Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @__agwa
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @__agwa
-
Andrew Ayer proslijedio/la je Tweet
We are pleased to announce that
#realworldcrypto 2020 will be live-streamed. Link: https://totalwebcasting.com/view/?func=VOFF&id=columbia&date=2020-01-08&seq=1 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hopefully the SHA-1 OCSP responses are all signed from a sub-CA technically constrained to OCSP (as required by Mozilla policy) so it can't be used to forge an actual certificate.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I haven't scanned OCSP responders in a while, but I'm sure there are still CAs signing OCSP responses with SHA-1, because it was never forbidden, and CAs will keep doing something dangerous as long as it's not forbidden.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
You calculate a SHA-1 chosen prefix and you choose to attack the PGP Web-of-Trust!? Come on, forge an OCSP response from a publicly-trusted CA instead! https://www.mail-archive.com/dev-security-policy@lists.mozilla.org/msg02999.html … https://sha-mbles.github.io/
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
New blog post: This Is Why You Always Review Your Dependencies, AGPL Edition https://www.agwa.name/blog/post/always_review_your_dependencies …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Andrew Ayer proslijedio/la je Tweet
miekg/dns before version 1.1.25 released today uses predictable DNS transaction IDs, can lead to response forgeries https://github.com/miekg/dns/issues/1043 …
#golangHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
New blog post: Programmatically Accessing Your Customers' Google Cloud Accounts (While Avoiding the Confused Deputy Problem) https://www.agwa.name/blog/post/accessing_your_customers_google_cloud_accounts …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Andrew Ayer proslijedio/la je Tweet
Zoom - the strongest advocates against travel - advertising on airport TSA bins. Geniuspic.twitter.com/OgVRNeZXA4
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Andrew Ayer proslijedio/la je Tweet
Today in unintended-consequences land: If you send an email from Gmail to a SMTP server hosted on Google Cloud Platform ... it will send over an internal, private IP, not from the public Gmail IPs. So the SPF check will fail on those emails since SPF is a sender IP check. 1/2
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Operating a
#CertificateTransparency monitor is hard, exhibit 9001: https://groups.google.com/d/msg/crtsh/DM8SI-qsE8E/J_ndSkroBgAJ … Thank you,@_robstr and@SectigoHQ for building and operating this invaluable resource for the WebPKI.Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Do you want monitoring that will prevent downtime, improve your security, while being easy to use? Sign up for Cert Spotter here: https://sslmate.com/signup?for=certspotter … (9/9)
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
This minor feature was hard to implement but will have a big impact on making Certificate Transparency more usable by non-experts. Other monitors will tell you that a certificate was issued by a company that isn't a certificate authority, or hasn't existed for a decade. (8/9)
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
It doesn't sound hard to figure out who issued a certificate, but because of all the acquisitions and obscure business arrangements in the WebPKI, you often needed to be a WebPKI expert to figure it out. Now you can just use Cert Spotter. (7/9)
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Third: Cert Spotter now tells you who REALLY issued a certificate, and who you need to contact to get it revoked, which will reduce confusion and save you precious time responding to an unwanted certificate. (6/9)pic.twitter.com/SGBRJnpIX0
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Or, if your issuance is automated, there's an API for telling Cert Spotter about your legitimate certificates so you won't be alerted about them. Imagine: plugins for Certbot, Caddy, etc. that automatically authorize all certs that they issue! https://sslmate.com/certspotter/whitelisting_api … (5/9)
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Second: say goodbye to alert fatigue! I know you're busy, so I only want to bother you when there's really a problem. If you trust some CAs, you can choose not to be alerted about their certificates. Trusting the 1-3 CAs that you use is WAY better than trusting all 100+. (4/9)pic.twitter.com/hzvYD5xkAo
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
If the endpoint is running a public HTTPS server, Cert Spotter checks the expiration date of the live certificate. Otherwise, it looks in CT logs to see if the certificate has been renewed. (Coming soon: monitoring for other installation errors, like missing intermediates.) (3/9)
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
First: expiration monitoring! Cert Spotter now monitors every one of your domains and sub-domains found in CT logs and alerts you about expiring certificates - whether it's a forgotten manual certificate, or a broken automated certificate. (2/9)pic.twitter.com/ngOdiT0Dpe
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ICYMI: last week I rolled out a HUGE upgrade to Cert Spotter. Now that the post-rollout craziness has subsided, let me tell you about my favorite new features... (1/9)https://twitter.com/SSLMate/status/1195051373911560192 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Andrew Ayer proslijedio/la je Tweet
Make Twitter's trending hashtags boring Twitter shows you trending hashtags to seduce you into spending more time in the app. You can prevent this by changing your Trends locale to a city whose language you can't read and whose news you don't follow.pic.twitter.com/PRsc1Db4y8
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.