Bootstrap IT Home | Bootstrap IT Blog

Know someone who's looking to build a solid foundation in Linux administration?
My Manning "Linux in Action" book teaches all the basics through
real-world, hands-on projects.

Lab setup data from the Pluralsight course on

Linux Encryption Security

David Clinton

Contents:


Certificate Signing Request

Environment:

Any virtual machine (VirtualBox, LXC, etc.) running Ubuntu 16.04 server.

Create a Private Certificate Authority


Revoking Certificates


Configure Apache for SSL


Importing SSL Certificates to Browsers

Environment:

Use this command to prepare the package for your client browser:

Testing SSL Configurations

Environment:

Run the first command from "inside" the server and the second command from anywhere else on the Internet.

HSTS

Environment:

Add the first entry to the tag to deploys HSTS. Substitute the second entry to add Preload.

Ecryptfs

Environment:

From a VirtualBox instance.

Cryptsetup

Environment:

From VirtualBox instance.

Setting up BIND

Environment:

Launch a web server running CentOS 7 in Virtual Box VM on 192.168.0.127 and mapped to stuff.com in /etc/hosts on my physical workstation. The BIND server is a separate VM also running on VirtualBox.

Generating DNSSEC Keys

Environment:

Any VM (VirualBox, LXC, etc.) running CentOS 7.

DNSSEC Administration

Environment:

To avoid confusion, use a new directory that doesn't already contain certificates or keys.