Hardening Windows 10

Security ‘hardening’ is the process of raising the baseline security of a device. I harden every device I use. It’s not my intention to provide a hardening guide here (I’ve...

4 minute read

PCI DSS from scratch

PCI DSS is the Payment Card Industry Data Security Standard, and it is required for any merchant, payment processor, or service provider that interacts with cardholder data. I recently went...

3 minute read

Ruxcon 12

I’ve spent the last weekend attending Ruxcon 12, which is a technical security conference in Melbourne. For the benefit of those who weren’t there, and because it helps me consolidate...

4 minute read

Due Diligence

Checking things at part of due diligence is rarely the most fun activity in the world, but it does have a habit of turning up some surprising things. I’ve been...

2 minute read

securityheaders.io

According to Verizon, 9.4% of breaches last year occurred through vulnerabilities in web applications. A lot of these vulnerabilities were SQL injections and the like, which really shouldn’t happen these...

1 minute read

Let's Encrypt

This isn’t really a cygwin post, but this site has now been given an encryption certificate via letsencrypt. The whole process on debian, from investigating what had to be done,...

1 minute read

.minttyrc colour schemes & fonts

Mintty is a fantastic terminal program; it’s now the default with Cygwin for some time. There are a range of others such as xterm and rxvt, but mintty does the...

2 minute read

.bashrc

Of all the configuration files, .bashrc is the one that will most affect the command line environment. The .bashrc file controls the configuration options for the bash shell, and for...

4 minute read