Many changes

2022-10-07 11:14:36 +01:00 · 2022-10-07 11:14:36 +01:00 · bd2972ffbd
parent 7e01ab7c5a
commit bd2972ffbd
7 changed files with 136 additions and 13 deletions
--- a/email-safety.php
+++ b/email-safety.php
@ -1 +1,65 @@
+<!DOCTYPE html>

+<?php
+  include "./php/age.php";
+  include "./page-blocks/footer.php";
+?>
+
+<html>
+  <head>
+    <?php insert_head(); ?>
+    <title>Email Safety</title>
+  </head>
+
+  <body>
+
+    <h1 class="page-title">Email Safety</h1>
+      <div class="page-main-content">
+        <p>
+        You are probably here beacuse you clicked a link in an email that I sent you.  I was going to link to a quick guide to email safety but all I could find were specific guides aimed at children or the elderly.  In the end I decided to throw a rough guide together.
+        </p>
+
+        <h2>Phishing</h2>
+          <p>
+          Phishing is a technique used to try and get personal information from you.  It could be styled to look like it is from a service that you use or a person that you know. Be on the lookout for:
+          </p>
+          <dl>
+            <dt>Spelling or grammatical errors</dt>
+              <dd>You will usually see spelling or grammatical errors, some people hypothesise that this is to weed out people that are savvy to the scam before they proceed</dd>
+            <dt>Urgent calls to action</dt>
+              <dd>Scam artists will use urgent language to invoke an emotive response, this can prevent you evaluating whether the email is genuine before you act.</dd>
+            <dt>Unusual sender addresses</dt>
+              <dd>Scam artists will usually send emails from an unusual looking address such as 'security-banking.xyz' or 'banking.something.xyz'.  Elements of the address may even include the name of a trusted business or person.</dd>
+          </dl>
+
+          <p>
+          Even after checking for all of the above, it could be the case that the scam artist is sending an email from a real, trusted address.  This is possible by hacking or spoofing.  It is important that your email account is kept secure with a strong password - this helps to prevent your email address being used by scam artists.
+          </p>
+
+        <h2>Tampering</h2>
+          <p>
+          Generally, email is an insecure means of communication.  It is possible for an email to be viewed or tampered with whilst it is being transmitted.
+          </p>
+          <p>
+          Because of this, it is important that you review links and attachments before opening them.  Web browsers are improving on the security front and often alert you if you try to open a link to a scam website or that tries to download a file but you should still hover over the link which can reveal the actual destination.  Attachments should be scanned for viruses or threats before you open them.
+          </p>
+
+        <h2>Signing & Encryption</h2>
+          <p>
+          There are technologies to digitally sign and/or encrypt email messages, both PGP and S/MIME are available.
+          </p>
+          <p>
+          S/MIME is more widely supported but does mean that you have to buy a certificate, cheaper certificates do not provide proof of the person sending the email, however your email client can use the certificate to check whether the email has been tampered with.  More expensive certificates are available that you can use to prove your identity - these are the type of certificated used to digitally sign documents such as PDF files.
+          </p>
+          <p>
+          PGP is not as widely supported and is more complicated for the end user, however there is no cost as you generate certificates yourself.  It is then up to the sender to validate your identity, you can <a href="./pgp.php">read more about PGP</a> on my PGP page.
+          </p>
+          <p>
+          Both S/MIME and PGP also support encryption which involves sharing your certificates public key with others, an email can only be encrypted with that public key.  It is also possible to encrypt an email with a password.  I won't go on further as email encryption is a bit out of scope here.
+          </p>
+      </div>
+
+    <?php insert_footer(); ?>
+
+  </body>
+</html>
--- a/gpg.php
+++ b/gpg.php
@ -1 +0,0 @@
- 
--- a/index.php
+++ b/index.php
@ -1,9 +1,13 @@
 <!DOCTYPE html>
+
+<?php
+  include "./php/age.php";
+  include "./page-blocks/footer.php;"
+?>
+
 <html>
  <head>
-    <meta http-equiv="content-type" content="text/html; charset=UTF-8">
-    <meta name="viewport" content="width=device-width, initial-scale=1">
-    <link rel="stylesheet" type="text/css" href="./css/styles.css">
+    <?php insert_head(); ?>
    <title>Fred Boniface - Hello</title>
  </head>

@ -12,10 +16,11 @@
    <h1 class="page-title">Hello</h1>
      <div class="page-main-content">
        <p>
-          Hi, I am Fred Boniface - a 28 year old Rail Professional with many
-          interests outside of work and while I do have many opinions about the
-          state of the rail industry at present, this website aims to be about
-          my personal life and interests, rather than my work.
+          Hi, I am Fred Boniface - a <?php echo getAge(1993,11); ?> year old Rail 
+          Professional with many interests outside of work and while I do have 
+          many opinions about the state of the rail industry at present, this 
+          website aims to be about my personal life and interests, rather than my 
+          work.
        </p>

        <p>
@ -31,8 +36,7 @@
        </p>
      </div>

-    <footer>
-      © Frederick Boniface 2022
-    </footer>
+    <?php insert_footer(); ?>

  </body>
+</html>
--- a/page-blocks/footer.php
+++ b/page-blocks/footer.php
@ -0,0 +1,4 @@
+<?php
+function insert_footer() {
+  echo "<footer>© Frederick Boniface 2022</footer>";
+}
--- a/page-blocks/head-content.php
+++ b/page-blocks/head-content.php
@ -1 +1,6 @@
- 
+<?php
+function insert_head() {
+  echo '<meta http-equiv="content-type" content="text/html; charset=UTF-8">';
+  echo '<meta name="viewport" content="width=device-width, initial-scale=1">';
+  echo '<link rel="stylesheet" type="text/css" href="./css/styles.css">';
+}
--- a/pgp.php
+++ b/pgp.php
@ -0,0 +1,35 @@
+<!DOCTYPE html>
+
+<?php
+  include "./page-blocks/footer.php;"
+?>
+
+<html>
+  <head>
+    <?php insert_head(); ?>
+    <title>PGP/GPG</title>
+  </head>
+
+  <body>
+
+    <h1 class="page-title">PGP/GPG</h1>
+      <div class="page-main-content">
+        <p>
+          PGP stand for 'Pretty Good Privacy', GPG stands for 'GNU Privacy Guard'
+          , for the scope of this website they are interchangable.
+        </p>
+
+        <p>
+          My public GPG keys can be found below.  You can use my public key to 
+          confirm that a signed email came from me, to verify signed files, and 
+          to verify commits and downloads from my <a href="https://git.fjla.uk"> 
+          gitea server</a>.
+        </p>
+
+        
+      </div>
+
+    <?php insert_footer(); ?>
+
+  </body>
+</html>
--- a/php/age.php
+++ b/php/age.php
@ -0,0 +1,12 @@
+<?php
+
+function getAge($birth_year, $birth_month) {
+  $cur_year = date("Y");
+  $cur_month = date("m");
+
+  if ($birth_month > $cur_month) {
+    return (($cur_year - 1) - $birth_year);
+  } else {
+    return ($cur_year - $birth_year);
+  }
+}