testssl.sh
tarsnap
Our great sponsors
| testssl.sh | tarsnap | |
|---|---|---|
| 43 | 11 | |
| 7,628 | 844 | |
| - | 0.4% | |
| 8.8 | 8.4 | |
| 10 days ago | 18 days ago | |
| Shell | C | |
| GNU General Public License v3.0 only | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
testssl.sh
-
Badssl.com
You’re in luck because such a tool exists :) https://testssl.sh/
- Testing TLS/SSL Encryption
-
Uncertain how to proceed with patching SSL and TLS issues in MacOS (Sweet32)
Run https://testssl.sh/ and see what ciphers are being offered.
-
Changing SSL Wildcard Certificate
There is https://github.com/drwetter/testssl.sh utility. It can help diagnose issues (e.g. diffs between working and non-working sites).
- Specific SSL Ciphers Test
-
SSL Diag Tool
For internal use, there's https://testssl.sh/
-
Dovecot not offering TLSv1.2 after a few minutes
The current configuration allows for TLSv1 to TLSv1.3 connections. I can verify those using testssl.sh, the tests will succeed (although correctly mentioning, that TLSv1 and TLSv1.1 should be disabled). Running the tests again after about 5 minutes, the results are different. TLSv1.2 now shows "not offered and downgraded to a weaker protocol".
- How to combine pem file and 3 security certificates?
- oggi 2022-11-01 verrà rilasciata una vulnerabilità di livello CRITICAL su OpenSSL 3.0.x
-
alternative to whatsmychaincert.com cli or gui
testssl.sh
tarsnap
-
Where do you store your backups? What Provider if any?
Tarsnap for configs and critical stuff (password database, emails).
-
3,200-Year-Old Egyptian Tablet Records Excuses for Why People Missed Work
Someone does :)
https://tarsnap.com
> Tarsnap uses a prepaid model based on actual usage:
> Storage: 250 picodollars / byte-month of encoded data
-
What is the best private encrypted cloud storage?
Colin Percival's tarsnap
-
Ask HN: Codebases with great, easy to read code?
In past threads, people have mentioned enjoying my Tarsnap (https://github.com/Tarsnap/tarsnap) code. I personally think that the spiped (https://github.com/Tarsnap/spiped) code is even better.
-
I love the idea of tarsnap but a stable release hasn't been released since 2017. Is there a modern alternative, or is tarsnap actually still usable and secure?
I prefer Vorta myself ( https://github.com/borgbase/vorta ) as it also has incremental and encrypted backups, as well as being a fraction of the price, but tarsnap seems to still be in very-slow development: https://github.com/Tarsnap/tarsnap , so I'd say from a quick look it's still trustworthy.
- Restic: Backups Done Right
-
What's your backup strategy?
Each server also upload their configs and « important » data (my mails and git repos) to tarsnap 3. Tarsnap storage is not as cheap as B2, so I try not to upload too much data there, but it's reliable and easy to use. It was also my first backup solution, and barely cost me 10$ a year so I keep it as a secondary backup.
-
FreeBSD SSH Hardening
Not foolish! The Tarsnap client code is open source, but the license file prohibits anyone from using the code: https://github.com/Tarsnap/tarsnap/blob/master/COPYING
> Redistribution and use in source and binary forms, without modification,
- Deduplicating Archiver with Compression and Encryption
-
The Wrong Way to Switch Operating Systems on Your Server
Yes. For the curious,
https://github.com/Tarsnap/tarsnap/graphs/contributors
What are some alternatives?
https-ssl-cert-check-zabbix - Script to check validity and expiration of TLS/SSL certificate on hosts. May be used with Zabbix or standalone.
BorgBackup - Deduplicating archiver with compression and authenticated encryption.
kubernetes-the-hard-way - Bootstrap Kubernetes the hard way. No scripts.
restic - Fast, secure, efficient backup program
ssh-audit - SSH server auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
rclone - "rsync for cloud storage" - Google Drive, S3, Dropbox, Backblaze B2, One Drive, Swift, Hubic, Wasabi, Google Cloud Storage, Yandex Files
ssh-audit - SSH server & client security auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
bupstash - Easy and efficient encrypted backups.
Wazuh - Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
nixos-infect - [GPLv3+] install nixos over the existing OS in a DigitalOcean droplet (and others with minor modifications)
OpenSSL - TLS/SSL and crypto library
Duplicacy - A new generation cloud backup tool