CUPS Vulnerabilities Underscore the Need for Proper System Configuration Beyond Edge Security

Monday, October 14, 2024

Recent vulnerabilities identified in the Common Unix Printing System (CUPS), specifically CVE-2024-47076, CVE-2024-47175, CVE-2024-47176, and CVE-2024-47177, highlight the importance of not just securing the network perimeter but also ensuring proper system configuration. While edge security measures such as firewalls and intrusion detection systems (IDS) are crucial in protecting Linux servers from external threats, they are… Read more »

SSH Pipe Speed 48 KB/sec FreeBSD 12 PF

Monday, February 24, 2020

We recently ran into an issue after upgrading a server from FreeBSD 11.2 to 12.1 where throughput via SSH pipes would crash to 48 KB/sec almost instantly after starting. The odd thing was scp (which uses SSH) was not affected. After ruling out Internet and remote host issues we discovered that the PF rule was… Read more »

Debian 8 Under Bhyve Networking Problem: Packets Over 230 Bytes Truncated

Tuesday, February 13, 2018

We’re a big fan of FreeBSD’s Bhyve hypervisor, including writing an open source lightweight management interface for it called BMT. While setting up a Debian 8 guest VM we ran into a perplexing issue where networking was not working correctly. After much troubleshooting we narrowed down the symptom to be that packets larger than 230… Read more »

SOLVED: Can’t Connect to Linux Server Behind NAT From Linux/FreeBSD But Can From Windows

Friday, November 17, 2017

Strange networking behavior while trying to access a Linux server via NAT? Does it work from one computer but not another? We may have the solution! We recently ran across a situation where a Linux server was behind NAT (for VPN purposes), and we could access it just fine from a Windows 10 computer, however… Read more »

A-Team Systems