Search
Items tagged with: tls
#TLS #EncryptedClientHello #ECH support has been merged in #curl!
https://github.com/curl/curl/pull/11922
ECH experimental by sftcd · Pull Request #11922 · curl/curl
This is an (as-promised, on the mailing list) early pull request for adding HTTPS RR an ECH support to cURL, that has had so far minimal testing when using OpenSSL or wolfSSL as the TLS provider, b...GitHub
Open Letter regarding the #eIDAS Regulation:
We strongly warn against the currently proposed trilogue agreement, as it fails to properly respect the right to privacy of citizens and secure online communication; without establishing proper safeguards as outlined above, it instead substantially increases the potential for harm.
See the full Joint statement of scientists and NGOs on the EU’s proposed eIDAS reform here: https://blog.fiff.de/eidas-open-letter-2023/ #TLS
Open Letter regarding the eIDAS Regulation
We strongly warn against the currently proposed trilogue agreement.Rainer Rehak (FIfF e.V.)
Quick set up guide for Encrypted Client Hello (ECH)
The Encrypted Client Hello (ECH) mechanism draft-spec is a way to plug a few privacy-holes that remain in the Transport Layer Security (TLS) protocol that’s used as the security layer for the web.jochensp (https://guardianproject.info)
Mitigating the Hetzner/Linode XMPP.ru MitM interception incident, part 2: XMPP-specific mitigations
https://letsencrypt.org/
#opensource #TLS #PKI #infosec
Let's Encrypt
Let's Encrypt is a free, automated, and open certificate authority brought to you by the nonprofit Internet Security Research Group (ISRG).letsencrypt.org
🇩🇪 Noch wer mit Android < 4.4 unterwegs und somit auf TLS 1.0/1.1 angewiesen (1. ja, 2. macht nix, 3. nein)?
So:
SSL Labs Grade Change for TLS 1.0 and TLS 1.1 Protocols | Qualys Security Blog
Update 1/31/2020: The grade change is now live on www.ssllabs.com. Servers that support TLS 1.0 or TLS 1.1 are capped to B grade. Update 1/16/2020: The grade change is now live on the development…Qualys Security Blog
- I still use such a device and need compatibility (1%, 4 votes)
- I still use such a device but wouldn't mind (6%, 21 votes)
- I don't care (92%, 320 votes)
Since Fedora Silverblue is seen as the possible future of Fedora/Red Hat, you folks might want to talk to the Fedora folks about it and come up with a solution.
https://github.com/fedora-silverblue/issue-tracker/issues/397
#mozilla #firefox #fedora #fedoraSilverblue #bug #tls #ssl #redHat #linux #enterprise #certificates
Cannot add certificate authorities to Firefox using enterprise policy · Issue #397 · fedora-silverblue/issue-tracker
In Firefox version 64+, you can add your custom certificate authorities to Firefox using an enterprise policy file and by copying your certificates to /usr/lib/mozilla/certificates or /usr64/lib/mo...GitHub
First up is our #RPKI relying party software Routinator. 🚀 Version 0.12.1 fixes a small number of bugs. Most importantly, the #TLS-enabled servers for both HTTP and RTR now also accept private keys formatted as PKCS#1 RSA keys rather than only accepting PKCS#8 keys. #RoutingSecurity #rustlang
https://github.com/NLnetLabs/routinator/releases/tag/v0.12.1
Release 0.12.1 ‘Plan uw reis in de app’ · NLnetLabs/routinator
Bug Fixes Actually use the extra-tals-dir config file option. (#821) Allow private keys prefixed both with BEGIN PRIVATE KEY and BEGIN RSA PRIVATE KEY in the files referred to by http-tls-key and ...GitHub
https://codeberg.org/small-tech/auto-encrypt/src/branch/main/CHANGELOG.md#3-1-0-2022-06-07
#tls #https #letsEncrypt #autoEncrypt #js #javaScript #nodeJS #web #dev #smallWeb #smallTech
auto-encrypt
Automatically-provisioned TLS certificates for Node.js servers using Let’s Encrypt.Codeberg.org