Secure memcached server to avoid DDoS amplification attacks

Posted on in Categories , , last updated March 5, 2018

I am worried that my Memcached server used for DDoS amplification attacks. How do I secure Memcached server on Linux or Unix-like system to avoid an attacker to exploit my Memcached services as an amplification vector, causing unexpected volumes of traffic to be sent to targeted networks?
Continue reading “Secure memcached server to avoid DDoS amplification attacks”

Howto patch Spectre Vulnerability CVE-2017-5753/CVE-2017-5715 on Linux

Posted on in Categories , , , , , last updated April 20, 2018

A very serious security problem has been found in the Intel/AMD/ARM CPUs. Spectre CPU Vulnerability CVE-2017-5753/CVE-2017-5715 breaks the isolation between different applications. It allows an attacker to trick error-free programs, which follow best practices, into leaking their secrets. In fact, the safety checks of said best practices actually increase the attack surface and may make applications more susceptible to Spectre. How do I protect my Linux server and laptop/desktop against such attack?