https://riga.sh/tags/security/Recent content in Security on RigaHugo 0.125.0en-usSat, 23 Nov 2024 09:38:55 -0400https://riga.sh/tutorials/macos-secure-and-private-setup/Sat, 23 Nov 2024 09:38:55 -0400https://riga.sh/tutorials/macos-secure-and-private-setup/Image generated on Leonardo.ai Having used Macos on a daily basis for a few years and experimenting with various techniques and tools, I am now able to suggest a configuration that blends several levels of control with practical usage. ⚠️ A few notes before we start: This arrangement is simply mine, and I enjoy it, but it’s not the greatest or definitive. Feel free to modify your threat model and look for related subjects.https://riga.sh/toolbox/secure-private-tools/Tue, 29 Nov 2022 00:00:00 +0000https://riga.sh/toolbox/secure-private-tools/This section is in progress the term “secure” is used in the sense that these tools are distinguished by their low greed for personal data, and their useful functions Messengers comparison Chart to compare most messengers apps, based on concrete criterias https://www.securemessagingapps.com/ Send files Encrypt small files with a password, decrypt them on the same platform: https://hat.sh Web adaptation of the magic worlhole protocol, send a link or a QR code to retrieve files (up to 10go).https://riga.sh/tutorials/cyberresilienceguide/Sun, 20 Feb 2022 08:47:11 +0100https://riga.sh/tutorials/cyberresilienceguide/Cyber resilience guide Version 0.1 (2022) This guide was posted on Reddit for people in Ukraine (also useful for people outside the country), considering their threat model. Also, this guide is intended for a general public using a smartphone (mostly Android), your threat model can be much more sensitive, so make additional researches. GUIDE Most apps are hosted on Fdroid, an open source alternative of PlayStore. You can find alternatives, just make sure they’re reviewed by trustworthy sources.https://riga.sh/tutorials/passwordstrategy/Sat, 22 Jan 2022 08:47:11 +0100https://riga.sh/tutorials/passwordstrategy/This guide aims to put the basics of an online password strategy. In fact, compromised passwords comes from hundred of potential sources you use, or tend to forget. This guide is the first part of multiple learning resources coming soon. Have a good strategy, step by step 🔐 From Zero to Hero, here’s a breakdown on how to manage passwords, online activity, and be proactive with your digital identity. Passwords are inherently linked to the corresponding email addresses or personal data, so you need to be able to secure both, in order to benefit from a sustainable method.https://riga.sh/tutorials/buckets/Mon, 01 Nov 2021 00:00:00 +0000https://riga.sh/tutorials/buckets/I endorse nothing you’ll do with these tools, use them at your own risks. Buckets A bucket contains various types of data such as public files (static assets), but sometimes it’s used to store sensitive infos (logs, passwords…). Permissions are critical with buckets, it can leverage an attacker to abuse unauthenticated access or improper ACL permissions. An open upload policy could let an attacker upload a malicious file, such as a custom payload.