From bd2972ffbd9b48aeb23047c5f102137af8ea0e3d Mon Sep 17 00:00:00 2001 From: Fred Boniface Date: Fri, 7 Oct 2022 11:14:36 +0100 Subject: [PATCH] Many changes --- email-safety.php | 66 +++++++++++++++++++++++++++++++++++- gpg.php | 1 - index.php | 24 +++++++------ page-blocks/footer.php | 4 +++ page-blocks/head-content.php | 7 +++- pgp.php | 35 +++++++++++++++++++ php/age.php | 12 +++++++ 7 files changed, 136 insertions(+), 13 deletions(-) delete mode 100644 gpg.php create mode 100644 pgp.php create mode 100644 php/age.php diff --git a/email-safety.php b/email-safety.php index 8d1c8b6..17173c8 100644 --- a/email-safety.php +++ b/email-safety.php @@ -1 +1,65 @@ - + + + + + + + + Email Safety + + + + +

Email Safety

+
+

+ You are probably here beacuse you clicked a link in an email that I sent you. I was going to link to a quick guide to email safety but all I could find were specific guides aimed at children or the elderly. In the end I decided to throw a rough guide together. +

+ +

Phishing

+

+ Phishing is a technique used to try and get personal information from you. It could be styled to look like it is from a service that you use or a person that you know. Be on the lookout for: +

+
+
Spelling or grammatical errors
+
You will usually see spelling or grammatical errors, some people hypothesise that this is to weed out people that are savvy to the scam before they proceed
+
Urgent calls to action
+
Scam artists will use urgent language to invoke an emotive response, this can prevent you evaluating whether the email is genuine before you act.
+
Unusual sender addresses
+
Scam artists will usually send emails from an unusual looking address such as 'security-banking.xyz' or 'banking.something.xyz'. Elements of the address may even include the name of a trusted business or person.
+
+ +

+ Even after checking for all of the above, it could be the case that the scam artist is sending an email from a real, trusted address. This is possible by hacking or spoofing. It is important that your email account is kept secure with a strong password - this helps to prevent your email address being used by scam artists. +

+ +

Tampering

+

+ Generally, email is an insecure means of communication. It is possible for an email to be viewed or tampered with whilst it is being transmitted. +

+

+ Because of this, it is important that you review links and attachments before opening them. Web browsers are improving on the security front and often alert you if you try to open a link to a scam website or that tries to download a file but you should still hover over the link which can reveal the actual destination. Attachments should be scanned for viruses or threats before you open them. +

+ +

Signing & Encryption

+

+ There are technologies to digitally sign and/or encrypt email messages, both PGP and S/MIME are available. +

+

+ S/MIME is more widely supported but does mean that you have to buy a certificate, cheaper certificates do not provide proof of the person sending the email, however your email client can use the certificate to check whether the email has been tampered with. More expensive certificates are available that you can use to prove your identity - these are the type of certificated used to digitally sign documents such as PDF files. +

+

+ PGP is not as widely supported and is more complicated for the end user, however there is no cost as you generate certificates yourself. It is then up to the sender to validate your identity, you can read more about PGP on my PGP page. +

+

+ Both S/MIME and PGP also support encryption which involves sharing your certificates public key with others, an email can only be encrypted with that public key. It is also possible to encrypt an email with a password. I won't go on further as email encryption is a bit out of scope here. +

+
+ + + + + \ No newline at end of file diff --git a/gpg.php b/gpg.php deleted file mode 100644 index 8d1c8b6..0000000 --- a/gpg.php +++ /dev/null @@ -1 +0,0 @@ - diff --git a/index.php b/index.php index 48aee9a..df773d9 100644 --- a/index.php +++ b/index.php @@ -1,9 +1,13 @@ + + + - - - + Fred Boniface - Hello @@ -12,10 +16,11 @@

Hello

- Hi, I am Fred Boniface - a 28 year old Rail Professional with many - interests outside of work and while I do have many opinions about the - state of the rail industry at present, this website aims to be about - my personal life and interests, rather than my work. + Hi, I am Fred Boniface - a year old Rail + Professional with many interests outside of work and while I do have + many opinions about the state of the rail industry at present, this + website aims to be about my personal life and interests, rather than my + work.

@@ -31,8 +36,7 @@

- + + \ No newline at end of file diff --git a/page-blocks/footer.php b/page-blocks/footer.php index e69de29..dad1f5f 100644 --- a/page-blocks/footer.php +++ b/page-blocks/footer.php @@ -0,0 +1,4 @@ +© Frederick Boniface 2022"; +} \ No newline at end of file diff --git a/page-blocks/head-content.php b/page-blocks/head-content.php index 8d1c8b6..19b0d94 100644 --- a/page-blocks/head-content.php +++ b/page-blocks/head-content.php @@ -1 +1,6 @@ - +'; + echo ''; + echo ''; +} diff --git a/pgp.php b/pgp.php new file mode 100644 index 0000000..10475fa --- /dev/null +++ b/pgp.php @@ -0,0 +1,35 @@ + + + + + + + + PGP/GPG + + + + +

PGP/GPG

+
+

+ PGP stand for 'Pretty Good Privacy', GPG stands for 'GNU Privacy Guard' + , for the scope of this website they are interchangable. +

+ +

+ My public GPG keys can be found below. You can use my public key to + confirm that a signed email came from me, to verify signed files, and + to verify commits and downloads from my + gitea server. +

+ + +
+ + + + + \ No newline at end of file diff --git a/php/age.php b/php/age.php new file mode 100644 index 0000000..deed18f --- /dev/null +++ b/php/age.php @@ -0,0 +1,12 @@ + $cur_month) { + return (($cur_year - 1) - $birth_year); + } else { + return ($cur_year - $birth_year); + } +} \ No newline at end of file