security

How To Access Vault Secrets Inside of Kubernetes Using External Secrets Operator (ESO) — step-by-step Kubernetes tutorial on Progressive Robot

How To Access Vault Secrets Inside of Kubernetes Using External Secrets Operator (ESO)

Secrets in Kubernetes can be used in pods to avoid keeping connection strings and other sensitive data in source control or to prevent your application from accessing sensitive data directly. Storing secrets in a secret store is a secure way to allow access for the required tools. In this tutorial, you’ll install the External Secrets Operator in a the cloud provider-managed Kubernetes cluster and set up a SecretStore as well as an ExternalSecrets to fetch some values from a HashiCorp Vault instance.

Read more
How To Configure a FreeIPA Client on CentOS 7 — step-by-step Linux tutorial on Progressive Robot

How To Configure a FreeIPA Client on CentOS 7

FreeIPA is an open-source security solution for Linux which provides account management and centralized authentication, similar to Microsoft’s Active Directory. In this tutorial, we will be configuring a CentOS 7 machine to authenticate against an existing FreeIPA server.

Read more
How To Configure Port Knocking Using Only Iptables on an Ubuntu VPS — step-by-step Linux tutorial on Progressive Robot

How To Configure Port Knocking Using Only Iptables on an Ubuntu VPS

Port knocking is a method of hiding services behind a firewall until a specific sequence of network activity occurs. After detecting this, the firewall is dynamically reconfigured to expose the requested service for the client who completed the specific sequence of activity. In this article, we will discuss how to implement a port knocking mechanism on an Ubuntu VPS using only the tools available within the iptables package.

Read more
Настройка аутентификации на базе ключей SSH на сервере Linux — step-by-step Linux tutorial on Progressive Robot

Настройка аутентификации на базе ключей SSH на сервере Linux

SSH или защищенная оболочка — самый распространенный способ администрирования удаленных серверов Linux. Хотя демон поддерживает аутентификацию на базе паролей, возможность доступа к защищенной паролем учетной записи через сеть может сделать ваш сервер уязвимым к атакам методом перебора. В этом учебном руководстве мы продемонстрируем, как настраивать сервер с использованием ключей SSH, которые представляют собой рекомендованный метод аутентификации. Злоумышленникам намного сложнее обойти такую за

Read more
How to Create an Intranet with OpenVPN on Ubuntu 16.04 — step-by-step Linux tutorial on Progressive Robot

How to Create an Intranet with OpenVPN on Ubuntu 16.04

Intranets are private networks created by organizations to ease communication and data transfers. In this tutorial you’ll configure services that are only available to clients who are connected to the VPN, including file shares and a web site, and you’ll learn how to manage access to those resources. When you’re done, you’ll have a basic intranet you can easily expand to meet your needs.

Read more
How To Encrypt OpenLDAP Connections Using STARTTLS — step-by-step Security tutorial on Progressive Robot

How To Encrypt OpenLDAP Connections Using STARTTLS

OpenLDAP provides an LDAP directory service that is flexible and well-supported. However, out-of-the-box, the server itself communicates over an unencrypted web connection. In this guide, we will demonstrate how to encrypt connections to OpenLDAP by configuring an LDAP…

Read more
How To Harden OpenSSH on Ubuntu 18.04 — step-by-step Linux tutorial on Progressive Robot

How To Harden OpenSSH on Ubuntu 18.04

Linux servers are often administered remotely using SSH by connecting to an OpenSSH server, which is the default SSH server software used within Ubuntu, Debian, CentOS, FreeBSD, and most other Linux/BSD-based systems. In this tutorial, you will harden your OpenSSH server by using different configuration options to help ensure that remote access to your server is as secure as possible.

Read more
How To Host a Website with Caddy on CentOS 7 — step-by-step Linux tutorial on Progressive Robot

How To Host a Website with Caddy on CentOS 7

[Caddy](https://caddyserver.com/) is a new web server which can be used in place of Apache or Nginx to serve websites. It has been created with ease of use in mind and has become a common choice for developers who want to quickly run a website without working out difficult configuration files. In this tutorial, you will install and configure Caddy. After following this tutorial, you will have a simple working website served using HTTP/2 and a secure TLS connection.

Read more
CHAT