Richard Koranteng

Change WordPress Admin Login URL

I’m long overdue for improving my WordPress website security. With that said, I’m embarking on a journey to enhance my site security. Security implementation #1 is to protect my site against brute force attack . A brute force attack is when a hacker attempts to try various permutations and combinations of usernames and passwords to get inside of your WordPress blog. All WordPress websites have a common admin URL in the form of www.domain.com/wp-admin. Knowing this common URL makes it easy for a hacker to get started with brute force attack. Ok, enough blabbing … let’s get to work (follow my Github project for securing WordPress to see new implementations)

Continue reading…

Configuring Ansible To Manage A Windows Host Using WinRM

I recently setup Ansible to communicate with a Windows host. Unlike NIX-based hosts (Linux/Unix), which use SSH by default, Windows hosts are not a good fit for SSH configuration with Ansible. As per the Ansible documentation, “use this (SSH with Windows) feature at your own risk! Using SSH with Windows is experimental, the implementation may make backwards incompatible changes in feature releases. The server side components can be unreliable depending on the version that is installed”. So instead, I choose the WinRM setup. Here’s how I did it.

Continue reading…

Should I Charge My Friends Consultation Fees ?

I’ve written extensively on what it means to be an IT consultant – it boils down to getting paid for your technology services rendered. This means that the act of providing consulting services without getting paid is inconsistent with the nature of being a consultant. On the other hand, part of being a friend means that you give freely – without expecting anything in return. It seems like being a consultant and a friend can never co-exist. This statement is absolutely false, and here’s how I came to terms with helping my friends resolve their technology issues whilst also making a living as an IT consultant.

Continue reading…

An Easy Approach To Oracle Database Security Assessment

Performing routine holistic database health checks is a must – good database administrators do more than just keep their database up to PAR . I perform these health checks on a quarterly basis to analyze database capacity/resource utilization, availability, performance, and security. Oracle Database Security Assessment Tool (DBSAT) just made my life alot easier and my health checks more effective. DBSAT is a command line tool focused on identifying how securely the database is configured, who are the users and what are their entitlements, what security policies and controls are in place, and where sensitive data resides with the goal of promoting successful approaches to mitigate potential security risks. DBSAT is a lightweight utility that will not impair system performance in a measurable way.

Continue reading…

Apparently Public Speaking Is My Thing

I’ve always enjoyed helping people achieve their career goals –  it’s actually one of my life’s mission. I’ve also had the opportunity to learn alot throughout my years working as an IT professional and people want to learn from my experience. Believe it or not, it did not sink in that public speaking would be a great way for me to provide value by combining my passion for career coaching and my technology expertise.

Continue reading…

Understanding EC2 Status Checks

I recently had a student ask me “what’s up with 2/2 checks passed” message on EC2 dashboard of AWS console. Great question, here’s the answer. Elastic Compute Cloud (EC2) is a virtual server offering in Amazon Web Services (AWS). Each EC2 server is known as an instance. An EC2 instance goes through two status checks at startup, then continuously performed every minute afterwards. The automated status checks allow engineers to quickly determine whether Amazon EC2 has detected any problems that might prevent the EC2 instance from running properly. The two status checks are known as a system check and a instance check. There’s a “Status Check” tab for each EC2 instance – you can access it by simply selecting the instance -> navigating to the details -> selecting status check tab. You can also refer to the image below for an example.

Continue reading…

How I Used LinkedIn To Get My First Consulting Client

IT Consulting is competitive, especially if you are going out on your own to work as an independent consultant. A few years ago I decided to leave my comfortable full time job to pursue a consulting career. My first year was rough – I was clueless about how hard it can be to secure that first project. Here are a few strategies using LinkedIn that helped me eventually secure my first client.

Continue reading…