Bootstrap IT Home | Bootstrap IT Blog

Unsure how cloud computing, encryption, artificial intelligence, the Internet of Things,
and other tech trends fit into your business, educational, and professional future?
Explore "Keeping Up: Backgrounders to all the big technology trends you can't afford to ignore"

Keeping Up With Technology


Lab setup data from the Pluralsight course on

Linux Encryption Security

David Clinton

Contents:


Certificate Signing Request

Environment:

Any virtual machine (VirtualBox, LXC, etc.) running Ubuntu 16.04 server.

Create a Private Certificate Authority


Revoking Certificates


Configure Apache for SSL


Importing SSL Certificates to Browsers

Environment:

Use this command to prepare the package for your client browser:

Testing SSL Configurations

Environment:

Run the first command from "inside" the server and the second command from anywhere else on the Internet.

HSTS

Environment:

Add the first entry to the tag to deploys HSTS. Substitute the second entry to add Preload.

Ecryptfs

Environment:

From a VirtualBox instance.

Cryptsetup

Environment:

From VirtualBox instance.

Setting up BIND

Environment:

Launch a web server running CentOS 7 in Virtual Box VM on 192.168.0.127 and mapped to stuff.com in /etc/hosts on my physical workstation. The BIND server is a separate VM also running on VirtualBox.

Generating DNSSEC Keys

Environment:

Any VM (VirualBox, LXC, etc.) running CentOS 7.

DNSSEC Administration

Environment:

To avoid confusion, use a new directory that doesn't already contain certificates or keys.