Get started with App.net.

  Sign up now  
maclemon
    @smc You could check the VPN server with ssllabs.com servertest.
    maclemon
      @smc Which Vendor is that? Since Java’s crypto capabilities are sub-par (to be nice) I’d actually raise that issue at work as a security threat. Java seriously impacts end-point security and the SSL VPN is almost impossible to be secure with Java.
      maclemon
        @redqueencoder That feeling sounds oh so familiar… Too bad this requirement is deeply engraved in society.
        maclemon
          @redqueencoder I’m shivering with antici… @rabryst
          maclemon
            @smc I’m mostly using shells with tmux, less copying files. Works fine here over WiFi 802.11n/5GHz) and Gbit Ethernet on the MBP to servers on Ethernet. (On LAN or WAN). Anything I could test or try to replay here to help with finding the culprit?
            maclemon
              @smc I’m doing it likewise. Are you using the +hpn variant?
              maclemon
                @smc Interesting observation. I don’t See any of those with MacPorts OpenSSH +hpn. What kind/versions are your servers?
                maclemon
                  OS X 10.10.4 Beta (14E28a) now available for Devs. http://developer.apple.com/news/?id=05262015c
                  maclemon
                    @smc Don’t forget to change the crypto settings and port in /opt/local/etc/sshd_config ! Also completely turn off DSA and use ed25519 keys only.
                    maclemon
                      @smc To enjoy the +hpn speed improvements you Need that on both ends. FreeBSD for example defaults to use it as well.
                      maclemon
                        @smc It seems to do so for me. :-) MacPorts gives you a launchd item and dumps instructions to use it into the Terminal upon installation. The usual way for MacPorts. I’m Running it via my own launchd item which works fine als well.
                        maclemon
                          @smc Apple lags horribly for ANY open source part they ship. Worse than just skipping it. Have to work around Apple most of the time now. Most of OS X’s benefits are long gone sadly. @pharsicle
                          maclemon
                            @smc The “hpn patch” is an official variant to install with MacPorts. I can highly recommend it, especially in high bandwidth connections. @pharsicle
                            maclemon
                              @smc MacPorts has worked perfectly for me since the sunset of fink. :-) I Personally wouldn’t let homebrew anywhere near my machines. 90% is copied from Ports anyway and the rest is very strange things. Security of brew is somewhat scary. @pharsicle
                              maclemon
                                @smc You can fix the ancient OpenSSH version on OS X. The better solution is to go with MacPorts 6.8 +hpn Patch and use @bettercrypto config. Full disclosure: I’m co-author. @pharsicle
                                maclemon
                                  #AppleWatchSecurity Apple WTch Update 1.0.1 fixes 13 Security problems including TLS #FREAK. Update via iPhone! https://support.apple.com/de-de/HT204870