For years, and after using Gentoo in the years 2000-2005, I have been using Kubuntu LTS on my successive laptops. For a while I used an Apple Macbook Pro, but at some point I was constantly compiling diverse MacPorts packages to the point that Linux made more sense. Kubuntu seemed like the logical way. It […]
If your Ansible playbook needs to be stopped for a single node (host) of your inventory, be sure you do use “meta: end_host” and not “meta: end_play”. The later stops the whole script, and can potentially creates a hard-to-debug situation, depending on your parallelism and the order on which nodes are checked during the playbook […]
To debug HTTP requests, it may be useful to capture traffic and look at the packets that are sent back and forth between the client and the server. This is trivial when HTTP requests are sent over an unencrypted channel. In this case it is easy enough to use a tool like tcpdump to capture […]
The ModSecurity / OWASP Core Rule Set tutorials here at netnea.com are visited by over 8,000 times a month. With many of the unique visitors, the auxiliary script modsec-rulereport.rb is a favorite. The tool allows you to generate rule exclusions based on a ModSecurity rule alert message. Today, I’m presenting you a new version of […]
Running ModSecurity CRS for the first time on an existing service is like a jump into murky water.
With the sampling mode you can run CRS on a limited percentage of the traffic, which reduces the risk a big deal.