Another year has come and gone, and with the new year approaching, it’s timely to revisit some of my previous posts. It’s an exciting time in information security and always interesting to see what gets the most interest. Here’s to another year of blog posts, and hopefully some more content. Enjoy this run down and… Read More »
NCSC have recently updated their guidance on email security and anti-spoofing. Implementing measures such as DMARC and SPF are well worth doing and will enhance the quality of your email service. Also make sure you use certificates from recognised Certificate Authorities and configure correctly, to ensure TLS is used as effectively as possible. Also make… Read More »
Perhaps not surprising that passwords dominate the 2018 OWASP IoT analysis, closely followed by insecure network services and interfaces. IoT is of course an ecosystem and connectivity problem, and in many ways, more generally, a security maturity deficit. Take a look: OWASP 2018 IoT
Happy New Year to all my blog readers and to everyone who comes to visit. It’s been a busy year in blog traffic. 2018 has been an interesting year with many developments that I will be writing about in my post tomorrow. I will also be making some predictions for 2019 and what we can… Read More »
Following on from my previous post, there are some further updates you can make to your Apache configuration to improve the ciphers used between server and client.