Subscribe:

Ads 468x60px

24 January 2022

Le Paris de Modiano: Louki

Je vais écrire sur Louki, alias Jacqueline Delanque, qui est le personnage principal du livre «Dans le café de la jeunesse perdue» de Patrick Modiano que j’ai lu à Noël. Elle est une jeune femme de 22 ans qui semble célibataire mais elle a réellement un mari plus âgé qu’elle. L’auteur raconte la vie de Louki sous différents angles où nous pouvons connaître l’enfance y les sentiments de cette femme perdue.

Modiano décrit Louki comme une ado très belle qui est désirée et aimée par les autres. Dans ma tête, elle est faible et frêle même si elle aime faire de la randonnée et se balader dans le quartier, elle n’a pas une allure athlétique. Louki est de style bohème avec les cheveux châtains et longs, et toujours bien peignés. Sa teint fraîche, éclatante et lumineuse fait tomber amoureux de n’importe qui.

Le livre nous montre Louki comme un femme calme et mystérieux d’autant plus qu’elle a des fringales incontrôlable de mettre fin à son passé. Elle veut se libérer de sa mémoire puisqu’elle a de mauvais souvenirs de son passé. En fait, elle est soulagée lorsqu’un groupe de buveurs du bar la surnomme Louki au lieu de son vrai nom Jacqueline Delanque. Finalement, dès qu’elle peut laisser son passé, elle nous donne une fin tragique.

17 January 2022

F5 ASM – Enforced & Allowed cookies

I’ve been working these weeks with a customer who needs to protect cookies. Initially, something was not working properly with users’ sessions and we needed to protect services. However, after testing and testing, we got it thanks to the enforced and allowed cookie feature in F5 BIG-IP ASM. If you have created a basic security policy such as a Rapid Deployment Policy, you are not protecting cookies, but if you have created an advanced security policy and you want to protect cookies, you’ll need to know how F5 BIG-IP ASM works with enforced cookies and allowed cookies.

When we create a security policy with cookie selective, we are going to see in the traffic learning section all cookies needed by the application. In fact, the traffic learning is going to suggest if we want to enforce cookies. The F5 Knowledge Center is really useful. We can read that enforced cookies may not be changed by the client. Therefore, we should configure enforced cookies for Preventing Session Hijacking. As a result, if an attacker steal a cookie or modify a cookie, there will be an alarm like “Modified domain cookie(s)”

On the other hand, we can also configure the cookie as allowed instead of enforced. Once again, if we go to the F5 Knowledge Center, we can read that allowed cookies are ignored by the system and they can be changed by the client. Therefore, if you want to configure cookie hijacking protection, you should configure your cookies as enforced instead of allowed. However, we can also protect cookies when they can be changed by the client. I mean, we can check the cookies’ value to know if users are inserting malicious code in the cookie. This is really useful and easy with attack signatures.

The best way to know how enforced cookies and allowed cookies work is watching a video. I’ve recorded a video where you can watch an example of cookie protection. Firstly, I’ve checked hackazon has a cookie hijacking vulnerability. Secondly, I’ve configured session hijacking protection in F5 BIG-IP ASM. Thirdly, we can watch how F5 BIG-IP detects and blocks the attack with an enforced cookie. Fourthly, we can watch that the allowed cookie doesn’t detect and block the cookie hijacking attack. Finally, we can watch an XSS attack which can be blocked with the allowed cookie configuration.

To sum up, there are two options for configuring cookie protection in F5 BIG-IP ASM. The first one, or the enforced cookie, is useful when we want to prevent cookie hijacking attacks. We are going to configure this option when clients should not change cookies. On the other hand, the allowed cookie is useful when clients can change cookies but we want to protect these changes from attacks.

Regards my friends! Have you ever configured cookie protection?

10 January 2022

Dans le café de la jeunesse perdue

Les vacances de Noël son finalement finis où je voulais faire beaucoup de choses mais il n’y avait pas autant de temps que j’aurais aimé avoir. Cependant, j’ai terminé de lire “Dans le café de la jeunesse perdue” qui est un roman de Patrick Modiano paru en 2007 dont le genre littéraire est le mystère. J’ai dû le lire parce que c’est un devoir obligatoire dans l’école de langues.

Patrick Modiano est un écrivain français qui a écrit une trentaine de romans. Ses livres ont obtenu le prix Nobel de littérature en 2014, mais il a obtenu aussi le prix Goncourt en 1978 avec le roman Rue des Boutiques obscures. Ses livres ont été traduits dans de nombreuses langues, et certains d’entre eux ont été adaptés en version cinématographique.

«Dans le café de la jeunesse perdue » est un roman de quatre parties principalement où les personnages racontent un petit espace de vie avec le personnage principal. Un étudiant, un détective, Roland et Louki, qui est le personnage principal, parlent des anecdotes de la vie en France et comme les hommes sont tombés amoureux de Louki. Elle semble perdue et seule mais elle a quelque chose que tout le monde veut, c’est pour ça, que les autres personnages veulent être avec elle.

L’histoire est présentée du Paris des années 1960. C’est le Paris qui n’existe plus. La mélancolie et la nostalgie coupent le Paris ancien où l’auteur décrit les personnages dans les quartiers et les rues du Paris des années soixante. C’est la vie parisienne, loin de l’agitation des grandes villes, mais plutôt de Paris bohème.

Le roman parle principalement de Louki qui s’est mariée avec un homme plus âgé qu’elle et il la recherche à Paris. Elle ne veut pas retourner chez lui parce qu’elle préfère rester avec un autre garçon, Roland. Cependant, il est un adolescent avec un passé traumatisant, de guerre et d’obsession par l’Éternel Retour. D’autre part, l’étudiant et le détective parlent du point de vue du spectateur et du déroulement de cette histoire romantique.

À mon avis, « Dans le café de la jeunesse perdue » est un livre plein de sentiments et d’émotions où Patrick Modiano écrit du passé avec mélancolie et nostalgie. Modiano nous offre la voix des témoins de quelque chose de plus grand, c’est-à-dire, des moments de la vie de Louki.

Je te le recommande ! À bientôt!

3 January 2022

Happy New Year 2022

Last year was weird, too weird, like 2020. Lots of people keep working from home due to COVID-19. There are increasingly web services, and technology everywhere. The network perimeter is already missing because employees are working from home and also from the office. As a result, a Zero Trust solution is mandatory for most companies. My coworkers and I have lots of tasks to do because there are lots of things to improve in companies. In addition, attackers are there, developing malware and attacking networks for getting money easily!!

I’ve been working deeply with F5 BIG-IP appliances for the last years and I will keep working with them in 2022. I’ve written lots of articles about F5 BIG-IP AWAF and F5 BIG-IP APM and I will keep writing about it this new year. I think Web Application Firewalls like F5 AWAF are going to be installed more and more this year because there are lots of web services with vulnerabilities that we should protect against bad actors. In addition, F5 APM is really useful because SSL VPN architectures are needed and the access management is already a must.

I would also like to improve my French for this new year. I wrote almost ten articles in the French language last year. Some of them are overviews about books I have read for the Official School of Languages. However, other articles are writing tasks I did for the school. Therefore, I will keep writing some articles in French because I would like to pass the B2 level this year. I will have to read, write and study a lot of french this new year. Sorry if some articles are not as techy as you would like.

Fortinet solutions are kept in my scope for 2022. I will keep an eye on these security solutions because Fortinet is one of the best manufacturers from the security point of view. In addition, I will work for a SOC this new year where we are going to install FortiGate, FortiSwitches and FortiAPs in lots of branch offices along with FortiManager and FortiAnalyzer in the datacenter. Therefore, I will have to learn and study a lot about Fortinet devices.

Security and networking are in my mind for almost the whole day, then I will write about all the things I read, I work, I test! Last year I wrote about tech things like DoH & DoT but I also wrote about not so tech things like Cybersecurity Strategies. I’m sure I’m going to read a lot about new vulnerabilities, new attacks and new things that I will write in this blog. Be patient because I already have some ideas in my mind.

To sum up, last year was weird and uncommon but we have to be ready for this new year. From my point of view, we should make a plan for learning new things and improving ourself. It’s important reading and learning new things but it’s also too important to meet up with friends to share experiences and recover all the beers and coffees we didn’t take last year. Thus, I hope this new year is a year where we can all be together.

Regards my friends! See you in 2022!

Related Posts Plugin for WordPress, Blogger...

Entradas populares