From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-user+bounces-155241-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	by finch.gentoo.org (Postfix) with ESMTP id 02215138A1F
	for <garchives@archives.gentoo.org>; Mon, 21 Apr 2014 07:11:37 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id ECD0CE09F3;
	Mon, 21 Apr 2014 07:11:31 +0000 (UTC)
Received: from lyseo.edu.ouka.fi (unknown [82.128.138.2])
	by pigeon.gentoo.org (Postfix) with ESMTP id E089DE09E8
	for <gentoo-user@lists.gentoo.org>; Mon, 21 Apr 2014 07:11:30 +0000 (UTC)
Received: from [10.188.25.72] (85-76-134-48-nat.elisa-mobile.fi [85.76.134.48])
	(using TLSv1 with cipher AES128-SHA (128/128 bits))
	(No client certificate requested)
	by lyseo.edu.ouka.fi (Postfix) with ESMTPSA id F1D32193F983
	for <gentoo-user@lists.gentoo.org>; Mon, 21 Apr 2014 10:11:29 +0300 (EEST)
Subject: Re: [gentoo-user] Heartbleed fix - question re: replacing self-signed certs with real ones
References: <20140417184325.GA22082@lyseo.edu.ouka.fi> <201404191252.20412.michaelkintzios@gmail.com> <3g9vqS6Wt5z62Yt@devnoip.rootservice.org> <201404210020.49571.michaelkintzios@gmail.com>
From: Matti Nykyri <matti.nykyri@iki.fi>
Content-Type: text/plain;
	charset=us-ascii
X-Mailer: iPhone Mail (9B206)
In-Reply-To: <201404210020.49571.michaelkintzios@gmail.com>
Message-Id: <A846B5FB-C9E9-40AD-9026-E76B305D20C4@iki.fi>
Date: Mon, 21 Apr 2014 10:11:24 +0300
To: "gentoo-user@lists.gentoo.org" <gentoo-user@lists.gentoo.org>
Content-Transfer-Encoding: quoted-printable
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
Mime-Version: 1.0 (1.0)
X-Archives-Salt: 5dc49322-6e01-4b67-b3d1-4694cf644290
X-Archives-Hash: bb713c575c8358b3d95e5e65bef2e839

On Apr 21, 2014, at 2:20, Mick <michaelkintzios@gmail.com> wrote:
> I came across a draft guide on Crypto Hardening for sysadmins in the post-=

> Snowden era, produced by the bettercrypto.org and thought of sharing with t=
he=20
> list.  I hope it is useful for people here who look after webservers and=20=

> applications.

Thank you. Good articles. All-in-all it's about the system administrators ab=
ility to implement the security to their services not matter what the theory=
 is behind them. So it is really important that sysadmins have good knowledg=
e of security and these links promote that :)

>  [1] http://safecurves.cr.yp.to/rigid.html
>  [2] http://ftp.zut.edu.pl/mirrors/ftp.ietf.org/ietf-mail-archive/uta/2014=
-01.mail
>  [3] https://bettercrypto.org/static/applied-crypto-hardening.pdf

--=20
-Matti=