Refactoring the Chaos: A Human-AI Partnership in the Valley of FileMaker

In the Valley of FileMaker, we found complexity born not of malice — but of time. Through layered scripts, value lists, and fragile logic, we unraveled the tangle not with judgment, but with clarity. Together — a human and an AI — we refactored, simplified, and respected what came before. This is our story of rebuilding trust in the native tools of a misunderstood platform.

Read More

How a Tiny Button Saved My Sanity: Clearing FileMaker Pro Cache to Fix Connection Issues

If you’ve ever been caught in a whirlwind of frustration while troubleshooting FileMaker Pro connectivity issues, you’re not alone. Recently, I found myself on the verge of madness (let’s call it “CraZZZZZZZZzzzzzzzzzY”) while trying to resolve a mysterious problem where FileMaker Pro 20 and 21 clients could no longer connect to a FileMaker Server on port 5003. Meanwhile, FileMaker Pro 19 connected flawlessly. The culprit? Cached settings. The hero? A single Delete Cached Temp Files button.

Here’s the full story, along with step-by-step instructions to help you avoid the rabbit hole I fell into.

Read More

Practical Mitigation Steps: A Comprehensive Defense against hidden Threats in macOS.

RustyAttr trojan’s Exploitation of Extended Attributes Cyber threats are evolving rapidly, and attackers are finding increasingly sophisticated ways to bypass detection. One of the latest techniques comes from the Lazarus Group, a well-known Advanced Persistent Threat (APT) actor. Their novel approach involves hiding malicious code in macOS extended attributes (xattr), allowing them to stealthily execute

Read More

No CAA = Open Door for Fraud: Why CAA Records Should Be Mandatory

The internet is built on trust, and HTTPS is a cornerstone of that trust. However, many domain owners unknowingly leave a critical security gap wide open by neglecting to configure CAA (Certificate Authority Authorization) records in their DNS settings. Without CAA records, any Certificate Authority (CA) can issue an SSL/TLS certificate for your domain, whether you authorized it or not.
This guide explores the importance of CAA records, why they should be mandatory, and how to set them up correctly with best practices and lessons learned.

Read More

Setting Up Let’s Encrypt SSL on Windows and Hardening Nginx with Posh-ACME and PowerShell

We’ll set up a plain Windows Server 2022 environment with NGINX and PowerShell to issue a Let’s Encrypt SSL certificate using the Posh-ACME PowerShell module. This guide will ensure that your environment is ready for certificate issuance and renewal using automated and Secure DNS validation and can be used to setup Windows 10\11 also. Contents

Read More