Ctrl.blog

Here are the new features and services in SSH brute-force protection utility SSHGuard version 2.1 including subnet blocking and remote log parsing.

The SpiderOak ONE backup service is better than their client software. Good security and privacy protections but tough to use.

SSLPing is a service that keeps an eye on the health of your TLS certificates and server security configuration. It’ll email you before your certificates expire.

Report false-positives in Windows SmartScreen to Microsoft when it thinks your software is malicious. Useful for programs without a security reputation.

Let’s Encrypt has made it really easy to obtain TLS certificates. Here is how to block the service from issuing certificates for your domains.

I discovered a security vulnerability (CVE-2017-9604) in KMail while trying to delay sending of a PGP-encrypted private email.

Set up unattended auto-updates on Fedora Server or Workstation using dnf-automattic. Keep your Fedora Linux systems secure!

Stop using your old iOS devices when they no longer receive security updates. There are over 50 known security issues with iOS 9.3.5 to date!

A “security feature” from Trend Micro in my Asus network router suddenly began blocking all downloads through the Steam gaming marketplace. I wasn’t amused.

How do you know how long devices will receive software updates? Clearly labeled expiration dates on packaging may be the answer.

A deep look at the ASUSWRT router firmware including its usability, security, and privacy. It has some good and some bad parts.

Add DNS CAA records for your domains to block unauthorized certificate authorities (CAs) from issuing certificates for your domain names.