In this part of the Web server security series, we introduce server-side DNS security configuration. This doesn’t include setting up and operating your own DNS server but understanding and setting security-relevant DNS resource records.
Latest articles
How some 'security' blogs and websites actually cause insecurity
In 2013, Edward Snowden revealed global spy activities of the National Security Agency. In the years that followed, dozens of blogs and websites popped up to tell you about ‘security’ and how to defend against the evil US-American companies that passed your personal data to government agencies.
In practice, some of these blogs and websites only exists to spread FUD (fear, uncertainty and doubt) to eventually get your money. We discuss several indicators for this phenomenon and its influence on your security in this article.
Web server security – Part 4: WAF ModSecurity and IPS Fail2ban
In the previous part of this series, we talked about TLS, OCSP and security-relevant HTTP response headers. In this part, we introduce the web application firewall ModSecurity and the intrusion prevention system Fail2ban.
Web security and privacy myths
Security and privacy on the internet affects nearly everyone nowadays. However, there are many myths rattling around. We discuss and debunk five common myths in this article.
Android: AFWall+ brings Tor support
AFWall+ (Android Firewall +) is an open-source, IPtables-based firewall for Android. It requires a rooted Android 5+ device and can be retrieved from F-Droid, GitHub or Google Play Store.
AFWall+ 3.0.0 introduced support for Tor. In this tutorial, we show you how you can configure your device to use this feature.