OpenSSH ships with a default configuration that prioritizes high compatibility. However, this compatibility comes at a price: some of the included ciphers and algorithms may be outdated or contain known vulnerabilities. To strengthen the encryption and gain a transparent overview of known weaknesses, ssh-audit is the essential auditing tool.
Continue reading OpenSSH Hardening Strategy: Auditing Policies and Mitigating Low-Strength CiphersTag: Hardening
NGINX Hardening: Achieving A+ Security & Performance
Improving your web security and performance starts with a solid foundation. I regularly use external online generators and verification tools to ensure my NGINX configuration meets the highest standards. This guide details my steps to achieve an A+ security rating and optimal performance settings.
Continue reading NGINX Hardening: Achieving A+ Security & Performance