at/batch Scheduler Security Audit: Linux Admin Guide
Audit at/batch scheduled jobs, check access control, and monitor pending tasks with dargslan-at-scheduler....
Linux security, firewall configuration, and system hardening guides
Audit at/batch scheduled jobs, check access control, and monitor pending tasks with dargslan-at-scheduler....
Software Bill of Materials (SBOM) and SLSA (Supply-chain Levels for Software Artifacts) have moved from compliance buzzwords to genuine technical requirements in 2026. EU CRA, US Executive Order 14028, and major customer procurement processes now demand them. This is a practical guide to what they actually mean for Linux server operators, the tooling that delivers SBOMs without slowing your pipelines, the signing infrastructure SLSA Level 3 needs, and the realistic adoption timeline a typical engineering organization should plan....
Zero Trust is no longer a buzzword β by 2026 it is the default architecture for serious infrastructure. This practical guide shows Linux sysadmins and DevOps engineers how to actually implement Zero Trust on real servers: identity-aware proxies, mTLS everywhere, SPIFFE/SPIRE for workload identity, eBPF for runtime enforcement, and a phased rollout that does not break production on day one....
Defender for Endpoint ships a powerful KQL data lake. Most teams never write a query. Here are the dozen KQL recipes that pay back the M365 E5 license on day one - LOLBin abuse, lateral movement, persistence, and the saved-query library....
Most teams meet SELinux when something breaks and reach for setenforce 0. There is a better workflow: targeted booleans, file contexts, and a tiny custom policy module per application. Here is how to do it....
authorized_keys does not scale, does not rotate, and is the single biggest gap in most Linux fleets. SSH certificates fix all three. Here is how to deploy an SSH CA properly with OpenSSH 9.x, short-lived user certs, and host cert distribution....
eBPF moved runtime security from "log everything and grep later" to "see the syscall, decide in kernel, and stop the action". Here is how to choose between Falco and Tetragon, and how to deploy either one in production without breaking your applications....
Discover Linux Security Hardening, the definitive guide to securing your Linux infrastructure. From initial installation to advanced access controls, this book covers every aspect of server protection....
Discover Ethan Marshall, Dargslan's cybersecurity author who brings years of enterprise security operations experience to his books on network security, ethical hacking, and security certifications....