[Dev] [consensus][due: 2016-08-10] increasing security in Parabola, servers

fauno fauno at endefensadelsl.org
Sun Jul 31 04:00:14 GMT 2016


coadde <coadde at riseup.net> writes:

> [ Unknown signature status ]
> Hi guys, i would make some changes in the new server, however i would
> propose it to be discussed under consensus first:
>
> * Remove SSL certificates to be more KISS and adhocratic.

i don't understand what this means

> * Use a TOX server as XMPP replacement.

wasn't tox p2p?

> * Use our own DNS server.

+1

> * Use NetworkManager (CLI) instead of Netctl.

why?

> * Improve IPv6 security against IoT and RFID (keep link-local IPv6 in
> anonymous -> "fe80::")

wasn't ipv6 privacy extensions enabled by default?

> * Add firewall

+1

> * Add TOR, DNSCrypt and VPN to increase security.

in which way

> * Testing against all type of attacks to check our security settings is ok.

+1

-- 
:D
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 584 bytes
Desc: not available
URL: <https://lists.parabola.nu/pipermail/dev/attachments/20160731/6357794f/attachment.sig>


More information about the Dev mailing list