Perfect forward secrecy and HSTS with nginx
Today, I enabled perfect forward secrecy on my nginx installation. I’m writing down the config so I can easily find it later.
Dave Eggers – The Circle
I recently read The Circle by Dave Eggers. It is a bit like the classic dystopian novel 1984 being brought up to date in the age of smartphones, apps and Google, Facebook and …
Certificate signing with an ePass2003
I have a fairly creative ssl setup on my webserver: I run my own ‘certificate authority’ which signs the server certificate; I have a bunch of alternative names specified; The CA …
Blendle
Blendle is een kort geleden gelanceerde website waarop je digitaal door kranten en tijdschriften kan bladeren. Denk je “goh, dit wil ik wel lezen”, dan kun je met één klik het …
Time-invariant equality in assembly
For crypto code it's important that it's time-invariant, otherwise it is vulnerable to timing attacks. I've had to build this time-invariant equality test from scratch, because I …
Music Review
It's been a while since I posted. Today I decided it was time to behave myself a bit like the pretentious hipster I secretly am and post a bit about the music that I discovered …
OpenSC, Gentoo & Feitian ePass 2003
While playing with my ePass2003 on my Gentoo installation today, I had some trouble getting it to work. As it turned out, you need the following use flags enabled: # …