Tag: Infosec

• Why sudo-rs brings modern memory safety to Ubuntu 26.04

  Posted on November 8, 2025, Level beginner Resource Length medium

  Enhancing Ubuntu security with rust-based sudo: a modern approach to memory safety. By Steven J. Vaughan-Nichols.

  ---

  Tags linux infosec how-to cio

• Free Windows web server with a Lets Encrypt SSL certificate in AWS

  Posted on October 23, 2025, Level beginner Resource Length medium

  Setting up a free Windows web server with Let's Encrypt SSL on AWS EC2 is surprisingly straightforward, even for those without extensive experience. By Angus Fox.

  ---

  Tags infosec azure app-development ssl web-development

• How proxy servers enhance security in modern authentication systems

  Posted on October 21, 2025, Level beginner Resource Length long

  Proxies provide critical layers of security, privacy and control that authentication systems need to thrive in today's dynamic threat landscape. By MojoAuth - Advanced Authentication & Identity Solutions.

  ---

  Tags infosec servers app-development ssl web-development

• How to generate Signed SSL certificates on Synology NAS

  Posted on October 20, 2025, Level beginner Resource Length medium

  This tutorial video by SpaceRex explains how to obtain a signed SSL certificate using Let's Encrypt, a crucial step for secure and trusted internet access on your Synology NAS. A properly signed SSL certificate ensures encrypted data exchanges between your NAS and users, preventing "certificate not trusted" errors. By Julian Horsey.

  ---

  Tags infosec servers ssl miscellaneous

• What port does SFTP really use and why is it confused with FTP's port 21?

  Posted on October 19, 2025, Level beginner Resource Length long

  Why SFTP's port is often mistaken for FTPS and how the confusion hurts developers. By Alex Lim.

  ---

  Tags infosec servers app-development ssl miscellaneous

• New world, new rules: Cybersecurity in an era of uncertainty - The C-suite playbook

  Posted on October 17, 2025, Level beginner Resource Length medium

  As geopolitical instability and technological advancements create new challenges for cybersecurity, business leaders are grappling with how to best respond. PwC's 2026 Global Digital Trust Insights survey indicates that 60% of executives rank cyber risk investment as a top strategic priority. By PricewaterhouseCoopers.

  ---

  Tags infosec web-development app-development cio

• What is the Model Context Protocol (MCP) and how it works

  Posted on October 7, 2025, Level beginner Resource Length long

  The Model Context Protocol (MCP) standardizes how large language models connect with external data and tools, eliminating the need for custom integrations between different AI systems and services. Released by Anthropic, MCP enables developers to build context-aware applications without reinventing wheel for each model-to-system pairing, solving the "NxM problem" of redundant development and maintenance efforts across countless LLMs and tools. By descope.com.

  ---

  Tags ai servers infosec devops web-development app-development

• Defending against supply chain attacks like Chalk/Debug and the Shai-Hulud worm

  Posted on October 5, 2025, Level beginner Resource Length short

  Supply chain attacks targeting open-source packages pose a significant threat; proactive measures like dependency auditing and robust security tools are crucial for developers. By Chi Tran, Charlie Bacon, Nirali Desai.

  ---

  Tags ai cio infosec software learning management aws

• Experts alarmed that AI is now producing functional viruses

  Posted on October 1, 2025, Level beginner Resource Length short

  AI's ability to design functional viruses presents a dual-edged sword – offering potential cures while simultaneously raising severe bioweaponization risks demanding proactive mitigation strategies. By Frank Landymore.

  ---

  Tags ai infosec programming search data-science

• Cloud-native security in 2025: Why runtime visibility must take center stage

  Posted on September 20, 2025, Level intermediate Resource Length medium

  The article from The Hacker News outlines the transformative shift in cloud-native application security as industries increasingly adopt containerized and serverless architectures. This evolution has expanded attack surfaces beyond what traditional security models can effectively manage. It introduces runtime visibility as a critical component for contemporary security strategies, allowing teams to understand active threats within production environments. By The Hacker News.

  ---

  Tags infosec cio devops cloud servers serverless

• Rate limiting for Django websites

  Posted on September 4, 2025, Level intermediate Resource Length long

  Rate limiting restricts the number of requests a client can make to your Django website within a specific timeframe. It's especially useful for blocking malicious bots, crawlers, or brute-force attacks that overwhelm server resources. By Aidas Bendoraitis.

  ---

  Tags nginx devops infosec devops kubernetes

• Securing Kubernetes resources without a VPN

  Posted on September 4, 2025, Level intermediate Resource Length long

  Securing kubernetes resources that you want to expose to only some users externally is often done through IP allowlisting and a VPN. While this is a tried and true method, there are some drawbacks. By Brian Sizemore.

  ---

  Tags nginx app-development infosec devops kubernetes

• ← Newer Posts
• Older Posts →