SC-Cleared Linux & Cloud Security Contract Consultant
Latest blog posts
In many cloud security reviews, Identity and Access Management (IAM) often turns out to be the weakest area. AWS provides powerful tools to control access, but its defaults are permissive and administrators often grant overly broad rights. The result is predictable: accounts with far more privilege than needed, with API keys that never expire, and … Read more
Identity and Access Management (IAM) is at the centre of every security framework I have worked with. Whether on Linux systems or in cloud platforms, controlling who can do what is fundamental. In my experience, organisations often underestimate IAM. They focus on firewalls or malware protection, while leaving access control inconsistent or poorly documented. In … Read more
Pluggable Authentication Modules (PAM): Controlling Access in Linux Pluggable Authentication Modules (PAM) form the backbone of authentication and access control on most modern Linux systems. In my work, PAM is often overlooked or misunderstood. Administrators know it exists but rarely configure it beyond the defaults. That leaves opportunities for weak passwords, mismanaged access, and non-compliance. … Read more
On almost every Linux system sudo is central to access control. It allows administrators to delegate privileges without handing out the root password. Used properly, it enforces least privilege. Used poorly, it creates a false sense of security and leaves audit gaps. This article sets out the best practices for configuring and managing sudo. The … Read more
Secure Shell (SSH) is the standard tool for remote administration of Linux systems. In practice, it is also one of the most common weaknesses I encounter when reviewing environments. Misconfigurations are frequent, and attackers actively exploit them. Hardening SSH is one of the most effective early steps in strengthening infrastructure security. 1. Why SSH Security … Read more
Secure Shell (SSH) is the default entry point into most Linux systems. Unfortunately, it is also the most common attack vector exploited by automated bots and opportunistic attackers. So for any organisation running Linux servers — whether on-premises, in the cloud, or hybrid — hardening SSH is one of the simplest, highest-impact security steps you … Read more
With the continued growth of online services and e-commerce, digital security is as important as ever. So here’s my round-up of digital security threats in 2017 to watch out for. Digital Security Threats in 2017 1. IoT Attacks The variety and volume of consumer IoT or “Internet of Things” devices on the market is now … Read more
It’s vital to backup your website regularly. Servers fail, websites get hacked. So here’s a quick guide to how to backup your website. How To Backup Your Website There’s a kind of unspoken law about backups. If you backup, you probably won’t need the backups. But if you don’t – you sure as anything will! … Read more
As of 1 January 2015 there’s a big change coming to Value Added Tax in the EU. The so-called “Place of Supply” or “VATMOSS” law will apply. What is the VATMOSS Law? First of all, a disclaimer. I am not a lawyer or accountant. The following post is my personal view and interpretation of VATMOSS. You … Read more
Content and copyright theft is an increasing problem on the Web. So what should you do if you discover your content has been stolen by another website? How To Pursue Content Theft and Copyright Violation Yesterday I discovered that some of my website content had been copied and pasted onto someone else’s website. On the … Read more
Content theft is a big problem on the Web. Fortunately there’s an easy and effective way you can prevent people stealing your content. How To Prevent Content Theft Content theft is an ongoing issue for website owners. There’s the simple copy and paste method by which people can steal your content. But there’s another content … Read more
If you use your laptop for your business or your profession, then you need to make sure your business data is kept as secure as possible.
How to Secure Your Laptop
It’s vital to backup your WordPress website regularly. Sites get hacked, servers fail. When disaster strikes and you have no backup available, then you have a double disaster on your hands. There’s a kind of unspoken law about backups. If you backup, you probably won’t need the backups. But if you don’t – you sure … Read more
I’ve just switched my laptop over from Windows to Linux Ubuntu.
I’ve worked with Linux systems for many years so I’m not a newcomer to Linux.
Mostly though these have been server systems and not desktop computers.
Like the majority of people, I used Windows for my desktop PC and laptop.
So why the switchover from Windows to Ubuntu?
Switching from Windows to Linux Ubuntu
I have a standing desk in my home office.
I used to have a conventional sitting table as well.
I got rid of that since in practice I hardly ever used it.
Why Not Work at a Standing Desk in Your Office?
If you have a website for your business, then there’s a good chance it will be a WordPress website. WordPress is a mature and secure Website Content Management System or CMS which is used by millions of websites all around the world. But like all websites and webservers, WordPress can also be hacked and compromised … Read more
This is a copy of The Ultimate .htaccess Apache File Guide by Charles Torvalds from www.askapache.com This document is reproduced here by kind permission of Charles Torvalds from www.askapache.com Full copyright details relating to this document can be found at the foot of this page. The Ultimate .htaccess Apache File Guide htaccess is a very … Read more