How to strengthen my privacy
Find the HOWTO or step-by-step guide that you need right here.
Find the HOWTO or step-by-step guide that you need right here.
Originall written in 2004, here you will find one of the most extensive HowTo's available for GnuPG. It truly is a 'soup to nuts' overview. This documents explains how to use the GNU Privacy Guard (GnuPG), an Open Source OpenPGP compatible encryption system. To keep this program totally free the use of the RSA algorithm and other patented algorithm has been avoided. The document was originally written by Michael Fischer v. Mollar in German.
Are you always looking to expand your security practices? Do you want to take a crack at instituting a whole new way of creating a secure, password infrastructure? If so, this article on keystroke dynamics can help you break into whole new worlds of security... Measure the total time of entry and verify the time between keystrokes to help authenticate a user regardless of the data being entered. Require nonprintable characters, such as backspace and break, in the password to enable new levels of password obfuscation. Learn how to apply the open source tools xev and Perl in keystroke dynamics to measure the more-subtle characteristics of human-computer interaction. The whorls and ridges on your fingertips can identify you based on what you touch. How you touch and especially type can often be just as unique an activity. Keystroke dynamics is a relatively new field that enables identification of individuals through statistical analysis of their typing patterns. Many commercial products analyze the dynamics of password entry, as well as continuous typing monitoring for enhanced security. This article uses example code to demonstrate keystroke dynamics for enhancing the security of your applications in authentication and continuous data entry contexts.
A quick HowTo on using secure FTP to transfer files. What is sftp? SCP/SFTP -> SSHD -> Call sftpd subsystem -> Requires a shell -> User can login to server and run other commands. In this article series we will help you provide secure restricted file-transfer services to your users without resorting to FTP. It also covers chroot jail setup instructions to lock down users to their own home directories (allow users to transfer files but not browse the entire Linux / UNIX file system of the server) as well as per user configurations.
A method is described for encrypting a hard disk, either in whole or in part, with the encryption key stored on an external medium for increased security.
This article will discuss some of the background and technology of cryptographic filesystems and will then cover some example implementations of these filesystems including Microsoft's Encrypting File System for Windows 2000, the Linux CryptoAPI, and
This documentation discusses how IBM uses an LDAP (Lightweight Directory Access Protocol) server to provide authentication services to which various applications can subscribe. It also discusses how they use the heartbeat package from the Linux-HA in
GnuTLS is a project that aims to develop a library which provides a secure layer, over a reliable transport layer (ie. TCP/IP).
Excerpted from Planning for PKI: Best Practices Guide for Deploying Public Key Infrastructure by Russ Housley and Tim Polk. John Wiley & Sons 2001.
VPN Masquerade is the part of IP Masquerade which enables you to use IPsec-based and PPTP-based Virtual Private Network clients from behind a shared-access firewall.
Stegdetect is an automated tool for detecting steganographic content in images. It is capable of detecting severval different steganographic methods to embed hidden information in JPEG images.
This document discusses GnuPG, which is a tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. GnuPG is a complete and free replacement for PGP.
This is a great document that explains public key infrastructure, X.509 and certificates, and the problems with existing methods.
In this document, several aspects of implementing a secure shell system with OpenSSH are discussed.
Probably the most comprehensive list of crypto and security-related resources on the web. If you need it, it's here.
This document describes the AES and Rijndael in great detail, including the selection process and technical details.
The Secure Sockets Layer protocol provides one means for achieving these goals and is the subject of this article. This document introduces SSL by reviewing cryptographic techniques and by discussing certificates. It also describes SSL and packages f
This module provides strong cryptography for the Apache 1.3 webserver via the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols by the help of the Open Source SSL/TLS toolkit OpenSSL, which is based on SSLeay from Eric
tinc is a Virtual Private Network (VPN) daemon that uses tunneling and encryption to create a secure private network between hosts on the Internet. Because the tunnel appears to the IP level network code as a normal network device, there is no need t