• Activity
  • Votes
  • Comments
  • New
  • All activity
  • Showing only topics with the tag "encryption". Back to normal view
    1. What, precisely, is E2E?

      I've never worked on E2E before. Thus, I'm not sure that what I have been working on is, technically, considered E2E. It's basically a browser based private messaging system. The only two tidbits...

      I've never worked on E2E before. Thus, I'm not sure that what I have been working on is, technically, considered E2E. It's basically a browser based private messaging system.

      The only two tidbits that I'm certain about are:

      • All information in the database is encrypted.
      • All information is sent to and from the browser using TLS.
      5 votes
    2. I could use some help with TLS/SSL please

      This is a follow-up to yesterday's post where I received excellent guidance. I have a certificate in place through Let's Encrypt. Using Firefox 74 I can see the exact same lock icon with Verified...

      This is a follow-up to yesterday's post where I received excellent guidance.

      I have a certificate in place through Let's Encrypt. Using Firefox 74 I can see the exact same lock icon with Verified by: Let's Encrypt.

      However, when I use SSL Labs to run a check I get the following error:

      Unable to connect to server - failed to connect to the server, it usually happens due to firewall restrictions

      For me, this is vague and I'm stuck.

      I'm running a Debian 9 instance with Apache2 and have, roughly, two weeks of experience with these.

      Any ideas where I could start to troubleshoot this?

      4 votes
    3. Would someone check my head about in-transit encryption?

      I'm going to use Tildes as a hypothetical example since I don't know how it is set up here. I want to send a private message to a user here. I'm fairly certain that only my self, the recipient...

      I'm going to use Tildes as a hypothetical example since I don't know how it is set up here.

      I want to send a private message to a user here. I'm fairly certain that only my self, the recipient user, and @Deimos would be able to see the private message. My self and the recipient could see the private message through the Tildes GUI. @Deimos could see the private message at the database on the server.

      If someone was savvy enough then they could 'listen' to a port and snag the private message in-transit from the client en route to the server. Therefore, they may see something like a userID number, the subject, followed by the message.

      However, if Tildes were set up with in-transit encryption (using Transport Layer Security/Certificates) then anyone listening in on a port would be thwarted.

      I've been reading about this lately and just wanted to make sure that I'm understanding the fundamentals of this correctly. Am I?

      12 votes
    4. Data-at-Rest Encryption with MariaDB

      I've just spent the past eight hours reading about this and trying to implement it on my local machine (XAMPP for OS X). So far, I've been unsuccessful. Would anyone happen to know if Heroku or...

      I've just spent the past eight hours reading about this and trying to implement it on my local machine (XAMPP for OS X). So far, I've been unsuccessful.

      Would anyone happen to know if Heroku or another testing service could easily be set up like this?

      3 votes
    5. How to handle encrypted text fields?

      So, I have about fifteen years of web development experience mainly with classic ASP. Interestingly I never had a client who required any type of encryption other than some very low-level...

      So, I have about fifteen years of web development experience mainly with classic ASP. Interestingly I never had a client who required any type of encryption other than some very low-level username/password logins for administrative backends.

      What I am working on, as a pet project for my friends and family, is a private/direct messaging system that I will write with Go. To be clear, this is not a messaging service like WhatsApp nor Signal. It will be similar to the private/direct messaging that you see here at Tildes or Reddit.

      It is important to my friends and family that messages we write to each other be private and secure.

      Thus, how would I go about encrypting the messages so that if someone were to get into the server and acquire the database, they wouldn’t be able to read them?

      EDIT: At some point I will make the code available through GitLab.

      8 votes