and ProxyJump to connection multiplexing, rsync, tunneling, and security hardening.

AWS re:Invent 2025: Day 2 - Agentic AI & Partners Day

Day 2 of AWS re:Invent 2025 focuses on Agentic AI with Dr. Swami’s keynote announcing Strands SDK, Bedrock Reinforcement Fine Tuning, SageMaker HyperPod improvements, plus deep dives into AWS’s secret security systems and CloudFront flat-rate pricing.

What is JSON Web Token (JWT)

JWT basics illustrated and explained.

GoLang Exercism

Not like the spitting up green pea soup exorcism but Exercism.io, one of many great resources for learning programming languages by solving actual…

SSH and SCP: Howto, tips & tricks

A basic tutorial about the Linux commands ssh and scp. It features explanation about the syntax, the possibilities and the differences between the two. It…

The Mad Philosopher » ssh keep-alive tip

Whenever I login remotely to my machine in Canada, the ssh session dies after a while if I don’t actively type something. This is not the server timing…

Ubuntu Unleashed: The Top Security Tools in the Ubuntu with 1 click Installation!

Here is a collection of security tools that you should look through to add to your arsenal to help keep the peace on your pc/network or unleash war on…

Mac OS X Security Configuration Guides -Apple.com

The guides are designed to give instructions and recommendations for securing Mac OS X and for maintaining a secure computer.

Wfuzz - A Tool for Bruteforcing/Fuzzing Web Applications | Darknet - The Darkside

| Wfuzz - A Tool for Bruteforcing/Fuzzing Web Applications | Darknet - The Darkside | Wfuzz is a tool designed for bruteforcing Web Applications, it can be used for finding resources not linked directories, servlets, scripts, etc, bruteforce GET and POST parameters for checking different kind of injections SQL, XSS, LDAP,etc, bruteforce Forms parameters User/Password, Fuzzing,etc.

As heard on the pauldotcom.com podcast.

Maltego - Paterva: A new train of thought

These entities are linked using open source intelligence.

Using Rsync and SSH

A classic guide to setting up automated rsync backups over SSH with key-based authentication, originally from Troy Johnson’s tutorial.

SANS Technology Institute: Interview with Charles Edge

It seems like Ive been interested in security since I started playing with computers. It was always about trying to push the limits of what could be done.

macosxhints.com - OS X VPN client and Cisco ASA

Problem: A Cisco ASA or PIX firewall can be a VPN server, but a basic VPN configuration will not allow the default OS X L2TP/IPSec client to connect, even…

LDAP Authentication In Linux

This howto will show you howto store your users in LDAP and authenticate some of the services against it. I will not show howto install particular…

Terminal Services Setup Guide (2003)

| Learn the best way to batten down the hatches on your servers without going too far. | by Kenton Gardinier for ftponline.com | Windows Server 2003 Terminal Services in terminal server mode can be run in either the Full Security or Relaxed Security compatibility mode to meet your organization's security policy and application requirements. Full Security mode was created to help lock down the terminal server environment to reduce the risk of users mistakenly installing software or inadvertently disabling the terminal server by moving directories or deleting Registry Keys. This mode can be used for most certified terminal server applications. | Read more.

Top 75 Security Tools

Respondents were allowed to list open source or commercial tools on any platform. Commercial tools are noted as such in the list below. Many of the…

Block SSH script attacks

Looks like someone is trying to break into your machine and you’d be right. It’s more than likely a script or robot just knocking on your door, but you…

Email "Spamming" and Email "Spoofing"

Here is a snip of a great article explaining Virus Spoofing from www.lse.ac.uk:…

Destroy Spyware

I have yet to find an application that detects adware and spyware before it’s installed on your PC, so my recommendation is not to pay for adware/spyware…

Mac OS X Security Advisory

| Mac OS X Security Advisory | Vulnerability: | Malicious DHCP response can grant root access

| Affected Software | Mac OS X 10.3 (all versions through at least 26-Nov-2003) | Mac OS X Server 10.3 (all versions through at least 26-Nov-2003) | Mac OS X 10.2 (all versions through at least 26-Nov-2003) | Mac OS X Server 10.2 (all versions through at least 26-Nov-2003) | Probably earlier versions of Mac OS X and Mac OS X Server | Possibly developer seeded copies of future versions of Mac OS X

Securing Apache by securityfocus.com

Part one on a series of articles by the good people at securityfocus.com about creating a somewhat safe presence on the web.

Securing MYSQL by securityfocus.com

Part three and the final installment, so far, in securing your web server by the crew at securityfocus.com.

Securing PHP by securityfocus.com

Part two in the series of articles by the folks at securefocus.com about securing your web server.