Practical Security

If you have a server that you keep private data on, but it is always on and internet connected, you might want to encrypt that data while you are away. The basic need is to mount data as needed and unmount on timer or log-off. [Read More]

Add a firewall rule to block any traffic destined to 64.4.54.1/24 and 65.55.44.1/24 [Read More]

There is an option --header <device or file storing the LUKS header>to use a detached (separated) metadata device or file where the LUKS header is stored. This options allows to store ciphertext and LUKS header on different devices. It means that we can have volume full of random crap without... [Read More]

Assuming you have full access to the system and don’t have an ‘official’ way to remove it. Follow this to remove any full disk encryption software, even if you do not have keys to the full disk encryption software. You do need full admin rights and physical access. [Read More]

Assuming you have full access to the system and don’t have an ‘official’ way to remove it. [Read More]

Good Security Is Holistic [Read More]

If you have access to a cloud server or a hosted platform which you could only interact with via some web view, but desperately need the data off it, fret not. Even if the system has no way of communicating via the network in or out, you can still get... [Read More]

First check what your commands and environment limitations are with sudo -l Then check permissions on the files you are allowed to run and on the folders that contain them If you can modify file you already know what to do. If the folder is wide open remove and create... [Read More]