Recently I wrote about the new security device I bought. Today I want to give a hands on example of how it improves my security. Ladies and gentlemen, today I’ll perform an attack on myself (since it’s the only legal attack I can perform) and explain in better details how to use Yubikey against phishing. […]
I finally got my Yubikey!
I know that as a person, who writes about security I should be aware of the threats that phishing carries and I should protect myself just to set an example. Unfortunately until now, I was “a shoemaker going barefoot” as a Polish saying goes. Although I try to remain open about how I protect myself, […]
Metasploitable Walkthrough Part 2. – VSFTPD
It’s been over a year since I’ve done something security-related and today I’m continuing the series about the Metasploitable project. The last part was reconnaissance, where I showed multiple vulnerabilities found on the machine. One of them was related to the VSFTPD. Today I’ll just script the attack. What is VSFTPD Vulnerable to? There’s a […]
IPC examples – signals and shared memory
There are numerous ways programs can talk to each other. Modern operating systems provide decent isolation for security reasons, but programs must talk to each other this way or another. Today, after 2 articles on AWS, I’ll return to more generic IT topics. I’m going to describe 2 IPC (which stands for Inter Process Communication) […]
AWS Lambda in Pycharm
I’m back to life and here’s some tasty article on something I’ve recently learnt. Unfortunately, this is again on 2 very specific commercial solutions instead of general purpose programming. And another one on AWS. Maybe I’ll come up with an article on signal handling in operating systems. Anyway, here are some tips and trick on […]
AWS Secrets Storing
I’ve always thought it is cool to have a pet project. Creating something single-handedly lets you get an insight into problems that you won’t come across when you’re just one out of many people engaged in the project. One of such things is setting up proper operations and deployment process. Sure, for something small even […]
The Vicious Circle of Code Quality
What’s wrong with our code quality? I’ve recently came across a talk given by “Uncle Bob” Martin on the object-oriented programming. What struck me most, however, was not how precisely and thoroughly he grasped the very core of OOP, but the introduction he gave. We, as programmers, tend to sacrifice the code quality in order […]
Java Manifest Crash Course
I’m recently learning about AWS features and one of them are “Lambdas”. Those are functions that can be deployed and triggered on various events (like HTTP request, or file upload), but you don’t have to maintain the servers that run them. By default AWS provides several runtimes like NodeJS, Python and Java. Since I’m recently […]
Optimizing Django Queries – Part 4
Time to say goodbye to yet another series. But before we do so, let’s once again ask the question: “how can I make Django database queries faster?” Today I’m going to show another aspect of this problem, namely leveraging the hardware architecture for optimizing Django queries. Let’s create a read replica and set up the […]
Optimizing Django Database Queries – Part 3
In the last 2 parts I mostly talked about proper indexing. But indexing is not everything. Sure, it might be helpful in some situations, but today I’d like to show you a situation where a search can be improved without them. Disclaimer: I failed to write queries returning proper results. I have no idea why […]