Monitoring Entropy? But...but...but...

Date July 18, 2013

So, I'm going through some of the current Big Brother / Hobbit / Xymon checks that we have throughout the infrastructure, I found something interesting. There exists the /var/lib/hobbit/client/ext/entropy check, which has this in its core: my $loop = 10 my $delay = 2 for (1 .. $loop) { sleep $delay; open F, '/proc/sys/kernel/random/entropy_avail' or […]

CentOS Wiki - Hardening CentOS Guide

Date July 20, 2009

If you use CentOS like I do (which usually just means you're too cheap to use RHEL, like I am), then this may be of interest to you. Jim Perrin, of BOFH Hunter recently created a new page under the CentOS wiki HOWTO section called OS Protection. It serves as a guide to hardening CentOS […]

Encryption tools for Sysadmins

Date June 29, 2009

Every once in a while, someone will ask me what I use for keeping passwords securely. I tell them that I use password safe, which was reccommended to me when *I* asked the question. Other times, people will ask for simple ways to encrypt or store files. If you're looking for something robust, cross platform, […]


Date May 15, 2009

More on the security front, flight simulator site Avsim had its entire datastore wiped out by a cracker. That reminds me, I've got to change my tapes.

Security is a process and not plug&play

Date May 15, 2009

I got a SANS pamphlet in the mail today, which makes me feel guilty. Not really guilty, as in "I should go but I'm not" (even though I should, and I'm not), but because in terms of IT security, I've sort of been in the "Oh, I'm sure that'll be fine while I'm doing all […]

Musings on Computer Security

Date February 23, 2009

This is another from my LiveJournal, written October 14th, 2006: While reading my new "Netscreen Firewalls" book for work, I chanced upon the following sentence (paraphrased): "ScreenOS is more secure than open source operating systems, because it's source is unable to be searched for vulnerabilities" Normally I would ignore such tripe as the rantings of […]