Debian :: Use Encryption Other Than The SSL Model?
Jul 17, 2011
I don't care for domain 'authentication' by an "Authority". I don't trust no one, so CA's to me are as trustworthy as the gypsy in the park.
I can use a self-signed certificate, but the problem is most browsers makers are Fn idiots that say the connection is not secure, when it actually is, but because I did not folk out cash, it makes my website look bad. I can understand the need for a 3rd party to verify the domain host to prevent man in the middle attacks, but I do not care for this.. and browser makers should take more responsibility and introduce different padlocks for types of authentication, rather than saying "this connection is encrypted, but not secure because its self-signed". What a load of horse s***!
How many times does people stop to read certificate authoraties? I sure don't. I only care weather or not the connection has been encrypted.. so, I am looking for a way for simply providing encryption for my website.
From what I understand, when you submit a CSR to a CA, it includes the private key, meaning that the CA would be able to see the encrypt data, should they get hold of it. This is not acceptable for me.
Is there anything other way to use encryption other than the SSL model that is used typically amongst HTTPS browsers today?
View 2 Replies
ADVERTISEMENT
Oct 14, 2010
So my 8 year old HP has finally bit the dust. Any opinions on a new HP model?
View 14 Replies
View Related
Jul 24, 2011
I've recently upgraded my squeeze to sid, then installed gnome shell as default window manager.
1. Gnome shell was normal until yesterday, I upgraded new packages up to date, then I cannot log into gnome shell any more (however, fallback mode is normal). It shows a sad computer screen with message "Oh no, something has gone wrong". The only thing I can do is pressing the logout button to log out.
2. Debian is running on my thinkpad T60p, and I can choose keyboard model in Gnome2, but I can't find any options in the system setting in Gnome shell to change keyboard layout for model IBM T60/R60.
View 3 Replies
View Related
Jul 22, 2015
I use jessie-32bit of kernel 4.1.3 on ASUS EeeBook X205TA.
And I use Japanese Model. There are key 【,|】and【,_】in this model keyboard.
But my system does not recognize the two keys.
In /etc/default/keyboard, edit below
XKBMODEL="jp105"
XKBLAYOUT="jp"
I can Japanese layout, but the two keys is nonreactive.
And I cannot dpkg-reconfiguration keyboard-configuration.
Code: Select all#dpkg-reconfiguration keyboard-configuration
update-rc.d: warning: start and stop actions are no longer supported; falling back to defaults
update-rc.d: warning: start and stop actions are no longer supported; falling back to defaults
View 0 Replies
View Related
Jul 26, 2015
I use jessie-32bit of kernel 4.1.3 on ASUS EeeBook X205TA.
And I use Japanese Model. There are key 【,|】and【,_】in this model keyboard. [URL] .... But my system does not recognize the two keys.
In /etc/default/keyboard, edit below
XKBMODEL="jp105"
XKBLAYOUT="jp"
I can japanese layout, but the two keys is nonreactive.
And i can not dpkg-reconfiguration keyboard-configuration. It's no response. No appear.
Code: Select all#dpkg-reconfiguration keyboard-configuration
update-rc.d: warning: start and stop actions are no longer supported; falling back to defaults
update-rc.d: warning: start and stop actions are no longer supported; falling back to defaults
View 0 Replies
View Related
Aug 14, 2010
Does anybody have ideas how to make this Vodafone Mobile Connect Card model GLOBETROTTER by Option work on this compaq nx9005?
Pictures of the beast:
Bonus points will be awarded if no closed source software is required.
View 1 Replies
View Related
Jul 17, 2011
Is it possible to provide encryption over HTTPS without a certificate?
I can't afford a certificate from a CA, but I do want to provide encryption with my website... without a self-signed certificate because I hate that screen popping up on the clients computer on first visits.
View 4 Replies
View Related
May 20, 2011
WHERE TO WRITE :"modprobe snd-hda-intel model=acer "? I have problem with soundcard. In fact it is not recognised and of course I don't have sound.After working and looking for solutions I found that if I make this command : as root # modprobe snd-hda-intel model=acer
the system recognize the soundcard and it's starting and I have sound. .Now ,I put a "stupid" question :Where to write the message above :modprobe snd-hda-intel model=acer ,in which config file from /etc with nano i.e.,in this way I hope the change become permanent and I don't need to command everytime to make system working.
View 8 Replies
View Related
Aug 27, 2015
I have been trying for close to 7 hours now to create a working encrypted bootable usb key for debian now.
I start by running the debian installation dvd (1 of 3. I downloaded and burnt all three ISO's that I found here: [URL] .... (2015-06-06 17:33) to disk), and when I get to the partitioning part, I cannot get an encrypted volume that will hold the root filesystem.
Here is what I have tried:
I have tried the Guided partitioning option to use the entire disk and set up encrypted LVM, to no avail.
I am left with a primary boot partition of 254.8 MB, at ext2 with /boot mountpoint on it, and a logical partition of 15.8 GB, with crypto as it's file system that says it's "not active". This bit here seems to be a running theme as I keep coming back to this set up, (give or take some space arrangement). From what I've read and seen, I should be seeing an Encrypted Volume container similar to LVM, but called an "Encrypted Container" that I can create additional partitions in like / and /home, and what have you.
And I can't "activate" the partition either. I have tried both the Configure Logical Volume Manager, which changed the partition to an LVM partition that dosn't encrypt anything inherently (and I have checked), and I have tried the Configure encrypted volumes option, which leads to the same results basically.
I have tried manually creating the partitions, a 512 MB ext4 /boot partition and then partitioning the rest of the space as "physical volume for encryption" with aes encryption, 256 key size, xts-plain64, Passphrase encryption key, erase data flag, bootable flag off.
Same result, 1 primary boot partition, 1 logical (I later tried making it a primary partition to, with the same results) crypto volume that is "not active".
I also tried setting up the a logical volume manager, which created a container to create additional partitions in which I could encrypt, but it was either a partition dedicated to something (i.e. root (/) or /home, or /swap, etc) or it could be encrypted, but not both. I even tried creating a root partion, and then selecting Configure encrypted volumes, and then selecting the root partition, and here is where I thought I was getting somewhere, because then it comes up giving me all the same options above, but it also specifies mount point under encryption. Which is /, which is what I'm after. So I accept that, and it goes back to being crypto, "not active" and when I check the partition again, the mount point option is gone.
Last thing I tried was going back to having a 512 MB /boot partition, and an encrypted partition set up with Configure encrypted volumes option, and then specifying the encrypted partiton with the Logical Volume Manager as the place to create logical groups and volumes, to little avail. I can create more volumes that are either encrypted, or a useful non encrypted volumes like / (root), /home, /swap, and the like, but not both at the same time.
Following this guide: [URL] ....
This leads me to a useable system, but the system wasn't encrypted. When I booted, I wasn't asked for a passphrase, and I checked the stick with my old linux mint dristro, and I was able to mount the logical volume and look at the contents, /etc, /home, /var by activating the partition in GParted and mounting it.
A number of users seem to mark an encrypted partition as lvm and then create more logical volumes within that that either actually become encrypted, or they don't check. I'm not sure which after my testing.
[URL] .....
I have also read this: [URL] .... and this [URL] .....
I found this which shows the container I believe I should be seeing if I do this right, but I can't get it : [URL] ....
I have also watched movies on youtube about it : [URL] ....
Could the issue be that I'm using a Lexar JumpDrive? 16 GM USB 3.0.
I've gotten debian to run off of it on it's own so I kind of doubt it.
View 2 Replies
View Related
Oct 21, 2015
I would like to configure my Debian Jessie system in this way.
Two partitions:
1) /boot on /dev/sda1
2) everything else on /dev/sda2
I want to encrypt the second partition with LUKS. And then install over it a LVM volume. Inside the LVM volume i will create the / (root), /var, /opt and /home virtual partitions. In this way, i'll get asked only once for the password to decrypt all partitions. Because if i don't use LVM, then i'll get asked for the password for each encrypted partition.
I can follow and understand almost everything of this HOW-TO for Archlinux: [URL] ....
Only two passages are unclear to me:
1) Configuring mkinitcpio
I don't understand what i should do here in order to complete this. What should i do in Debian to configure "mkinitcpio"? what is the equivalent thing to do here?
I thought that the kernel would automatically recompile itself with all installed modules on the Debian system, once cryptosetup/LUKS or LVM2 get installed.
2) Configuring the boot loader
I don't understand what should i write in /etc/default/grub. Will GRUB automatically load the LUKS and LVM2 modules? Also, I don't think that i could boot the system in this way:
cryptdevice=/dev/sda2:LVM root=/dev/mapper/LVM-????
Actually the "root=" volume is the whole volume to mount as LVM. It isn't the final root partition.
View 5 Replies
View Related
Mar 20, 2016
With all the talk about disk encryption for Apple devices, I wanted to ask about how full disk encryption compares between debian linux and mac OS X. Is the code for debian linux fully available for people to inspect for flaws or backdoors? Apparently although part of the encryption code is available for OS X the full code for Filevault 2 is not public. What are the advantages and disadvantages of each method of encryption for each operating system?
View 8 Replies
View Related
Jun 7, 2011
The laptop runs Debian Squeeze XFCE installed from the Live iso (uname -a gives 2.6.32-5-686 as the kernel) and has Wicd 1.7.0 for network management and uses the ipw2100 wifi firmware/drivers. It connects fine using WEP encryption at home and to unencrypted connections found in a couple of public areas. I have had one problem with a WEP encrypted connection in a cafe (got through encryption, but could not get an IP address. There are workarounds which I will try next time I have coffee there When changing my router to use WPA2, I get 'bad password' errors. There is quite a literature on 'bad password errors' and Wicd and kernel 2.6.32, however a lot of the pages are contradictory. The Wicd log showed this...
2011/06/07 17:25:59 :: WPA_CLI RESULT IS ASSOCIATING
2011/06/07 17:26:00 :: wpa_supplicant authentication may have failed.
2011/06/07 17:26:00 :: connect result is Failed
[code]...
I'm fine using WEP at home, but I need to connect out and about as well and meet WPA2 connections in some locations
View 3 Replies
View Related
Aug 20, 2011
I recently bought a new hard disk for my /home tree. I don't have encrypted home directories currently, but I was wondering if there is an easy way to encrypt my home directory so that it is automatically decrypted when I'm logging in (console/kdm). Basically I would like to manually do same thing as Debian installer would have done.
I'm running Squeeze.
View 2 Replies
View Related
Sep 3, 2015
I've a Lenovo G50-80T with W8.1. I want to install Debian 8.1 in dualbooting mode. I've done this other times without problems. But this time I want encrypt the Linux partition (not the Windows partition). I'll use dm-crypt to do that. I want to know if this way is secure for protect the data on Linux partition or if I need encrypt the entire drive.
View 3 Replies
View Related
Feb 8, 2010
Could anyone point me to some simple articles that explain what email encryption is and how to set up a mail server (e.g. Exim) that can send secure emails? I know nothing about networks, mail servers, encryption, etc., but I have to be an expert on it before I walk into work tomorrow morning.
View 14 Replies
View Related
Dec 23, 2010
I am building an active directory and using BIND9 as my DNS. To allow for secure dynamic updates from the domain, I am enabling GSS-TSIG as detailed here and here. Unfortunately, some of the commands and configurations used here seem to be depreciated, at least in the newer versions that I'm using. My issue is one of keytab encryption. I generated a keytab using ktpass.exe on the Windows Server 2008 domain controller. I have tried DES/MD5, AES128/SHA1 and AES256/SHA1, each have been turned down by ktutil on the kerberos server (FreeBSD). Each time, it outputs the following error: ktutil: AES256/SHA1*: encryption type AES256/SHA1* not supported *Respective to encryption used.
I cannot find a list of suitable encryption schemes that ktutil will accept. The FreeBSD handbook details a means of producing a keytab file, but I'm not sure how to configure the Domain Controller to use the keytab.
View 1 Replies
View Related
Sep 20, 2010
Currently I have a 500gb drive with Ubuntu on half of it. The other half is a soon to be Win7 install. I just picked up an identical drive for real cheap last week and I am interested in advice for going about setting up a RAID 1 for redundancy. My first road block is do I want software or hardware RAID? Is this even possible with a dualboot system? If hardware RAID is the way to go does anyone have a particular brand or model they could recommend?
View 2 Replies
View Related
Apr 8, 2011
Prior to purchasing this Toshiba L675D I was able on my old HP to explore other distros, but there seems to be some incomparability existing with this model that restricts 10.10 but accepts 10.04, kernel thing I assume. But in all other attempts to install, Mint, open Suse etc it loads the kernel then the Live CD freezes on a black screen blinking cursor. Have tried nomodeset with no success. Obviously Toshiba is no help with Linux and win 7 forum even cautions against creating an extended partition. Oh out of the box this baby had 3 primaries, one a recovery and hidden. Just an FYI
View 1 Replies
View Related
Aug 29, 2010
My Centos disk was full. when I remove all the big files, df and du command not show right size. I reboot my server and in to rescue mode, it alert "you don't have any linux partitions".How do I fix it?I not use LVM.my server mount:
/dev/sda1 on / type ext3 (rw)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
[code]....
View 3 Replies
View Related
Apr 15, 2010
I am a slackware user from slackware 9.1, these years I tried many distributions, but slackware always winner. I am familiar with server configuration and desktop setup for slackware, but I know nothing about the development model of slackware, is there a way to learn the development model of slackware?
Like, freebsd, you can checkout the kernel source, tool chains source from cvs then build it, some people will commit and check in the change sets, they have a mailing list for developers to talk about the development, for users to learn what are they doing now.
I know there are many README or Documents for slackware, but I donot know anything about internal development, is there a way? a mailing list? a source repository(cvs/git or others?)
View 5 Replies
View Related
Jun 8, 2010
am thinking of buying new server that is tested in slackware for my company. as file server web server mail server and a capability of multiple hardisk (sas technology)to be use as san server in the future any recommadation?
View 1 Replies
View Related
Oct 14, 2010
Is it possible I can install CentOS 5.3 version on IBM iSeries/eServer model 525/520.
how I will be able to perform this installation.
View 1 Replies
View Related
Sep 5, 2010
I have an old external serial modem without indication of make and model.
View 2 Replies
View Related
Jul 19, 2010
I am currently developing an small program in Python and at a certain point, I need to do some "stuff" depending on the monitors that are connected to the computer. I have an intel vga card with two outputs. I want to do something if one of the screens connected to the output is a "Dell", another something if one of the monitors is a "Nec" and another something if both monitors are connected.
So the question is: Is there any way to get the vendor/model of the monitors currently connected to the computer? I did a little bit testing. I plugged both screens to my vga card (the Nec to the HDMI output and the Dell to the DVI output), and the gnome-display-properties tool properly detected the model, size, resolution... of both screens connected. I would like to know if I can use a command on bash (or a library in python) to get the same information.
The /var/log/Xorg.0.log also shows properly:
(II) intel(0): EDID vendor "NEC", prod id 26345
(II) intel(0): I2C device "HDMIDDC_C:E-EDID segment register" registered at address 0x60.
(II) intel(0): I2C device "HDMIDDC_C:ddc2" registered at address 0xA0.
(II) intel(0): EDID vendor "DEL", prod id 41027
I could always parse that file, but it is not the best solution. I also tried the ddprobe command, but for some reason, it only detects one of the screens (the Dell, connected to a DVI cable). I am currently using Ubuntu 9.04 and Python2.4 (just in case it's relevant).
View 7 Replies
View Related
Feb 7, 2011
I have Ubuntu 10.04 LTS. I have a script that prompts you to insert a USB HDD/memory stick then it needs to determine its serial and model and save it to a file. The script can determine the device file of the inserted drive(ex: /dev/sdc) and if hdparm -I /dev/sdc works then all is ok. The problem is that not all USB HDDs/memory sticks work with hdparm. When it does not work I get the following:
Code:
root@izghitu:~# hdparm -I /dev/sdc
/dev/sdc:
HDIO_DRIVE_CMD(identify) failed: Invalid exchange
The other command to get the serial for USB devices of any kind is lsusb -v or lsusb -D /path/to/bus/address The problem of the first one(lsusb -v) is that it lists all USB devices and there's no way for me to script it to detect the inserted USB drive/memory stick and get the serial/model for it. The problem with the second one(lsusb -D /path/to/bus/address) is that I do not know how to get the correct USB bus address of the inserted USB drive/memory stick.
Is there any other way to get the serial number/model of a USB HDD/memory stick using its /dev/sdc device file? Is there any way to link the /dev/sdc device file with the /dev/bus/usb/address device file so I can then use the lsusb -D command to get the required info?
View 3 Replies
View Related
Jan 11, 2011
I have an Epson Workforce 520 all in one that sane recognizes. If I tell sane ( via Simple Scan in Mint Linux ) to scan it scans only from the flatbed. I'm pretty lost here. I want to scan from the document feeder. Do I need to get another model? If so, which would work. I searched the sane hardware compatibility list, but it is not easy to determine if a scanner's ADF works from that list..
View 1 Replies
View Related
Jun 20, 2010
i have install a new qlogic hba card, but i dont know its model
View 1 Replies
View Related
Mar 25, 2010
I am trying to find a way to pull Node Pointers out of the model, for use in other areas of the program. The solution is probably simple but I haven't had any luck finding it.
Model for a QTreeView:
Code:
class testModel : public QAbstractItemModel
{
public:
testModel();
~testModel();
[code]....
View 2 Replies
View Related
Jan 27, 2011
Is there any command to find system make and model in linux like how solaris shows "Netra X4200" when we give command "uname -a"
View 1 Replies
View Related
May 27, 2009
I have installed fedora 10 with mythtv. at some point the remote control was working then i had to reimage the computer again. Now the remote wont work Im not a linux guru this is why is so dificult.
i know that it is installed because i do this lsusb and get
Bus 001 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub
Bus 005 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub
Bus 004 Device 003: ID 413c:2105 Dell Computer Corp.
Bus 004 Device 002: ID 0471:0815 Philips eHome Infrared Receiver
Bus 004 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub
[Code]...
View 1 Replies
View Related
