Blog

GitLab : enable 2-Factor Authentication (2FA)

GitLab

GitLab is a very powerful tool, and it also implements decent security measures and protections. But still, by default all your work on GitLab is protected by a single password, which could be guessed or stolen. To add an additional layer of protection, you can (and should) configure 2-Factor Authentication (2FA).

Read
Packet Tracer : Getting started

Packet Tracer Video

In this video tutorial we show how to build a small network with Packet Tracer.

Read
We are hiring (again)!

News Jobs

We are looking for a new colleague to help us with our teaching and research activities!

Read
Record and share your terminal sessions with asciinema

Sysadmin

If you want to share a terminal session, you can record a video of your terminal window, and share it on something like YouTube or vimeo. Or you can can use asciinema! asciinema actually only records the text input and output of your terminal (stdin, stdout and stderr). This means that the recordings are extremely light (it only contains text and timing), while the text remains perfectly readable. You can also easily share and embed your recordings on your website using some javascript code.

Read
Testing with Selenium and PHPUnit

PHP DevOps

In this blog post we continue our series about testing a web application with Selenium. This time we will show how to integrate Selenium with PHPUnit tests and assertions.

Read
MARk : use built-in file data source

MARk

The Multi-Agent Ranking framework (MARk) allows to quickly build ranking and detection systems by combing building blocks. In this blog post, we show how to use the file data source to inject data into the system...

Read
Force https with HTTP Strict Transport Security (HSTS)

Secure Software Development

Once you have https enabled for your website (with Letsencrypt for example), you should make sure all your users use the secure version of the site. Typically this done using a redirect. However this still leaves a window of opportunity (the initial HTTP connection) for an attacker to downgrade or redirect the request. With a Strict Transport Security header, you can force a browser to only connect to your server using HTTPS.

Read
Laravel optimization : static content caching and cache busting

Laravel Cyber-Wise

Optimizing you web app from the browser side is an important concern, to provide a pleasant experience to your users. It will also reduce the traffic on your servers. In this post we show how to implement static content caching and cache busting on a Laravel application.

Read
Harden your Laravel app with CSP headers

Laravel Secure Software Development Docker Cyber-Wise

CSP (Content Security Policy) reduces the risk of cross-site scripting and other content-injection attacks by defining, at the level of the webserver, a header that whitelists authorized sources of content for your website.

Read
Exposing a Kubernetes application : Service, HostPort, NodePort, LoadBalancer or IngressController?

Kubernetes

Having your app running on Kubernetes is one important step. Now you have to make this killer app accessible from the Internet. And as usual with Kubernetes, there are a lot of possibilities Here are a few definitions and examples to help you understand your choices...

Read
HTTP benchmarking with wrk2

DevOps GitLab

One important step of any DevOps toolchain consists in testing the performance of the web application before the new version is deployed in production. HTTP benchmarking is a complex subject as a lot of parameters intervene in the perceived performance of the application.

Read
Install and use Dell OpenManage Server Administrator (OMSA) on Ubuntu

Sysadmin

Dell OpenManage Server Administrator (OMSA) is a Dell utility to monitor your Dell servers. Here is how to install and use OMSA on a Ubuntu server...

Read