Categories
Security

security.txt

In the realm of website management and cybersecurity, effective communication regarding vulnerabilities is crucial. This is where security.txt comes into play an standard designed to simplify the process of reporting security issues.

Categories
AI

AI Detector tool by ZeroGPT

A variety of products have been introduced to detect whether text is generated by a LLM. However, this is a challenging problem, and in my experience, the attempts I’ve explored have performed poorly. I was able to generate text that was not flagged, while other text I typed received false positives. Consequently, I believe these tools are not yet reliable.

Categories
News

The Uncertain Future of the .io Domain

The .io domain, associated with the British Indian Ocean Territory, faces an uncertain future due to recent political developments.

Categories
Web

OCSP Checker

You might find yourself needing to inspect the OCSP response for a given URL. This tool is excellent and can do exactly that.

https://certificatetools.com/ocsp-checker (2024-08-29)
Categories
News

ICANN Reserves .internal TLD for Private Use

The Internet Corporation for Assigned Names and Numbers (ICANN) has officially reserved the .internal top-level domain (TLD) for private use at the DNS level. This decision aims to provide a standardized TLD for internal networks, similar to how certain IPv4 address blocks are reserved for private use.

Resolved (2024.07.29.06), the Board reserves .INTERNAL from delegation in the DNS root zone permanently to provide for its use in private-use applications. The Board recommends that efforts be undertaken to raise awareness of its reservation for this purpose through the organization’s technical outreach.

https://www.icann.org/en/board-activities-and-meetings/materials/approved-resolutions-special-meeting-of-the-icann-board-29-07-2024-en#section2.a (2024-08-19)

Key points

  1. The .internal TLD will never be delegated in the global DNS root, ensuring it can be safely used for internal networks without conflicts.
  2. This move addresses the issue of organizations creating ad hoc TLDs for private use, which could lead to confusion.
  3. Google’s VP and Chief Internet Evangelist, Vint Cerf, revealed that Google and many of its cloud customers have been using .internal for years.
  4. ICANN believes this reservation won’t introduce new security or stability issues, but its effectiveness in improving the current situation remains uncertain.

Network administrators now have a sanctioned alternative for internal DNS naming, potentially simplifying and standardizing private network configurations across the internet.

Categories
Azure

AZ quota exhausted, bad config in Bicep

I’m experiencing issues again with deploying App Services to Azure’s data center in West Europe. In December 2023, I saw a similar issue with DSv5 availability. As of August 9, 2024, I’m stuck with what appears to be capacity issues again. However, it turns out that was not the case.

{
    "code": "DeploymentFailed",
    "message": "At least one resource deployment operation failed. Please list deployment operations for details. Please see https:\/\/aka.ms\/arm-deployment-operations for usage details.",
    "details": [
        {
            "code": "Unauthorized",
            "message": "Operation cannot be completed without additional AZ quota. Please file a support ticket to request a limit increase. \r\nAdditional details - Location: West Europe \r\nCurrent Limit (Premium0V3 VMs): 0. \r\nCurrent Usage: 0. \r\nAmount required for this deployment (Premium0V3 VMs): 1. \r\n(Minimum) New Limit that you should request to enable this deployment: 1. \r\nNote that if you experience multiple scaling operations failing (in addition to this one) and need to accommodate the aggregate quota requirements of these operations, you will need to request a higher quota limit than the one currently displayed."
        }
    ]
}
Categories
Security

wordfence.com Vulnerability Database

Wordfence is a comprehensive security plugin designed specifically for WordPress websites. It offers a range of features, including firewall protection, malware scanning, and real-time threat intelligence to safeguard sites from malicious attacks. With its user-friendly interface, Wordfence provides detailed reporting and alerts, allowing website owners to monitor and respond to potential security threats effectively. Additionally, the plugin includes options for user blocking, login security, and two-factor authentication to enhance overall site protection.

Wordfence is also well-known for its security research and for maintaining a vulnerability database.

Categories
News

Azure Portal, the request is blocked

The following message greeted multiple people on August 9th, 2024 at 09:47 CEST. It recovered by opening the portal fresh in the tab. But after the recent incident with Cloudstrike and other incidents immediately, your mind goes wandering when you see a large central structure greeting you and your colleagues with an error message.

The request is blocked.

https://portal.azure.com/Error/UE_SessionExpired#view/Microsoft_Azure_Support/SupportRequestDetails.ReactView/id/*** (2024-08-09 09:47)

Categories
Web

clockify.me and the flood of errors

Time tracking is a fundamental task in most companies. I used to use Clockify for a few years, primarily for its API access and the native Windows client with the mini counter. However, I frequently encountered issues with the client logging me out, crashing, or syncing incorrectly. By the summer of 2024, I had reached my limit.

Categories
Security

hardenize.com secure score card

Hardenize is an interesting alternative to Mozilla’s HTTP Observatory, which scans your website and security perimeter. It provides you with a free and public scorecard that is also shareable via a link. Achieving a good score is a strong indicator that you care about security and demonstrates your commitment to it publicly.