Enterprise Linux Security Episode 6 – Image Defaults
Although there’s no such thing as a “perfect” deployment image, including some sane defaults into your images and templates can save you a lot of work down the road, and also give you the opportunity to include more secure defaults. In this episode, we’ll discuss deployment image defaults as well as some recent news.
Behind the Distro – Benny Vasquez, AlmaLinux OS Chair of the Board
I recently had a chance to chat with Benny Vasquez, who was recently named the Chair of the Board of Directors for AlmaLinux OS. In this conversation, we chat about some of the things that led to the creation of AlmaLinux itself, the community-focused and inclusive nature of the project, the new board position, and more!
Setting up a Bastion Server can be a useful method of gaining access to your Homelab from external networks. In addition, it’s also a popular attack target for intruders. In this episode, Tom and Jay discuss what a Bastion Server is, and some recommended adjustments to help make it more secure.
Linux Crash Course: Background (bg) and Foreground (fg)
In this episode of Linux Essentials, we’ll take a look at how to send tasks to the background, and then bring them to the foreground. This helps you get the current task out of the way so you can switch to something else, without having to use multiple terminal windows.
Thank you to Linode for sponsoring this video. Check them out and get your very own Linux server in minutes!
Aliases in Bash enable you to essentially create your own commands, or even just simplify existing ones. In this video, I’ll explain what aliases are, and I’ll show you some of my personal favorites. At the end, I’ll show you how to make your aliases persist between sessions.
Enterprise Linux Security Episode 4 – Supply Chain Attacks
When you write software, there’s no reason to reinvent the wheel – shared libraries and other resources exist to enable you to create applications while avoiding redundant work. Unfortunately, sometimes the software supply itself chain is attacked, which would mean that your application contain malware or security threats you didn’t account for. In this episode of Enterprise Linux Security, Joao and I discuss supply chain attacks, as well as some ways to mitigate this threat.
As Linux server administrators, we need to be able to schedule tasks to run at some point in the future. Perhaps as a one-off command, or a job that’s expected to repeat on some sort of schedule. And that’s exactly what Cron helps us to do – by setting up a Crontab, we can schedule tasks to run at some point in the future.
Enterprise Linux Security Episode 3 – Linux Distro Migrations
Migrating your servers from one Linux distribution to another can be a daunting task, even moreso if it’s a migration you’re doing because of unforeseen events or changes within the ecosystem. In this video, Jay and Joao discuss the challenges when it comes to migrating Linux distributions, and the effect this has on security.
Rebooting is a pain, and in some organizations, downright tedious. Shuffling virtual machines between hosts in a cluster is even more tedious, and when it’s time to install patches, that’s what many administrators are forced to do. In this video, I check out QEMUCare, which aims to live-patch QEMU to avoid VM shuffling. In particular, we’ll look at installing ePortal (which deploys the patches) and also an example scenario.
Taking a look at CrowdSec: Installation & Example Scenario
CrowdSec is a solution that aims to help protect your Linux servers, and its approach is quite different than other solutions. CrowdSec is able to utilize reputation to make intelligent decisions, and is able to be extended to meet your needs. In this video, I take a first look at CrowdSec – I’ll show you the installation process and also an example scenario so you can see it in action.
