Prevent cookie hijacking (session hacking)

First of all, what is “Cookie Hijacking”?

By Wikipedia, it’s an “exploitation of a valid computer session to gain unauthorized access to information or services in a computer system. In particular, it is used to refer to the theft of a magic cookie used to authenticate a user to a remote server”.

Which basically means, gaining access to an information system or a website without logging in, as the user that the cookie (or session) belongs to him.

(more…)

Send Email on ESP8266 with Arduino

Sending an email is probably the most convenient way of communicating data or informing us of an event from our ESP8266. It’s cross-platform, works on every device and very reliable. It can alert us when one of the sensors detected something (PIR sensor for movement, MQ2 for air quality or any other environmental sensor).
There are a few ways to get that done, and in this post, I’ll show you my preferable way.

(more…)

Add two-step authentication to WordPress

WordPress is a very popular platform, and I have had many WordPress installations over the years (even this site is based on it).
Being that popular has made this platform a target for many hackers. And even though it keeps updating and upgrading, over the years I found myself a victim of hostile takeovers.

In this article, I’ll discuss and demonstrate how to add two-step authentication as an extra level of security to your site or blog.

(more…)

Monitor your online devices (Make sure they’re working as expected)

Motivation for this project

Every time I add a new device (IOT, server or other) to my home network, I want to make sure that I can rely on it to do its job and keep being connected.
When a device has a critical part to play in my home or office, I want to be alerted when it fails or if it disconnects from the network/internet.
(more…)