By:
On:
In: awayfromevernote, stupid defaults
With: 0 Comments

Disclaimer I don’t think, „hiding“ a webserver behind a non-standard TCP-Port is a security feature („security by obscurity“) but on the other hand restricting access to non-standard Ports seems to not increase the personal security measure, it just wastes time of anybody who needs to access such a service – and – it’s absolutely allowed to run a web-server on any port which isn’t used by another service 😉 Solution (if you (think, you) know what you’re doing) As always Add as „String“ if it’s missing: Add the Service you want to acccessRead More →

By:
On:
In: awayfromevernote
With: 0 Comments

Plugins might bring additional features or ease the usage. But if someone is happy with „Auto-Type“ or „copy&paste“-Passwords from KeePass into a VPN-Client-GUI for example: works out of the box no need to add anything to KeePass Entry.Password: {TIMEOTP} Placeholder just place the String {TIMEOTP} before or behind – like the VPN-Server is configured – your (fixed) User-Password. {TIMEOTP} acts as a placeholder it will get replaced by your constantly changing (in my setup 6-digit) token. Advanced The generator needs some parameters to calculate the correct values, of course Advanced: String Fields Add a String Field: Field Name: TimeOtp-Secret-Base32 seems to be the most commonRead More →

By:
On:
In: awayfromevernote, stupid defaults
With: 0 Comments

Not a new Feature for Windows, to use an enterprise CA to create server certificates. And Firefox added the possibility to trust those certificates ages ago – but still you’ll get an TLS-error-message (in German „Kein Verbindungsversuch unternommen: Mögliches Sicherheitsproblem“). This is no Security-Problem, it’s just a problem of using stupid defaults causing people to waste their time and providing no little level of security, since a CA operated on my own is much more trustworthy than public CAs which firefox trusts blindly. Solution Open about:config and changeRead More →

By:
On:
In: awayfromevernote, stupid defaults
With: 0 Comments

The Firefox-Developers know best what’s good for their users, so they hide a bunch of Settings in about:config so it’s hard to find them. Some of them I change in every Firefox installation: ask me if i want to download MP4-Files, disable the build-in Media-Player media.play-stand-alone = false use the DNS, not Google – if I enter a single word as URL keyword.enabled = false     stop asking me if I really want to leave a page dom.disable_beforeunload := true   stop autocompletion in the URL-Bar browser.urlbar.autocomplete.enabled = false browser.fixup.alternate.enabled = false browser.fixup.alternate.prefix = (empty) browser.fixup.alternate.suffix = (empty)   accessibility.typeaheadfind.flashBar 0 browser.fixup.alternate.suffix prod.localbrowser.fixup.domainwhitelist.wiki trueRead More →

By:
On:
In: awayfromevernote, linux
With: 0 Comments

Of course, every release of an linux-distribution has to change the way very basic network settings are configured. 😉 Ubuntu 20.04 Server LTS to be fair: „netplan“ has been in place since at least release 17.10 the „subiquity“-tool which has written the yaml-file has been confusing me… Step 1: Figure out – which IP/DNS-Settings where set by DHCP Step 2: Disable (if required) automation tools – here „subiquity“ This is YAML: Optional: Try a temporarily YAML-File before Apply safeguard if you are using a ssh-connection Roll back, after a Timeout Step 3: Edit/Apply NetPlan Config ApplyRead More →