Apache Performance: Disable .htaccess

About 3 years ago I wrote a short blog entry about the very basic Apache configuration mistakes and oversights which developers and server admins of the then $500 million dollar Healthcare.gov website made. Most shocking, were elemental oversights, as if devs were not aware of common best practices. Which brings us to another Apache performance related entry. A while […]

Securing Internet of Things (IoT) devices

Today, I spent some time researching IoT security. At the end of this post, I’ve listed companies – all of which are new to me – which offer IoT security solutions. Feel free to share your solutions, feedback and tips for securing IoT devices. For my home office, everything sits behind an OpenWRT Wi-Fi router which allows for […]

3rd DDoS attack today, beginning of a new era

4th Update: 20 min video response by Dale Drew, the chief security officer of Internet backbone company Level 3. 3rd Update: More details emerging “that some of the infrastructure responsible for the distributed denial-of-service (DDoS) attacks against Dyn DNS were botnets compromised by Mirai malware.” says Flashpoint. I’ll continue to update with additional information and important links. 2nd Update: 3rd Attack […]

When is it time to add more application monitoring?

Guest post by James Paden, Partner at Instrumental At Instrumental, we often talk about getting started with monitoring. In the past, we’ve covered the critical, but basic, metrics everyone needs on our Ultimate Monitoring Metrics Cheatsheet (many of which are gathered by out-the-box system and service monitoring). We also wrote the Quick-Start Guide to Monitoring […]