Author Archives: Matthias

DNS Over HTTPS

Posted on April 8, 2018

With much of the web switching to HTTPS and at least some people becoming more concerned about privacy, DNS has recently come into the spotlight because it provides an ISP with the ability to monitor which websites a user visits. … Continue reading

Posted in misc | Tagged , , | Leave a comment

A Quick Introduction to sed(1)

Posted on July 29, 2017

The sed(1) stream editor is one of the most powerful tools from the classic Unix tool box. It is a close cousin to the ed(1) command line editor and a descendant of the ex(1) editor, the command line mode of … Continue reading

Posted in shell, tools | Tagged , , | Leave a comment

Spring Boot: Logging Failed Logins

Posted on April 18, 2017

In many applications it’s important to react to failed logins and other security-critical events, for example to log the failed login attempt to a file or to display a captcha after repeated failures. Spring-based applications come with a simple mechanism to … Continue reading

Posted in java | Tagged , | 2 Comments

The Curse of Convenience Methods

Posted on February 5, 2017

In the old days, many Java APIs were fairly low level and pretty generic. You often had to explicitly select a concrete implementation, provide lots of parameters, and generally needed to know how things worked. This has changed in recent years – modern … Continue reading

Posted in best practices, java | Tagged , , | Leave a comment

Empty InputStream with Spring MVC

Posted on January 6, 2017

The other day, I was trying to build a simple batch upload interface for a Java web application running Spring Boot with Spring MVC on Apache Tomcat. But when I tried reading the InputStream in my controller, it was always empty. … Continue reading

Posted in java | Tagged , , | Leave a comment

Checking Whether a Process Exists

Posted on December 31, 2016

On Linux/Unix systems, there’s occasionally the need to check whether a process is running. Some people use it for simple status checks or when building their own lifecycle scripts for startup and shutdown. I don’t think it’s a particularly good practice … Continue reading

Posted in linux | Tagged , | Leave a comment

Detecting Security Upgrades on Ubuntu

Posted on October 22, 2016

In my article on unattended upgrades I described how to set up an Ubuntu system to install security upgrades automatically. This is convenient for small setups, but in an enterprise environment you typically want to perform some QA before applying the … Continue reading

Posted in linux | Tagged , , , | Leave a comment