Keep Your Secure Shell Functional and Secure
mar 17,
2016
I updated my laptop to the latest OpenBSD release, which included OpenSSH version 7.0, and found myself suddenly unable to update web sites hosted at GoDaddy. What’s wrong? Not Everyone Keeps Up To Date The original symptom was something like this, where username@example.com represents my user name and domain hosted at GoDaddy. Here goes an […]
Meet LibreSSL
nov 20,
2014
The SSL/TLS protocol suite is critical for Internet security. Unfortunately, it’s one of those things that’s nice in theory but messy in practice. Good news — a very promising project is bringing help! We commonly say that we use SSL to secure Internet activity. However, that statement taken literally is very out of date! We […]
cryptography,
Dual_EC_DRBG,
ECC,
elliptic curve cipher,
Heartbleed,
LibreSSL,
linux,
open source,
OpenBSD,
OpenSSL,
Poodle,
secure design,
secure programming,
SSL,
TLS
The Shellshock Bug Hits Linux and the Internet of Things
sep 27,
2014
The security world came abuzz recently when a very serious bug was announced in the GNU Bash shell. It’s a bad one, easy to exploit and with serious results. The new trend is to give a significant bug a catchy name and logo, and this one quickly became known as Shellshock. Here is a […]
What Is Going On With The Free Operating Systems?
jun 2,
2014
I’m a big advocate of FOSS or Free and Open-Source Software. Although, is it really more stable and secure? We keep hearing the ”Many eyes make bugs shallow” mantra, but it took how long for the Heartbleed bug in OpenSSL to be noticed? The way I look at it is that all operating systems have […]
BIND,
FOSS,
linux,
nginx,
nsd,
open source,
OpenBSD,
OpenSMTPD,
RHEL,
syslog,
systemd,
Year 2038