EC2 SecurityEC2 Security
One thing that concerns me about using any online service is the security. When that service is a virtual server running in another country the risks are greater than average.[...]
Category: Security
The Security Benefits of Being UnimportantThe Security Benefits of Being Unimportant
A recent news item is the “hacking” of the Yahoo mailbox used by Sarah Palin (the Republican VP candidate) [1]. It seems most likely that it was a simple social-engineering[...]
RPC and SE LinuxRPC and SE Linux
One ongoing problem with TCP networking is the combination of RPC services and port based services on the same host. If you have an RPC service that uses a port[...]
DKIM and Mailing ListsDKIM and Mailing Lists
Currently we have a problem with the Debian list server and Gmail. Gmail signs all mail that it sends with both DKIM and DomainKeys (DomainKeys has been obsoleted by DKIM[...]
Never Trust a DRM VendorNever Trust a DRM Vendor
I was reading an interesting post about predicting the results of the invasion of Iraq [1]. One of the points made was that the author rejected every statement by a[...]
OpenID DelegationOpenID Delegation
I’ve just installed Eran Sandler’s OpenID Delegation Plugin [1]. This means that I can now use my blog URL for OpenID authentication. I’ve also included the plugin in my WordPress[...]
An Update on DKIM Signing and SE Linux PolicyAn Update on DKIM Signing and SE Linux Policy
In my previous post about DKIM [1] I forgot to mention one critical item, how to get Postfix to actually talk to the DKIM milter. This wasn’t a bad thing[...]
Play Machine UpdatePlay Machine Update
My Play Machine [1] was offline for most of the past 48 hours (it’s up again now). I have upgraded the hardware for the Dom0 used to run it so[...]
Installing DKIM and Postfix in DebianInstalling DKIM and Postfix in Debian
I have just installed Domain Key Identified Mail (DKIM) [1] on my mail server. In summary the purpose is to allow public-key signing of all mail that goes out from[...]
Fixing execmod (textrel) Problems in LennyFixing execmod (textrel) Problems in Lenny
I’ve just updated my repository of SE Linux related packages for Lenny [1] to include a set of ffmpeg packages modified to not need text relocations (execmod access under SE[...]