hardening

In this long blog I try to sum-up some features which you should disable before running MikroTik in any environment. First of all is an backup interface, so in case you lock yourself up, you will always have a way to login. Other points include creating custom user, disabling unused services in various places throughout the RouterOS ;). [...] Read more

SSH Security: Keys vs. Passwords Advantages of SSH Keys over Passwords 1. Stronger Security SSH keys are cryptographically generated, offering significantly higher security than even strong [...] Read more

Jednoduchý "light" Hardening – Windows Server 2022 Cieľ: Vytvoriť štartovací zoznam tzv. "Best Security Practicies" pre hardening Windows Server 2022. Ide skôr o postinštalačné kroky. [...] Read more

After deploying my own certificate authority (previous post) I updated all my NGINX configurations to be almost exactly the same, with a few exceptions. Detailed config along with explanation of [...] Read more