How to encrypt files and directories with eCryptFS on Linux

You do not have to be a criminal or work for the CIA to use encryption. You simply don’t want anybody to spy on your financial data, family pictures, unpublished manuscripts, or secret notes where you have jotted down startup ideas which you think can make you super rich. I have heard people telling me […]
Continue reading…

 

How to create a cloud-based encrypted file system on Linux

Commercial cloud storage services such as Amazon S3 and Google Cloud Storage offer highly available, scalable, infinite-capacity object store at affordable costs. To accelerate wide adoption of their cloud offerings, these providers are fostering rich developer ecosystems around their products based on well-defined APIs and SDKs. Cloud-backed file systems are one popular by-product of such […]
Continue reading…

 

How to set up a secure FTP service with vsftpd on Linux

FTP or File Transfer Protocol is one of the widely used services on the Internet, mainly for transferring files from one host to other. FTP itself was not designed as a secure protocol, and as such, the classic FTP service is vulnerable to common attacks such as man in the middle and brute force attacks. […]
Continue reading…

 

How to manage passwords from the command line on Linux

With password-based authentication so prevalent online these days, you may need or already use some sort of password management tool to keep track of all the passwords you are using. There are various online or offline services or software tools for that matter, and they vary in terms of their sophistication, user interface or target […]
Continue reading…

 

How to set up HTTPS in Apache web Server on CentOS

Web servers use HTTP by default, which is a clear text protocol. As the name suggests, a clear text protocol does not apply any form of encryption on the transit data. While the HTTP-based web server is very easy to set up, it has a major drawback in terms of security. Any “man-in-the-middle” is able […]
Continue reading…

 

How to secure a mail server using encryption

SSL (Secure Sockets Layer) and its descendant TLS (Transport Layer Security) are the most widely used protocols for encrypting data that is exchanged between a server and a client. These protocols often use X.509 certificates and asymmetric cryptography. STARTTTLS is another method of securing plain-text communication. This protocol also encrypts data with SSL or TLS, […]
Continue reading…

 

How to create an encrypted zip file on Linux

Suppose you want to create a zip archive, but with password protection, so that whoever tries to uncompress the zip file must know the right password. On Linux, there are several ways to encrypt and password protect a zip file. In this tutorial, I will describe how to create an encrypted zip file on Linux. […]
Continue reading…

 

How to PGP encrypt, decrypt or digitally sign files via GnuPG GUI

Pretty Good Privacy (PGP) is an encryption/decryption program that provides cryptographic privacy and authentication for data communication. PGP is popularly used to digitally sign, encrypt or decrypt email messages or files being transferred over the Internet. In Linux, there exists GnuPG, a GPL-licensed alternative to PGP. While it is possible to use GnuPG to encrypt […]
Continue reading…

 

How to password protect a folder or directory on Linux

Suppose you have a folder in your Linux home directory, where you store secure document files which you do not want anyone to access without a password. That way, even if someone manages to get a hold of your computer and access your home directory, there is still another line of defense for your private […]
Continue reading…

 

How to create an encrypted disk partition on Linux

Suppose you have a portable USB drive to use with your Linux system. If you are security conscious, you may want to encrypt your USB drive, so that no one else tamper with content in your USB drive. For that, you can use dm-crypt and LUKS, which together provide transparent encryption of block devices by […]
Continue reading…