August 1, 2019

Development in DMZ

Corporate environments usually have more (advanced) (network) security measures in place. For developers this means that getting any random package from the internet into the environment (enclave) where the sensitive data lives is impossible, which is a good thing. Let’s agree that security is important and that efforts of it should always be admired, since we cannot get enough people to be security minded. Developers freedom compromized Development is the creation of something new, otherwise you are just building. Read more

April 10, 2019

Prevent MITM proxies

Men In The Middle (MITM) proxies are used in some corporate environments for compliancy. You can spot this in your browser by inspecting the certificate. Sometimes you don’t want people to be able to do eavesdropping, which we can prevent using Nginx. Use the following config: ssl_protocols TLSv1.3; ssl_prefer_server_ciphers on; Note that this will not work for older browsers like Edge and IE. Chrome works fine. Debugging OpenSSL If you get an error stating no cipher match your Nginx may not have the latest OpenSSL version. Read more

January 10, 2019

data backup strategy

We all have data we value, but do we value our data? Do we organize, version control and backup our data? This overview is targeted at home users, not enterprise or governments, which require multiple access groups and clearances. Approach Before we start and make all our data redundant, we need to have everything organized. We want our data to be; easy to file easy to find clear naming conventions; e. Read more

Blog by lent.ink