ITTavern.com
-
ssh-audit Primer - Audit your SSH Server
Feedback is welcome - as always
#ssh #linux #hardening #security
-
My Personal Backup Strategy
New article: My Personal Backup Strategy
Feedback is welcome!
#backup #borg #syncthing
-
iperf3 - User Authentication with Password and RSA Public Keypair
I've been a little bit inactive. Trying to change it again. Most recent article.
-
read.brrl.net - New FreshRSS Service
Set up new #FreshRSS instance for now. I want to read more and stay up to date on certain topics and I figured I could give RSS another chance. Stays invite-only for now, but feel free to hit me up if you want to have an account.
-
TryHackMe - c4ptur3-th3-fl4g - Write Up
forum.ittavern.com TryHackMe - c4ptur3-th3-fl4g - Write Up - ITTavern ForumIT Forum - forum.ittavern.com
Focus on decoding unknown strings.
-
TryHackMe - Crack the hash - Write Up
forum.ittavern.com TryHackMe - Crack the hash - Write Up - ITTavern ForumIT Forum - forum.ittavern.com
Not gonna lie, wasn't that fun. Learned a lot, but felt lost multiple times. Probably gets better over time.
- forum.ittavern.com TryHackMe - Net Sec Challenge - Write Up - ITTavern Forum
IT Forum - forum.ittavern.com
Doing some rooms on TryHackMe. Decided to create a write up of one room. Have to work on the format, but it should be fine for now.
Feedback is welcome!
- ittavern.com Visual guide to SSH tunneling and port forwarding
To make it quick, I wish I had known about port forwarding and tunneling earlier. With this blog post, I try to understand it better myself and share some experiences and tips with you. Topics: use ca
I think I've never share one of my favorite articles with you.
Creating this was great and it has been a great resource ever since. I use SSH tunnel a lot in troubleshooting sessions and security demonstrations.
-
forum.ittavern.com is online and you are welcome!
I am pleased to announce the launch of: forum.ittavern.com
More information can be found in this thread, but in short I miss the forum culture and want to create an open-minded and sustainable community.
I welcome you and look forward to great discussions.
- ittavern.com Adding a trash can to Linux with trash-cli
There is no trash can for the Linux CLI. rm removes the data permanently, and there is practically no way of recovering deleted files reliably. trash-cli fills this role and lets you 'trash' files and
-
New logo, new design, lower loading time
I am happy to share with you the new design of my blog.
New logo, new thumbnails, lots of CSS changes and everything is now hosted in a German DC.
The goal was to create a clean design and reduce the loading time even further.
Feedback is welcome.
-
New service - send.brrl.net
send.brrl.net SendEncrypt and send files with a link that automatically expires to ensure your important documents don’t stay online forever.
Sending files over the internet. Been a pain in the past and I finally decided to host my own instance. It should be 'production' ready, but let me know if you encounter any problems.
- ittavern.com Bandwidth Measurement using netcat on Linux
There are various implementations. I am using nmap-ncat on rockOS 8 on both hosts. Netcat's using TCP by default and this test is not limited by disk I/O from what I understood. That said, it is not
A quick & dirty solution that is available on most Linux hosts.
-
ntfy.brrl.net - Device Push Notifications
ntfy.brrl.net ntfy webntfy lets you send push notifications via scripts from any computer or phone. Made with ❤ by Philipp C. Heckel, Apache License 2.0, source at https://heckel.io/ntfy.
I've decided to self-host yet another service. This time it is NTFY. Simple HTTP based push notifications for your devices.
https://ntfy.brrl.net/
Feel free to use it. Feedback is welcome.
I use it to notify me about successful logins on one of my servers, failed backups, results of cron jobs and so on. One simple HTTP request is all you need.
- board.brrl.net board.brrl.net — Collaborative whiteboard
A free and open-source online collaborative drawing tool. Sketch new ideas together on WBO!
Sometimes I just need a simple whiteboard for troubleshooting or brainstorming sessions. I've decided to self-host a whiteboard with collaboration function. I am going to give whitebophir a try.
Feel free to use it too!
- free
- no ads
- no tracking
---
Disclaimer: the data is not encrypted and I - as provider - could look into them.
Not optimal for permanent boards as I plan to reset it once a month (not sure yet).
- ittavern.com Getting started with rsync - Comprehensive Guide
rsync is a CLI tool that covers various use cases. Transfering data, creating backups or archives, mirroring data sets, integrity checks, and many more. Reference for this article: rsync version 3.2.
Rsync is one of my most used tools and I am happy to share this guide with you. I've learned a lot doing the research and I hope to share some tipps with you.
- ittavern.com Cron Jobs on Linux - Comprehensive Guide with Examples
In this article, I'll use Ubuntu 22.04 (Debian-derivative) and rockyOS 9.2 (RHEL-derivative) as references. If it is not mentioned, commands are the same for both systems. Basics # Cron jobs are sched
-
ITTavern Services monitoring
I've added a status page with #uptimekuma. I want to get used to it for now. It is currently running on the same server as the rest of the services, which is not optimal. Additionally adding some more sensors at some point.
-
Overview of public services
ittavern.com ServicesLink Project Status Description baked.brrl.net CyberChef Productive 'The Cyber Swiss Army Knife' speed.brrl.net Librespeed Productive Network speedtest encrypt.brrl.net hat.sh Testing, End of
Just created an overview of the services I host.
-
ITTavern Mail Newsletter
I've decided to add an email newsletter to my blog. It is still 'work in progress', but I make progress and the first 'issue' will be sent next Monday.
GDPR-compliant, no tracking, lightweight, and nothing special.
Feel free to check out the following link for additional information.
https://ittavern.com/newsletter/
- ittavern.com SSH Server Hardening Guide v2
This is an updated version from last year. Thank you for the great feedback! This article covers mainly the configuration of the SSH service and only references ways to protect the service on the hos
I am happy to share my revised SSH server hardening guide.
Feedback is very welcome.
- ittavern.com Port Knocking with knockd and Linux - Server Hardening
Port knocking is like a secret handshake or magic word between client and server. It can be used in various ways, but most commonly as a security feature to deny all contact to a specific service - li
I've created a new article about Port Knocking in preparation of my rework of the SSH Hardening guide.
I'd like to hear your opinion about port knocking.
- ittavern.com Getting started with rclone - Data transmission
Rclone is an open-source cross-platform data synchronization application focusing on cloud services. It can act as the CLI for your cloud storage. Rclone provides a broad set of features, from simple
- ittavern.com Backup Guide - how to secure crucial data
This guide tries to share thoughts about various backup strategies, risks, storage mediums, and other things to consider. I won't go into technical details or suggest any tools since every backup stra
haven't shared my backup guide here yet - your feedback would be greatly appreciated
- ittavern.com How to: Cisco ISE backup to SFTP repository with public key authentica
Let me start with a list of things that are required: Access to Cisco, via GUI and CLI as admin SFTP server + user, and root access Network access: ISE > SFTP server over TCP/22 (SSH - as SFTP transf
- ittavern.com Getting started with dig - DNS troubleshooting
Getting started with dig Please note that this blog post is not an in-depth guide on DNS and dig. It will provide you with the basics, and more advanced topics that are out of the scope. Some more adv
Not sure if there is any activity on Lemmy. Let's find out.
-
IT Tavern Changelog Week 27
ITTavern Changelog Week 31
General
Added a SEARCH function:
- only for the titles, fulltext search follows
- added it to the menu
Changed the design sligthly:
- headers are having a light grey background
Notes Update
Update ITTavern.com:
- reworked the beginning and removed some things that might not needed
Blog Updates
Update Getting started with iperf3 - Network Troubleshooting:
- fixed an error:
-P
instead of-p
for parallel streams
Update ICMP echo requests on Linux and Windows - Reference Guide:
- added more tags to make it easier to find
Update SSH - How to use public key authentication on Linux:
- added a new and prefered way to stop the ssh-agent with
eval "$(ssh-agent)"
---
Feedback is welcome!
- ittavern.com Getting started with Fail2Ban on Linux
I want to show you how to get started with Fail2Ban to keep your Linux servers more secure. For this blog post, I've used Ubuntu 22.04 LTS as a reference and will use it to secure my SSH service with
-
IT Tavern Changelog Week 27
General
- I deleted my Mastodon account and removed the links from the blog
- remove 'Projects' from the menu and move content to 'Notes'
Notes Update
Update ITTavern.com:
- added a Cyberchef quick access list for various tasks
Blog Updates
Update URL explained - The Fundamentals :
- formatting + spelling mistakes
- domains must not start with a dash (
-
) - subdomains CAN contain an underscore (
_
), but shouldn't
Update Getting started with nmap:
- added the option to check the results every x seconds/minutes with
--stats-every 1m / 10s
Update Getting started with tmux:
- add a way to kill the whole session with
:kill-session
Project/ Service Updates
Switching secondary domain from itt.sh to brrl.net. The reason for the change is the .sh TLD. Not a big fan and I recommend to block it.
---
Thank you for the feedback! - The goal is to keep all posts up-to-date and add more content over time.
- ittavern.com URL explained - The Fundamentals
In this post, I'll try to explain the syntax and use of an URL and the difference between URI, URL, URN, and URC. URL explained # This will be our example for this post: https://username:password@www
A deep-dive into the world of URLs. I'll explain the syntax, the functions, some information about domains, and the difference between URL, URI, URN and URC.
Feedback is welcome
-
Changelog Week 26
General
Since I keep all blog posts up-to-date and try to add more content over time, I thought it would be a great idea to share the changelog weekly over here at Lemmy.
I'll probably publish it on Sunday every week, but I wanted to test the format beforehand.
Notes update
Update ITTavern.com:
- none
Blog updates
Update Getting started with nmap:
- added the
-d
flag to increase verbosity - added HTML anchors
- added link to nmap scripts guide
Update Getting started with nmap scripts:
- added a section on how I use nmap scripts for
Update SSH Troubleshooting Guide:
- added method to spin up a second SSHD instance for troubleshooting / logging for single clients
Update Getting started with GNU screen - Beginners Guide:
- added command to create new/ reattach last session (
screen -d -RR
)
Update Backup Guide - how to secure crucial data:
- added HTML anchors
- ittavern.com Troubleshooting: Asking The Right Questions
Asking the right question In this post, I want to present some simple questions on how to start any troubleshooting session. The main goal is to gather enough information to narrow down the root cause
- ittavern.com Detecting Rogue DHCP Server
What is a rogue DHCP server # A rogue DHCP server is an unauthorized DHCP server that distributes knowingly or unknowingly wrong or malicious information to clients that send DHCP discover packets wit