In this tutorial, we will address a security point on an Active Directory environment, which is the domain joining of computers. What you need to know (some administrators don’t know this), all domain users can join a computer to a domain, they can even join up to 10 computers. Domain administrators have no limit as …
In this tutorial, I will explain how by Group Policy (GPO) in an Active Directory environment, block the launch of programs and prevent the installation of certain software with the software restriction policy. By default, if the users are not administrator (local) of the computer, it is not normally possible to install programs, on the …
In this tutorial dedicated to Active Directory and security, I will give you some tips to harden the level of security in order to be less vulnerable to attacks. The different configuration points, which will be discussed, simply allow attacks to be made more difficult and longer internally, in no way will they guarantee that …
In this tutorial, I will walk you through how to disable SMBv1 support add-on using Group Policy. To disable full SMBv1 support, you must act on the two SMB components which are: The server who is the one who shares The client that allows the use of shared resources. Disabling by group policy is done …
In this tutorial, I will explain to you how to secure the network part of your web servers with Crowdsec. The tutorial is made on Ubuntu 20.04 Crowdsec overview Crowdsec is an open source tool that allows you to “secure” or rather add a layer of security to your Linux servers (soon Windows too) by …
In this tutorial, I will tell you how to harden password security with Lithnet Password Protection for Active Directory. Lithnet Password Protection for Active Directory is a free utility that installs on domain controllers, which will allow us to increase password security with: Create a forbidden password dictionary, also taking into account the replacement of …
In this “little” tutorial, I will show you how to set up a “secure” configuration. Since the publication of the PrintNightmare flaw, Microsoft has deployed several updates to correct this problem and took the opportunity to modify the behavior of Windows to harden the configuration. In this tutorial, we will see the parameters to use …
To fight against the flaws that affect the print spooler on Windows, the KB5005033 of August 2021, modifies the behavior of Windows 10 by requesting the administrator rights for the installation and the update of the print drivers. The changes proposed in this article bypass the KB related blockage, which again exposes your system. It …
In this tutorial dedicated to Nginx, I will explain how to configure it in order to have a reverse proxy. Before getting to the heart of the matter, I will quickly introduce you to Nginx and what a reverse proxy. For this tutorial, I used an Ubuntu 20.04 machine. Introducing Nginx Nginx is a web …