edafe.org » security

Passagierselektion macht es Terroristen leicht

edafe — Wed, 29 Dec 2010 18:57:23 +0000

In German

“Natürlich müssen wir uns darum bemühen, die Kontrollen an den Flughäfen effektiver zu machen. Profiling nach Herkunft und Religionszugehörigkeit aber ist eine schlechte Idee, die das Fliegen weder bequemer noch sicherer macht.” Peter Neumann believes that the use of passenger profiling would actually have detrimental effects on aviation security.
www.spiegel.de

Is aviation security mostly for show?

edafe — Wed, 30 Dec 2009 14:29:09 +0000

“Despite fearful rhetoric to the contrary, terrorism is not a transcendent threat. A terrorist attack cannot possibly destroy a country’s way of life; it’s only our reaction to that attack that can do that kind of damage.” In the wake of last week’s failed bombing of an airplane over Detroit, Bruce Schneier asks us to leverage the inherent strengths of our democracies.
edition.cnn.com

The case for email security

edafe — Mon, 29 Oct 2007 15:32:01 +0000

“It may not be surprising for you to learn that email is not a secure medium of communication; however, it may surprise you to learn just how inherently insecure it really is.” Erik Kangas on how email really works, what the security issues are and where you can make the difference.
luxsci.com (PDF file, 112 kb)

Das elektronische Briefgeheimnis

edafe — Thu, 31 May 2007 21:57:56 +0000

In German

“Wer eine E-Mail verschickt, muß damit rechnen, daß seine Nachricht von Dritten gelesen wird.” Brief article outlining steps you can take to keep your email communications private.
www.sueddeutsche.de

Why you shouldn’t use HTML email

edafe — Mon, 15 Jan 2007 20:21:03 +0000

“Spammers use HTML emails to confirm your address.” There are other drawbacks to using HTML-formatting when sending and receiving emails. Consider this list of potential pitfalls that Martin Favreau has compiled for you.
www.freeantispam.org

Why use email encryption?

edafe — Wed, 20 Dec 2006 21:54:42 +0000

Email encryption should be used by everyone. Here’s why.
rffr.de

Changing default permissions

edafe — Thu, 12 Oct 2006 10:31:07 +0000

Change the default permissions for your installation by editing the value for umask in /etc/profiles and /etc/login.defs.
lists.ubuntu.com

Public/private key authentication with SSH

edafe — Mon, 25 Sep 2006 19:31:42 +0000

SSH is a protocol that enables secure logins to your computer over a network. SSH supports the use of public/private key pairs for user authentication. Private keys are kept locally, while public keys are stored on the remote machine.

On the Local Machine

Use the command ssh-keygen -t dsa to generate a key pair for the local user. Use an appropriate passphrase to secure your private key (don’t be tempted to use an empty passphrase).
Set the permissions for the private key file with the following command:

user@ubuntu:~$ chmod 600 ~/.ssh/id_dsa

On the Remote Machine

Get the necessary packages with the following command:

user@ubuntu:~$ sudo apt-get install ssh

Copy the public key file ~/.ssh/id_dsa.pub from the local to the remote machine.

On the remote machine, move and rename the file with the following command:

user@ubuntu:~$ mv id_dsa.pub .ssh/authorized_keys2

Set the permissions for the file with the following command:

user@ubuntu:~$ chmod 600 ~/.ssh/authorized_keys2

Add the user user to the group ssh:

user@ubuntu:~$ sudo adduser user ssh

Get the file sshd_config and move it to /etc/ssh/:

user@ubuntu:~# sudo wget "http://edafe.org/wp-content/uploads/2006/09/sshd_config" user@ubuntu:~# sudo mv sshd_config /etc/ssh/

The downloaded file contains the following changes from the Ubuntu default configuration:

LogLevel VERBOSE


AllowGroups ssh

LoginGraceTime 20

PermitRootLogin no

MaxAuthTries 1
RSAAuthentication no
PasswordAuthentication no
X11 Forwarding no

TCPKeepAlive yes

ClientAliveInterval 15

ClientAliveCountMax 3
MaxStartups 3

UsePAM no

Setting these options makes root logins impossible. Only users belonging to the group ssh may establish a connection. Access to the remote machine is strictly tied to the private key and the passphrase used to encrypt it.

Next, restart the SSH server on the remote machine with the following command:

user@ubuntu:~$ sudo /etc/init.d/ssh restart

You should now be able to log into the remote machine using the private key stored on the local machine:

user@ubuntu:~$ ssh remote.machine Enter passphrase for key '/home/user/.ssh/id_dsa':

The book SSH The Secure Shell by Daniel Barrett, Richard Silverman and Robert Byrnes is useful as a reference text and has information on other clever stuff you can do with SSH.
www.ibm.com/developerworks/linux/

Privatsphäre ist wie Sauerstoff

edafe — Fri, 22 Sep 2006 19:37:02 +0000

In German

“Der politische Stand ist eine Symbiose mit der Medienindustrie eingegangen, die aus finanziellen Gründen den Terrorismus in einem Maße ausschlachtet, das objektiv nicht zu rechtfertigen ist.” Privacy is like oxygen, argues Pär Ström. You’ll miss it when it’s gone…
www.bundestag.de

What the terrorists want

edafe — Sat, 26 Aug 2006 19:02:25 +0000

“Defense against terrorism is to refuse to be terrorized. Our job is to recognize that terrorism is just one of the risks we face. And our job is to fight politicians who use fear as an excuse to take away our liberties and promote security theater that wastes money and doesn’t make us any safer.” Bruce Schneier is not about to give in. Are you?
www.schneier.com

How to encrypt your email

edafe — Tue, 04 Jul 2006 22:08:07 +0000

“You too can get PGP set up in a few simple steps.” Jason Thomas shows just how easy it is to start encrypting your messages.
www.lifehacker.com

Thinking about email security

edafe — Sat, 01 Jul 2006 21:04:58 +0000

“The bottom line is, if your email passes through or is stored on servers controlled by others, it’s probably a good idea to consider encryption.” Joe Brockmeier considers the confidentiality of your messages.
www.newsforge.com

Introduction to cryptography

edafe — Sat, 13 May 2006 22:36:23 +0000

Find out more about the basic terminology and main methods of cryptography.
www.ssh.com

A practical introduction to GNU Privacy Guard

edafe — Thu, 24 Nov 2005 16:22:51 +0000

“In this guide, I will show you how to use the most important GPG commands.” Brendan Kidwell introduces GnuPG for Windows users.
www.glump.net

Avoiding Windows email viruses with Mozilla Mail

edafe — Tue, 25 Oct 2005 18:38:14 +0000

“The users that I support would double-click on a landmine to see what it did.” Phil Jones and Vidar Braut Haarr explain how to stop viruses from spreading to your computer by enlisting the help of Mozilla Mail and adopting … Continue reading →

Fireworks in Washington, despair around the World

edafe — Mon, 22 Aug 2005 11:04:08 +0000

“The president and his speechwriters have yet to confront the tension between their rhetoric about freedom, which is universally popular, and their practice of projecting US firepower, which is resented in equal measure.” Former Foreign Secretary Robin Cook on the day George Bush began his second term in office.
www.guardian.co.uk

Robin Cook is Dead

Robin Cook, one of few political figures to command my lasting respect, has suddenly died on August 6, 2005. If you are only ever going to read one political statement made to the House of Commons, read Robin Cooks’s resignation speech from 18 March, 2003.

Who’s behind that web site?

edafe — Fri, 29 Jul 2005 21:14:27 +0000

“We’re about to get slightly technical here—but this is basic information you need to know.” John Locke explains the dangers of surfing the web and what you can do to control the risks.
www.freesoftwaremagazine.com

Securing Linux

edafe — Tue, 12 Jul 2005 20:02:53 +0000

Mario Eberlein, Rene Auberger and Wolfram Andreas Richter give an overview of security concepts, installation issues, and potential threats and their exploits. They also offer “practical advice on how to secure and harden a Linux-based system”.
www.ibm.com Part 1, Part 2, Part 3

RAID-1

edafe — Wed, 29 Jun 2005 06:54:27 +0000

RAID-1 can help protect your data from hard drive failure. This article is geared towards helping you to better understand and implement a RAID-1 device.
www.linuxjournal.com Part 1, Part 2

Understanding email netiquette

edafe — Sat, 25 Jun 2005 20:18:33 +0000

“Internet life carries its own versions of courtesy, privacy and security issues that all users need to know.” This article discusses basic email etiquette and explains the proper use of the To, CC and BCC fields when sending emails.
www.bestprac.org

Introduction to cryptography

edafe — Wed, 18 May 2005 22:17:45 +0000

Not entirely sure how cryptography works? This document’s two chapters, The Basics of Cryptography and Phil Zimmermann on PGP, will tell you what you need to know.
ftp.pgpi.org (PDF file, 1007 kb)

Power of Nightmares re-awakened

edafe — Sun, 08 May 2005 20:10:23 +0000

“The Power of Nightmares – first screened in Autumn 2004 and repeated this week on BBC2 – questions whether the threat of terrorism to the West is a politically driven fantasy and if al-Qaeda really is an organised network.” Read producer Adam Curtis’s responses to comments from viewers around the world.
news.bbc.co.uk

Point-and-click email crypto

edafe — Thu, 20 Jan 2005 21:26:47 +0000

“I don’t want people reading my mail.” Roy Hoobler explains how to use KGPG for email and file encryption under KDE.
www.linuxjournal.com

Mozilla Firefox 1.0

edafe — Sat, 06 Nov 2004 18:26:25 +0000

“If you’re fed up with the latest virus to capitalise on some flaw in Internet Explorer, you should switch to Firefox—now.“ Dan Costa on why you should ditch Internet Explorer at the earliest opportunity.
reviews.zdnet.co.uk

Invasion of the identity snatchers

edafe — Wed, 27 Oct 2004 20:13:43 +0000

Kelly Martin has become the victim of identity theft. A security professional by trade, he reflects on the many ways that personal data, stored on your computer, can fall into the wrong hands.
www.theregister.co.uk

Why do you need PGP?

edafe — Wed, 20 Oct 2004 21:55:35 +0000

For a conclusive answer read this article by Phil Zimmermann, author of the Pretty Good Privacy application.
www.pgpi.org

Spam bots – and how to avoid them

edafe — Tue, 18 May 2004 20:19:14 +0000

“Once your email address is in the hands of spammers, regaining control of your inbox is a very, very difficult job indeed.” Nobody likes to receive spam, but what can you do to avoid it? Essential reading for anyone keen to ‘throw a spammer’ in the works.
www.bestprac.org