pfSense in AWS (as a VPN Concentrator)

Good Morning, Sorry It’s been a while since I’ve posted, I’ve been doing some very interesting things with my new job and simply haven’t had the time to share any of the details, however a friend of mine needed some help in AWS Land and I was happy to help (and learn!). The Problem: AWS Hosted resource access over IPSec Continue reading pfSense in AWS (as a VPN Concentrator)

Success! QNAP Upgrade Complete!

After much debate, I decided to wait for those Black Friday Deals ($400/12TB Ironwolf) and upgrade my entire nas with 100% new drives. For almost a year, I’ve been getting closer to filling my 8 bay NAS array, currenly full of 2TB drives ranging from Greens to Blacks and whatever I had available, some of the drives as old as Continue reading Success! QNAP Upgrade Complete!

Why it’s a bad idea to test your dns records right away.

As you may or may not know, I’m a bit crazy when it comes to DNS, it’s something that’s is conceptually easy, very complex, and there’s something new EVERY DAY. So why is i t a bad idea to test your dns records immediately after publishing them, or before adding them, or any of that? Let’s start by checking your Continue reading Why it’s a bad idea to test your dns records right away.

What the heck is PKI, Public Keys, Private Keys, Infrastructure, Security, Sign this Encrypt that..what?!

I’m going to start going over some Core Concepts, a lot of these I ask in interview questions. “What is PKI? How do you Encrypt, Decrypt, Sign and Verify Data?” The Answers I get are quite wrong or not quite right most of the time. PKI, Public Key Infrastructure Covered, read the wiki link, TLDR: it’s our ssl chaining system Continue reading What the heck is PKI, Public Keys, Private Keys, Infrastructure, Security, Sign this Encrypt that..what?!

What is a real email signature.

So while at InteropITX, the use case was given that your employees should expect a consistent signature from co-workers to ensure phishing hasn’t been used to gather information from internal staff to coordinate an attack. HOWEVER, “Thanks, -Jake” is no cryptographically sane signature, and it’s not HARD to sign emails with your private key, —–BEGIN PGP SIGNED MESSAGE—– Hash: SHA512 Continue reading What is a real email signature.

Datanauts Podcast Episode 081 – Secure Email Infrastructure

A few weeks ago I had the honor of being a guest on a podcast! This is a first for me as the closest to speaking publicly have been at small, 20’sh tech meetups, not the same.  I tell you what these guys are really good at their job, they did a ton of research, had great questions (many of Continue reading Datanauts Podcast Episode 081 – Secure Email Infrastructure