ach-master.git
7 years agoAdd intermediate aes192-ctr
Axel Huebl [Sun, 5 Jan 2014 00:04:25 +0000 (01:04 +0100)]
Add intermediate aes192-ctr

Won't harm and increases available ciphers

7 years agospaces -> tabs
Axel Huebl [Sat, 4 Jan 2014 23:58:18 +0000 (00:58 +0100)]
spaces -> tabs

7 years agoOptional: Whitelist static users for login
Axel Huebl [Sat, 4 Jan 2014 23:46:55 +0000 (00:46 +0100)]
Optional: Whitelist static users for login

Quite conservative but useful for systems with a very limited number
of allowed system users for SSH.

7 years agoTested with OpenSSH 6.4, too
Axel Huebl [Sat, 4 Jan 2014 23:41:54 +0000 (00:41 +0100)]
Tested with OpenSSH 6.4, too

7 years agoShould really learn the alphabet...
Axel Huebl [Sat, 4 Jan 2014 19:00:12 +0000 (20:00 +0100)]
Should really learn the alphabet...

7 years agoAdded myself to the reviewers list
Axel Huebl [Sat, 4 Jan 2014 18:59:00 +0000 (19:59 +0100)]
Added myself to the reviewers list

7 years agoSSHd: add ETM MACs for SHA2
Axel Huebl [Fri, 3 Jan 2014 00:25:28 +0000 (01:25 +0100)]
SSHd: add ETM MACs for SHA2

Should be in since 6.1 (but tested with OpenSSH 6.4).

7 years agoMerge pull request #31 from ax3l/external-links
AaronK [Thu, 2 Jan 2014 21:56:35 +0000 (13:56 -0800)]
Merge pull request #31 from ax3l/external-links

External links

7 years agoMerge pull request #30 from ax3l/text-apachehttps
AaronK [Thu, 2 Jan 2014 21:55:01 +0000 (13:55 -0800)]
Merge pull request #30 from ax3l/text-apachehttps

Replace httpS with bold s as in #22 for nginx

7 years agoremoved line vty stuff in ASA (thanks mario zabrocki)
Aaron Zauner [Thu, 2 Jan 2014 18:29:46 +0000 (19:29 +0100)]
removed line vty stuff in ASA (thanks mario zabrocki)

7 years agoMove setting to hypersetup
Axel Huebl [Thu, 2 Jan 2014 16:12:48 +0000 (17:12 +0100)]
Move setting to hypersetup

7 years agoOpen External Links in New Window
Axel Huebl [Thu, 2 Jan 2014 16:06:55 +0000 (17:06 +0100)]
Open External Links in New Window

I am viewing this document with Firefox's internal pdf viewer, which results in
opening all external links in the same tab as the document itself.

See https://en.wikibooks.org/wiki/LaTeX/Hyperlinks#Customization for the option
pdfnewwindow "define if a new window should get opened when a link leads out of
the current document".

I am not sure of one should add this option to
  fonts/opensans/doc/fonts/opensans/opensans.tex
too.

7 years agoReplace httpS with bold s as in #22 for nginx
Axel Huebl [Thu, 2 Jan 2014 16:00:06 +0000 (17:00 +0100)]
Replace httpS with bold s as in #22 for nginx

- grep'ed last two occurences of httpS://
- update to same style as in nginx section (pull #22)

7 years agoMerge pull request #29 from ax3l/master
AaronK [Thu, 2 Jan 2014 15:41:09 +0000 (07:41 -0800)]
Merge pull request #29 from ax3l/master

Disclaimer: Replace Heise Link (en)

7 years agoDisclaimer: Replace Heise Link (en)
Axel Huebl [Thu, 2 Jan 2014 15:36:08 +0000 (16:36 +0100)]
Disclaimer: Replace Heise Link (en)

Replace the link to the german homepage of heise online with the english one.

7 years agoMerge pull request #28 from Bananeweizen/patch-1
AaronK [Thu, 2 Jan 2014 15:34:12 +0000 (07:34 -0800)]
Merge pull request #28 from Bananeweizen/patch-1

Update README.md

7 years agoMerge pull request #24 from qbi/patch-1
AaronK [Thu, 2 Jan 2014 15:33:30 +0000 (07:33 -0800)]
Merge pull request #24 from qbi/patch-1

Corrected small typo

7 years agoMerge pull request #25 from qbi/patch-2
AaronK [Thu, 2 Jan 2014 15:33:14 +0000 (07:33 -0800)]
Merge pull request #25 from qbi/patch-2

TODO: Test with non-Debian-OS

7 years agoTODO: add timestamp and git shorthash to title page
Pepi Zawodsky [Thu, 2 Jan 2014 14:56:49 +0000 (15:56 +0100)]
TODO: add timestamp and git shorthash to title page

7 years agoAdded requested export formats, TXT, HTML and EPUB
Pepi Zawodsky [Thu, 2 Jan 2014 14:50:10 +0000 (15:50 +0100)]
Added requested export formats, TXT, HTML and EPUB

7 years agotry to remove the "DRAFT" letters across the document
Aaron Kaplan [Thu, 2 Jan 2014 14:05:34 +0000 (15:05 +0100)]
try to remove the "DRAFT" letters across the document
document open TODOs

7 years agoUpdate README.md
Bananeweizen [Thu, 2 Jan 2014 13:55:17 +0000 (14:55 +0100)]
Update README.md

Fix word repetition, typography and markdown formatting.

7 years agofix openvpn easy-rsa wording. It was an example, not a definitive number. Thx riepl...
Aaron Kaplan [Thu, 2 Jan 2014 13:35:06 +0000 (14:35 +0100)]
fix openvpn easy-rsa wording. It was an example, not a definitive number. Thx riepl@cert.at!

7 years agodocument how to check how much entropy is avail on linux
Aaron Kaplan [Thu, 2 Jan 2014 13:20:07 +0000 (14:20 +0100)]
document how to check how much entropy is avail on linux

7 years agoMerge pull request #27 from vzsze/patch-1
AaronK [Thu, 2 Jan 2014 10:41:40 +0000 (02:41 -0800)]
Merge pull request #27 from vzsze/patch-1

Fix typo in "How to test" commandline.

7 years agoMerge pull request #26 from Astranox/master
AaronK [Thu, 2 Jan 2014 10:37:10 +0000 (02:37 -0800)]
Merge pull request #26 from Astranox/master

fix command for checking for incoming

7 years agoFix typo in "How to test" commandline.
Rolf Kutz [Thu, 2 Jan 2014 00:28:56 +0000 (01:28 +0100)]
Fix typo in "How to test" commandline.

7 years agofix command for checking for incoming
David Kaufmann [Wed, 1 Jan 2014 22:13:09 +0000 (23:13 +0100)]
fix command for checking for incoming
tls-connections in postfix
also this only works with smtpd_tls_loglevel = 1,
even on postfix 2.9.6-2 (debian wheezy)

7 years agoTODO: Test with non-Debian-OS
Jens Kubieziel [Wed, 1 Jan 2014 21:59:39 +0000 (22:59 +0100)]
TODO: Test with non-Debian-OS

Right now the configs seem to be only tested with Debian GNU/Linux. However Fedora, SUSE etc. bring different versions of OpenSSL. So they might not work there.

7 years agoCorrected small typo
Jens Kubieziel [Wed, 1 Jan 2014 21:57:41 +0000 (22:57 +0100)]
Corrected small typo

7 years agoMerge github.com:BetterCrypto/Applied-Crypto-Hardening
Aaron Kaplan [Wed, 1 Jan 2014 17:24:36 +0000 (18:24 +0100)]
Merge github.com:BetterCrypto/Applied-Crypto-Hardening

7 years agoMerge pull request #22 from mrothe/patch-1
AaronK [Wed, 1 Jan 2014 17:23:38 +0000 (09:23 -0800)]
Merge pull request #22 from mrothe/patch-1

webserver.tex: use faster redirect for nginx

7 years agowebserver.tex: use faster redirect for nginx
mrothe [Wed, 1 Jan 2014 14:39:24 +0000 (15:39 +0100)]
webserver.tex: use faster redirect for nginx

Doing a redirect by return is faster than what was previously used.
Also replace in the text the capital S by a bold one in "https://"

7 years agorephrase todo
Aaron Kaplan [Tue, 31 Dec 2013 20:33:59 +0000 (21:33 +0100)]
rephrase todo

7 years agoproxy solutions: deleted repeating text
Aaron Kaplan [Tue, 31 Dec 2013 20:32:04 +0000 (21:32 +0100)]
proxy solutions: deleted repeating text
mailservers: formatting
im: it was not clear where the version string starts and ends

7 years agoGrammar, spelling
Aaron Kaplan [Tue, 31 Dec 2013 20:26:10 +0000 (21:26 +0100)]
Grammar, spelling

7 years agotypos
Aaron Kaplan [Tue, 31 Dec 2013 20:24:18 +0000 (21:24 +0100)]
typos

7 years agostyle/grammar
Aaron Kaplan [Tue, 31 Dec 2013 20:15:55 +0000 (21:15 +0100)]
style/grammar

7 years agoChange Debian Wheezy -> Debian 7.0 as recommended by Cyril (see mailing list, 30th...
Aaron Kaplan [Tue, 31 Dec 2013 16:41:17 +0000 (17:41 +0100)]
Change Debian Wheezy -> Debian 7.0 as recommended by Cyril (see mailing list, 30th of Dec 2013)

7 years agoMerge pull request #21 from cy8aer/lighty-corrections
AaronK [Tue, 31 Dec 2013 13:40:32 +0000 (05:40 -0800)]
Merge pull request #21 from cy8aer/lighty-corrections

syntax error on Lighty 1.4.33-1+nmu2 (Debian Sallie):

7 years agosyntax error on Lighty 1.4.33-1+nmu2 (Debian Sallie):
Thomas Renard [Tue, 31 Dec 2013 12:41:39 +0000 (13:41 +0100)]
syntax error on Lighty 1.4.33-1+nmu2 (Debian Sallie):

" instead of " for ssl.cipher-list

7 years agonote to self about RFC for storing keys in DNS
Aaron Kaplan [Tue, 31 Dec 2013 10:24:43 +0000 (11:24 +0100)]
note to self about RFC for storing keys in DNS

7 years agoupdate TODO . Thx Alexandre for the good ideas.
Aaron Kaplan [Tue, 31 Dec 2013 10:21:58 +0000 (11:21 +0100)]
update TODO . Thx Alexandre for the good ideas.
removed reviewers.tex and an old version
reviewers.tex is now in acknowledgement.tex

7 years agooops, reviewers moved to acknowledgement.tex
Aaron Kaplan [Tue, 31 Dec 2013 10:18:30 +0000 (11:18 +0100)]
oops, reviewers moved to acknowledgement.tex

7 years agoadd reviewers. Somehow Berg's changes in
Aaron Kaplan [Tue, 31 Dec 2013 10:09:14 +0000 (11:09 +0100)]
add reviewers. Somehow Berg's changes in
https://github.com/BetterCrypto/Applied-Crypto-Hardening/commit/ed1e29456746015130886b11b6a20b81440fc460
git overwritten again. RE-do them

7 years agoMerge pull request #20 from schwindp/master
AaronK [Tue, 31 Dec 2013 08:45:26 +0000 (00:45 -0800)]
Merge pull request #20 from schwindp/master

small typo in further_research.tex

7 years agosmall typo
Peter Schwindt [Tue, 31 Dec 2013 08:36:08 +0000 (09:36 +0100)]
small typo

7 years agoremoved additional settings text due to serverkeybits not being used
Aaron Zauner [Mon, 30 Dec 2013 22:40:14 +0000 (23:40 +0100)]
removed additional settings text due to serverkeybits not being used

7 years agofixed a few errors in sshd_config - thanx kurt roeckx, hugh o\'brien
Aaron Zauner [Mon, 30 Dec 2013 19:12:02 +0000 (20:12 +0100)]
fixed a few errors in sshd_config - thanx kurt roeckx, hugh o\'brien

7 years agoMerge pull request #19 from schwindp/master
AaronK [Sun, 29 Dec 2013 12:22:47 +0000 (04:22 -0800)]
Merge pull request #19 from schwindp/master

Update im.tex (small typos, more \url{}). Thx Peter!

7 years agoUpdate im.tex (small typos, more \url{})
Peter Schwindt [Sun, 29 Dec 2013 11:59:25 +0000 (12:59 +0100)]
Update im.tex (small typos, more \url{})

use moar \url{}

7 years agoinserted missing half sentence
cm [Sat, 28 Dec 2013 15:57:11 +0000 (16:57 +0100)]
inserted missing half sentence

7 years agofix references of things which moved to the appendix
Aaron Kaplan [Sat, 28 Dec 2013 15:19:47 +0000 (16:19 +0100)]
fix references of things which moved to the appendix

7 years agofix references to appendix A (previously section "tools")
Aaron Kaplan [Sat, 28 Dec 2013 15:15:39 +0000 (16:15 +0100)]
fix references to appendix A (previously section "tools")

7 years agoMerge pull request #18 from krono/latex-cleanups
AaronK [Sat, 28 Dec 2013 15:10:12 +0000 (07:10 -0800)]
Merge pull request #18 from krono/latex-cleanups

Latex cleanups. Looks good, checked by Aaron and Eva. These changes deal with latex code per se. Not with the content.

7 years agoMerge github.com:BetterCrypto/Applied-Crypto-Hardening
Aaron Kaplan [Sat, 28 Dec 2013 15:08:35 +0000 (16:08 +0100)]
Merge github.com:BetterCrypto/Applied-Crypto-Hardening

7 years agomake it a subsection*
Tobias Pape [Sat, 28 Dec 2013 00:18:34 +0000 (01:18 +0100)]
make it a subsection*

7 years agoFront image is unreferenced, hence no figure.
Tobias Pape [Fri, 27 Dec 2013 23:46:10 +0000 (00:46 +0100)]
Front image is unreferenced, hence no figure.

7 years agoUse multicol in further research
Tobias Pape [Fri, 27 Dec 2013 23:45:33 +0000 (00:45 +0100)]
Use multicol in further research

7 years agolabels and sections
Tobias Pape [Fri, 27 Dec 2013 23:44:54 +0000 (00:44 +0100)]
labels and sections

add more labels to sections
make appendix stuff chapters

7 years agoreplace dot-generated reading guide by tikz one,
Tobias Pape [Fri, 27 Dec 2013 23:28:32 +0000 (00:28 +0100)]
replace dot-generated reading guide by tikz one,

can use hyperlinks there

7 years agomake the appendix an appendix.
Tobias Pape [Fri, 27 Dec 2013 22:28:50 +0000 (23:28 +0100)]
make the appendix an appendix.

7 years agounify cite commands to ~\cite{foo}.
Tobias Pape [Fri, 27 Dec 2013 22:28:33 +0000 (23:28 +0100)]
unify cite commands to ~\cite{foo}.

On the way, use things like ~\cite[page n]{foo}

7 years agoadd me to ack, simplify ack by using multicol
Tobias Pape [Fri, 27 Dec 2013 21:58:08 +0000 (22:58 +0100)]
add me to ack, simplify ack by using multicol

7 years agoadd emacs/AUCTeX multifile comments as needed.
Tobias Pape [Fri, 27 Dec 2013 21:36:23 +0000 (22:36 +0100)]
add emacs/AUCTeX multifile comments as needed.

Actually just for me, but does not harm anyone.

7 years agofix \input file names
Tobias Pape [Fri, 27 Dec 2013 21:36:08 +0000 (22:36 +0100)]
fix \input file names

7 years agoCapture Ciphersuite in a Macro for later use
Tobias Pape [Fri, 27 Dec 2013 21:35:45 +0000 (22:35 +0100)]
Capture Ciphersuite in a Macro for later use

7 years agofine tuning style
Tobias Pape [Fri, 27 Dec 2013 21:34:51 +0000 (22:34 +0100)]
fine tuning style

7 years agopimp listings. arrow at line breaks
Tobias Pape [Fri, 27 Dec 2013 21:09:53 +0000 (22:09 +0100)]
pimp listings. arrow at line breaks

7 years agomake proper use of draft mode
Tobias Pape [Fri, 27 Dec 2013 21:09:17 +0000 (22:09 +0100)]
make proper use of draft mode

7 years agoremove excessive vskips. handled by parskip
Tobias Pape [Fri, 27 Dec 2013 21:08:06 +0000 (22:08 +0100)]
remove excessive vskips. handled by parskip

7 years agoremove unused comments, move \pagestyle to style.tex
Tobias Pape [Fri, 27 Dec 2013 19:20:13 +0000 (20:20 +0100)]
remove unused comments, move \pagestyle to style.tex

7 years agoremove superfluous \date
Tobias Pape [Fri, 27 Dec 2013 19:19:44 +0000 (20:19 +0100)]
remove superfluous \date

7 years agoThis no longer looks like the howtotex template
Tobias Pape [Fri, 27 Dec 2013 18:57:29 +0000 (19:57 +0100)]
This no longer looks like the howtotex template

7 years agosplit out defined commands to common/commands.tex
Tobias Pape [Fri, 27 Dec 2013 18:55:54 +0000 (19:55 +0100)]
split out defined commands to common/commands.tex

7 years agosplit out stylistic config into common/style.tex
Tobias Pape [Fri, 27 Dec 2013 18:42:34 +0000 (19:42 +0100)]
split out stylistic config into common/style.tex

7 years agomove package loadings to system.tex
Tobias Pape [Fri, 27 Dec 2013 18:33:47 +0000 (19:33 +0100)]
move package loadings to system.tex

7 years agosplit out system-level config into common/system.tex
Tobias Pape [Fri, 27 Dec 2013 18:22:39 +0000 (19:22 +0100)]
split out system-level config into common/system.tex

7 years agosplit hyperref invocation. allow for unicode. make urls sans-serif
Tobias Pape [Fri, 27 Dec 2013 18:17:05 +0000 (19:17 +0100)]
split hyperref invocation. allow for unicode. make urls sans-serif

7 years agostyle page footer via koma
Tobias Pape [Fri, 27 Dec 2013 18:16:32 +0000 (19:16 +0100)]
style page footer via koma

7 years agoremove caption package and use already present koma config
Tobias Pape [Fri, 27 Dec 2013 18:04:58 +0000 (19:04 +0100)]
remove caption package and use already present koma config

7 years agosimplify title.tex
Tobias Pape [Fri, 27 Dec 2013 17:57:51 +0000 (18:57 +0100)]
simplify title.tex

7 years agouse scrpage2 for now
Tobias Pape [Fri, 27 Dec 2013 17:49:23 +0000 (18:49 +0100)]
use scrpage2 for now

7 years agoadd scrhack to make koma play nice with listings/float
Tobias Pape [Fri, 27 Dec 2013 17:45:40 +0000 (18:45 +0100)]
add scrhack to make koma play nice with listings/float

7 years agoremove long deprecated \it in favor of \emph
Tobias Pape [Fri, 27 Dec 2013 17:41:11 +0000 (18:41 +0100)]
remove long deprecated \it in favor of \emph

7 years agomove important packages up and add fixltx2e
Tobias Pape [Fri, 27 Dec 2013 17:37:01 +0000 (18:37 +0100)]
move important packages up and add fixltx2e

7 years agoremove another unused ams package
Tobias Pape [Fri, 27 Dec 2013 17:36:28 +0000 (18:36 +0100)]
remove another unused ams package

7 years agoremove unused or overly verbose comments
Tobias Pape [Fri, 27 Dec 2013 17:33:16 +0000 (18:33 +0100)]
remove unused or overly verbose comments

7 years agouse koma parskip option in favor of setting parindent the hard way
Tobias Pape [Fri, 27 Dec 2013 17:28:51 +0000 (18:28 +0100)]
use koma parskip option in favor of setting parindent the hard way

7 years agosplit koma-options off the documentclass
Tobias Pape [Fri, 27 Dec 2013 17:25:10 +0000 (18:25 +0100)]
split koma-options off the documentclass

7 years agoavoid ./ in paths
Tobias Pape [Fri, 27 Dec 2013 17:24:40 +0000 (18:24 +0100)]
avoid ./ in paths

7 years agoinclude (commented) showframe pkg, helps layout debugging
Tobias Pape [Fri, 27 Dec 2013 17:24:01 +0000 (18:24 +0100)]
include (commented) showframe pkg, helps layout debugging

7 years agouse scrpage2 or scrlayer-scrpage instead of fancyhdr, which works better with koma...
Tobias Pape [Fri, 27 Dec 2013 17:23:05 +0000 (18:23 +0100)]
use scrpage2 or scrlayer-scrpage instead of fancyhdr, which works better with koma-script

7 years agoremoved unused titling
Tobias Pape [Fri, 27 Dec 2013 17:22:07 +0000 (18:22 +0100)]
removed unused titling

7 years agoremove unused lettrine/initial
Tobias Pape [Fri, 27 Dec 2013 16:24:38 +0000 (17:24 +0100)]
remove unused lettrine/initial

7 years agoremove unused ams packages
Tobias Pape [Fri, 27 Dec 2013 16:21:06 +0000 (17:21 +0100)]
remove unused ams packages

7 years agofix underscore
Tobias Pape [Fri, 27 Dec 2013 16:04:39 +0000 (17:04 +0100)]
fix underscore

7 years agotitlesec unneeded; color set via komafont
Tobias Pape [Fri, 27 Dec 2013 16:04:19 +0000 (17:04 +0100)]
titlesec unneeded; color set via komafont

7 years agosimplify "bold section titles"
Tobias Pape [Fri, 27 Dec 2013 15:52:52 +0000 (16:52 +0100)]
simplify "bold section titles"

7 years agoenable searchable/selectable pdfs
Tobias Pape [Fri, 27 Dec 2013 15:48:15 +0000 (16:48 +0100)]
enable searchable/selectable pdfs