Security

From Things and Stuff Wiki
Revision as of 05:38, 25 August 2013 by Milk (talk | contribs) (→‎Windows)
Jump to navigation Jump to search


General

News

Firewalls

csf/lfd

Passwords

Windows

Logging

http://www.fail2ban.org/wiki/index.php/Main_Page

Integrity

Hardening

AppArmor

SELinux

Detection

Shells

Honeypot

Cryptography

RSA

EC

Encryption

See also Comms#Encryption

File system

Other

Homomorphic

SSL/TLS

  • Transport Layer Security (TLS) and its predecessor, Secure Sockets Layer (SSL), are cryptographic protocols that provide communication security over the Internet. They use asymmetric cryptography for authentication of key exchange, symmetric encryption for confidentiality and message authentication codes for message integrity. Several versions of the protocols are in widespread use in applications such as web browsing, electronic mail, Internet faxing, instant messaging and voice-over-IP (VoIP).

In the TCP/IP model view, TLS and SSL encrypt the data of network connections at a lower sublayer of its application layer. In OSI model equivalences, TLS/SSL is initialized at layer 5 (the session layer) then works at layer 6 (the presentation layer): first the session layer has a handshake using an asymmetric cipher in order to establish cipher settings and a shared key for that session; then the presentation layer encrypts the rest of the communication using a symmetric cipher and that session key. In both models, TLS and SSL work on behalf of the underlying transport layer, whose segments carry encrypted data.

HTTPS

Certificates

Wildcard

CAs

Services


Self-signed

Vulnerable to MITM as cracker can generate their own.

Cacert.org

Community group providing certs. Web of trust based assurance point system. Not carried by major browsers, just Linux distros.

StartCom

Free certs, one cert per domain, 1 year.

Tools

PFS

DNSSEC

DANE

Articles

Future

HTML

Scripting

Vulnerabilities

Legal

UX

Windows

Resources

Testing

Metasploit

Other

  • w3af is a Web Application Attack and Audit Framework. The project's goal is to create a framework to find and exploit web application vulnerabilities that is easy to use and extend.

Burp

Misc