SSL/TLS protocol settings may be specified in the primary Nginx configuration file (usually located at /etc/nginx/nginx.conf), or in your site configuration files. Look for a line beginning with ssl_protocols. For example, the following is from the default nginx.conf file from a fresh Nginx install on Ubuntu: ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3; # Dropping SSLv3, ref: POODLE You can edit…Read More Disable TLS 1.0 and TLS 1.1 on Nginx and Enable TLS 1.2 and TLS 1.3
A quick method to scan your network and enumerate the SSL Ciphers in use on systems is with nmap. nmap –script ssl-enum-ciphers -p 443 192.168.0.1/24 This will scan the entire 192.168.0.0 subnet for open port 443 and if found enumerate the SSL Ciphers enabled. You can also use openssl if the command is installed in…Read More Enumerate SSL Ciphers Using nmap
A new variant of Dharma seems to have hit a server; here are some of the details I’ve been gathering.Read More Ransomware: id-3509099450_[firstname.lastname@example.org].0oxr4
I have triaged a handful of Windows servers this week that started out being ticketed as high CPU / performance issues.
Upon investigation, I have found XMR cryptocurrency miners being installed through a Windows OS Vulnerability.
Security vulnerabilities are addressed in WordPress 4.7.2. An XSS and SQL injection vulnerability (wp_query()) were discovered and have been patched. Update your sites.Read More WordPress 4.7.2 is Available for Update