OpenVPN: Dynamically create IPtables rules based on LDAP group membership

I’m releasing two small perl scripts I wrote which provide the client-connect and client-disconnect scripts for OpenVPN such that you can dynamically create IPtables firewall rules based on LDAP group memberships. You push out routes to all your internal networks to the user then using IPtables only allow traffic to specific destinations and ports. This […]

Continue reading


Music Blog: Sound Fleet

So me and some friends decided it would be a good idea to start up a group music blog. Its still very fresh but I enjoyed hammering out a few posts. If your also a music lover contact me and we will continue adding you to the blog (after a rigorous interview process of course). […]

Continue reading


Choosing the right SSL certificate

Not all SSL certificates are the same, here is a rough round-up of differences: Verification Levels There are three basic levels of verification: domain only, domain and business, and domain business and identity of representative. Domain only is actually quite weak authentication when you think about it, it doesn’t prove you are who you say […]

Continue reading