./brain --dump

You use git to store everything? Great, so do I! And of course you sign your commits - so when you upload your configuration files and scripts somewhere, they will never be tampered with, right? Unfortunately, git pull --verify-signatures is not enough. Have a look at what --verify-signature...

It's been more than 10 years since Wednesday, March 26, 2003 - the day my current OpenPGP key was created. Many things have happened since then, 1024bit DSA losing a lot of its trust margin being one of them. I am now retiring it in favor of a 4096 bit RSA key in the hope that 10 years from now it w...

For a while I've been enforcing encrypted connections for my servers wherever possible. However, I trusted the client software to make somewhat smart decisions about what ciphers they use. This is - as it turns out - at least currently not a good idea.

OpenSSL especially seems to have had a ve...