Categories
Archives
- May 2012 (5)
- April 2012 (4)
- March 2012 (5)
- February 2012 (6)
- January 2012 (6)
- December 2011 (3)
- November 2011 (4)
- October 2011 (5)
- September 2011 (5)
- August 2011 (7)
- July 2011 (5)
- June 2011 (6)
- May 2011 (6)
- April 2011 (5)
- March 2011 (7)
- February 2011 (3)
- January 2011 (4)
- December 2010 (5)
- November 2010 (6)
- October 2010 (4)
- September 2010 (1)
- March 2010 (2)
- May 2009 (1)
- April 2009 (2)
- November 2008 (2)
- August 2008 (1)
- July 2008 (1)
Category Archives: Security
PCI, Magento, and Storing Credit Card Information
The question of whether you can store credit card information within Magento comes up a lot here at Nexcess. The answer to this question is unfortunately not very clear when looking for an answer elsewhere including on the Magento website. … Continue reading
Posted in Magento, Security
Leave a comment
Keeping WordPress Secure
Being one of the most widely-deployed blogging engines around, it’s no surprise that WordPress holds the interests of a wide audience. Unfortunately, not everyone is out to become the next rockstar blogger or tech pundit; the sad truth is that … Continue reading
Swaks Makes Testing SMTP Servers Easier
I have the pleasure of dealing with mail problems frequently, specifically problems getting messages delivered from our servers to other servers. When diagnosing a problem, I usually ended up telnetting directly to the server to send it some commands to … Continue reading
Posted in Security
Leave a comment
SSL for the Rest of Us
Recently, a certificate authority (CA) named Diginotar mistakenly issued valid wildcard SSL certificates for some major websites such as Google, Mozilla, Yahoo, WordPress and the Tor Project. Security experts and application vendors considered this a serious threat to the essential … Continue reading
Posted in Security
Tagged certificate, cryptography, Secure Sockets Layer, SSL, TLS, validate, VeriSign, wildcard
3 Comments
Using OpenSSL to Verify Service Availability and Configuration
SSL is one of the most widely-used technologies for securing communications over the internet. It does have a few design flaws, but it’s still widely used to secure e-mail (IMAP-SSL and POP3-SSL), HTTP traffic (via HTTPS), and other communications. By … Continue reading
Avoid Common Password Pitfalls by Getting Creative
Here at Nexcess, we deal with lots of passwords. Passwords for SSH, passwords for e-mail, passwords for intranet sites, passwords for VPNs. We have passwords that fall within the client realm things like webmail, control panels, e-mail, FTP…the list goes … Continue reading
