Easy, quick and free valid SSL certificates for your HomeLab (or other local web servers) using DuckDNS and ACME DNS-01

This video and the accompanying article explain how to set up easy SSL certificates in a HomeLab environment using DNS-01 validation. This method should also work for other types of locally-hosted services (in other words, servers on your local network that have a web interface, but that aren’t exposed to the Internet). The problem is that obtaining SSL certificates for internal HomeLab services can be challenging, especially when you don’t have a public IP or don’t want to expose your services to the internet. The video and article demonstrate how to use DNS-01 validation to obtain SSL certificates from Let’s Encrypt using your internal DNS server. This approach eliminates the need for a public IP or exposing services to the internet.

Article: Easy, quick and free valid SSL certificates for your homelab using DuckDNS and ACME DNS-01 (Wolfgang’s Blog)

Taking Linux Security To The Next Level With OpenSnitch Firewall

Enhance Linux security with OpenSnitch, the powerful application-level firewall that effectively controls your outbound connections.

Source: Taking Linux Security To The Next Level With OpenSnitch Firewall – OSTechNix

Top 20 OpenSSH Server Best Security Practices

OpenSSH server best security practices – protect your server from brute force attack on a UNIX / Linux / *BSD / Mac OS X operating systems.

Source: Top 20 OpenSSH Server Best Security Practices – nixCraft

Multiple databases with KeePassXC

With this simple trick, the KeePassXC browser plugin can read access data from multiple databases.

KeePassXC offers the possibility to open several databases in parallel. In connection with the browser plug-in, access data can be filled out automatically on websites.

Source: Multiple databases with KeePassXC – GNU/Linux.ch (English translation by Google)

Original Source (in German): Mehrere Datenbanken mit KeePassXC – GNU/Linux.ch

Visual guide to SSH tunnels

This page explains use cases and examples of SSH tunnels while visually presenting the traffic flows.

(Note that you need to scroll down a little to see the actual SSH command examples).
Source: Visual guide to SSH tunnels

Small SSH config change becomes a massive time saver when using a jump (bastion) host

By using ProxyJump in your config on your local SSH client, you can save a lot of time when using a SSH jump (bastion) server before connecting to the target server.

Source: Small SSH config change becomes a massive time saver when using a jump (bastion) host (Claudio Kuenzler)

Nmap Commands for Beginners: Simple Scanning Tips

Discover 20 essential Nmap command examples for basic scans, port scans, and more. Perfect for beginners looking to get started with Nmap.

Source: Nmap Commands for Beginners: Simple Scanning Tips – LinuxCapable

Sloth – Mac app that shows all open files and sockets

Sloth is a native Mac app that shows all open files and sockets in use by all running processes on your system. This makes it easy to inspect which apps are using which files and sockets.

Source: Sloth – Mac app that shows all open files and sockets | Sveinbjörn Þórðarson

Set Up a Fully Functioning Home Network Using OPNsense

In an effort to help those individuals, I decided to write my most comprehensive guide to date. I will discuss how to build an entire network using OPNsense and other network hardware in order to demonstrate how all of it works together. Much of the guide will be focused on OPNsense configuration since it lies at the core of the network infrastructure, but managed switches and wireless access points will be discussed as well.

Source: Set Up a Fully Functioning Home Network Using OPNsense (Home Network Guy)

LuLu – a free alternative to Little Snitch?

If you use MacOS and you would like the functionality of Little Snitch but don’t want to pay for it, this might be an alternative to consider. I haven’t tested it, nor have I done a feature comparison between LuLu and Little Snitch, so this is just to note that it exists and nothing more.

In today’s connected world, it is rare to find an application or piece of malware that doesn’t communicate with a remote server.

LuLu is the free, open-source firewall that aims to block unknown outgoing connections, protecting your privacy and your Mac!

Source: Objective-See: LuLu

TechNotes

My Personal Notes You Might Find Useful

Category: Security

Easy, quick and free valid SSL certificates for your HomeLab (or other local web servers) using DuckDNS and ACME DNS-01

Taking Linux Security To The Next Level With OpenSnitch Firewall

Top 20 OpenSSH Server Best Security Practices

Multiple databases with KeePassXC

Visual guide to SSH tunnels

Small SSH config change becomes a massive time saver when using a jump (bastion) host

Nmap Commands for Beginners: Simple Scanning Tips

Sloth – Mac app that shows all open files and sockets

Set Up a Fully Functioning Home Network Using OPNsense

LuLu – a free alternative to Little Snitch?

Recent Posts

Recent Comments

Archives

Categories

Meta