-
Hi, i tried to use Keybase with a proxy. I tried both on Android and on Debian.
I get the following error in the log :
`...x509: certificate signed by unknown authority`
On Android the proxy …
-
We are introducing first-class support for HTTPS certificates on the SecureDrop .onions in the 0.4 release (#1928, #1934). @fowlslegs brought up potential privacy concerns due to OCSP revocation check…
-
I can always open up additional issues on the matter, but I have a vested personal interest in this because I would like to use this for extensions that I may write. This is my personal opinion, not …
april updated
7 years ago
-
Most client/server architectures are vulnerable to man-in-the-middle attacks, which allow snooping, cookie stealing, replay attacks, etc., even if the client and server communicate using TLS.
This …
-
## Description
A user requests that we don't have the TLS information as Charles Proxy does, so they switch to this app to get this information. We should support it.
## Acceptance Criteria
- Add…
-
Much drama over at https://medium.com/@pepelephew/how-to-intercept-all-wire-voice-and-video-calls-13da1246675c#.aa9txx9r1 because Wire don't pin their TLS certs (and also don't seem to put their VoIP …
-
CPython's `get_channel_binding` method implements the tls-unique channel binding for TLS 1.3:
https://github.com/python/cpython/blob/main/Lib/test/test_ssl.py#L671-L681
https://github.com/python/cpy…
-
Main free SSH providers:
* localhost.run
* remote.moe
* srv.us
* serveo.net
Pre-install known hostname for the localhost.run. The problem is that the RSA pubkey is big. Need to ask generate a…
-
Reported by Mick Ayzenberg of DejaVu Security.
Impact:
An attacker can MITM a Stratum connection to intercept user credentials, modify a payout address, or redirect a miner to a separate pool.
Deta…
veox updated
10 years ago
-
Hi, do you have plans to support QUIC connections as it appears that mitm is possible too ?