|
You are here |
techblog.bozho.net | ||
| | | | |
blog.dshr.org
|
|
| | | | | The security of encrypted Web traffic depends upon a set of Certificate Authorities (CAs). Browsers and operating systems are configured wit... | |
| | | | |
alexsci.com
|
|
| | | | | Challenges facing the CAs and why we still trust them | |
| | | | |
httptoolkit.com
|
|
| | | | | Certificate transparency is superb improvement to HTTPS certificate security on the web that's great for users and businesses, but on Android it creates a huge... | |
| | | | |
pboyd.io
|
|
| | | Here's a fun list to look through: Dumb Password Rules. Most of the rules seem arbitrary, like only allowing digits, but some hint at deeper problems. For instance, preventing single-quotes. They aren't inserting passwords into a database without a SQL placeholder, right? Nearly every site on that list has a needlessly short maximum password size. If they're storing passwords correctly, there's no need for this. This post will go through a few bad ways to store a password and you can see what I mean.... | ||