Tech Blog

OpenSCAP is an open source tool for performing automated vulnerability assessment and policy compliance verification on linux. SCAP, pronounced “ess-cap”, is the Security Content Automation Protocol which pulls together open standards for describing vulnerabilities like CVE, CVSS, OVAL, and XCCDF. The OpenSCAP tool, which is NIST certified, ingests the SCAP...

To protect against SSL vulnerabilities it is important to disable SSLv3 and weak ciphers on your cisco ASA device. To enumerate the ciphers supported by the device I use an openssl wrapper script called cipherscan that is available on github. On a default Cisco ASA setup here is what ciphers...

I documented the process I used to create a site-to-site VPN between two sites using Solaris 11 as the router. I did this because the documentation provided by Oracle has several critical flaws. Here's the direct link to the document that's embedded below: Creating a Site-to-Site VPN with Solaris 11...

So you want to take those old CVS repositories and migrate them to Git? You can use cvs2git to migrate your CVS repository with history to Git. It requires direct filesystem access the CVS repository that you wish to convert. Fist download cvs2git, compile, and install. svn co --username=guest --password=""...

The problem with hosting a domain on a dynamic IP is that when your IP address changes your domain becomes inaccessible until you update the DNS record with your new IP. Hosting a domain on a dynamic IP address can be done easily if you use DDNS (Dynamic Domain Name...