TCooper – WindowsTechs.com

Is it secure for a platform to use the same private key for multiple clients’ SSH connections?

Posted on July 26, 2022 by TCooper

https://nexla.zendesk.com/hc/en-us/articles/360053720333-Database-Connection-Options
Specifically:

In a text editor, add the below public SSH key to the authorized_keys
file. The key must be all on one line. Make sure that you don’t
intro… Continue reading Is it secure for a platform to use the same private key for multiple clients’ SSH connections?→

What could cause classic "ERR_CERT_DATE_INVALID" when I can confirm no error from numerous other clients?

Posted on December 21, 2021 by TCooper

The ERR_CERT_DATE_INVALID error, I’m sure we’re all familiar with, is below

Visiting the same site from numerous other locations, web clients, etc shows a valid certificate.
It’s issued by let’s encrypt (cert-bot) and auto-renews. Thousan… Continue reading What could cause classic "ERR_CERT_DATE_INVALID" when I can confirm no error from numerous other clients?→

Does combining a non-cryptographically secure string with a cryptographically secure string result in a cryptographically secure string?

Posted on August 27, 2021 by TCooper

I’m using php, but the general question applies to any confirmed cryptographically secure pseudo-random string concatenated with a non-cryptographically secure string.
I know random_bytes generates a cryptographically secure string
I know … Continue reading Does combining a non-cryptographically secure string with a cryptographically secure string result in a cryptographically secure string?→

Safe or Unsafe to Store Passwords in Chrome on MacOS?

Posted on August 27, 2021 by TCooper

I’ve seen conflicting opinions on this, more than the below, but i.e.
Unsafe: https://www.techrepublic.com/article/why-you-should-never-allow-your-web-browser-to-save-your-passwords/
Safe: https://cybersecuritymagazine.com/8-reasons-to-use… Continue reading Safe or Unsafe to Store Passwords in Chrome on MacOS?→

Is it more or less secure to use IAM (AWS user management) if you only have one user?

Posted on August 26, 2021 by TCooper

This is an edge case, and as soon as multiple users are accessing the AWS Console in anyway, IAM is the only good option, but what if you only have one user?
I’ve always assumed that if only one person is accessing the account, and they ne… Continue reading Is it more or less secure to use IAM (AWS user management) if you only have one user?→

Does Cloudflare masking my IP make my server more secure?

Posted on February 6, 2020 by TCooper

I’ve heard in a conversation and read in some forum posts that Cloudflare will proxy your IP, hiding it from the public, and this mitigates the risk of an attacker finding your server in the first place, making it more secure.

Is there an… Continue reading Does Cloudflare masking my IP make my server more secure?→