full disk encryption & google chrome on OpenBSD!
So our point is, if there is a good method to encrypt the full disk [like with dm-crypt/AES/under Linux], and we could have an up-to-date google chrome browser on OpenBSD, then it could be a very very good operating system for daily use! Dear community! Can someone please post small and compact [pointed] howtos, how to install an OpenBSD with full disk encryption, and how can we install google chrome on it? It's very important! Thank you in anticipation!
Firewall rules to block unwanted protocolls on given ports
Does somebody has an idea, that what kind of iptables/pf rule must i use to achieve this?: i only want to allow these connections [on the output chain]: on port 53 output only allow udp - dns on port 80 output only allow tcp - http on port 443 output only allow tcp - https on port 993 output only allow tcp - imaps on port 465 output only allow tcp - smtps on port 22 output only allow tcp - ssh on port 20-21 output only allow cp - ftp on port 989-990 output only allow tcp - ftps on port 1194 output only allow udp - OpenVPN So that e.g.: OpenVPN on port 443 would be blocked, because only HTTPS is allowed on port 443 outbound. Any ideas? :\
Privoxy redirect rule for Wikipedia! :)
Dear community!
I have a few Privoxy rules, that can redirect HTTP Wikipedia [en,de] traffic to
HTTPS:
(a little part from the "user.action" file:)
{
+redirect{s@http://en.wikipedia.org/wiki/@https://secure.wikimedia.org/wikipedia/en/wiki/@}
}
.en.wikipedia.org
{
+redirect{s@http://de.wikipedia.org/wiki/@https://secure.wikimedia.org/wikipedia/de/wiki/@}
}
.de.wikipedia.org
..so you get the problem: is there any way to put a "regexp" or something to:
"en", "de"?
There are hundreds of other languages, i think it's a bad solution to write
down them all.
There is another question: is my solution good so far?
I'm asking that because if i visit:
https://secure.wikimedia.org/wikipedia/en/wiki/File:Nokota_Horses_cropped.jpg
that's ok, it's using HTTPS. BUT if i click on the picture:
http://upload.wikimedia.org/wikipedia/commons/d/de/Nokota_Horses_cropped.jpg
it's using _HTTP_ !!! - so this is not good. Are the pictures on a HTTP-only
server,
or i can write another redirect rule to view the pictures in HTTPS?
Thanks you for any pointings, help, solution.
HOW to set “security.OCSP.require” in Google Chrome/Chromium?
https://blog.torproject.org/blog/detecting-certificate-authority-compromises-and-web-browser-collusion "Users of Mozilla Firefox that are concerned about this issue should enable security.OCSP.require in the about:config dialog." How can i enable this feature in Google Chrome/Chromium?
OBDS vs. NetBSD security
If i search for the two words: OpenBSD and NetBSD on: http://www.exploit-db.com/ then i get 17 hits regarding security bugs on OpenBSD, and 8 hits regarding security bugs on NetBSD. So what are the differences exactly in the _REALITY_? Anybody has any links, that how does NetBSD and OpenBSD audit their code? :O I'm not trolling, just want the real security! It's not a flame topic.. p.s: if i search for FreeBSD... :\ too many hits to count.. Thank you in anticipation.
Re: OBDS vs. NetBSD security
"I might need to switch my firewalls soon. " what do you mean? :O Be Fri, 25 Mar 2011 13:12:50 -0700 Bryan Irvine C-rta >On Fri, Mar 25, 2011 at 3:14 AM, johhny_at_poland77 > wrote: >> If i search for the two words: OpenBSD and NetBSD on: >> >> http://www.exploit-db.com/ >> >> then i get 17 hits regarding security bugs on OpenBSD, and 8 hits regarding security bugs on NetBSD. >> >> So what are the differences exactly in the _REALITY_? >> >> Anybody has any links, that how does NetBSD and OpenBSD audit their code? :O >> >> I'm not trolling, just want the real security! It's not a flame topic.. >> >> p.s: if i search for FreeBSD... : too many hits to count.. > >JigglyPuffBSD doesn't have anything at all listed on that site. I >might need to switch my firewalls soon. > >-Bryan
Experiences running AIX in Qemu?
Did someone try it? Does it work? Any howtos/tips regarding it? Many thanks!
