Tag: security
This post is a sequel to my
previous post. The post demonstrated how
to setup HTTPS for Nginx by obtaining a certificate via 3rd party client
called acme.sh. There is also some basic underlying theory about these
terms. Consider reading it if feeling uncertain.
Start by creating …
Modern Internet is full of encryption. In many ways, using encryption is
still optional, although non-encrypted communication of any form is getting
rarer every day. There are factors that contribute to this trend. As a
specific example, some top-level domains, like .app or .dev,…
I wanted to finally start getting into signing my commits, mainly because
among any other reasons, it increases the overall confidence in my work.
With the GitHub's decision to display a yellow warning stating Unverified
near the commit list, the trend towards signing will almost…
Most servers I connect to have the option PasswordAuthentication set to
no, meaning I do more often than not see an error:
Permission denied (publickey).
The reasons for this are multiple, but in my scenario, this happens because
there are no identities (keys) present in the SSH…
What happens with OTP secrets when a user database get leaked? Could the
attacker use them to gain your other sensitive information? How are they
even stored on the server?
Storing password
One of the widely used method to log into some service day is still via
form of a password…
The release of the KeepassDX v2.9 brings
working autofill
in Chrome based browsers in addition to Firefox based ones, here's how to
use it on the Android phone with passwords stored on your Arch linux
computer.
Start by installing required apps on the phone, for instance via F-D…