Security


Re: Heartbleed Bug: Public urged to reset all passwords

A friend of mine asked me on that article on BBC whether you should change all your password due to that Heartbleed bug within SSL. It seems there are a few things floating around, a few misconceptions and misunderstanding about the problem. First of all, when you access – a banking […]


GBit connection but only ~12MBytes/s transferrate over SSH?

I came about that my SSH setup was only able to transfer ~12MBytes/s. After some digging I found out that SSHv2 is by default using “3des” as the cipher. When I set it specifically with “-c blowfish” to a another secure, but much faster block cipher, I got ~24MBytes/s. If […]


Comment on “Symantec SSL certificates feature cryptography 10k times harder to break than RSA-bit key”

I just came across  Symantec SSL certificates feature cryptography 10k times harder to break than RSA-bit key and Symantec/VeriSign Expands Encryption Options For SSL Digital Certificates (http://www.darkreading.com/authentication/167901072/security/encryption/240148562/symantec-verisign-expands-encryption-option+s-for-ssl-digital-certificates.html). I must say, I am stunned. AFAIK no certificate has been “broken” yet, and those few ones what have, were implementation errors or […]


Two factor authentication with YubiKey

Two factor authentication with OTP – as provided by YubiKey – makes you sleep well at night again. I recently figured that these substantially increase your password security – with what you know and what you have. They are very easy integrated into PAM – and the good news is […]