Secure memcached server to avoid DDoS amplification attacks

in Categories , , last updated March 5, 2018

I am worried that my Memcached server used for DDoS amplification attacks. How do I secure Memcached server on Linux or Unix-like system to avoid an attacker to exploit my Memcached services as an amplification vector, causing unexpected volumes of traffic to be sent to targeted networks?
Continue reading “Secure memcached server to avoid DDoS amplification attacks”

Howto patch Spectre Vulnerability CVE-2017-5753/CVE-2017-5715 on Linux

in Categories , , , , , last updated April 20, 2018

A very serious security problem has been found in the Intel/AMD/ARM CPUs. Spectre CPU Vulnerability CVE-2017-5753/CVE-2017-5715 breaks the isolation between different applications. It allows an attacker to trick error-free programs, which follow best practices, into leaking their secrets. In fact, the safety checks of said best practices actually increase the attack surface and may make applications more susceptible to Spectre. How do I protect my Linux server and laptop/desktop against such attack?

How to patch Meltdown CPU Vulnerability CVE-2017-5754 on Linux

in Categories , , , , , , last updated April 20, 2018

A very serious security problem has been found in the Intel CPUs. Meltdown CPU Vulnerability CVE-2017-5754 breaks the most fundamental isolation between user applications and the operating system. This attack allows a program to access the memory, and thus also the secrets, of other programs and the operating system. How do I protect my Linux server and laptop/desktop against such attack?