Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 9 years ago.
Improve this question
My application needs to establish a connection to my Azure SQL Database. But I cannot configure each IP Address manually in the firewall, because the application (Desktop App) will run in customers office from a variety of locations.
I also don't want to add the range (0.0.0.0 - 255.255.255.255) for security reasons.
But I know, the connection requests will only come from locations in germany. Is it possible to restrict the IP Range to german IP addresses?
If not, whats the possibility to achive maximum security and allow easy access to my customers?
Allow access to anyone is indeed a bad practice, even if you would be able to restrict access to geolocation, it is still insecure.
Although, there is no alternative configuration since all of your clients have different ip addresses that doesn't belong to a specific (company) range.
In this case the only option is to have an intermediary service (WCF service for example) that accepts user's requests, authenticates them, and provides the data. This service in turn would communicate with SQL Azure.
Good luck!
Related
Closed. This question is not about programming or software development. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 4 days ago.
Improve this question
So my school has blocked all websites (for now at least) and I'm wondering if there was a way to access them without entering into them. What I've thought is that this could be done with google as google search can show you certain parts of pages.
Also, the current configuration of the firewall allows you to do google search and access certain websites. I also know that they perform this using a man in the middle attack intercepting SSL connections. Is there any VPN, tool or script that can bypass this? Something to do with packets obfuscation using XOR gates? I've tried using many different VPNs but all seem to not work.
Thanks in advance.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 2 years ago.
Improve this question
I have a website : https://linuxquizapp.com.uy.
I recently used Google Search Console to index it into google but when I do a search, I get this instead:
That's the right IP but most importantly, how did the IP ended up there instead of the domain name and also, is there anything I can do to correct this?
The app is written in Go, and there is no Apache or Nginx or whatnot configuration I should change?
Note- I am including an image in the question instead of plain text or a link so this does not get "outdated" as Google indexer updates stuff.
You need to redirect the IP as host based requests to the domain host.
Once you will do that, google indexes will get updated in few days to show the hostname as domain instead of IP address.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 6 years ago.
Improve this question
I enabled AD authentication for my Linux cluster via SSSD service. One side effect is I'm able to do SSO for the cluster now, but it works for some accounts and doesn't for the others. For example, I have two Linux boxes they all registered to the domain. And two accounts are a domain user, and both have been permitted to access the Linux boxes. One can ssh from one box to the other, but the other account doesn't. Default configures the SSSD and SSHD. I don't know what I have to check?
All right, I figure it out, I sudoed from one account to the other, so there are no password in the keytab for the second account, that's why the SSO doesn't work.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 1 year ago.
Improve this question
How can I check if a username exists at a ssh server address using command line tools? For example, I would love to type,
isvaliduser [username] [ssh_server]
result: True
where isvaliduser is some magical function that tests whether a user with name username exists at ssh_server. But is this feasible?
My specific application: The remote server I need to access has a dynamic IP (I can't use a Dynamic DNS service). I can come up with a list of server addresses that contains my target address, but I need a way to figure out which one is mine. I thought one way of doing this would be to test if any of the addresses have the user myusername. But if you have another suggestion for solving my particular problem, I would be happy to hear it.
You have to connect to that server and check if the user is in the passwd for example:
ssh your_account_at_serve#[ssh_server] grep [username] /etc/passwd
If you would be able to enumerate users without authentication, it is considered as a information disclosure and security threat.
Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 10 years ago.
Improve this question
I planning to run a private media wiki server on debian(SELinux) for all my important home documents.
I would like to be able to securely access it from the outside with laptop, tablet, or even a live-CD like LPS. It seems to me I would have the smallest attack surface if I only provided SSH to the cloud and tunneled in, maybe even incorporate a port knock to prevent casual detection. I will be serving content to a known and essentially unchanging set of users. Bandwidth efficiency isn't really a factor as concurrent connections would be rare.
Is there a more secure way to access a web server? It seems the government really likes to use smart cards although I'm not sure how. What about client side browser certificates? Yubikey?
The safest solution is probably using a virtual private network so that the server cannot be contacted at all except through an SSH-like protocol. A decent router should support this; you can get more help over at SuperUser.