Deserializing Modsecurity Audit logs with Apache Flume

This post will be updated in the coming days/weeks, however when looking at using Apache Flume to ingest some ModSecurity Audit logs, it quickly became apparent that Flume's SpoolingDirectorySource lacked the ability to de-serialized "events" from a file that spanned many "new lines" (\n). Lacking this support, and seeing that an outstanding ticket already existed … Continue reading Deserializing Modsecurity Audit logs with Apache Flume →

Securing Foscam IP camera access over SSL with Apache reverse proxying

UPDATED: 5/7/14 Important security vulnerabilities for Foscam cameras http://blog.shekyan.com/2014/05/cve-2014-1849-foscam-dynamic-dns-predictable-credentials-vulnerability.html http://www.cvedetails.com/cve/CVE-2013-2560/ http://www.slideshare.net/SergeyShekyan/d2-t1-sergey-shekyan-and-artem-harutyunyan-turning-your-surveillance-camera-against-you UPDATED: 9/27/13  (The solution below does not include audio support; for audio over stunnel please see this post over at warped.org) Recently I was assisting a local business setup their Foscam IP cameras and make them remotely accessible for monitoring purposes from anywhere in … Continue reading Securing Foscam IP camera access over SSL with Apache reverse proxying →