Staying secure in the modern Internet
Best practices, Common sense and even some non-obvious techniques
We’ll be covering many things, including the following:
- Password policies including generating, aging, cycling, revoking, … (Jim McQuillan)
- ssh public/private keypairs instead of password auth (Craig Maloney)
- vpns using IPSec, OpenVPN, PPTP, L2TP (and any other technology you might think of) (Jim McQuillan)
- SSL certificates for securing your IMAP, POP, HTTP, Postgresql, … (Jim McQuillan)
- Wireless security with WPA, WEP, … (Gib Nichols)
- file encryption with pgp/gpg (Craig Maloney)
- file permissions (rwx—) (Dave Satwicz)
- Auditing – How to survive a corporate audit (Gib Nichols)
- Home directory encryption (Anyone interested in presenting this?)
We won’t have time to cover every detail of every topic above, but we’ll at least touch on the highlights and see where the conversation takes us.
This will be a collaborative discussion. We invite (and encourage) audience participation!