Some month ago I found this interesting project on github: https://github.com/kosty-cloud/kosty Kosty is a cost and security audit written in python and using aws cli to check the current status of your service. I followed the quickstart guide: pip3 install kosty python3 -m venv costy export AWS_DEFAULT_PROFILE=root kosty audit –output all Unfortunately this just output […]
Category: security
The tale of Jenkins update to Java Jdk21 and Matrix Auth plugin
I passed a long day dealing with Jenkins runtime update (from jdk17 to jdk21), and authorisation plugin (Matrix Auth) stopping to work. Here is the tale. Involved system: Error log messages was related to hudson, and to matrix, and to authorization: Caused: jenkins.util.xstream.CriticalXStreamException: [LF]> —- Debugging information —-[LF]> cause-exception : com.thoughtworks.xstream.mapper.CannotResolveClassException[LF]> cause-message : hudson.security.GlobalMatrixAuthorizationStrategy[LF]> class […]
How to expose ssh over https
By the mean of a reverse proxy installed on a Proxmox machine, is possible to expose also ssh access to the single machine. List of ingredients Preparing The Server To generate an self signed certificate, use the command: In /etc/nginx/nginx.conf add these lines: Preparing The Client Copying minihost.crt in The Client from The Server by: […]
Sicurezza, password salvate e Google
youhavebeenpawned! ( https://haveibeenpwned.com/ ) Google fortunatamente non sta a guardare, ma non può agire per noi. Fare click sull’avatar (in alto a destra) per gestire l’account Dove si atterra: Notare un segnale di allarme per problemi di sicurezza (esclamativo rosso): Vai a controllo password Password salvate compromesse Cambia ogni password compromessa Signin per ogni account […]