PHPSECLIB in 2020

phpseclib has been around for some time now. I just started toying with it and I am definitely interested in using this for a project. That said, I am not able to find much information on how professionals feel about the library versus other possibly more secure ones.

I’m posting this simply to ask if I can trust phpseclib (relatively). I would want to use 2.0. Sometimes things are too good to be true and this feels like one of those times. If there are better (preferably easy to implement) solutions out there I am all ears. I had originally been researching the php ssh2 extension but extensions aren’t desirable.

What security benefit is there in 2020 to block outbound Ping [duplicate]

I’ve researched this and found the following on StackExchange and ServerFault, but they’re very old.

https://serverfault.com/questions/55889/why-block-outbound-icmp

Is it a bad idea for a firewall to block ICMP?

Security risk of PING?

So, as of now (mid-2020) is there any valid security reason to block outbound ping on one’s server.

Algorithm and key size to choose for SSL certificates (security and CPU wise) in 2020 (using nginx)

I posted this question already on SO, but as it is not really a programmin question I thought it might be a better place to ask here:

I want to setup a new SSL certificate store for generating SSL certs (server certs (nginx) and client certs (linux/windows devices))

I’m searching already for quite some time and I’m not sure I fully understand. especially as some articles are a few years old.

Many articles just talk about RSA end seem to recommend 2048 or 3072 though mentioning that 2048 is today probably still the best choice ( https://expeditedsecurity.com/blog/measuring-ssl-rsa-keys/ )

I found for example one Article ( https://paragonie.com/blog/2019/03/definitive-2019-guide-cryptographic-key-sizes-and-algorithm-recommendations ) but it seems to talk mostly about key encryption as @dave_thompson_085 pointed out on SO

stating in the section “Asymmetric (“Public Key”) Encryption”

Use, in order of preference:     X25519 (for which the key size never changes) then symmetric encryption.     ECDH with secp256r1 (for which the key size never changes) then symmetric encryption.     RSA with 2048-bit keys.  The security of a 256-bit elliptic curve cryptography key is about even with 3072-bit RSA.  Although many organizations are recommending migrating from 2048-bit RSA to 3072-bit RSA (or even 4096-bit RSA)  in the coming years, don't follow that recommendation. Instead migrate from RSA to elliptic curve cryptography, and then breathe easy while you keep an eye out for post-quantum cryptography recommendations. 

However they don’t mention the impact on server CPU usage compared to RSA 2048/3072/4048. I also didn’t find many other articles suggesting to switch to Elliptic curve algorithms.

Another article ) https://www.thesslstore.com/blog/you-should-be-using-ecc-for-your-ssl-tls-certificates/ _ tries to promote ECC instead of RSA, but comments on the article state, that ECC is less safe than RSA if quantum computers kick in. And the article cites nowhere numbers for what performance improvement to expect when using ECC.

https://crypto.stackexchange.com/questions/1190/why-is-elliptic-curve-cryptography-not-widely-used-compared-to-rsa mentions potentially legal issues and fear of being sued.

Though CPU usage is not a major issue Id still like to get some idea as I’d like to use the same CA and cert store also on devices like raspberries.

So what is today the best choice for certificate key algorithms and key sizes for server certs (old internet explorer not required but PCs, tablets, mobile phones being used today should be able to connect to the server

and what’s the best choice for client certs (will not be used on mobile devices)?

I kind of tend to RSA 2048, but I’m really not that sure I interpret all the articles correctly and don’t like to make choices based on feelings.

Best Web Hosting Service 2020 – Prewebhost.com!

As a client every one looking for the best, quality, reliable and cheap hosting services and which is Prewebhost is trying to deliver. Best web hosting service can be proven on the basis of resources, customer service, chat support, features and pricing.

Prewebhost is offering perfect combination of pricing, features and resources with all our web hosting plans and hence our plans perfectly suits for the word best web hosting service. We offer hdd and ssd based hosting services starting from from range $0 to $8 per month and where single to unlimited websites can be hosted. With offer cpanel as control panel for the linux based shared and reseller hosting services also all our plans comes with 30 days money back guarantee which is unconditional and can be applied with any billing cycle. Also we offer range of key fetures named as unlimited space, unlimited bandwidth, free migration, free ssl certificate, cloudflare, seo tools and much more with our service.

We offer reseller hosting services too and its based on the both hdd and ssd storage platforms and our ssd platforms have best speed for the websites, so we always suggest try and confirm.

Features of Best Web Hosting Service :

– Unlimited Space
– Unlimited bandwidth
– 30 days unconditional money back guarantee
– Easy billing cycles
– Easy upgrades
– Lifetime free services available
– Free Migration Service
– 24×7 Live Chat Support
– 24×7 Support Ticket System
– Search Engine Optimization tools
– cpanel as control panel
– cloudflare supported
– free auto ssl
– free lets encrypt ssl
– Monthly and all billing cycles
– 50% discount with annual billing cycle
– Easy Downgrades
– Unlimited Email Accounts
– Unlimited FTP Accounts
– SSH Access
– Max Addon domains
– Max databases
– Max Subdomains
– Max Parked Domains
– Phpmyadmin to administer database
– Backup facility available
– 24×7 Live Chat Support
– 24×7 Email/Ticket Support
– perfect for all types of ecommerce sites

Order Now : https://www.prewebhost.com/cheap-ssd-hosting.php

Thank you.