Comparing some tools to make it less dangerous to run code you did not write. Sandboxing seems to be the best way to go like Deno and wasmtime do. But what about Python, Node.js, etc.?
firejail seems to be have hit the sweet spot between “secure” and “convenient”.
Category Archives: Security
HTTPS on Synology’s DSM
My NAS is a Synology DS212 and it can do https. But to make it use my own CA’s certificate, a bit extra work is needed: Add my own root CA’s Certificate Use our own TLS Certificate Create certificate DSM → Control Panel → Security → Certificate → Add. Then Configure and use the newContinue reading “HTTPS on Synology’s DSM”
Creating TLS Certificates for Home Use – Part 2
Part 1 was technically correct, but turns out that it’s too manual to be used by me: you have to do it only once a while (once a year, because certs might have a 1 year validity time) you don’t do it if it’s a lot of extra manual work So here is Part 2Continue reading “Creating TLS Certificates for Home Use – Part 2”
cipherl.ist
As someone who sets up secure settings for web server and similar up once in a while, this is nice: https://cipherl.ist Found at https://www.reddit.com/r/devops/comments/gu9r8e/been_a_bit_bummed_out_that_cipherlist_was_shut/
Creating TLS Certificates for Home Use
I used to create self-signed certificates, but they have the problem that I have to accept them the first time when using a browser, and when openssl library connects, I have to disable the certificate verification in curl, Node.js etc. The proper fix is to create your own CA which your computers trust. Then signingContinue reading “Creating TLS Certificates for Home Use”
Creating self-signed Certs in 2020
It’s simpler than it used to be: Source: https://dev.to/suntong/how-to-create-a-self-signed-certificate-1aib
