Questions tagged [security]
For questions relating to application security and attacks against software. Please don't use this tag alone, that results in ambiguity. Information security means protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, perusal, inspection, recording or destruction. If your question is not about a specific programming problem, please consider instead asking it at Information Security SE
6,969 questions
0
votes
0
answers
26
views
CISSP Preparation Strategy for Security Topics – Need Advice [closed]
I’m currently preparing for the CISSP and focusing on key security areas like access control, network security, risk management, and security operations using official study resources.
To strengthen ...
3
votes
1
answer
247
views
Microsoft ediscovery Logs
Is there anyway to find from the logs if a user is added to ediscovery Manager or ediscovery admin role group? KQL or splunk query would be helpful. I suppose for the query the Workload would be ...
- 69
0
votes
2
answers
152
views
PostgreSQL: How restrict database creation?
I sort of frequently encounter software that pretends it owns all of a PostgreSQL instance and wants to create a database, even if it's already there and the software uses the account owning the ...
- 11
4
votes
2
answers
1k
views
DigitalOcean droplet compromised [closed]
My DigitalOcean droplets are compromised and used for DDoS attacks. This is the third occurrence. Each time I destroy the droplet, start from scratch, add more security, and within a day it occurs ...
0
votes
0
answers
396
views
In MacOS Tahoe and Sequoia, who do you trigger the Local Network Access popup from the command line?
We're starting to see a problem where ssh tunneling stops working in MacOS Sequoia and/or Tahoe. The problem stems from MacOS adding "Local Network Access" permissions, which prevent ...
- 76
0
votes
2
answers
188
views
block ip subnet for all vhost
I have ~50 requests per second coming from Singapore (many different ip starting by 47.79) on a reverse proxy VM. Apache is automatically killed because it exhaust the memory resource...
I am trying ...
- 103
0
votes
1
answer
67
views
How can I configure Azure so that I get an email alert when someone accesses/views keys in my Azure subscription?
A few people can access my Azure subscription via https://portal.azure.com. How can I configure Azure so that I get an email alert when someone accesses/views keys in my Azure subscription? My Azure ...
- 1,988
2
votes
1
answer
195
views
How can I bulk-rotate/renew all the keys of all my resources in my Azure subscription?
I want to bulk-rotate/renew all the keys of all my resources in my Azure subscription. How can I achieve that? My Azure subscription only contain Azure Cognitive Resources if that matters.
I don't ...
- 1,988
2
votes
0
answers
97
views
Selecting a hypervisor with strong security and isolation, minimal configuration and maintenance, broad guest compatibility [closed]
I am looking for a hypervisor to run several non-interacting VMs (or containers, see the section on Kata Containers at the end of this question) under, with the host being a laptop running secureblue (...
- 29
0
votes
1
answer
144
views
How can one disable/pause an Azure Cognitive Services resource to prevent further billing on that resource?
I am looking for a way to temporarily disable or stop an Azure Cognitive Services resource to ensure no further requests are processed and to halt consumption-based billing. How can one disable/pause ...
- 1,988
2
votes
1
answer
244
views
How can I configure an Azure OpenAI resource so that it allows requests from certain IPs?
I am setting up an Azure OpenAI resource and I need to restrict access so that only requests from our office static IPs and our application server are allowed. By default, the resource seems to be ...
- 1,988
0
votes
1
answer
193
views
How can I remotely revoke Google Cloud Platform (GCP)'s Application Default Credentials (ADC) from a machine?
I recently used a remote CLI to authenticate with Google Cloud Platform (GCP) using the following command:
gcloud auth application-default login --no-launch-browser
I no longer have access to that ...
google-cloud-platform
0
votes
1
answer
169
views
Domain still remains in browser's preload list after it has been removed from hstspreload.org
I submitted my domain for HSTS preload (with include_domains=on) back in a few months. After that, I realised that some old websites in the subdomains were not fully supported in HTTPS.
I later ...
- 113
-2
votes
1
answer
100
views
Should I block the Docker Gateway IP in my application to prevent NAT masquerading bypass?
Environment
Host: Arch Linux (Mini PC)
Docker: Standard Bridge Network
Networking: Tailscale (Host level) + Caddy (Containerized)
Question
See the context below to better understand my question! I ...
- 1
0
votes
1
answer
134
views
Should I store domain admin passwords and user passwords in separate files? [closed]
In an Ansible based email server automation project, random passwords are created for domain admins and users mailboxes, and stored in a JSON file.
In addition to using them in the automation process, ...
- 11