|
← Revision 4 as of 2017-02-08 04:25:13
Size: 1179
Comment: added some additional crypto notes
|
← Revision 5 as of 2017-02-08 05:56:25 →
Size: 1376
Comment: added some additional crypto notes
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 15: | Line 15: |
| * PKI partial revamp, more needed. |
* PKI partial revamp, more needed: * re-issue OpenVPN host keys, signed by a new PTP CA key. * use a CA for signing node's ssh host keys, with the CA's public key in users ~/.ssh/known_hosts file, host keys can be validated. |
Location: LIKEWISE, 3564 SE Hawthorne Blvd
Date and Time: Wednesday, February 8, 2017, 6:30pm-8:00pm
Scribe: You
Roll Call: Them
Agenda
- Pick location for next weekly
- Node notes:
- possible new node hosts, discovered by way of Beer of Trust meeting
NodeHayduke contacted regarding replacing their Accton MR32A with a Meraki MR24, not reply yet
NodeCoalition (now Ankeny Tap & Table) should also be replaced similarly, Russell sent an email
NodeLuckyLabSW -- updated firmware on the gateway router, we installed downstairs in place of an old soekris net4501, and added an openvpn connection --RussellSenior
- PKI partial revamp, more needed:
- re-issue OpenVPN host keys, signed by a new PTP CA key.
- use a CA for signing node's ssh host keys, with the CA's public key in users ~/.ssh/known_hosts file, host keys can be validated.
this is cool, part of Signal encrypted voice service
- Also, wireguard.io, might be a potential replacement for our OpenVPN infrastructure
Linux Foundation Embedded Linux Conference is in Portland this month, Russell is going to attend, may be able to drag attendees to our MonthlyMeeting.
Your Item Here
Notes
- None Yet