Saturday, August 19, 2017

Talking at the 9/12/2017 Denver Tech Talks meetup

I'm giving a talk on Miranda at the 9/12/2017 meeting of the Denver Tech Talks meetup.

SHA-256

A new change to Miranda came from the Denver/Boulder Cybersecurity Meetup to use SHA256 instead of SHA1 to determine if a file has changed.

Monday, July 24, 2017

Changing the Java and SSL Presentation to CLCL

Yesterday I decided to create a new library for crypto tasks: the com ltsllc crypto library or clcl.  I now need to change my presentation to incorporate clcl.

I decided to keep the same basic structure; just make clcl more of a solution to Java and SSL's problems.  The basic tasks remain the same:

  • Create a key pair
  • Create a CA
  • Create a CSR
  • Create a certificate
To this I have added various file-oriented tasks:
  • Load/store a key pair in a Java key store
  • Load/store a key pair in a PEM file
  • Load/store a certificate in a Java key store
  • Load/store a certificate in a PEM file
PEM files have an additional challenge in that they may be password protected.

Then I have to document each class.  Then I have to created tests for each class. Finally, I need to create wiki entries for the library.

I've completed the first set of tasks, so it looks like I have my work cut out for me. 

Saturday, July 22, 2017

Hosting Secure Servlets: Jetty

This post is part of a series about the hosting secure servlets (that is, using HTTPS).  I hope to do 1 post a day on this topic. The resulting posts will become the basis a talk that I am scheduled to give on August 10 at the Denver/Boulder Cybersecurity Meetup.

Jetty

  • Define properties
  • Register servlets
  • Start Jetty
I had to choose something as a servlet container and I chose Jetty.  Jetty has been around since 1995, so it has been around for a while. "Recently" (2009) it became part of the Eclipse project hence its URL.

Jetty has a reputation for being a good server for embedded applications, and at the time I didn't envision a separate project for the Miranda web stuff, so Jetty seemed like a natural choice.  Before that I was going to use Netty for all my web and servlet stuff.  But I became disenchanted with Netty when I ran into an SSL problem.

Before you can use Jetty to host servlets, you have to define a couple of properties.  Then you have to define a handler.  The documentation says that you can add and remove servlets after starting the server but I have not found this to be true so I recommend registering servlets before starting the server.  Starting Jetty involves 1 method call and is no big deal.


Friday, July 21, 2017

Hosting Secure Servlets

My presentation is not long enough.

Specifically the main presentation only took 38 minutes last time (at DOSUG), so I need to add more sections to it.  I had hoped that the section on SSL and Java would be longer but in when I practice it it takes around 6 minutes.

For that reason, I am going to add a section on hosting secure (HTTPS) servlets using Jetty and Tomcat.  These two sections should make the presentation take up enough time.

Thursday, July 20, 2017

One Password and an Explaination

On Tuesday I did what I thought would be a bit of routine "housekeeping."

I changed my password on a bunch of sites.

I thought this would take me 15 minutes to do, 60 if I was really slow.

It took me a whole day.

That's why I haven't made very much progress on Miranda lately.

I hope to get the slides done on "Java and SSL" today, and maybe do a bit of work on the Miranda utilities (adding methods for creating CSRs and signing them).

Tuesday, July 18, 2017

Finish Java & SSL

I need to finish up the "Java & SSL" section of my presentation for the Denver/Boulder Cybersecurity Meetup that I'll be talking at on August 16th, so I'll be focusing on that today.  I need to create 4 slides: one on signing CSRs one detailing how to do this with openSSL, one detailing how to do this from Java and a summary for the section.

Talking at the 9/12/2017 Denver Tech Talks meetup

I'm giving a talk on Miranda at the 9/12/2017 meeting of the Denver Tech Talks meetup .