lizthegrey

default['sshd']['sshd_config']['AuthenticationMethods'] = 'publickey,keyboard-interactive:pam'
default['sshd']['sshd_config']['ChallengeResponseAuthentication'] = 'yes'
default['sshd']['sshd_config']['PasswordAuthentication'] = 'no'

joernchen

Komm mal ins RZ komm her zu mir
Siehst du da drüben gleich da hinten im Netzwerkraum
Ja da drüben in dem Rack vorm Storage haben sie
unsre Patches in'n Kernel gehaun

Komm an den Bildschirm komm her zu mir
Überall nur Skripte und Pakete halb compiled
Sieht so aus als hätten die unser Gentoo heute Nacht
schon ohne uns verteilt

sleevi

CT For Server (Developers)

Intro

Similar to my advice regarding OCSP Stapling for servers/server developers, based on questions I've received about "CT best practices," I wanted to write something similar for those writing server software. That is, this isn't targeted at server operators, but for those writing software like Apache, nginx, Caddy, etc.

At the most basic level, the deployment of Certificate Transparency to date has largely tried to focus the burden on CAs, rather than on server developers. If the CA is doing everything right,

Rob--W

Timeline

• 2016-10-02 German research reveals severe privacy violations in https://www.kuketz-blog.de/wot-addon-wie-ein-browser-addon-seine-nutzer-ausspaeht/
• 2016-10-02 Audit of WOT by Rob Wu
• 2016-10-02 Discovered arbitrary remote code execution capabilities in add-on
• 2016-10-03 WOT listing removed from addons.mozilla.org

Subject

• Add-on: Web of Trust, MyWOT/WOT: Website Reputation Rating

defeo

Key exchange in supersingular space-time

I was asked to vulgarize SIDH. Here is a very poor attempt!

Alice and Bob are space travelers. They both own a spaceship capable of traveling the galaxy through supersingular space-time at incredible speeds. They want to discuss a top-secret space mission, but they are afraid that the evil Zkptrx will spy upon their

zmanian

/** 
* Compute the apparent security level of BN curves,
* according to Kim-Barbaulecu "Extended Tower Number Field Sieve:
* A New Complexity for the Medium Prime Case" -- CRYPTO 2016.
*/
function ApparentSecLevel(n,c)
  k:= 12; //embedding degree of BN Curve
  ln_m := k*n*Log(2); ln_ln_m := Log(ln_m);
  return Log(2, Exp(c*(ln_m*ln_ln_m^2)^(1/3))); // section 4.1
end function;

joepie91

'use strict';

const parseExpression = require("./parse-expression");

function findAll(regex, target) {
	let results = [], match;
	
	while (match = regex.exec(target)) {
		results.push(match);
	}

atcuno

The purpose of this document is to make recommendations on how to browse in a privacy and security conscious manner. This information is compiled from a number of sources, which are referenced throughout the document, as well as my own experiences with the described technologies.

I welcome contributions and comments on the information contained. Please see the How to Contribute section for information on contributing your own knowledge.

Table of Contents

• Motivation
• Audience
• TL;DR?
• Updates
• Technologies that Affect Security and Privacy

bnagy

GPG / Mutt / Gmail

About

This is a collection of snippets, not a comprehensive guide. I suggest you start with Operational PGP.

Here is an incomplete list of things that are different from other approaches:

• I don't use keyservers. Ever.
• Yes, I use Gmail instead of some bespoke hipster freedom service

mamiu

##Set up mosh (mobile shell) on Uberspace and Mac

First of all you have to email the Uberspace team (hallo@uberspace.de) and ask for opening an UDP port for mosh (don't forget to mention your username and uberspace server [you can get it with the command hostname]).

####On the Uberspace server:

Issue following command to execute the script from below:

curl -L http://goo.gl/PBo45c | bash