About 105 results
https://www.coryd.dev/posts/2025/a-short-list-of-tech-security-tips-when-traveling · 4 Sep 2025
Whenever I travel, I take a few basic security-related steps. I've left the US all of once, but I follow these steps whenever I travel anywhere.
https://stuartbreckenridge.net/2025-07-12-wpfail2ban/ · 12 Jul 2025
Mind blown 🤯. I’ve only returned to using WordPress for a few days but *WPFail2Ban *is already proving its worth. Just a sample of the logs I’ve been seeing over the last few hours: Blocked username authentication attempt for admin2 from <ip_addres...
https://luminary.blog/techs/oauth-2-complete-guide · 14 Jun 2025
Comprehensive OAuth 2.0 reference covering authorization flows, PKCE, token security, SPA patterns, and implementation best practices with detailed diagrams.
https://luminary.blog/techs/how-do-passkeys-work · 22 Feb 2025
Passkeys protect against phishing and brute-force attacks by eliminating the need for users to enter passwords.
https://rednafi.com/misc/ssh-saga/ · 17 Dec 2024
Complete SSH setup guide: key pairs, authorized_keys, sshd_config, ssh_config, known_hosts, agent forwarding, and hardening for secure remote access.
https://octet-stream.net/b/scb/guide-to-signing-notarising-single-cli-binary-mac.html · 30 Nov 2024
30 November 2024 Problem Statement I'm compiling a single executable file for Mac, e.g., a Rust or Go program. I want to distribute it directly to users outside the App Store. I've paid 149 Australian dollarydoos for Apple's Developer Program and want t...
https://wedistribute.org/2024/02/pixelfed-cve/ · 10 Feb 2024
For the second time this month, a Fediverse project reports a critical vulnerability. The devs are on top of it: admins, update your servers!
https://wedistribute.org/2024/02/mastodon-remote-takeover/ · 1 Feb 2024
A new Mastodon vulnerability was found out in the wild, and it's a nasty one. Admins are advised to update to the latest release ASAP.
https://wedistribute.org/2023/12/authorized-fetch-circumvented/ · 26 Dec 2023
A controversial developer circumvented one of Mastodon's primary tools for blocking bad actors, all so that his servers could connect to Threads.
https://rednafi.com/go/totp-client/ · 20 Aug 2023
Build a TOTP-based 2FA client in Go using the standard library. Generate time-based one-time passwords like Google Authenticator.