https and the browser conspiracy

While Google promotes HTTPS Everywhere, browsers have been working with a certifying authority oligopoly for many years promoting and enforcing an industry based on perception.

https: The good and the bad

The ‘s’ in https stands for ‘secure’ and indicates use of the SSL or TLS protocol. The SSL protocol serves 2 primary purposes:

Verification: . . . → Read More: https and the browser conspiracy

HTTP DDoS: “Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)”

Our servers were attacked recently by a constant stream of HTTP POST requests. The requests were coming in from a large range of IP addresses, at a rate of about 5-10 per second, with random POST data. However, all the requests had the same UserAgent, they always accessed the non-www form of the same domain, . . . → Read More: HTTP DDoS: “Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)”

Virtualmin + SFTP + chroot

This guide examines setting up chroot’ed SFTP-only user accounts under Virtualmin.

The Rationale:

SFTP is a secure alternative to FTP and FTPS that uses SSH. With this setup, no FTP server is needed, as the native sshd server is used instead, SSH does not require an SSL certificate (like FTPS), and is usually considered more . . . → Read More: Virtualmin + SFTP + chroot