Beefing up the firewall using Artillery — part 2

So, how easy is it to install and use Artillery?  Really easy.  I’ve now installed it on Debian, Ubuntu, and Mac OS X.  But, assuming you don’t believe me, I’ll walk you through the steps.  Warning for my advanced readers– this is an entry level post… . Artillery is maintained in a subversion repository, so the best way to get it and keep it up-to-date … Continue reading Beefing up the firewall using Artillery — part 2

Beefing up the firewall using Artillery

We have a project that an external group is helping with, and wanted a hardened machine for them to ssh into without worries. For projects like this, I recommend you wander over to secmaniac to see Dave Kennedy’s blog on security related stuff.  He’s got out a relatively new tool (a few months old) that’s (a first for him) on the defensive side of security … Continue reading Beefing up the firewall using Artillery

#OGC Web Services and #Security

A while back, I had a (somewhat cryptic) post on OGC services and security.  A couple months later, I saw this post on GeoSolution’s site on GeoServer security and the ins and outs of various options, from native to proxied security.  It is quite a bit more nuanced than my own… .  I recommend you read it, even if you don’t use GeoServer– it is … Continue reading #OGC Web Services and #Security

OGC Web Services and Security

I’ve been starting to inform myself on authentication/authorization schemes for OGC Web Services (OWS). This is because, while I’m pretty pleased with most of the functionality basic mapping of our internal GeoExt/GeoServer/PostGIS stack, user editing is the next natural step. As it is now, users can access a variety of really detailed useful layers, print to PDF, and for the most part the interface is … Continue reading OGC Web Services and Security