Topic

security

A collection of 3 issues

Password requirements: myths and madness

Password requirements are weird. It seems impossible to set a new password in many websites. Why?

Ransomware-resistant backups with duplicity and AWS S3

Why you should care about ransomware attacks even for irrelevant internet-connected systems, and how to use duplicity with AWS S3 to create ransomware-resistant backups.

Don't give a shell to system users - use su

I seem very ancientwisdom-oriented these days. Sometimes you've got a system user on your linux server that's used to run a specific service; it's a good practice to employ those users to achieve privilege separation, since it limits the impact of many security breaches. It's security 101, really. If you've