security Archives - Page 5 of 5 - Sindastra's info dump

How to enable HSTS on Apache2

It's way too simple! HSTS further protects your HTTPS enabled website. Read on to figure out how enable it in Apache2 and also why you want it! Prerequisites HTTPS already working with legit certificate, no browser errorsApache mod_headers enabled Enabling mod_headers On a Debian based system, simply run: a2enmod headers [...]

By Sindastra|2020-01-31T12:17:54+01:00October 15th, 2019|Tech Support|0 Comments

HSTS: HTTP Strict Transport Security

What is HSTS and do I want to enable it?If you are a website owner or admin, keep reading to know more! Imagine you are browsing to your online banking page. You are redirected to HTTPS automatically every time, you sign in and do your business privately and all is [...]

By Sindastra|2019-10-11T23:46:23+02:00September 20th, 2019|Tech Support, Wiki|0 Comments

How to SSH with GPG (and smart card)

Useful to use SSH securely using a smart card / hardware token / yubikey / etc. Prerequisites Of course, you need to have GPG installed on your system, and possibly some drivers and applications to support your smart card / hardware token if used. This guide assumes you already have [...]

By Sindastra|2021-05-16T19:46:47+02:00September 13th, 2019|Tech Support, Wiki|0 Comments

Hardened GPG config

This is just a quick post to share a hardened gpg.conf Usually stored in ~/.gnupg/gpg.conf personal-cipher-preferences AES256 AES192 AES personal-digest-preferences SHA512 SHA384 SHA256 personal-compress-preferences ZLIB BZIP2 ZIP Uncompressed default-preference-list SHA512 SHA384 SHA256 AES256 AES192 AES ZLIB BZIP2 ZIP Uncompressed cert-digest-algo SHA512 s2k-digest-algo SHA512 s2k-cipher-algo AES256 charset utf-8 fixed-list-mode no-comments no-emit-version [...]

By Sindastra|2019-09-13T09:56:16+02:00September 13th, 2019|Tech Support, Wiki|0 Comments

How to set up DoH (DNS over HTTPS) in Mozilla Firefox (and optionally block ads)

Enhance your privacy and security with this guide! If you don't know what DoT or DoH are, check out my earlier post! This guide assumes you are running the latest version of Firefox, which you should be doing anyway, as it's important to keep your browser up to date for [...]

By Sindastra|2019-09-13T07:18:48+02:00September 13th, 2019|Tech Support|0 Comments

A list of some DNS providers (servers) with encryption (DoT and DoH)

Here are just some DNS over TLS and DNS over HTTPS providers to get you started, but there are many more and you should evaluate your options. Make sure to check each provider's privacy policy. Please note that the following are not links! They are the addresses you need to [...]

By Sindastra|2019-09-13T07:22:39+02:00September 13th, 2019|Tech Support, Wiki|0 Comments

What is encrypted DNS / DoT (DNS over TLS) or DoH (DNS over HTTPS)?

DNS over TLS is long over due, and here's why. Should I care and does it affect me? Yes. TLS or Transport Layer Security, is the same technology that protects your browsing when using HTTPS. It basically wraps HTTP into a secure tunnel, so that no one can see or [...]

By Sindastra|2019-10-11T23:56:12+02:00September 13th, 2019|Tech Support, Wiki|0 Comments

How to block ads and secure your DNS on Android and iOS for privacy

Encrypted DNS is a must, and easy to set up! Android 9 even has the option built-in! And as a bonus, ad blocking! Android 9 and later (built-in) Android Pie only supports DNS over TLS. To enable this on your device: Go to Settings → Network & internet (or Connections) [...]

By Sindastra|2019-10-11T23:57:05+02:00September 13th, 2019|Tech Support, Wiki|0 Comments