In this series i will cover different network topics like DNS, DHCP, Web & Cloud Security and SSL.
- The content derives from my personal research, studies and work.
- this will also be available on medium as blog-posts.
everything you need to know to run and protect your own DNS
- we will install private DNS on debian using bind9
- we configure the DNS to resolve our personal Dashboard Domains
we learn how to debug our dns using dig, nameserver logs, etc
- we configure our dhcp in combination with a RNDC.key
- we setup bind to use
Authentication for Dynamic Updates
how to hack a dns and what are possible attack scenarios
- how to protect your DNS using TSIG, dnssec
- Enhanced Security practices for kubernetes in combination with private dns
- how to setup our firewall
- everything you need to knwo from sas&nas to ceph
how to create a zfs ppol in promox and mount it via nfs
- we install SCST-Project and sync it with proxmox
Roadmap
- we learn how and why to prevent our personal data from snooping-attacks and datamining
- this is the basis to setup cloud9 to avoid public DNS queries and therefore a huge attack-vector -ssl using certmanager and letsencrypt
- authentication using rbac and oaut2