Antoine Aflalo

My journey in the computer world

Category

Sysadmin

Wireguard and Torrent on Linux

Setup Wireguard VPN Client on Linux to have only selected application having their traffic redirected to the server.

2019/08/10 1

Tutorial to setup DNS-over-TLS (DoT)

Tutorial to help you configure your own DNS-over-TLS server (DoT).
This is useful if you’re using an Android 9 (Pie) smartphone.

2019/03/06 26

DNS-over-HTTPS Servers (aaflalo-me[-gcp|-nyc])

This article describes in great details the operation of 2 DNS-over-HTTPS servers.
How they are setup and on which providers.
It also contains the different information needed to use them.

2019/01/25 3

DNS-over-HTTPS with Pi-Hole

Introduction In my previous article/tutorial, I’ve explained how to setup your own DNS-over-HTTPS (DoH) server using Nginx, Certbot, dnscrypt-proxy and dns-over-https. In this article I’ll explain to you how to add Pi-Hole into the mix to block the unwanted advertising…. Continue Reading →

2018/10/03 20

Tutorial to setup your own DNS-over-HTTPS (DoH) server

Introduction Traditional DNS queries and responses are sent over UDP or TCP without encryption. This is vulnerable to eavesdropping and spoofing (including DNS-based Internet filtering). Responses from recursive resolvers to clients are the most vulnerable to undesired or malicious changes,… Continue Reading →

2018/10/02 53

Elastic Stack with TLS

Introduction At work, we decided to give a try to the Elastic Stack (Elastic Search, Logstash and Filebeat in our case) while having the whole communication secured with TLS. TLS Protocol You might at this point wonder how all the… Continue Reading →

2017/11/13 1

Best practices to secure your WordPress CMS

When you manage a WordPress site, you see the worst that the internet can bring on you. When it’s not blatant comment spam, it’s some brute forcing to try to get admin access to your WordPress. I posted about this… Continue Reading →

2017/10/20 0

Fail2ban and CloudFlare

In a previous blog post (Fail2ban + Tarpit), I explained how to setup a Tarpit for Fail2ban to use it against the attacker that got banned multiple times. It works great especially in conjunction with WP Fail2ban, a fail2ban plugin for… Continue Reading →

2017/03/10 1

Let’s Encrypt with Dehydrated: DNS-01

In my previous guide on dehydrated, the bash client for let’s encrypt, I’ve only touched on the DNS-01 feature. Upon further investigation and usage of said feature I give you this guide. DNS-01 DNS-01 is another type of verification of… Continue Reading →

2017/02/18 1

Dehydrated: a bash client for Let’s Encrypt

Dehydrated was firstly known as letsencrypt.sh but because letsencrypt is a trademark, they decided to rename the project, but keep the excellent features. Purpose If you’re already familiar with let’s encrypt and the ACME protocol, you can go directly to… Continue Reading →

2016/09/25 4
« Older posts

© 2020 Antoine Aflalo — Powered by WordPress

Theme by Anders NorenUp ↑