Does streaming a game from a dedicated gaming VM still expose my PCs to significant privacy/security concerns from installed games?

So the plan is to make a Windows 10 guest, give it lots of vCPUs and memory, perform GPU passthrough to achieve maximal performance, and then load my games onto this guest. The aim of this would be to stream the games over LAN to my PCs, t… Continue reading Does streaming a game from a dedicated gaming VM still expose my PCs to significant privacy/security concerns from installed games?

Is there any 100% transparent way to set up client side TLS certs from a web browser?

Edit #2:
It seems the answer to Q#1 is "No" (which suggests I would need to look for some other solution, which is something I can do on my own, please don’t spend time making suggestions for that) and that makes Q#2 the thing I’… Continue reading Is there any 100% transparent way to set up client side TLS certs from a web browser?

How to deal with new clients in a hybrid encrypted database?

I’m working on a private project and I’m not really sure about hybrid encryption. I am not a security expert but just a student. Background: I’m working on a project that uses couchDB as a database in the background to synchronize data bet… Continue reading How to deal with new clients in a hybrid encrypted database?

Is there a way to generate certificates without using the command line?

I need to authenticate users for a key exchange process since in my case they will be considered the untrusted party.
In my research I could not find many ways to authenticate the client that is not based on their identity, This OpenSSL tu… Continue reading Is there a way to generate certificates without using the command line?

Why and How are Enterprise Companies, Like eBay, Actively Port-scanning End-users’ Computers From Their Websites

You might have recently heard that eBay is performing port scanning, while online shoppers are visiting their website. At first glance, it will probably sound a bit strange, as port scanning is an internal network action. As such, it is designed to det… Continue reading Why and How are Enterprise Companies, Like eBay, Actively Port-scanning End-users’ Computers From Their Websites

Client-side encryption of data, but the server can also add data without reading stored data

For a new application I’d like to store messages for each user’s account on a centralized server.
The user accesses the application through a SPA javascript web app through their browser.
These messages:

Should be unreadable by the server… Continue reading Client-side encryption of data, but the server can also add data without reading stored data