[Cialug] Encryption for cialug.org

kristau kristau at gmail.com
Wed Jan 17 13:48:23 UTC 2018


Many thanks for taking on this project, Nicolai!

On Tue, Jan 16, 2018 at 11:51 PM, Nicolai
<nicolai-cialug at chocolatine.org> wrote:
> Hey all,
>
> Just wanted to note that the cialug.org website now supports TLS via
> letsencrypt.org.  Other services support encryption as well:
>
> 1. We've had a DNSCurve resolver since 2012-05-11.  DNSCurve encrypts DNS
> queries when possible.
>
> 2. We've had TLS for Postfix (the mail server) since 2013-11-08.
>
> 3. We've had authoritative DNSCurve for cialug.org since 2017-03-02.  Do:
>
> dig +short ns cialug.org.
>
> There, you see Curve25519 DNSCurve public keys.  Resolvers that do
> DNSCurve see these keys and automatically encrypt their queries with
> zero extra round trips.
>
> 4. And we've had https since 2017-12-17.  That is being done in stages:
> first, mixed-content issues needed to be resolved.  Then a 302 redirect
> from http to https, then a 301, then HSTS and soon disabling TLS 1.0/1.1.
>
> For more information see:
>
> https://dnscurve.io/
> http://www.postfix.org/TLS_README.html
>
> Nicolai
> _______________________________________________
> Cialug mailing list
> Cialug at cialug.org
> http://cialug.org/mailman/listinfo/cialug



-- 
Tired programmer
Coding late into the night
The core dump follows


More information about the Cialug mailing list