Meeting-20130209

From WPLUG
Revision as of 21:25, 1 February 2013 by Patbarron (talk | contribs) (→‎Schedule for the Day: Add post-meeting venue link (D's has their own web site now))
Jump to navigation Jump to search
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.

WPLUG will hold a general user meeting on Saturday, February 9, 2013 at the Wilkins School Community Center in Swissvale, PA. You don't need to be a member of WPLUG to come to our meetings, and there is no cost to attend.

After our "business meeting," which typically doesn't take more than half an hour, we'll open the floor to presentations, discussions, and generally just hanging out. If you're interested in having fun with other Linux and open source enthusiasts in the area, we invite you to stop by!

Schedule for the Day

1:30pm - Doors open, set up

2:00pm - Business Meeting starts

2:30pm - Presentations (topics listed below)

3:30pm - Meeting ends, everyone out. Some of us may go to D's 6pack for beer and dogs.

Business Meeting

  • Review of minutes (5 minutes)
  • Reports of officers (10 minutes)
  • Cast/count ballots for bylaws amendment advanced at January GUM (10 minutes)
  • New business

Speaker/Presentation

Presenter: Pat Barron

Topic: Build Your Own Certificate Authority Using xca

There are a number of instances where a system administrator may wish to use certificate-based encryption to for security, to prevent spying on network traffic (for instance, running your own web server that is secured using HTTPS, so that web traffic is encrypted before being sent over the network), or to implement client authentication for something like a VPN. This generally requires that a Certificate Authority (CA) issue certificates for your use - you might choose to use self-signed certificates instead, but this will result in dire security warnings from web browsers about certificates issued by an "untrusted issuer", and some things won't allow you to use self-signed certificates at all. But why pay a recognized CA to issue certificates for you, that are probably going to be used by no one other than yourself and possibly your friends, and which don't need to be trusted by the general public?

The no-cost alternative is to create your own private CA, and register it as a trusted certificate issuer on your systems. Linux distributions already include all the tools you need to do this, in the OpenSSL package - but the procedures for creating a CA and issuing certificates using the raw OpenSSL tools are obscure, complicated, and can only be done from the command line.

In this presentation, I will give a (very) brief overview of Public Key Infrastructure (a/k/a "PKI" - the general framework that supports certificate-based security), and talk just a little about how it works and what it's used for. You will learn about "xca" (packaged for many mainstream Linux distros, and also available for Windows and Mac OS), an open source GUI interface to OpenSSL that makes managing a private CA quick and simple. You will learn how to use "xca" to create a private root CA and generate your first server certificate - a process that, using the "xca" GUI, can be completed in two minutes or less. You will learn how to register your private root CA as a trusted certificate issuer in Firefox and Internet Explorer (yeah, I know ... but people do use it...). Finally, I will briefly describe how to use the server certificate you generated from your private root CA to secure your Apache-based web server.

If there is interest, possible future presentations may cover topics such as how to use your private CA to issue client certificates that can be used for client-based web authentication, and to secure private VPNs (such as you might build using OpenVPN, for remote connectivity into your home network, etc.).

Presenter: Justin Smith

Topic: The Rise and Fall of the WebOS Mobile Operating System

"In the span of just three years, webOS went from being a media darling to a running gag. What happened? How did it end up contributing to Android's development? I'll also be giving a hands-on demonstration of Open WebOS, the most current iteration of webOS, since I own one of the three Android devices that is capable of running it."

Meeting Minutes

To be posted after the meeting is over.

Meeting Staff

If you'd like to assist with this meeting, please add your name to one or more of the categories below.

  • Host: Your name here
  • Co-Host: Your name here
  • Snacks/Refreshments: Your name here
  • Setup: Your name here
  • Clean Up: Your name here

Carpooling

  • Your name/location here