OpenSSL Command-Line HOWTO Paul Heinlein <> Initial publication: June 13, 2004 Most recent revision: June 25, 2014 The openssl application that ships with the OpenSSL libraries can perform a wide range of crypto operations. This HOWTO provides some cookbook-style recipes for using it. Table of Contents Introduction How do I find out what OpenSSL version I’m running? How do I get […]

OpenSSL RSA sign and verify howto Openssl provides an easy way for signing data using the RSA algorithm. RSA signing provides a robust way to ensure the integrity and authenticity of data.   About OpenSSL openssl   The RSA signing algorithm Rather than signing the whole data, we will create a one-way hash of the data using a hash algorithm […]

RSA keys and certificates with OpenSSL: Frequently used commands This is a simple howto for manipulating PKI SSL certificates using Openssl.   RSA public/private keys for testing   Create a bundled public/private key pair openssl genrsa -des3 -out private-3des-2048.pem 2048   Decrypt a 3des encrypted PEM key and convert it to DER openssl rsa -in private-3des-2048.pem -outform DER -out private-2048.der   PKI CA operations   Creating […]

SSO for Openfire 3.8.1 on Debian 7.0 “Wheezy” x64 + Spark 2.6.3 + AD W2k8 (not R2) Hi all! I solved SSO trouble after some days hard work.   Infrastructure: Openfire 3.8.1 on Debian 7.0 “Wheezy” x64 with MySQL. Openfire server name: openfireserver AD Server – Windows 2008 Standard (Kerberos crypting RC4-HMAC-NT by default) Domen: realm.local Workstations Windows XP Pro and Windows 7 Pro x32/x64. Jabber-client Spark 2.6.3   Intallation steps […]

Configure SSSD to authenticate with a Windows 2008 Domain Server – Note: WIP Synopsis This describes how to configure SSSD to authenticate with a Windows 2008 Domain Server. This guide is a work in progress. Windows 2008 Server Setup The domain to be configured is using realm AD.EXAMPLE.COM, the Windows server is, and the client host where SSSD is running is Reboot Windows during […]

How to integrate Active Directory with FreeBSD 10.0 using security/sssd? Q: What are the required steps to authenticate users from an Active Directory running on Windows Server 2012 R2 in FreeBSD 10.0 using sssd with the AD backend with Kerberos TGT working? A: There are some tricky considerations to make everything works out-of-the-box. FreeBSD only supports sssd version 1.9.6 at this moment. So there’s […]

FreeBSD CIFS/SMB File Server This guide covers setting FreeBSD up as a CIFS/SMB File Server via Samba with ZFS storage. This guide covers FreeBSD 10 and Samba 4.1.7 for previous version see: Samba 3.6 Active Directory Fileserver on FreeBSD 9.2 Please refer to my FreeBSD Installation Guide if you need help installing FreeBSD. Update FreeBSD You may wish […]

Managing file/folder permissions and ownership The Unix files access is controlled. There are three types of access (permissions): read write execute Each file belongs to a specific user and group (ownership). Access to the files is controlled by user, group, and what is called other/everyone permission bits and is usually set using a numerical value. For example, 644 as […]

Proper WordPress Filesystem Permissions And Ownerships When people talk about WordPress security, file permissions and ownership are usually the last thing on their minds. Installing security plugins is a good practice and a must for every WordPress website. However, if your file-system permissions aren’t set up correctly, most of your security measures could be easily bypassed by intruders. Permissions and […]