None of the Above (![[info]](http://klab.lv/img/userinfo.gif){kind=small} artis) rakstīja,@ 2013-06-16 15:05:00 |
 |
 |
 |
|
|
|
|
|
|
 |
|
 |
cert.pem
Cilvēk, you supposedly went through all that effort to "use" crypto, generate keys … then you turn around and just store your "private" keys in ~/.ssh/id_{rsa,dsa,ecdsa}, ~/.gnupg/secring.gpg etc.? Pity the fool! I guess all that data/traffic you were trying to "protect" is worth less than ~40 bucks. 'Coz, if you don't have it air-gaped or neatly compartmentalized w/ something like Qubes OS, all your ${HOME} are belong to us. But you knew that, right?
Remember Comodohacker & DigiNotar fail? Well, guess why he failed to penetrate StartSSL? Hardware Security Module (HSM).
Cilvēk, you supposedly went through all that effort to "use" crypto, generate keys … then you turn around and just store your "private" keys in ~/.ssh/id_{rsa,dsa,ecdsa}, ~/.gnupg/secring.gpg etc.? Pity the fool! I guess all that data/traffic you were trying to "protect" is worth less than ~40 bucks. 'Coz, if you don't have it air-gaped or neatly compartmentalized w/ something like Qubes OS, all your ${HOME} are belong to us. But you knew that, right?
Remember Comodohacker & DigiNotar fail? Well, guess why he failed to penetrate StartSSL? Hardware Security Module (HSM).
