Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [encryption]

Encryption is transforming information through a cipher to protect it from unauthorized access.

Encryption is the process of taking some information (the plain text), and transforming it (usually with a cypher and a key) so that it is secure. Assuming a sufficiently strong cypher and key have been chosen, this cyphertext can be shared widely, without the information being compromised.

The reverse of Encryption is Decryption, where the process is reversed (normally by someone holding the key and cypher details) to return the information.

See the Wikipedia Page for more details.

775 questions
15
votes
1 answer

Is POST data encrypted over an SSL connection?

I've set up my web server to use SSL (I'm using WAMP for my staging scenario before I move it on up to public servers). The purpose of the site at hand has succeeded and I am able to use the site from remote computers using the HTTPS protocol. A…
Honus Wagner
  • 265
  • 1
  • 2
  • 9
14
votes
7 answers

How to create a randomly keyed, encrypted swap partition, referring to it "by-uuid", on Debian?

It is sensible that if you have any sort of block device encryption implemented on your GNU/Linux system, to encrypt your swap partition too, as any decrypted data may be written in cleartext at any time to the swap. Looking at the debian man page…
Geeb
  • 241
  • 1
  • 2
  • 5
14
votes
3 answers

IPSec for LAN traffic: Basic considerations?

This is a follow-up to my Encrypting absolutely everything... question. Important: This is not about the more usual IPSec setup, where you want to encrypt traffic between two LANs. My basic goal is to encrypt all traffic within a small company's…
Chris Lercher
  • 4,152
  • 9
  • 35
  • 41
13
votes
5 answers

convert .p7b key to a .pfx

I have an SSL certificate in .p7b format that I need to convert to .pfx. If I try this through the windows certificate managment the option to expert as a .pfx is disabled. Trying with openssl I have found the following two commands to do the…
DrStalker
  • 6,946
  • 24
  • 79
  • 107
13
votes
5 answers

Encryption with ZFS on linux

Does ZFS on Linux already support Encryption? If not, is it planned? I found tons of info for ZFS+LUKS but that's absolutely uninteresting: I want ZFS encryption so that I can do replication using zfs send to an "untrusted" backup server. I.e., zfs…
divB
  • 568
  • 1
  • 7
  • 23
13
votes
4 answers

Encrypt git repository on server (safe against theft of physical hardware)

I have a production server (Ubuntu, running 24/7) with a git repository and some client computers each with a working copy of this repository. In the client computers, simply using home folder encryption seems to solve the problem that in case of…
leemes
  • 301
  • 1
  • 3
  • 10
12
votes
2 answers

Encryption over gigabit carrier ethernet

My conclusion to this was to pipe VLAN trunks through EoIP tunnels and encapsulate those in hardware assisted IPSec. Two pairs of fairly inexpensive Mikrotik RB1100AHx2 routers proved capable of saturating a 1 Gbps connection while adding…
Roy
  • 4,376
  • 4
  • 36
  • 53
12
votes
3 answers

Is it possible to hardware accelerate LUKS encryption?

My Linux server spends a lot of time computing LUKS encryption. Is there any way to hardware accelerate it (with a PCI express card for example)?
Glendyr
  • 621
  • 2
  • 7
  • 12
11
votes
2 answers

Kerberos KDC has no support for encryption type while getting credentials

I am configuring an apache/SSO authentication with an AD with Kerberos. My http server is a Debian Wheezy and the AD is a Windows Server 2012. I generated keytabs files on WS2012 with kpass command for each encryption type available on WS2012. When…
lazzio
  • 306
  • 1
  • 2
  • 11
11
votes
2 answers

Should I encrypt OS disk with BitLocker for HIPAA compliance

I am looking into hosting a HIPAA compliant web application on Azure VM's. For the database, right now I am leaning towards using a VM with SQL 2014 Standard Edition. Since TDE is not available with Standard Edition, I am going to just use…
blizz
  • 1,134
  • 1
  • 26
  • 47
11
votes
2 answers

How secure is the encryption used by Microsoft Office 2007?

I've read various articles about Microsoft's Office 2007 encryption and from what I gather 2007 is secure using all default options due to it using AES, and 2000 and 2003 can be configured secure by changing the default algorithm to AES. I was…
user22492
10
votes
6 answers

How should someone create an encrypted password for /etc/shadow?

I am setting up a new account on a Linux box for Subversion repository access, and can send the password to the new user. However, I think there was a command line utility for this new user to encrypt the password he likes into a format I can…
Egon Willighagen
  • 221
  • 1
  • 2
  • 5
10
votes
3 answers

Gmail flagging Dovecot email as insecure

I thought I successfully secured my Postfix/Dovecot email server. I have a signed certificate from LetsEncrypt, which is valid for my domain. Sending & receiving works fine, but since Gmail started flagging insecure emails, all mail sent from my…
gavanon
  • 529
  • 4
  • 13
10
votes
9 answers

How secure are passwords with under 20 characters length?

I recently received a recommandation for setting my password to above 20 characters. The algorithm used for encryption is AES with a 256 bit primary key. How secure is a, let's say, 8 char password against brute force attacks for deciphering…
cmserv
  • 195
  • 2
  • 6
  • 14
10
votes
4 answers

Encrypt temporary password using public ssh key

I manage a virtual office and our staff uses both SSH keys and passwords for authentication. If one of our staff forgets his password, is there a way to encrypt a temporary password using his public RSA ssh key so I can send it to him via…
David M. Syzdek
  • 338
  • 2
  • 12
1 2
3
51 52