I checked the SSL setting of my server. The result was "A +". I will enumerate points devised by setting.
/etc/apache2/sites-enabled/default-ssl.conf
Header always set Strict-Transport-Security "max-age=63072000; includeSubDomains"
SSLProtocol ALL -TLSv1 -SSLv2 -SSLv3
SSLHonorCipherOrder on
SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5:!RC4:!DES:!DH:
I conducted a vulnerability check of servers managed by Nessus.
As a result, a vulnerability was found in the configuration of the SSH server. The contents are as follows.
Description
Nessus has detected that the remote SSH server is configured to use the Arcfour stream cipheror no cipher at all. RFC 4253 advises against using Arcfour due to an issue with weak keys.
Nessus has detected that the remote SSH server is configured to use the Arcfour stream cipheror no cipher at all. RFC 4253 advises against using Arcfour due to an issue with weak keys.
Solution
Contact the vendor or consult product documentation to remove the weak ciphers.
See Also
https://tools.ietf.org/html/rfc4253#section-6.3
I made the following change of SSH service setting.
$ ssh -Q mac | awk 'BEGIN{printf "MACs "};(!/cbc/ && !/md/ && !/sha1/ && !/rc4/ && !/arcfour/){printf "%s,",$0};END{printf "\n"}' | sed -e 's/,$//g'
MACs hmac-sha2-256,hmac-sha2-512,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,umac-64-etm@openssh.com,umac-128-etm@openssh.com
$ ssh -Q cipher | awk 'BEGIN{printf "Ciphers "};(!/cbc/&&!/rc4/&&!/arcfour/){printf "%s,",$0};END{printf "\n"}' | sed -e 's/,$//g'
Ciphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,chacha20-poly1305@openssh.com
The character string output by the command is reflected in the following file.
/etc/ssh/sshd_config
/etc/ssh/ssh_config
$ sudo service sshd restart
After upgrading to iOS 10.2.1 iPhone owners are reporting the update has broken Apple’s fingerprint reader.
The problem primarily appears to impact iPhone 6 and iPhone 6 Plus owners and logical options such as removing and re-adding fingerprints and a factory reset doesn’t work. Interestingly downgrading to iOS 10.2 is reported to fix the problem, which isolates iOS 10.2.1 as the root cause.
In the case of Ubuntu 16.04 LTS, the version of apache 2 is old. It is apache 2.4.23, but since there is also a security hole (CVE-2016-4979), change to the latest version of apache2.
The procedure is as follows.
$ apache2 -v
Server version: Apache/2.4.23 (Ubuntu)
Server built: 2016-07-11T00:00:00
$ sudo add-apt-repository ppa:ondrej/apache2
$ sudo apt-get update
$ sudo apt-get upgrade
$ apache2 -v
Server version: Apache/2.4.25 (Ubuntu)
Server built: 2016-12-21T09:13:44
Native applications are certainly easy to use and engagement with users is high. However, it has to be developed for iOS and Android respectively, and maintenance cost is high.
For the above problem, it is possible to develop hybrid applications that can be used on multiple platforms such as Titanium, Xamarin, PhoneGap. However, it only reduces the cost of developing for each platform, and does not make deployment easier.
Proposed there is Progressive Web Apps rather than Hybrid. Rather than creating a hybrid application that runs on each platform, making applications that run on the Web can realize a movement closer to native applications.
Also, Google has launched "WebAPK" that enables you to use WEB applications like ordinary Android applications for Android Chrome Dev and Chrome Canary.
I was writing in the past, programming, full scratch. For example, I wrote a CGI program in Python. However, as for the Web, I started using Ruby on Rails of the web application Framework.
Now, in order to study DeepLearning, I tried to make a simple AI program with scratch, but judged that it is more efficient to use DeepLearning's framework such as TensorFlow.
I bought Twine five years ago.
Recently I received a message from Supermechanical Inc. that I have released a new product.
Unfortunately, Twine is already out of sale.