Update for the Checklist on “mailout” servers

This is an update to the checklist to create a prefect mailout server: Original Checklist Setup DMARC DNS Record to receive mail delivery reports https://www.unlocktheinbox.com/dmarcwizard/ btw: I Just started adding all those settings to my own domain too. Google DKIM …

Read more »

Cloudflare and Haproxy Lodbalancer

We are currently trying out the cloudflare service to protect one of our company service. In front of this service we are using haproxy as SSL endpoint and loadbalancer. Cloudflare adds a number of custom headers1)http://www.linuxorz.com/2014/10/cloudflare-haproxy-get-real-ip/: In order to extract …

Read more »

Java SSL Certificate Verification Error

If you come across the situation, that your java programs are not able to connect to ssl encrypted services, it might be most likely that the java cacerts keystore is empty or not uptodate. This might also be due to …

Read more »

Cisco ASA Certificate Handling

If you are using Cisco ASA, you most likely will also have certificate(s) installed. This is what you need to pay attention to (Version 9.1, higher versions might behave differently):

A checklist for creating a “mailout” server with DKIM and SPF

Create the DKIM DNS Record: http://www.dnswatch.info/dkim/create-dns-record Create the SPF Record: http://www.spfwizard.net/ Do not forget to add a PTR record at your provider! Verify the settings: https://www.port25.com/authentication-checker/ Use this command: And some more information if your domain is hosting email at …

Read more »

Hardening SSL

Update: 2014/01/17: Again a few weeks have past without finishing the article. So I’m going to publish it anyway even it it is unfinished work yet. I also disabled OCSP Stapling again. I’m using StartSSL and I’ve had some issues …

Read more »

A few Updates: Upgrade to Nginx 1.4, PHP 5.5, Munin 2.0

Today (well, actually it’s already some days ago on the day of the release of this post) I did some updates on the server. The server is now running nginx 1.4 (more about this change in one of the following …

Read more »

Syslog logging with Cisco ASA

In the last week I was tweaking the logging setup of our Cisco ASA firewalls at work and find out why it didn’t work in the first place and how to disable “unneeded” messages. Again this post is nothing you …

Read more »

Konzertbericht – Circle of Illusion – Jeremia

Nachdem ich es mir jetzt schon so oft vorgenommen haben, einen Bericht über ein besuchtes Konzert zu schreiben, hier nun mein erster Konzertbericht. Mittlerweile ist das Konzert ja auch schon wieder über eine Woche her… Eigentlich bin ich nur durch …

Read more »

Learning something new every day…

One of the things I really like about working within a team in one location is the fact that are able to learn something new regularly. And of course you are also able to give some useful advice to others …

Read more »