IPv6 is nothing new – it was finally standardised back in 1998 in RFC 2460, and virtually all operating systems have supported it now for at least 5 years, so most people are in a position to give it a try.If you’re one of the lucky ones, your ISP might provide native IPv6 connectivity (like ...
(Note: This was originally posted on my previous blog, but I’ve noticed that it’s being linked to, so I’ve reposted it here)I’m not a mathematician (or a cryptographer) so I’m happy to take this post’s word for it about a recent attack against SHA-1 (short PDF here). The post goes into detail about changing the ...
Historically, if you wanted to use Active Directory to authenticate users on a UNIX box, you were pretty much limited to using LDAP. This works fine for some people, but it’s not particularly elegant – especially if you’re having to create users home directories all the time, which negates some of the point of centralising ...
One thing that’s always bugged me about IPTables is the lack of a way to use groups when writing rules, which can complicate things if you’ve got a potentially large rulebase. One way round this is to use something like fwbuilder, which gives you a graphical interface not unlike Checkpoint’s SmartDashboard GUI for their Firewall-1 ...
I’m using OpenSC at the moment so that I can repurpose an otherwise unused Aladdin eToken to hold SSH keys. I could go through the process involved in setting up the token, but as this chap has already done a thorough job, I won’t go into detail.Unfortunately, the openssh-client package from Debian (and Ubuntu) doesn’t ...
I released version 0.0004 of IPTables::Log early yesterday morning, which mostly consists of test fixes.If you’re interested, have a look at the entry on CPAN. ...