Linux DNS Tuning for Performance and Resilience

Optimal DNS Configuration on Linux We often don’t realize the importance of DNS in our infrastructure. Yet the impact when things go (slightly) wrong is huge. Time to have a good look at improving our DNS configuration. The goal is simple: improve performance, and make it more resilient to issues and attacks. How DNS Resolving Works When your Linux system needs to know the IP address of a particular host, it will use gethostbyname(3) function. This will use the nsswitch […]

Read more

Tuning auditd: High Performance Linux Auditing

High Performance Linux Auditing Tuning Linux auditd for high performance auditing The Linux Audit framework is a powerful tool to audit system events. From running executables up to system calls, everything can be logged. However, all this audit logging comes at the price of performance. In this article we have a look how we can optimize our audit rules, and keep our Linux system running smoothly. Good auditd performance will reduce stress on the Linux kernel and lower its impact. […]

Read more

Optimize SSL/TLS for Maximum Security and Speed

Optimize SSL/TLS for Maximum Security and Speed High Goal Setting Recently we changed our corporate website into a “HTTPS only” version. Most of the content is not secret information, still we have some sensitive areas. The ordering section and downloads, and additional our portal. While some areas were already covered with a lock, we felt it was time to make the jump to cover it all. Additionally, we believe that we doing everything we can on our website, practicing security […]

Read more