Category Archives: Security

my.com “MyMail” disaster: when security and privacy become marketing gags

The internet is a constantly evolving agglomeration of excellent, mediocre and weird ideas. As it seems, my.com [1] seems to have taken the weird path for their MyMail app, an iOS and Android email application claiming to “Focus on what’s important” [2] Well, tell me, what do you think, are security and privacy important for Continue Reading →

Spread the love

OpenVPN: extended verification of X.509 client certificates

X.509 certificates have become a key part for secure authentication in corporate environments and unsurprisingly, OpenVPN[1] allows to use X.509 certificates for identifying authorized clients. Now, the default mode for OpenVPN is to verify the presented client certificates against a certificate authority (CA) and if that test succeeds, the clients are allowed in. That however is more than Continue Reading →

Spread the love

gitblit: Apache as frontend for x509 client authentication

It took us a long journey to finally come to the point where we decided to add a git repository server to our existing subversion source control infrastructure. The journey was quite long mostly due to the fact that both the development and management tools for git were just not good enough – at least Continue Reading →

Spread the love

Debian wheezy & umask for sftp

There are a lot of conflicting and incomplete postings on the web about how to get the simple task of giving sftp (only) users a reasonable umask. Now in Debian wheezy (and probably any box running OpenSSH >= 5.5), the solution is very simple: View the code on Gist. So as you see, the trick Continue Reading →

Spread the love

PRISM and the damage done

source: wikipedia “No one shall be subjected to arbitrary interference with his privacy, family, home or correspondence, nor to attacks upon his honour and reputation. Everyone has the right to the protection of the law against such interference or attacks.”Article 12 of the UN Universal Declaration of Human Rights PRISM is everywhere. Marc Snowden has Continue Reading →

Spread the love