Blog category: Security

Simple MAC policy in FreeBSD

January 16, 2017 by Paweł Biernacki

Mandatory Access Control (MAC) Framework is one of the less known FreeBSD features. Let’s take a look on how to use it.

Continue reading

Capsicum helpers

January 6, 2017 by Paweł Biernacki

Sandboxing applications using capsicum can sometimes lead to repeating some common patterns and duplicating large amounts of code. Fortunately there is an easy solution.

Continue reading

Yet another utility capsicumised!

December 9, 2016 by Paweł Biernacki

I’m pleased to announce that the work on sandboxing the dd utility using Capsicum framework has been successfully completed and from today it’s available in FreeBSD-CURRENT.

Continue reading

Using PGP keys from YubiKey as SSH RSA keys on MacOS

December 5, 2016 by Paulina Budzoń

Recently, I became a fan of YubiKeys - hardware encryptions keys used for storage of PGP keys, FIDO U2F (two-factor authentication) and more. The PGP keys stored on the device can also be used as RSA keys for SSH authentication. The setup is quite simple on MacOS.

Continue reading

Best two-factor authentication (2FA) for Wordpress

November 25, 2016 by Paulina Budzoń

When securing your Wordpress installation, there’s an abundance of tasks to be performed. One of them, and a very important one, is enabling two-factor authentication for all users. Most popular way of doing that is by using a plugin that works with smartphone apps, like Google Authenticator - but from what I saw those are either quite poor or require a payment to use for more than one user. Recently, a new player has come to the scene, and they’re making quite a stir.

Continue reading