Linux full-disk-encryption

Just wanted to share a one-liner on how to encrypt a device,partition or volume with cryptsetup (dm-crypt/luks)and options to get you started! The idea is simple: You create a crypto container on a disk/partition/volume/file/whatever, you then unlock that container, and then mount that container to a folder. When you're done [...]

By |2019-10-09T10:49:08+02:00October 9th, 2019|Tech Support, Wiki|3 Comments

OpenVPN clients: A list

Here's a list of OpenVPN clients I recommend for various platforms. Windows Use the official open source community client. https://openvpn.net/community-downloads/ Mac Use the open source Tunnelblick client which is both OpenVPN and GUI in one app. https://tunnelblick.net/ Linux Use your distribution package or compile OpenVPN from source. https://wiki.debian.org/OpenVPNhttps://fedoraproject.org/wiki/Openvpnhttps://wiki.archlinux.org/index.php/OpenVPN Android I [...]

By |2020-03-22T18:37:28+01:00October 6th, 2019|RoadWarrior, Tech Support, Wiki|Comments Off on OpenVPN clients: A list

HSTS: HTTP Strict Transport Security

What is HSTS and do I want to enable it?If you are a website owner or admin, keep reading to know more! Imagine you are browsing to your online banking page. You are redirected to HTTPS automatically every time, you sign in and do your business privately and all is [...]

By |2019-10-11T23:46:23+02:00September 20th, 2019|Tech Support, Wiki|Comments Off on HSTS: HTTP Strict Transport Security

How to SSH with GPG (and smart card)

Useful to use SSH securely using a smart card / hardware token / yubikey / etc. Prerequisites Of course, you need to have GPG installed on your system, and possibly some drivers and applications to support your smart card / hardware token if used. This guide assumes you already have [...]

By |2020-05-05T09:46:58+02:00September 13th, 2019|Tech Support, Wiki|Comments Off on How to SSH with GPG (and smart card)

Hardened GPG config

This is just a quick post to share a hardened gpg.conf Usually stored in ~/.gnupg/gpg.conf personal-cipher-preferences AES256 AES192 AES personal-digest-preferences SHA512 SHA384 SHA256 personal-compress-preferences ZLIB BZIP2 ZIP Uncompressed default-preference-list SHA512 SHA384 SHA256 AES256 AES192 AES ZLIB BZIP2 ZIP Uncompressed cert-digest-algo SHA512 s2k-digest-algo SHA512 s2k-cipher-algo AES256 charset utf-8 fixed-list-mode no-comments no-emit-version [...]

By |2019-09-13T09:56:16+02:00September 13th, 2019|Tech Support, Wiki|Comments Off on Hardened GPG config

A list of some DNS providers (servers) with encryption (DoT and DoH)

Here are just some DNS over TLS and DNS over HTTPS providers to get you started, but there are many more and you should evaluate your options. Make sure to check each provider's privacy policy. Please note that the following are not links! They are the addresses you need to [...]

By |2019-09-13T07:22:39+02:00September 13th, 2019|Tech Support, Wiki|Comments Off on A list of some DNS providers (servers) with encryption (DoT and DoH)

What is encrypted DNS / DoT (DNS over TLS) or DoH (DNS over HTTPS)?

DNS over TLS is long over due, and here's why. Should I care and does it affect me? Yes. TLS or Transport Layer Security, is the same technology that protects your browsing when using HTTPS. It basically wraps HTTP into a secure tunnel, so that no one can see or [...]

By |2019-10-11T23:56:12+02:00September 13th, 2019|Tech Support, Wiki|Comments Off on What is encrypted DNS / DoT (DNS over TLS) or DoH (DNS over HTTPS)?

How to block ads and secure your DNS on Android and iOS for privacy

Encrypted DNS is a must, and easy to set up! Android 9 even has the option built-in! And as a bonus, ad blocking! Android 9 and later (built-in) Android Pie only supports DNS over TLS. To enable this on your device: Go to Settings → Network & internet (or Connections) [...]

By |2019-10-11T23:57:05+02:00September 13th, 2019|Tech Support, Wiki|Comments Off on How to block ads and secure your DNS on Android and iOS for privacy
Go to Top