Security
- Today I faced the first consequences of my TXT & Let’s Encrypt strict policy
- Creating a very specific TXT only nsupdate connection for Let’s Encrypt
- ssh with 2FA
- Which hosts have this vuln package installed? SamDrucker knows.
- scripts for monitoring vulns in FreeBSD jails
- ACME domain alias mode
- Using mtqq to create a notification network: mosquitto, mqttwarn, hare, and hared
- No more certificate fingerprints – only sasl auth instead
- Postfix suddenly starts rejecting email it had been accepting
- Getting acme.sh to renew certs via cronjob on FreeBSD
- subversion via ssh passphrase-less key
- cert-puller: using anvil to pull down & install new certificates, then restart services
- anvil – copying the certificates to the website
- cert-shifter: copying certificates from acme.sh to a fresh directory
- Introducing anvil – Tools for distributing ssl certificates
- When mv can’t mv – Let’s Encrypt
- acme.sh: getting free SSL certificates – installation configuration on FreeBSD
- Did your system tell you about security updates?
- mail.app on Apple OSX and IOS fail when connecting to 4096-bit StartCOM certificates