Confirmed users
529
edits
Security/Automation/WinterOfSecurity2014: Difference between revisions
Security/Automation/WinterOfSecurity2014 (view source)
Revision as of 21:21, 21 April 2014
, 21 April 2014→Security tools
Gdestuynder (talk | contribs) No edit summary |
|||
| Line 55: | Line 55: | ||
Mozilla maintains guidelines for server side configurations of SSL/TLS. The goal of this project is to build a tool that verifies compliance of a configuration with our guidelines, and help the administrators improve their security. It is very similar in philosophy to project like SSL Labs, but with a stronger emphasis on explaining how to reach a better security level, and educating the administrators. | Mozilla maintains guidelines for server side configurations of SSL/TLS. The goal of this project is to build a tool that verifies compliance of a configuration with our guidelines, and help the administrators improve their security. It is very similar in philosophy to project like SSL Labs, but with a stronger emphasis on explaining how to reach a better security level, and educating the administrators. | ||
=== | === Identity Management === | ||
==== | ==== Implement support for Multi-Factor Authentication in OpenVPN ==== | ||
* Mozilla Advisor: Guillaume Destuynder | * Mozilla Advisor: Guillaume Destuynder | ||
* difficulty: medium | * difficulty: medium | ||
| Line 62: | Line 62: | ||
* Required skills: C | * Required skills: C | ||
Mozilla uses OpenVPN with MFA | Mozilla uses OpenVPN with MFA via deferred C plugins and pythons scripts. However, there are several caveats that require non-plugin based modifications, such as One Time Passwords (OTP) client input and session tracking. The goal of this project is to research and implement a reliable MFA support in OpenVPN, and contribute it to the Open Source OpenVPN project. | ||
=== Risk Management === | === Risk Management === | ||