Security
Dirty Frag, Copy Fail, and the AI-Accelerated Exploit Pipeline
Two critical Linux kernel privilege escalation vulnerabilities dropped in the past two weeks. Both are deterministic, single-command root exploits. One of them was discovered with AI assistance. The other had
saslfail: Escalating Fail2ban Bans for Postfix SASL Authentication Attacks
Standard fail2ban bans just get waited out. saslfail uses escalating bans — 48 hours, 8 days, 32 days — backed by a persistent SQLite database that survives restarts and remembers
Hardening a WordPress Server in an Afternoon
Most WordPress hardening guides are bloated with solved problems. This is the version for self-hosters who want to spend an afternoon on what actually matters: permissions, auth, and server config.
Parsing DMARC Reports with parsedmarc, Elasticsearch, and Kibana
Your domain is probably being spoofed right now. DMARC reports tell you exactly how — but they arrive as unreadable XML. parsedmarc, Elasticsearch, and Kibana turn them into something actionable.
Why Your Apache Cipher Suite Probably Has RC4 in It
If your Apache SSL config is a few years old, RC4 is probably still in it. Modern browsers skip it, but scanners flag it and it should go. Here's how