StrongDM Blog (7)

How to Remove a Directory in Linux (rm & rmdir)

In every aspect of Linux system administration, properly removing directories is not just a routine task, but an important aspect of maintaining

Top 7 Penetration Testing Software for Companies in 2025

Pentest solutions enable automated or manual penetration tests. The top focuses for penetration tests are servers, web applications, and databases.

Posts by Category:

How to Add a User to a Linux Group (Step-by-Step Guide)

In this article, you will learn how to effectively add users to Linux groups, an essential task for both system administrators and users. Whether you're an experienced administrator or a Linux novice, this guide will provide you with the knowledge and skills you need to effectively manage user access and privileges in your Linux environment.

Comparing SSH Keys: A Comprehensive Guide (RSA, DSA, ECDSA)

This blog post dives into the world of SSH keys and highlights the different types available. By comparing these different SSH key types, we aim to provide insights that allow users to make informed decisions based on their specific security needs.

13 Password Management Best Practices to Know in 2025

Weak passwords are the third most common attack vector for malicious actors — and often the most difficult for enterprises to control since individual employees typically choose their own passwords. Effectively managing passwords is critical in safeguarding your organization’s assets, maintaining regulatory compliance, and minimizing security risks. In this article, we’ll share 13 password management best practices that will help you keep your systems and data safe from password-related attacks.

Cedar Go Implementation: Simplifying Security for Developers

We are pleased to announce that Amazon has accepted StrongDM's native Go implementation of Cedar into the Cedar Policy Organization's official GitHub repository. This allows Go developers to use Cedar, a security and authorization framework built to be fast, secure, and analyzable natively in their Go programs.

How to Configure SSH Certificate-Based Authentication (Tutorial)

With an emphasis on the significance of certificate-based authentication, this article seeks to clarify SSH authentication. It gives you a thorough understanding to support the safety of your digital interactions by outlining the benefits of using this approach over traditional ones and covering the implementation steps.

13 API Security Best Practices to Know in 2025

Implementing robust API security best practices prevents unauthorized access, protects your organization's reputation, and ensures the trust and confidence of your users. Let’s look at 13 best practices that will keep your APIs on lockdown.

PostgreSQL Drop/Delete Database: 15 Ways, Examples and More

The DROP DATABASE command in PostgreSQL is a powerful command that is used to delete a database along with all its associated objects, such as tables, views, indexes, and other database-specific elements. It is often a good practice to clean up your workspace by removing unused databases. However, keep in mind that deleting an existing PostgreSQL database deletes all objects and data within that database. This command should be used with caution as it irreversibly removes the specified database

Context-Based Access Controls: Challenges, Importance & More

Context-based access controls refer to a dynamic and adaptive approach to managing security policies in modern infrastructure. Addressing challenges in enforcing consistent security across diverse platforms, these policies consider factors such as device posture and geo-location to adjust access controls dynamically. By narrowing access based on contextual parameters, they reduce the attack surface, enhance security, and streamline policy administration, ensuring compliance in evolving

10 Ways to Prevent Man-in-the-Middle (MITM) Attacks

It’s difficult to detect MITM attacks, and attackers can target anyone online. Hackers can capture user credentials from customers by attacking sites or apps that require login authentication. They may also target businesses with sites or apps that store customer or financial information.Want to know how to prevent man-in-the-middle attacks? Follow these 10 proven strategies.

How to Create a Postgres User (Step-by-Step Tutorial)

Creating Postgres users isn't just a routine step in the complicated world of database management; it's a critical strategy that has a significant impact on how PostgreSQL databases operate and remain secure. An increasing number of organizations depend on sophisticated data systems, so it's critical to recognize the value of Postgres users. This blog post walks you through the steps of creating a Postgres user, as well as, explores the significance of these users in database administration,

SASE or Dynamic Access Management? Here’s Why You Need Both

While SASE excels in providing broad network security coverage and solves broad issues for regular enterprise users, it is not equipped to address the specific requirements of privileged users who wield extensive administrator or superuser privileges. Dynamic Access Management (DAM) addresses the specific needs of privileged users by providing granular control over their access grants and sessions in real time.

Unmasking Cozy Bear (APT29): The Urgent Need for Continuous Authorization

Cozy Bear specializes in targeting governments, diplomatic entities, non-governmental organizations (NGOs), and IT service providers, primarily in the U.S. and Europe. These state-sponsored groups aim to clandestinely gather strategic and sensitive information for Russia, maintaining prolonged access without raising suspicions.

5 6 7 8 9 32

Want to learn more?
See StrongDM in action. 👀

Book a Demo