[Cialug] Encryption for cialug.org

Nicolai nicolai-cialug at chocolatine.org
Wed Jan 17 05:51:19 UTC 2018


Hey all,

Just wanted to note that the cialug.org website now supports TLS via
letsencrypt.org.  Other services support encryption as well:

1. We've had a DNSCurve resolver since 2012-05-11.  DNSCurve encrypts DNS
queries when possible.

2. We've had TLS for Postfix (the mail server) since 2013-11-08.

3. We've had authoritative DNSCurve for cialug.org since 2017-03-02.  Do:

dig +short ns cialug.org.

There, you see Curve25519 DNSCurve public keys.  Resolvers that do
DNSCurve see these keys and automatically encrypt their queries with
zero extra round trips.

4. And we've had https since 2017-12-17.  That is being done in stages:
first, mixed-content issues needed to be resolved.  Then a 302 redirect
from http to https, then a 301, then HSTS and soon disabling TLS 1.0/1.1.

For more information see:

https://dnscurve.io/
http://www.postfix.org/TLS_README.html

Nicolai


More information about the Cialug mailing list