Aaron Kaplan [Mon, 23 Dec 2013 19:31:15 +0000 (20:31 +0100)]
move .tex files into the theory subdirectory
Aaron Kaplan [Mon, 23 Dec 2013 19:30:53 +0000 (20:30 +0100)]
remove .out file
Aaron Kaplan [Mon, 23 Dec 2013 18:24:04 +0000 (19:24 +0100)]
typo
Aaron Kaplan [Mon, 23 Dec 2013 18:08:32 +0000 (19:08 +0100)]
typo
Aaron Kaplan [Mon, 23 Dec 2013 18:07:16 +0000 (19:07 +0100)]
reminder of a todo
Aaron Kaplan [Mon, 23 Dec 2013 18:06:59 +0000 (19:06 +0100)]
experiment with font color for sections
Aaron Kaplan [Mon, 23 Dec 2013 16:13:30 +0000 (17:13 +0100)]
formatting, structure
Aaron Kaplan [Mon, 23 Dec 2013 15:58:30 +0000 (16:58 +0100)]
re-formatting mailservers chapter
Aaron Kaplan [Mon, 23 Dec 2013 15:58:20 +0000 (16:58 +0100)]
reformatting ssh
Aaron Kaplan [Mon, 23 Dec 2013 15:45:47 +0000 (16:45 +0100)]
use subsubsection instead of description for ssh.tex
Aaron Kaplan [Mon, 23 Dec 2013 15:30:44 +0000 (16:30 +0100)]
fix url
formattting
Aaron Kaplan [Mon, 23 Dec 2013 15:28:05 +0000 (16:28 +0100)]
add todo
Aaron Kaplan [Mon, 23 Dec 2013 15:10:24 +0000 (16:10 +0100)]
add a section on who should read this paper and on related publications
Aaron Kaplan [Mon, 23 Dec 2013 15:09:29 +0000 (16:09 +0100)]
Add ENISA's report
Aaron Kaplan [Mon, 23 Dec 2013 14:53:02 +0000 (15:53 +0100)]
formatting of quotes
Aaron Kaplan [Mon, 23 Dec 2013 14:52:39 +0000 (15:52 +0100)]
formatting of quotes
Aaron Kaplan [Mon, 23 Dec 2013 14:52:16 +0000 (15:52 +0100)]
include very first version of theory.tex
Aaron Kaplan [Mon, 23 Dec 2013 14:51:55 +0000 (15:51 +0100)]
initial version of theory.tex
Aaron Kaplan [Mon, 23 Dec 2013 13:49:35 +0000 (14:49 +0100)]
add one sentence: request feedback from readers
Aaron Kaplan [Mon, 23 Dec 2013 13:49:23 +0000 (14:49 +0100)]
typos
Aaron Kaplan [Mon, 23 Dec 2013 13:36:57 +0000 (14:36 +0100)]
add guardian article
Aaron Kaplan [Mon, 23 Dec 2013 13:36:27 +0000 (14:36 +0100)]
add potential epigraph
re-phrased things a bit
Aaron Kaplan [Mon, 23 Dec 2013 13:36:15 +0000 (14:36 +0100)]
should -> might want to
Aaron Kaplan [Mon, 23 Dec 2013 13:20:47 +0000 (14:20 +0100)]
simply simply, remove one
Aaron Kaplan [Mon, 23 Dec 2013 13:05:41 +0000 (14:05 +0100)]
branch
Aaron Kaplan [Mon, 23 Dec 2013 13:05:09 +0000 (14:05 +0100)]
re-phrasing how to read
Aaron Kaplan [Mon, 23 Dec 2013 12:49:30 +0000 (13:49 +0100)]
epigraph
Aaron Kaplan [Sun, 22 Dec 2013 23:07:23 +0000 (00:07 +0100)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
Aaron Kaplan [Sun, 22 Dec 2013 23:07:15 +0000 (00:07 +0100)]
epigraph
Eva Seidl [Sun, 22 Dec 2013 15:03:03 +0000 (16:03 +0100)]
small improvements to fontSetup.md
Pepi Zawodsky [Sun, 22 Dec 2013 14:32:15 +0000 (15:32 +0100)]
Improved markdown formatting
Eva Seidl [Sun, 22 Dec 2013 13:40:23 +0000 (14:40 +0100)]
added font setup info
Eva Seidl [Sun, 22 Dec 2013 12:51:11 +0000 (13:51 +0100)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
Eva Seidl [Sun, 22 Dec 2013 12:50:06 +0000 (13:50 +0100)]
Added Font Open Sans. Added custom colours.
Adi Kriegisch [Thu, 19 Dec 2013 23:12:33 +0000 (00:12 +0100)]
removed mentioning SRP in key exchange section
Aaron Zauner [Thu, 19 Dec 2013 22:25:28 +0000 (23:25 +0100)]
what? DJB doesnt mention NSA directly. thats a critique on NIST, the authors are not even clear in all of the cases - which yea, can mean a lot, but doesnt have to be NSA
Aaron Zauner [Thu, 19 Dec 2013 22:17:31 +0000 (23:17 +0100)]
removed typo
Aaron Zauner [Thu, 19 Dec 2013 22:16:16 +0000 (23:16 +0100)]
PostgreSQL. way better now :)
Aaron Zauner [Wed, 18 Dec 2013 08:50:14 +0000 (09:50 +0100)]
rephrase, get rid of typos
David Durvaux [Wed, 18 Dec 2013 06:12:06 +0000 (07:12 +0100)]
Putting something on SILC
Aaron Kaplan [Wed, 18 Dec 2013 01:01:40 +0000 (02:01 +0100)]
oops. Wrong level. Not it's ok.
Aaron Kaplan [Wed, 18 Dec 2013 00:59:42 +0000 (01:59 +0100)]
move hardening a PKI up one level to \section.
Tobias Dussa [Tue, 17 Dec 2013 23:27:57 +0000 (00:27 +0100)]
Streamlined the PKI section a bit and made some things clearer.
Aaron Kaplan [Tue, 17 Dec 2013 23:11:24 +0000 (00:11 +0100)]
of course, we also have to \input the _generated.tex files
Tobias Dussa [Tue, 17 Dec 2013 21:43:00 +0000 (22:43 +0100)]
Added gitinfo stuff (non-standard packages).
Tobias Dussa [Tue, 17 Dec 2013 21:27:55 +0000 (22:27 +0100)]
Took out unused (and non-standard) LaTeX package.
Tobias Dussa [Tue, 17 Dec 2013 21:26:44 +0000 (22:26 +0100)]
Fixed include problem in howtoread.
Aaron Zauner [Tue, 17 Dec 2013 19:13:54 +0000 (20:13 +0100)]
SHA digest refers to the use of the hash function as message digest, SHA-1 is used as PRF as well in cipher suites :
Aaron Zauner [Tue, 17 Dec 2013 19:11:17 +0000 (20:11 +0100)]
rephrasing and confusion.
Aaron Zauner [Tue, 17 Dec 2013 19:04:45 +0000 (20:04 +0100)]
hence, we can get rid of this TODO here as well, i guess
Aaron Zauner [Tue, 17 Dec 2013 19:04:04 +0000 (20:04 +0100)]
mv "strong enough" -> "strong", remove comment on GCM since GCM is a option. CTR mode would actually be faster
Aaron Kaplan [Tue, 17 Dec 2013 17:28:14 +0000 (18:28 +0100)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
Aaron Kaplan [Tue, 17 Dec 2013 17:27:47 +0000 (18:27 +0100)]
added section on SHA by Florian Mendel. Thank you
cm [Tue, 17 Dec 2013 15:57:06 +0000 (16:57 +0100)]
reference for IPSEC PSK lenght
Aaron Zauner [Tue, 17 Dec 2013 15:48:24 +0000 (16:48 +0100)]
unified text on testing ssh KEX setup
Aaron Zauner [Tue, 17 Dec 2013 15:42:50 +0000 (16:42 +0100)]
added Cisco ASA and IOS SSH section written by kasten iwen. thanks!
Aaron Kaplan [Tue, 17 Dec 2013 15:01:51 +0000 (16:01 +0100)]
typo die die die
Aaron Zauner [Tue, 17 Dec 2013 13:56:27 +0000 (14:56 +0100)]
remove explicit mention of ssllabs since ssltest and sslyze can also be used as well as other tools
Aaron Zauner [Tue, 17 Dec 2013 13:51:13 +0000 (14:51 +0100)]
add CIPHERSTRINGB to imapd.conf
Aaron Zauner [Tue, 17 Dec 2013 13:46:59 +0000 (14:46 +0100)]
PKI: CA.pl is debian/ubuntu. specific, no such thing on RHEL or SLES or EL
Aaron Zauner [Tue, 17 Dec 2013 13:38:29 +0000 (14:38 +0100)]
ensure \newpage for reviewers and further research section, add label
Aaron Zauner [Tue, 17 Dec 2013 13:23:18 +0000 (14:23 +0100)]
clarify incorrect issuing by CAs
Aaron Zauner [Tue, 17 Dec 2013 13:20:32 +0000 (14:20 +0100)]
extended and corrected part on PKI/PKI hardening, added further research and references
Aaron Zauner [Tue, 17 Dec 2013 12:50:18 +0000 (13:50 +0100)]
forgot "::
Aaron Zauner [Tue, 17 Dec 2013 12:49:16 +0000 (13:49 +0100)]
modify pound config to exclude SSLv3 but include our cipherstringb
Aaron Zauner [Tue, 17 Dec 2013 12:46:15 +0000 (13:46 +0100)]
s/choices/options + \n
Aaron Zauner [Tue, 17 Dec 2013 12:44:57 +0000 (13:44 +0100)]
reworked proxy section, rephrased and added content
Aaron Zauner [Tue, 17 Dec 2013 12:34:09 +0000 (13:34 +0100)]
get rid of group 24 in ASA config
Aaron Zauner [Tue, 17 Dec 2013 12:26:25 +0000 (13:26 +0100)]
+for
Aaron Zauner [Tue, 17 Dec 2013 12:25:52 +0000 (13:25 +0100)]
mv AES-GCM AEAD
Aaron Zauner [Tue, 17 Dec 2013 12:24:26 +0000 (13:24 +0100)]
group 24 is also a NIST curve :(
Aaron Zauner [Tue, 17 Dec 2013 12:23:32 +0000 (13:23 +0100)]
get rid of EC groups
Aaron Zauner [Tue, 17 Dec 2013 12:18:47 +0000 (13:18 +0100)]
get rid of comment to generate dh groups
Aaron Zauner [Tue, 17 Dec 2013 12:17:36 +0000 (13:17 +0100)]
get rid of DH group 5 in ASA IKE policies
Aaron Zauner [Tue, 17 Dec 2013 12:13:08 +0000 (13:13 +0100)]
get rid of GMAC in VPN section
Aaron Zauner [Tue, 17 Dec 2013 12:08:28 +0000 (13:08 +0100)]
added cipherstring keyword to webserver section
Aaron Zauner [Tue, 17 Dec 2013 10:09:12 +0000 (11:09 +0100)]
change sentence as recommended by karsten iwen
Aaron Kaplan [Tue, 17 Dec 2013 09:51:59 +0000 (10:51 +0100)]
move the "Ne boltai" picture to page 2.
Aaron Kaplan [Tue, 17 Dec 2013 08:47:10 +0000 (09:47 +0100)]
add Ulrich Poeschl to author list, thanks for the section on proxies
Aaron Kaplan [Tue, 17 Dec 2013 03:01:57 +0000 (04:01 +0100)]
okay, we have some text on PKis now
Aaron Kaplan [Tue, 17 Dec 2013 02:48:30 +0000 (03:48 +0100)]
typo
Aaron Kaplan [Tue, 17 Dec 2013 02:47:25 +0000 (03:47 +0100)]
no such thing as complete information assurance
Aaron Kaplan [Tue, 17 Dec 2013 02:46:26 +0000 (03:46 +0100)]
slight change of format / size in the how to read section
Aaron Kaplan [Tue, 17 Dec 2013 02:45:44 +0000 (03:45 +0100)]
epigraph is nice but IMHO does not fit here
Aaron Kaplan [Tue, 17 Dec 2013 02:38:50 +0000 (03:38 +0100)]
fixed formatting of the flow graph
Aaron Kaplan [Tue, 17 Dec 2013 02:02:39 +0000 (03:02 +0100)]
update reality in TODO.txt
Aaron Kaplan [Tue, 17 Dec 2013 02:01:32 +0000 (03:01 +0100)]
add items from our TODO.txt list to the further research section.
This way, readers can know what we are still missing and where they could help out with the documentation
Aaron Kaplan [Tue, 17 Dec 2013 01:11:45 +0000 (02:11 +0100)]
comment out empty section
Aaron Kaplan [Tue, 17 Dec 2013 01:09:41 +0000 (02:09 +0100)]
proof of my mail signature. No claim without proof or reference!
Aaron Zauner [Mon, 16 Dec 2013 23:42:18 +0000 (00:42 +0100)]
add comment on RSA keys to asa section
Aaron Zauner [Mon, 16 Dec 2013 23:41:15 +0000 (00:41 +0100)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
Aaron Zauner [Mon, 16 Dec 2013 23:41:11 +0000 (00:41 +0100)]
add references and suggestions as recommended by karsten iwen to the Cisco ASA section
cm [Mon, 16 Dec 2013 23:19:51 +0000 (00:19 +0100)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
cm [Mon, 16 Dec 2013 23:19:45 +0000 (00:19 +0100)]
usepackage{longtable} for cipher suite name table
Aaron Zauner [Mon, 16 Dec 2013 23:17:21 +0000 (00:17 +0100)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
Aaron Zauner [Mon, 16 Dec 2013 23:17:17 +0000 (00:17 +0100)]
more debug output for testing openssh
Aaron Zauner [Mon, 16 Dec 2013 23:10:54 +0000 (00:10 +0100)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
Aaron Zauner [Mon, 16 Dec 2013 23:10:50 +0000 (00:10 +0100)]
add postels law as quote to propaganda page :)
cm [Mon, 16 Dec 2013 23:10:07 +0000 (00:10 +0100)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
cm [Mon, 16 Dec 2013 23:07:55 +0000 (00:07 +0100)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master