The talk content was a collaboration with lionaneesh. Please find the slides here https://slides.com/aneeshdogra-1/security-101.

Test

• Solve https://backdoor.sdslabs.co/challenges/XORFUN. (credits: https://backdoor.sdslabs.co/users/rnehra01) [1 point]
• Use a software frontend forward proxy TLS offloader (nginx, haproxy) to host a website.
  • What is end-to-end encryption?
  • You have to use OpenSSL library to generate a local CA, intermediate CA, certs (both server and client) and CRLs.
• Get a cert signed by Letsencrypt CA. [2 points]
• Do the following services use asymm / symm crypto - ssh, tls, bluetooth pairing? How does the key sharing work? [1 point]
• Talk to any one of the senior DevOps to understand how LDAP/ SSO works in media.net. How are your users, created and keys synced accross the servers? [2 points]