Explore >> Select a destination
|
You are here 
|
blog.dshr.org | ||
| | | | |
techblog.bozho.net
|
|
| | | | | Tension has been high in the past months regarding a proposed change to the European eIDAS regulation which defines trust services, digital identity, and the so-called QWACs - qualified websiteContinue reading | |
| | | | |
httptoolkit.com
|
|
| | | | | Certificate transparency is superb improvement to HTTPS certificate security on the web that's great for users and businesses, but on Android it creates a huge... | |
| | | | |
www.eff.org
|
|
| | | | | The EU is poised to pass a sweeping new regulation, eIDAS 2.0. Buried deep in the text is Article 45, which returns us to the dark ages of 2011, when certificate authorities (CAs) could collaborate with governments to spy on encrypted traffic-and get away with it. Article 45 forbids browsers from... | |
| | | | |
www.sudo.ws
|
|
| | | Using sudo_logsrvd to centrally collect sudo session recordings from your network is a huge step forward in security: users cannot delete or modify session recordings locally. However, by default, transmission of recordings is not encrypted, making it open to modifications and eavesdropping. Encrypting the connection between sudo and sudo_logsrvd can eliminate these problems. Larger environments usually either have in-house PKI tooling in place, or colleagues who know all openssl options off the top of their heads. However, small and medium enterprises often lack the infrastructure or knowledge to work with TLS certificates. | ||
