security

How To Protect Your Server Against the Dirty COW Linux Vulnerability — step-by-step Linux tutorial on Progressive Robot

How To Protect Your Server Against the Dirty COW Linux Vulnerability

On October 21, 2016, a privilege escalation vulnerability in the Linux kernel was disclosed. The bug is nicknamed Dirty COW because the underlying issue was a race condition in the way kernel handles copy-on-write (COW). Exploiting this bug means that a regular, unprivileged user on your server can gain write access to any file they can read, and can therefore increase their privileges on the system. This tutorial explains how to protect your server from this vulnerability.

Read more
How To Secure GitLab with Let's Encrypt on Ubuntu 16.04 — step-by-step Linux tutorial on Progressive Robot

How To Secure GitLab with Let’s Encrypt on Ubuntu 16.04

GitLab, specifically GitLab CE (Community Edition), is an open source application primarily used to host Git repositories, with additional development-related features like issue tracking. The GitLab project makes it relatively straight forward to set up a GitLab instance on…

Read more
How To Secure Nginx with Let's Encrypt on CentOS 7 — step-by-step Linux tutorial on Progressive Robot

How To Secure Nginx with Let’s Encrypt on CentOS 7

In this tutorial, we will show you how to use Let’s Encrypt to obtain a free SSL certificate and use it with Nginx on CentOS 7. We will also show you how to automatically renew your SSL certificate. If you’re running a different web server, simply follow your web server’s documentation to learn how to use the certificate with your setup.

Read more
How To Secure Node.js Applications with a Content Security Policy — step-by-step Javascript tutorial on Progressive Robot

How To Secure Node.js Applications with a Content Security Policy

A CSP is an HTTP header that provides an extra layer of security against code-injection attacks, such as cross-site scripting (XSS), clickjacking, and other similar exploits. It facilitates the creation of an “allowlist” of trusted content and blocks the execution of code from sources not present in the allowlist. In this tutorial, you’ll review the different protections the CSP header offers by implementing one in a Node.js application. You’ll also collect JSON reports of CSP violations.

Read more
Настройка брандмауэра с UFW в Debian 9 — step-by-step Linux tutorial on Progressive Robot

Настройка брандмауэра с UFW в Debian 9

UFW (Uncomplicated Firewall или «простой брандмауэр») представляет собой интерфейс iptables, предназначенный для упрощения процесса настройки брандмауэра. Хотя iptables — надежный и гибкий инструмент, начинающим бывает сложно научиться использовать его для правильной настройки…

Read more
How To Set Up an OpenVPN Server on Debian 11 — step-by-step Linux tutorial on Progressive Robot

How To Set Up an OpenVPN Server on Debian 11

OpenVPN is a full-featured, open-source Secure Socket Layer (SSL) VPN solution that accommodates a wide range of configurations. In this tutorial, you will set up an OpenVPN server on a Debian 11 server and then configure access to it from Windows, macOS, Linux, iOS and/or Android devices.

Read more
CHAT