-
(This post assumes some familiarity with the mechanics of TLS because it was getting long enough, but I've added some links around important concepts. Happy to elaborate on anything.)
## Justificat…
-
## Summary
Current commercial deployments of Shadowsocks suffer from a social-engineering weakness that any client knows the Symmetric Pre-Shared Key (SPSK) and can use it to MitM attack other cli…
-
The default settings of `ssl` module are not considered the most secure, so Python Software Foundation wrote some [security considerations](https://docs.python.org/2/library/ssl.html#security-consider…
-
Your site is serving the download for this app over HTTP instead of HTTPS. This is a security risk to your users. Please acquire a HTTPS certificate for your site.
You can get one for free from Let…
-
Hi guys,
I have a problem using local domain names after upgrade on the new version (5.3.4) from symfony/cli deprecated v4.x
Before following install instructions and install symfony-cli from rpm …
-
- Change "master" to "main"
- Encryption of sequence numbers. This idea comes from QUIC and is used also in DTLS 1.3. It provides improves privacy when the sequence number helps an attacker track …
-
What would you like Teleport to do?
Allow Machine ID non-VM resources to utilize Azure Join method
What problem does this solve?
We currently have a use case for Teleport processes running on con…
-
### Is your feature request related to a problem? Please describe.
When doing TLS MitM with the local proxy, a client that doesn't accept ZAP's served certificate will abort the connection, sometimes…
-
With OpenVPN 2.6.0 while connecting to a up-to-date Synology NAS, the connection is established and after a while the data flow stops working. Connection appears to be still up, but I am unable to pin…
-
As per the discussion #193, step-ca should be able to expose an HTTP port instead of only an HTTPS (or in addition to an HTTPS).
There are situations where the use of HTTPS at the step-ca level is …