Comments on: Much (more) ado about SSL http://www.standalone-sysadmin.com/blog/2009/10/much-more-ado-about-ssl/ A blog for IT Admins who do everything by an IT Admin who does everything Tue, 07 Sep 2010 20:41:25 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: Anthony http://www.standalone-sysadmin.com/blog/2009/10/much-more-ado-about-ssl/comment-page-1/#comment-3443 Anthony Fri, 16 Oct 2009 13:44:13 +0000 http://www.standalone-sysadmin.com/blog/?p=970#comment-3443 Something else people often forget about when trying to protect their data - is it really worth protecting? In this case, your password to log in and make changes to the blog is of course worth protecting. As a good sysadmin you don't use that same password on anything else (of course (heh heh,)) however you certainly don't want anyone to be able to hack into your blog and screw around with it. At the same time the data you are pushing out to your blog is meant for public consumption anyway. Why protect something that you're trying to make available to everyone? Something else people often forget about when trying to protect their data – is it really worth protecting?

In this case, your password to log in and make changes to the blog is of course worth protecting. As a good sysadmin you don’t use that same password on anything else (of course (heh heh,)) however you certainly don’t want anyone to be able to hack into your blog and screw around with it.

At the same time the data you are pushing out to your blog is meant for public consumption anyway. Why protect something that you’re trying to make available to everyone?

]]> By: Jinks http://www.standalone-sysadmin.com/blog/2009/10/much-more-ado-about-ssl/comment-page-1/#comment-3441 Jinks Fri, 16 Oct 2009 04:37:26 +0000 http://www.standalone-sysadmin.com/blog/?p=970#comment-3441 Since I didn't see it mentioned: CACert is another great free cert provider. It's noncommercial, offers various chain of trust options through volunteers and a <i>very</i> easy setup for basic cert needs. Since I didn’t see it mentioned:
CACert is another great free cert provider. It’s noncommercial, offers various chain of trust options through volunteers and a very easy setup for basic cert needs.

]]> By: Twirrim http://www.standalone-sysadmin.com/blog/2009/10/much-more-ado-about-ssl/comment-page-1/#comment-3440 Twirrim Fri, 16 Oct 2009 04:01:26 +0000 http://www.standalone-sysadmin.com/blog/?p=970#comment-3440 @dagard Thanks for mentioning OpenVPN, a quick Google shows there is even a maemo client out there so I can secure my N810 when on public wireless, with a lot less hassle than other methods I was using. @dagard

Thanks for mentioning OpenVPN, a quick Google shows there is even a maemo client out there so I can secure my N810 when on public wireless, with a lot less hassle than other methods I was using.

]]> By: dagard http://www.standalone-sysadmin.com/blog/2009/10/much-more-ado-about-ssl/comment-page-1/#comment-3439 dagard Fri, 16 Oct 2009 03:36:16 +0000 http://www.standalone-sysadmin.com/blog/?p=970#comment-3439 OpenVPN and a good certificate have always worked pretty well for me, especially since you can masquerade it inside a normal HTTPS session. Easy to set up, key based, so you can easily revoke logins, software available for many, many platforms (we supported 5 or 6, including 3 different flavors of Linux, at my last job), total win. OpenVPN and a good certificate have always worked pretty well for me, especially since you can masquerade it inside a normal HTTPS session. Easy to set up, key based, so you can easily revoke logins, software available for many, many platforms (we supported 5 or 6, including 3 different flavors of Linux, at my last job), total win.

]]>