Mikko Ohtamaa, profile picture
Uploaded byMikko Ohtamaa
PDF, PPTX1,540 views

Operations security (OPSEC)

The document discusses operations security (opsec) with a focus on securing user data and infrastructure against various cyber threats, emphasizing the importance of two-factor authentication, encryption, and proper password management. It outlines strategies to mitigate risks such as malware, phishing, and brute-force attacks, and recommends solutions like fail2ban and server encryption. Additionally, it highlights key practices for maintaining security hygiene in both personal and organizational contexts.

Embed presentation

Download as PDF, PPTX
OPSEC - operations security Mikko Ohtamaa ThaiPy / Bangkok / Nov 2014 opensourcehacker.com moo9000
Agenda Team security User security Infrastructure security
Person-to-person Bitcoin exchange Bitcoin users are high value targets
Team security
Physical access (display sleep + password) Encrypt devices (computers AND phones) Two-factor authentication on email inbox Two-factor authentication on site admin Two-factor SSH Google 2FA account incidents: https://ello.co/gb/post/knOWk-qeTqfSpJ6f8-arCQ
"Cyber hygiene" Password management (KeePassX) SSH keys (automatically unlock on your computer computer login) ! http://opensourcehacker.com/2012/10/24/ssh-key-and-passwordless-login-basics-for-developers/
User security
Passwords are dead Password stealing attacks by keylogging and file-system reading malware Strong password gives only limited additional protection
Throttle login attempts with CAPTCHA Threshold logins per IP (leaked credentials black market) Threshold per username (spearhead brute force) Threshold all logins per minute (botnet attack) recaptcha.net - https://github.com/praekelt/django-recaptcha http://opensourcehacker.com/2014/07/09/rolling-time-window-counters-with-redis-and- mitigating-botnet-driven-login-attacks/
Two-factor authentication for your users
Lack of two-factor scenario: US 0.90% scenario: Great-Britain 0.90% scenario: Australia 7.58% www.schneier.com/blog/archives/2006/11/fighting_fraudu.html
Time-Based One-Time Password Algorithm TOTP a.k.a Google Authenticator, RFC 6238 Google provides app for Android, iOS. Does not require Google account. Other OSS implementations
HMAC-Based One-Time Password Algorithm HOTP, RFC 4226 a.k.a. paper codes, one time pad Common in Nordic internet banking, unheard in many countries
SMS Yubikey Calculators and other hardware tokens As a service: authy.org twofactorauth.org
For Django: https://github.com/ miohtama/django-twofactor
Third factor
Users lose their credentials Recycled passwords (blackmarket) Phishing (Google Adwords attack) Stolen two-factor codes
Third factor parameters Unknown web browser (identified by cookie) The of country of IP address The reputation of IP address (botnet, Tor, VPS) IP address whitelist Confirm by email or by SMS “is it really you”
Mad general problem “If your local computer is compromised by malware or anything else, it is just like a mad general” http://www.reddit.com/r/Bitcoin/comments/2573rw/bitcoin_is_secure_because_it_solves_the_byzantine/
What I have seen Malicious browser add-on modifying sites in fly Android and iOS malware SMS capture attacks Spearhead email phishing Google AdWords phishing Malicious Tor exit nodes http://thed! roidguy.com/2014/06/popular-chinese-android-smartphone-malware-pre-installed- 93764
Infrastructure security
fail2ban Daemon automatically blocking IPs by log file analysis (e.g. Apache, SSH, your pplication)
Attack mitigation as a reverse proxy service: cloudflare.net Known bad IPs: projecthoneypot.org IP information: http://myip.ms/
Flood attacks Flood actions and anonymous forms: password reset email, invite email, user messaging Mostly harmless / reputation hit Have throttling and banning per IP Throttle email actions with a custom log file and fail2ban https://shubh.am/full-disclosure-coinbase-security/
Encrypt all the servers Encrypt your server content - “mad hosting provider” Encrypt backups: GPG, duplicity Encrypt server-to-server connections: AutoSSH, VPN Virtual machines are always unsafe http://blog.bitly.com/#85169217199
Server security monitoring Untamperable logs (external log servers / systems forward secure sealing) Known processes and files list (Tripwire) Firewalling http://louwrentius.com/systemd-forward-secure-sealing-of-system-logs-makes-little-sense. html
THANK YOU opensourcehacker.com Open Source Hacker mikko@moo9000 opensourcehacker.com
https://www.youtube.com/watch?v=OSGv2VnC0go&feature=youtu.be https://packaging.python.org/

More Related Content

PPTX
Ник Белогорский - Будни Кремниевой Долины. История карьеры Ника, борьба с хак...
byHackIT Ukraine
 
PPTX
password cracking and Key logger
byPatel Mit
 
PPT
Introduction to Web Server Security
byJITENDRA KUMAR PATEL
 
PPTX
Week12 final
byIrfan Ali Memon
 
PPTX
Attack chaining for web exploitation
byn|u - The Open Security Community
 
DOCX
Hackers dictionary
byTabraiz Bukhari
 
PDF
Cyber Attacks on Financial _ Vikjava
bySecurity Bootcamp
 
PPTX
Newbytes NullHyd
byn|u - The Open Security Community
 
Ник Белогорский - Будни Кремниевой Долины. История карьеры Ника, борьба с хак...
byHackIT Ukraine
 
password cracking and Key logger
byPatel Mit
 
Introduction to Web Server Security
byJITENDRA KUMAR PATEL
 
Week12 final
byIrfan Ali Memon
 
Attack chaining for web exploitation
byn|u - The Open Security Community
 
Hackers dictionary
byTabraiz Bukhari
 
Cyber Attacks on Financial _ Vikjava
bySecurity Bootcamp
 
Newbytes NullHyd
byn|u - The Open Security Community
 

What's hot

PPTX
Securing the Web @DevDay Da Nang 2018
bySumanth Damarla
 
PDF
Web Server Security Guidelines
bywebhostingguy
 
PDF
Evolution Of Web Security
byChris Shiflett
 
PPTX
News Bytes - December 2015
byn|u - The Open Security Community
 
PPTX
Cryptolocker Ransomware Attack
byKeval Bhogayata
 
PDF
Agnitum Outpost Pro product line
byPavel Fyodorov
 
PPTX
Password Cracking
bySina Manavi
 
PPTX
Web site hacking;what does it mean
byMetaKave
 
PPTX
Banking malware zeu s zombies are using in online banking theft.
byNahidul Kibria
 
PPTX
ip spoofing by Ipshita Nandy
byIpshitaNandy
 
PDF
Understanding CryptoLocker (Ransomware) with a Case Study
bysecurityxploded
 
PPTX
News Bytes
byMegha Sahu
 
PPTX
[DevDay2018] Security Testing - By Thuy Nguyen, Software Engineer at Axon Act...
byDevDay Da Nang
 
PPTX
Android Application Security Awareness Talk, OWASP MEETUP Q3, 2015
bySina Manavi
 
PPTX
NewsBytes - Nullhyd
byn|u - The Open Security Community
 
PPTX
Cyber attacks 2015
byMukesh Chaudhari
 
PPTX
Web server security challenges
byMartins Chibuike Onuoha
 
PDF
The top 10 security issues in web applications
byDevnology
 
PDF
The rise of malware(ransomware)
byphexcom1
 
Securing the Web @DevDay Da Nang 2018
bySumanth Damarla
 
Web Server Security Guidelines
bywebhostingguy
 
Evolution Of Web Security
byChris Shiflett
 
News Bytes - December 2015
byn|u - The Open Security Community
 
Cryptolocker Ransomware Attack
byKeval Bhogayata
 
Agnitum Outpost Pro product line
byPavel Fyodorov
 
Password Cracking
bySina Manavi
 
Web site hacking;what does it mean
byMetaKave
 
Banking malware zeu s zombies are using in online banking theft.
byNahidul Kibria
 
ip spoofing by Ipshita Nandy
byIpshitaNandy
 
Understanding CryptoLocker (Ransomware) with a Case Study
bysecurityxploded
 
News Bytes
byMegha Sahu
 
[DevDay2018] Security Testing - By Thuy Nguyen, Software Engineer at Axon Act...
byDevDay Da Nang
 
Android Application Security Awareness Talk, OWASP MEETUP Q3, 2015
bySina Manavi
 
NewsBytes - Nullhyd
byn|u - The Open Security Community
 
Cyber attacks 2015
byMukesh Chaudhari
 
Web server security challenges
byMartins Chibuike Onuoha
 
The top 10 security issues in web applications
byDevnology
 
The rise of malware(ransomware)
byphexcom1
 

Viewers also liked

PDF
Meeting-avoidance for self-managing developers
byPeter Hilton
 
PDF
(Moonconf 2016) Fetching Moths from the Works: Correctness Methods in Software
byBrian Troutwine
 
PDF
Cqrs 101 all your base belong to us
byTom Janssens
 
PDF
Automation With Humans in Mind: Making Complex Systems Predictable, Reliable ...
byBrian Troutwine
 
PDF
Ur Domain Haz Monoids DDDx NYC 2014
byCyrille Martraire
 
PDF
Writing the docs
byMikko Ohtamaa
 
PDF
HTTP demystified for web developers
byPeter Hilton
 
PDF
Documentation avoidance for developers
byPeter Hilton
 
PDF
Common ddd pitfalls
byTom Janssens
 
PDF
How to write maintainable code
byPeter Hilton
 
PDF
Instrumentation as a Living Documentation: Teaching Humans About Complex Systems
byBrian Troutwine
 
PDF
Selling ddd
byTom Janssens
 
PDF
Websauna - introduction to the best Python web framework
byMikko Ohtamaa
 
PDF
Tom and jef’s awesome modellathon
byTom Janssens
 
PDF
Domain-Driven Design in legacy application
byCyrille Martraire
 
PDF
Play framework: lessons learned
byPeter Hilton
 
PDF
Process-oriented reactive service architecture
byPeter Hilton
 
PDF
Domain-driven design - tactical patterns
byTom Janssens
 
PDF
DDD session BrownBagLunch (FR)
byCyrille Martraire
 
PDF
I T.A.K.E. talk: "When DDD meets FP, good things happen"
byCyrille Martraire
 
Meeting-avoidance for self-managing developers
byPeter Hilton
 
(Moonconf 2016) Fetching Moths from the Works: Correctness Methods in Software
byBrian Troutwine
 
Cqrs 101 all your base belong to us
byTom Janssens
 
Automation With Humans in Mind: Making Complex Systems Predictable, Reliable ...
byBrian Troutwine
 
Ur Domain Haz Monoids DDDx NYC 2014
byCyrille Martraire
 
Writing the docs
byMikko Ohtamaa
 
HTTP demystified for web developers
byPeter Hilton
 
Documentation avoidance for developers
byPeter Hilton
 
Common ddd pitfalls
byTom Janssens
 
How to write maintainable code
byPeter Hilton
 
Instrumentation as a Living Documentation: Teaching Humans About Complex Systems
byBrian Troutwine
 
Selling ddd
byTom Janssens
 
Websauna - introduction to the best Python web framework
byMikko Ohtamaa
 
Tom and jef’s awesome modellathon
byTom Janssens
 
Domain-Driven Design in legacy application
byCyrille Martraire
 
Play framework: lessons learned
byPeter Hilton
 
Process-oriented reactive service architecture
byPeter Hilton
 
Domain-driven design - tactical patterns
byTom Janssens
 
DDD session BrownBagLunch (FR)
byCyrille Martraire
 
I T.A.K.E. talk: "When DDD meets FP, good things happen"
byCyrille Martraire
 

Similar to Operations security (OPSEC)

PDF
Operations Security - SF Bitcoin Hackday March 2015
byMikko Ohtamaa
 
PDF
Operations security - SyPy Dec 2014 (Sydney Python users)
byMikko Ohtamaa
 
PDF
Insecurity-In-Security version.1 (2010)
byAbhishek Kumar
 
PDF
Security for Data Scientists
byDavid Arcos
 
PPT
Bsides-Philly-2016-Finding-A-Companys-BreakPoint
byZack Meyers
 
PDF
Staying safe in the cloud
byOleg Podsechin
 
PPTX
"Cryptography, Data Protection, and Security For Start-Ups In The Post Snowde...
byHackIT Ukraine
 
PDF
Invited Talk - Cyber Security and Open Source
byhack33
 
PPTX
Phd final
byPositive Hack Days
 
PPTX
Alexey Sintsov. Honeypot that Can Bite: Reverse Penetration.
byPositive Hack Days
 
PPT
BSidesJXN 2016: Finding a Company's BreakPoint
byAndrew McNicol
 
PPTX
Securing SSH Access by Pavel Shukhman at OWASP Ottawa Meetup, August 2019
byPavel Shukhman
 
PPT
BSides Philly Finding a Company's BreakPoint
byAndrew McNicol
 
PPTX
23BIT245 - Cybersecurity Threats and Preventions.pptx
byShlokRameshbhaiPanch
 
PPTX
Raising the dead to save the living
byJaredPeck
 
PDF
BlueHat v18 || The matrix has you - protecting linux using deception
byBlueHat Security Conference
 
PPTX
Cyber security 101
byTravis Good
 
PDF
Bitcoin Ops & Security Primer
byRainforest QA
 
PPS
Sreerag cs network security
bySreerag Gopinath
 
PDF
Presentation- Introduction to Cybersecurity.pdf
byfizarcse
 
Operations Security - SF Bitcoin Hackday March 2015
byMikko Ohtamaa
 
Operations security - SyPy Dec 2014 (Sydney Python users)
byMikko Ohtamaa
 
Insecurity-In-Security version.1 (2010)
byAbhishek Kumar
 
Security for Data Scientists
byDavid Arcos
 
Bsides-Philly-2016-Finding-A-Companys-BreakPoint
byZack Meyers
 
Staying safe in the cloud
byOleg Podsechin
 
"Cryptography, Data Protection, and Security For Start-Ups In The Post Snowde...
byHackIT Ukraine
 
Invited Talk - Cyber Security and Open Source
byhack33
 
Phd final
byPositive Hack Days
 
Alexey Sintsov. Honeypot that Can Bite: Reverse Penetration.
byPositive Hack Days
 
BSidesJXN 2016: Finding a Company's BreakPoint
byAndrew McNicol
 
Securing SSH Access by Pavel Shukhman at OWASP Ottawa Meetup, August 2019
byPavel Shukhman
 
BSides Philly Finding a Company's BreakPoint
byAndrew McNicol
 
23BIT245 - Cybersecurity Threats and Preventions.pptx
byShlokRameshbhaiPanch
 
Raising the dead to save the living
byJaredPeck
 
BlueHat v18 || The matrix has you - protecting linux using deception
byBlueHat Security Conference
 
Cyber security 101
byTravis Good
 
Bitcoin Ops & Security Primer
byRainforest QA
 
Sreerag cs network security
bySreerag Gopinath
 
Presentation- Introduction to Cybersecurity.pdf
byfizarcse
 

More from Mikko Ohtamaa

PDF
Plone, battle-scarred community with battle tanks
byMikko Ohtamaa
 
PDF
World Plone Day 2013
byMikko Ohtamaa
 
PDF
Test lol
byMikko Ohtamaa
 
KEY
Solving problems one Plone package at a time
byMikko Ohtamaa
 
KEY
Saving Plone from Plone agony
byMikko Ohtamaa
 
KEY
Beautiful Maintainable ModularJavascript Codebase with RequireJS - HelsinkiJ...
byMikko Ohtamaa
 
PDF
VVV validation and linting tool
byMikko Ohtamaa
 
PDF
Plone IDE - the future of Plone development
byMikko Ohtamaa
 
PDF
Javascript - How to avoid the bad parts
byMikko Ohtamaa
 
PDF
The Easy Way - Plone Conference 2011
byMikko Ohtamaa
 
KEY
Mobile Landscape 2011
byMikko Ohtamaa
 
PDF
Mobiilimarkkinoinnin mahdollisuudet nyt
byMikko Ohtamaa
 
PDF
The World Outside Plone
byMikko Ohtamaa
 
PPTX
mFabrik Case Studies
byMikko Ohtamaa
 
PPTX
Building HTML based mobile phone applications
byMikko Ohtamaa
 
Plone, battle-scarred community with battle tanks
byMikko Ohtamaa
 
World Plone Day 2013
byMikko Ohtamaa
 
Test lol
byMikko Ohtamaa
 
Solving problems one Plone package at a time
byMikko Ohtamaa
 
Saving Plone from Plone agony
byMikko Ohtamaa
 
Beautiful Maintainable ModularJavascript Codebase with RequireJS - HelsinkiJ...
byMikko Ohtamaa
 
VVV validation and linting tool
byMikko Ohtamaa
 
Plone IDE - the future of Plone development
byMikko Ohtamaa
 
Javascript - How to avoid the bad parts
byMikko Ohtamaa
 
The Easy Way - Plone Conference 2011
byMikko Ohtamaa
 
Mobile Landscape 2011
byMikko Ohtamaa
 
Mobiilimarkkinoinnin mahdollisuudet nyt
byMikko Ohtamaa
 
The World Outside Plone
byMikko Ohtamaa
 
mFabrik Case Studies
byMikko Ohtamaa
 
Building HTML based mobile phone applications
byMikko Ohtamaa
 

Recently uploaded

PPTX
INSY_7213_Theme Sessions 47 & 48 Advanced databases.pptx
bystormzy56
 
PDF
Adapt.com Seed Fundraising Deck | The AI Computer for Business
byashley459565
 
PDF
Build Next-Gen Spatial & Sensor Workflows: Secure, Scalable Processing in Sno...
bySafe Software
 
PDF
Parental Control App for Phones_ The Complete 2026 Guide for Safer, Smarter P...
byRyan Cooper
 
PPTX
TechSprint WinterHack — Top 10 Teams Pitching Session we are excited for pit...
bybajpaitusharoffon678
 
PDF
Transcript: What Thema can do: Leveraging metadata to support the discoverabi...
byBookNet Canada
 
PDF
Dev Dives: Build and deploy agentic automations - the unified way
byUiPathCommunity
 
PDF
Transcript: EU regulations for the North American book supply chain - Tech Fo...
byBookNet Canada
 
PDF
Web3 - Applications and Architectures - History and Horizons
byGokul Alex
 
PDF
OpenCharacter AI Reviews: Features, Plans, and Best Alternative
byOpenCharacter AI
 
PDF
Real-Time AI at Scale Masterclass - Challenges of AI at Scale
byScyllaDB
 
PDF
ICT500 - CRITICAL AND CREATIVE THINKING FOR INFORMATION TECHNOLOGY SOLUTIONS:...
by2024432452
 
PDF
Certified AI-Empowered SAFe 6 Scrum Master.pdf
byMarc Entsminger SPC6, RTE, SSM, SA, SDP
 
PDF
Certified AI-Empowered SAFe Release Train Engineer.pdf
byMarc Entsminger SPC6, RTE, SSM, SA, SDP
 
PDF
TrustArc Webinar - From Zero to Privacy Hero: Launching Your Program Right an...
byTrustArc
 
PDF
Quick Learn Laravel for Beginner from Zero to Survive
byiDev Semarang
 
PDF
When Drones Decide for Themselves_ Inside the Rise of Machine-Led Flight.pdf
byLyra Anderson
 
PDF
AI and Zero Trust: What it takes to do it right
byMark Simos
 
PDF
React Mastery: Visual Mental Models to Understand React Deeply
byThomas Gaye
 
PDF
Real-Time AI Masterclass: Vector Search at Scale
byScyllaDB
 
INSY_7213_Theme Sessions 47 & 48 Advanced databases.pptx
bystormzy56
 
Adapt.com Seed Fundraising Deck | The AI Computer for Business
byashley459565
 
Build Next-Gen Spatial & Sensor Workflows: Secure, Scalable Processing in Sno...
bySafe Software
 
Parental Control App for Phones_ The Complete 2026 Guide for Safer, Smarter P...
byRyan Cooper
 
TechSprint WinterHack — Top 10 Teams Pitching Session we are excited for pit...
bybajpaitusharoffon678
 
Transcript: What Thema can do: Leveraging metadata to support the discoverabi...
byBookNet Canada
 
Dev Dives: Build and deploy agentic automations - the unified way
byUiPathCommunity
 
Transcript: EU regulations for the North American book supply chain - Tech Fo...
byBookNet Canada
 
Web3 - Applications and Architectures - History and Horizons
byGokul Alex
 
OpenCharacter AI Reviews: Features, Plans, and Best Alternative
byOpenCharacter AI
 
Real-Time AI at Scale Masterclass - Challenges of AI at Scale
byScyllaDB
 
ICT500 - CRITICAL AND CREATIVE THINKING FOR INFORMATION TECHNOLOGY SOLUTIONS:...
by2024432452
 
Certified AI-Empowered SAFe 6 Scrum Master.pdf
byMarc Entsminger SPC6, RTE, SSM, SA, SDP
 
Certified AI-Empowered SAFe Release Train Engineer.pdf
byMarc Entsminger SPC6, RTE, SSM, SA, SDP
 
TrustArc Webinar - From Zero to Privacy Hero: Launching Your Program Right an...
byTrustArc
 
Quick Learn Laravel for Beginner from Zero to Survive
byiDev Semarang
 
When Drones Decide for Themselves_ Inside the Rise of Machine-Led Flight.pdf
byLyra Anderson
 
AI and Zero Trust: What it takes to do it right
byMark Simos
 
React Mastery: Visual Mental Models to Understand React Deeply
byThomas Gaye
 
Real-Time AI Masterclass: Vector Search at Scale
byScyllaDB
 

Operations security (OPSEC)

  • 1.
    OPSEC - operations security Mikko Ohtamaa ThaiPy / Bangkok / Nov 2014 opensourcehacker.com moo9000
  • 2.
    Agenda Team security User security Infrastructure security
  • 3.
    Person-to-person Bitcoin exchange Bitcoin users are high value targets
  • 4.
  • 5.
    Physical access (displaysleep + password) Encrypt devices (computers AND phones) Two-factor authentication on email inbox Two-factor authentication on site admin Two-factor SSH Google 2FA account incidents: https://ello.co/gb/post/knOWk-qeTqfSpJ6f8-arCQ
  • 6.
    "Cyber hygiene" Passwordmanagement (KeePassX) SSH keys (automatically unlock on your computer computer login) ! http://opensourcehacker.com/2012/10/24/ssh-key-and-passwordless-login-basics-for-developers/
  • 7.
  • 8.
    Passwords are dead Password stealing attacks by keylogging and file-system reading malware Strong password gives only limited additional protection
  • 9.
    Throttle login attemptswith CAPTCHA Threshold logins per IP (leaked credentials black market) Threshold per username (spearhead brute force) Threshold all logins per minute (botnet attack) recaptcha.net - https://github.com/praekelt/django-recaptcha http://opensourcehacker.com/2014/07/09/rolling-time-window-counters-with-redis-and- mitigating-botnet-driven-login-attacks/
  • 10.
  • 11.
    Lack of two-factor scenario: US 0.90% scenario: Great-Britain 0.90% scenario: Australia 7.58% www.schneier.com/blog/archives/2006/11/fighting_fraudu.html
  • 12.
    Time-Based One-Time PasswordAlgorithm TOTP a.k.a Google Authenticator, RFC 6238 Google provides app for Android, iOS. Does not require Google account. Other OSS implementations
  • 13.
    HMAC-Based One-Time PasswordAlgorithm HOTP, RFC 4226 a.k.a. paper codes, one time pad Common in Nordic internet banking, unheard in many countries
  • 14.
    SMS Yubikey Calculatorsand other hardware tokens As a service: authy.org twofactorauth.org
  • 15.
    For Django: https://github.com/ miohtama/django-twofactor
  • 16.
  • 17.
    Users lose theircredentials Recycled passwords (blackmarket) Phishing (Google Adwords attack) Stolen two-factor codes
  • 18.
    Third factor parameters Unknown web browser (identified by cookie) The of country of IP address The reputation of IP address (botnet, Tor, VPS) IP address whitelist Confirm by email or by SMS “is it really you”
  • 19.
    Mad general problem “If your local computer is compromised by malware or anything else, it is just like a mad general” http://www.reddit.com/r/Bitcoin/comments/2573rw/bitcoin_is_secure_because_it_solves_the_byzantine/
  • 20.
    What I haveseen Malicious browser add-on modifying sites in fly Android and iOS malware SMS capture attacks Spearhead email phishing Google AdWords phishing Malicious Tor exit nodes http://thed! roidguy.com/2014/06/popular-chinese-android-smartphone-malware-pre-installed- 93764
  • 21.
  • 22.
    fail2ban Daemon automaticallyblocking IPs by log file analysis (e.g. Apache, SSH, your pplication)
  • 23.
    Attack mitigation asa reverse proxy service: cloudflare.net Known bad IPs: projecthoneypot.org IP information: http://myip.ms/
  • 24.
    Flood attacks Floodactions and anonymous forms: password reset email, invite email, user messaging Mostly harmless / reputation hit Have throttling and banning per IP Throttle email actions with a custom log file and fail2ban https://shubh.am/full-disclosure-coinbase-security/
  • 25.
    Encrypt all theservers Encrypt your server content - “mad hosting provider” Encrypt backups: GPG, duplicity Encrypt server-to-server connections: AutoSSH, VPN Virtual machines are always unsafe http://blog.bitly.com/#85169217199
  • 26.
    Server security monitoring Untamperable logs (external log servers / systems forward secure sealing) Known processes and files list (Tripwire) Firewalling http://louwrentius.com/systemd-forward-secure-sealing-of-system-logs-makes-little-sense. html
  • 27.
    THANK YOU opensourcehacker.comOpen Source Hacker mikko@moo9000 opensourcehacker.com
  • 28.