Ivaylo Markov lz1irq

OverEncrypt

This is a guide that I wrote to improve the default security of my website https://fortran.io , which has a certificate from LetsEncrypt. I'm choosing to improve HTTPS security and transparency without consideration for legacy browser support.

WARNING: if you mess up settings, lose your certificates, or decide to no longer maintain HTTPS certs, these steps can and will make your domain inaccessible.

I would recommend these steps only if you have a specific need for information security, privacy, and trust with your users, and/or maintain a separate secure.example.com domain which won't mess up your main site. If you've been thinking about hosting a site on Tor, then this might be a good option, too.

The best resources that I've found for explaining these steps are https://https.cio.gov , https://certificate-transparency.org , and https://twitter.com/konklone

	#!/bin/bash
	#
	# Query NUT UPS status and output in InfluxDB Line Protocol
	#
	# Usage: ups.sh upsname[@hostname[:port]]
	# (same as `upsc`, see https://networkupstools.org/docs/man/upsc.html)

	# Sample telegraf.conf config snippet.
	#[[inputs.exec]]
	# commands = [

	#!/bin/bash

	cat << ENDMSG
	This script enables you to remotely unlock a fully encrypted (dm-crypt/LUKS) Ubuntu 12.10 server via SSH.

	The script must be run as root (via sudo).

	Contains bits gratefully taken from
	http://hacksr.blogspot.com/2012/05/ssh-unlock-with-fully-encrypted-ubuntu.html and
	http://blog.nguyenvq.com/2011/09/13/remote-unlocking-luks-encrypted-lvm-using-dropbear-ssh-in-ubuntu/