This is a nice overview of the design philosophy behind nym servers and the alt.anonymous.messages (AAM) newsgroup. It discusses the outlines of the SOP of a group of child pornography traders. This group was penetrated by the Feds after they busted one guy, and despite their participation in the group for 18 months they were unable to capture everyone. Most notably, the group’s leader (who strictly adhered to the SOP) was able to avoid capture.

A blog describing a lot of vulnerability !

Offres d’Emploi Securité & Missions en Sécurité.

Every so often I have to restore my gpg keys and I'm never sure how best to do it. So, I've spent some time playing around with the various ways to export/import (backup/restore) keys.

OpenVas est le remplaçant libre de Nessus, devenu non-libre.

Nessus et OpenVas sont des scanners réseau permettant de relever des failles de sécurité sur tous types de systèmes (Unix, Linux, Windows, Cisco, HP, …). OpenVas s’installe sur les principaux systèmes Linux, ici, je montre une installation sur Debian Wheezy.

Une attaque réseau qui permet d'écouter le trafic d'une autre machine qui est connectée sur le même réseau que nous.

OpenVPN is SSL/TLS VPN solution. It is able to traverse NAT connections and firewalls. This page explain briefly how to configure a VPN with OpenVPN, from both server side and client side.

Block lot's of bad stuff (know malicious website, us agencies, etc ...) using ip list.

Find list here: http://www.iblocklist.com/lists.php

First things todo on new server

Une importante quantité de documents sur la sécurité

Use default-ssl given with apache cause it's a better config

Know what's an another user might be typing with an privilege account using process context switch count, and some probabilities

Décrypter un fichier crypter par cle publique rsa avec cle privé
openssl rsautl -in fichier_chiffre -out fichier_clair -decrypt -inkey votre_cle_privee

et pour chiffré

openssl rsautl -in fichier_clair -out fichier_chiffre -encrypt \
-pubin -inkey cle_de_votre_ami