I am just trying to understand RSA encryption.
Just say I have three parties Alice, Bob and Eve.
All parties have access to Bob's Public Key.
Alice is going to send Bob an encrypted message of either "1" or "0" (without quotes)
Eve manages to intercept Alice's message.
If Eve encrypts "1" and "0" using Bob's Public Key, will one of them be the same as Alice's encrypted message?
It has come to my knowledge that SSL certificates that use the MD5 algorithm have been successfully hacked and are vulnerable to attacks. Only Verisign (owners of RapidSSL since 2006) have stated that they have stopped using MD5-signing for RapidSSL certificates, and will have phased out MD5-signing across all their certificate products by the end of January 2009
View 7 Replies View RelatedI have a client that is in need of a easy to use and transparent as possible method of sending encrypted email to many external clients.
They have currently been using verisign digital ID's and have not been satisfied with the amount of work necessary to send and receive encrypted email.
I would welcome any and all installable or 3rd party service recommendations on how to handle this. The would prefer that their cleints receiving the email have to do the least amount of work, in order to receive their emails.
Can anyone who is a security expert recommend the most secure option for choosing what type of "cipher" to use with our OpenVPN setup?
(I bolded the one I think might be best? Let me know what you think. We are currently using "BF-CBC", but I want to be sure it's not breakable...) ...
Are there solutions to sync folders between local and remote servers with file encryption capabilities. I mean:
<source server, unencrypted> <----sync-----> <remote server, encrypted>
I need sync similar to rsync, secured data transfer and encrypted storage on a remote server, so even root won't be able to access the data.
As I understand it, PGP Desktop is not compatible with server os's. Also, TrueCrypt and BestCrypt containers have i/o overhead. What else is left? Environment is 2008 Server with high i/o throughput requirements..
View 10 Replies View RelatedI believe there is a gap in my understanding of VPS with regards to just how much control you really have over the system. VPS gives you "root access" which typically means top-level access... but in reality, the true super user is a boot-up console user. Few VPS providers that I've investigated offer console access to your VPS while booting.
What, than, can be done about system upgrades or using advanced features like root filesystem encryption? Say, for instance, that my provider offers openSUSE 10.1 and I want 10.2. I would be loath to do such a thing if I can't reboot and watch things as it goes. What if the upgrade failed and you need to drop to a single-user mode to fix it?
Or maybe my real misunderstanding here is that you can't upgrade a system in a VPS if the provider doesn't offer the upgrade?
And what if I want my entire system (other than a boot partition) to be encrypted. This would include an encrypted root and swap. This also requires a password at bootup well before any services (like sshd) start.
Again, maybe the real answer is that I can't do that at all anyway and so it doesn't matter.
I'm contemplating creating a website that could store extremely sensitivity information. It's more than likely that a MySQL database would house this information.
My question is. Does anybody have any experience when it comes to encrypting an entire server disk?
I've searched online with disappointing results.
What's the go with seeding the PRNG on windows as there isn't dev/random or dev/urandom? Should I use CryptoAPI or just use a file with random contents and change it often, or just leave the PRNG to "almost" randomise itself?
View 1 Replies View RelatedWhen I create a new subscription in Plesk 11.5 for Windows, i'm shown the following message:
Internal error: Wrong encryption key size
MessageWrong encryption key size
File aps_php.php
Line237
TypeException
I have plesk12 set up but when i set a mail (dovecot) password, it gets stored in plain text (which I can verify by running /usr/local/psa/admin/sbin/mail_auth_view ). I would like to change this default setting to be encrypted.
View 4 Replies View RelatedI'm trying to migrate old server into a new server.
Both uses plesk 11.5.30 version.
I'm using the "Migration & Transfer Manager" for importing everything but it does not work. The error is
Error: launchpad error (Error code = 2):
== STDERR ====================
Unable to start SSH session: Unable to exchange encryption keys
==============================
Seems like an ssh problem but ssh from shell works fine in both directions.
I tried also to create public key and put into authorized_keys with no luck..
I have a problem while i'm trying to add a mail account to Thunderbird
I see the problem that Mail server doesn't use encryption !!!