Dans ce premier article en Français, nous allons voir comment vous pouvez connecter à votre réseau personnel (LAN) de votre domicile de manière sécurisée. L’idée est d’ouvrir sur votre box internet le moins de port possible, et ainsi réduire votre surface d’attaque au maximum grâce à un tunnel SSH. Ainsi, il n’y aura qu’une seule porte d’entrée à votre réseau et à vos équipements, nous allons sécuriser cette unique entrée. ...
Update 29/01/2019 Since AWS Amplify is out, please find a newer version here. Update 09/02/2018 I’ve updated this article to remove the EC2 used for draft check (for cost saving). I’m now using an S3 bucket with a custom _config.yml. Requirement: Before reading this article, please find these how-tos to publish a simple static Jekyll website to S3 using ACM SSL and CloudFront CDN. here, here, or here. I know, you will tell me, why are you using such a workload to publish a simple blog? It sounds crazy! Why not use Medium instead? The answer is to get my own custom blog platform, and to play with AWS tools and services. ...
In this post, you will find how to update AWS Route53 from your current public IP (ISP) and how to use EC2 instance metadata to change your DNS A Record. Requirements To use this script, you will need: awscli (pip install awscli) dig (apt-get install dnsutils) Update Route53 with your current home Public IP First, I was facing an issue with my current ISP with a non-static IP address, so I found a useful script to update AWS Route53 daily from my Raspberry Pi. ...
Update November 2017: Since November 2017, I’ve updated my GitHub repository with a manual to use this bot with a Lambda function (Serverless). It’s more efficient and cost-effective than running a full-time EC2 instance. This dead simple Node.js Twitter bot will retweet statuses based on your current search criteria, follow users based on the same criteria, and favorite tweets too. I’m using this to learn the Node.js language and Git. Actual Features: ...
In this article, you will find best practices regarding security and the high availability of your data to prevent the spread of Wanacry and other ransomware. What is wanacry? Wanacry is a ransomware that uses a hole in the SMB protocol called EternalBlue, then DoublePulsar is installed as a backdoor to run Wanacry. After you get infected, your files begin to be encrypted with the AES-128-CBC cipher, and then a popup asks you for a ransom to get them back. It spreads through the network using port TCP/445 (SMB v1). ...