Category Archives: Crypto

Passwords revisited

After having generated pre-shared secret keys for IPsec VPNs, as recommended by the NSA, I wondered how “secure” the keys themselves actually were. The NSA specifically mentions the use of “large, high entropy, pre-shared keys”. Quite some time ago I … Continue reading

Posted in Crypto, IT Security | Tagged , , , | Comments Off on Passwords revisited

Javascript IPsec configuration generator for site-2-site VPN gateways

Today, access to the internet is practically everywhere. Private communication across it is often taken for granted. There is an entire industry around secure┬ácommunication and a lot of the equipment used for securing network boundaries, VPNs specifically, relies on the … Continue reading

Posted in Crypto, IT Security, Linux | Tagged , , , , , , , , , , , , , | Comments Off on Javascript IPsec configuration generator for site-2-site VPN gateways

Using Elliptic Curve with an OpenSSL PKI

OpenSSL is a tool that can be used to setup a (simple) PKI, but in its most basic form a command line tool with an endless amount of options. I find myself searching for the correct syntax of OpenSSL to … Continue reading

Posted in Crypto, IT Security, Shell script | Tagged , , , , , , , , , , , , , , | Comments Off on Using Elliptic Curve with an OpenSSL PKI

Tinkering with file encryption

Storing files overseas or “in the cloud” has become somewhat of an issue lately with spying activities of various nations. I think we’ve just seen the top of the iceberg, but at the same time I hope I’m wrong. In … Continue reading

Posted in Crypto, FreeBSD, IT Security, Mac OS X, Shell script | Tagged , , , , | Comments Off on Tinkering with file encryption

Encrypted FreeBSD USB boot disk

It appears that USB attached storage devices resemble what floppy disks were back in the nineties. Back then, transporting floppies from one computer to another was very common. Unintentionally spreading malware and losing disks also. The risk of spreading malware … Continue reading

Posted in Crypto, FreeBSD, IT Security | Tagged , , , | Comments Off on Encrypted FreeBSD USB boot disk