spraci.info

Search

Items tagged with: HTTPS

Easy, Secure HTTPS With an ESP8266


#microcontrollers #securityhacks #esp8266 #https #iot #hackaday
posted by pod_feeder_v2
Easy, Secure HTTPS With an ESP8266
 
Image/photo
HTTPS Everywhere

HTTPS Everywhere is a Firefox, Chrome, and Opera extension that encrypts your communications with many major websites, making your browsing more secure. Encrypt the web: Install HTTPS Everywhere today.

https://www.eff.org/https-everywhere

#HTTPSEverywhere #https
 
#eff #letsencrypt #security #tls #https
 
● NEWS ● #pcworld #mozilla ☞ #Firefox flips on default #DNS over #HTTPS to encrypt Internet traffic at the source
 

Proof-of-concept exploits published for the Microsoft-NSA #crypto #bug


* https://github.com/ollypwn/cve-2020-0601
* https://github.com/kudelskisecurity/chainoffools

#CurveBall #CVE-2020-0601 #microsoft #nsa #https #security #code #exploit #patch #windows
 
What's #HTTPS for secure computing?
https://opensource.com/article/20/1/confidential-computing #security #encryption
 
● NEWS ● #troyhunt #Privacy #Surveillance ☞ Still Why No #HTTPS ?
 

NextDNS ist neuer Partner für DNS over HTTPS in Firefox


von Sören Hentzschel

DNS over HTTPS, kurz: DoH, soll die Sicherheit und Privatsphäre der Nutzer verbessern. Nach Cloudflare hat Mozilla NextDNS als weiteren Partner gewonnen.

#NextDNS #DNSoverHTTPS #Firefox #DNS #HTTPS #DoH #Sicherheit #Privatsphäre #Cloudflare #Mozilla #SörenHentzschel
 

Microsoft Windows получит возможность использования DNS-over-HTTPS


Ну что ж, пусть будет, хотя бы, DNS-over-HTTPS. Если можно будет использовать свой собственный #DoH сервер в #Windows, то это, безусловно, плюс.... Show more...
 
● NEWS ● Introducing @small-tech/https, a batteries-included drop-in replacement for the #Nodejs #https module
 
● NEWS ● #doh ☞ #DNS over #HTTPS Will Give You Back #Privacy that Big #ISPs Fought to Take Away
 

DNS-over-HTTPS: Deutsche Provider sitzen DoH vorerst aus


Anfragen von Golem.de an deutsche Provider zeigen, dass diese die Einführung von DNS-over-#HTTPS ( #DoH ) durch #Google und #Mozilla zwar ähnlich kritisieren wie internationale #Provider, sich aber noch eher in der Beobachterrolle sehen.

Und die Deutsche Telekom sieht das Geschäft mit Daten in Gefahr 🙄
 

Mozilla: Firefox 70 zeigt Übersicht zu Tracking-Schutz


Der Tracking-Schutz des Firefox blockiert sehr viele Elemente, die in der aktuellen Version 70 des Browsers für die Nutzer ausgewertet werden. Der Passwortmanager Lockwise ist nun Teil des Browsers und die Schloss-Symbole für HTTPS werden verändert.

#Mozilla #Firefox #Firefox70 #Tracking-Schutz #TrackingSchutz #Browser #Internet #Passwortmanager #Lockwise #HTTPS
 
#OpenSource #Security Podcast: Episode 164 - #DNS over #HTTPS (or in #mozilla case, over #surveillance company #cloudflare ): Probably not the end of the world
 
ISPs and Governments Don’t Seem to Like Security and Privacy-enhancing #DNS over #HTTPS (DoH) [if done improperly, e.g. outsourced to #cloudflare , it's actually damaging #privacy outside US]
ISPs and Governments Don’t Seem to Like Security and Privacy-enhancing DNS over HTTPS (DoH)
 

#Google and #Mozilla block #Kazakhstan root CA #certificate from #Chrome and #Firefox


Source: https://venturebeat.com/2019/08/21/google-and-mozilla-block-kazakhstan-root-ca-certificate-from-chrome-and-firefox/
“To protect our users, Firefox, together with Chrome, will #block the use of the Kazakhstan root CA certificate. This means that it will not be trusted by Firefox even if the user has installed it,” Mozilla wrote on its corporate blog.
#security #privacy #browser #internet #web #https #news #surveillance #politics #freedom #humanRights #technology
Google and Mozilla block Kazakhstan root CA certificate from Chrome and Firefox
 

#MITM on all #HTTPS #traffic in #Kazakhstan


Source: https://bugzilla.mozilla.org/show_bug.cgi?id=1567114
Since today all #Internet providers in Kazakhstan started MITM on all encrypted HTTPS traffic.

They asked end-users to install government-issued #certificate #authority on all devices in every #browser: http://qca.kz/
#Firefox #Mozilla #surveillance #monitoring #security #privacy #freedom #politics #humanRights #web #backdoor #Government #news #fail
 
#Mozilla revamps Firefox's #HTTPS address bar information
https://www.ghacks.net/2019/08/13/mozilla-revamps-firefoxs-https-address-bar-information/ #firefox #www #freesw
 

Ya puedes escuchar #Wallmapugrama, programa radial mapuche sobre contingencia y actividades culturales en Puelmapu/Ngulumapu


#
En esta primera sesión presentamos nuestra propuesta radial y las voces que lo conducen: Claudio Alvarado Lincopi, Arturo Ahumada, Simona Mayo y Erick Valenzuela. Le contamos a nuestro publico de qué se trata Wallmapugrama y comentamos sobre las secciones que lo componen: 1) Mapucheo de la semana: en qué anduvimos; 2) Fewla may!: contingencia política mapuche; 3) Champurriao: temas culturales, farándula, sociales, etc y 4) Mapuagenda: recomendaciones de actividades culturales. Dentro de los temas que revisamos hablamos del I Encuentro Internacional de Derechos Lingüísticos como Derechos Humanos en Córdoba, la salida del pueblo Mapuche de la Consulta Ind... Show more...
 
Image/photo

Kazakhstan: MITM on all HTTPS traffic!


Bugzilla (MoFo):
Eugene 20 hours ago

User Agent: Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:68.0) Gecko/20100101 Firefox/68.0

Steps to reproduce:

Since today all Internet providers in Kazakhstan started MITM on all encrypted HTTPS traffic.

They asked end-users to install government-issued certificate authority on all devices in every browser: http://qca.kz/

Actual results:

MITM attack: https://i.imgur.com/rFEjXKw.jpg

Message from Internet provider, requires to install this CA: https://i.imgur.com/WyKjOug.jpg

Proofs: https://atlas.ripe.net/measurement
... Show more...
 
Since this morning, roughly 1 out of 25 #HTTPS requests to friendica.mrpetovan.com fails because of an invalid date? The #SSL certificate isn't expired and I don't understand why only a small fractions of the requests fail.

Can anyone please #help me troubleshoot the issue?
 
Germany (call it Merkel or CDU/CSU) still blocking climate action, no proper legal act to #endcoal etc. NGO experts like @naturschutzring/ @AgoraEW show the way forward. #FridaysForFuture #ParisAgreement twitter.com/naturschutzrin…

"Die BuReg muss einen Blitzstart für den #Klimaschutz hinlegen, sonst hat sie jegliches Restvertrauen verspielt. Also: Jetzt die wesentlichen Maßnahmen abstimmen & in Gesetze gießen“ sagt @kainiebert zu #15Eckpunkte für das #Klimaschutzgesetz von @AgoraEW #https://bit.ly/2JhqEU8 pic.twitter.com/4VeLL4REJ3

https://twitter.com/news_rapha/status/1127883155489337345 #https
 
#HTTPS Isn't Always As Secure As It Seems https://www.wired.com/story/https-isnt-always-as-secure-as-it-seems/ "5.5 percent had potentially exploitable TLS vulnerabilities."
 
Fear of Terrorism - not only tor vpn but any form of encryption could become illegal in German - welcome to the 4th Orwellian Reich of mass surveillance

Mark my words: lawyers will destroy this world – their madness just hit a new high


Internet and Privacy activist Anke Domscheidt Berg says, this “roadmap” could lead to banning ANY FORM OF ENCRYPTION, not just tor onion network, which would be complete madness – just think about unencrypted logins!

Man in the middle could siffon your bank account passwords and steal your money.

After DSGVO and Article 3 / content upload filter, this it is just a new round of lawyer-madness.

it also just shows once more how much of a Washington-Puppet state the post-world-war-2 Germany has become and was allowed to be and how much in the Orwellian times we already l... Show more...
 
Daniel Stenberg: Happy 21st, #curl !
https://daniel.haxx.se/blog/2019/03/20/happy-21st-curl/
"669 persons have authored patches that was merged."
#freesw #www #http #https
Happy 21st, curl!
 

New Tools for Detecting HTTPS Interception


The practice of HTTPS interception continues to be commonplace on the Internet. This blog post discusses types of monster-in-the-middle devices and software, and how to detect them.
Article word count: 2306

HN Discussion: https://news.ycombinator.com/item?id=19423470
Posted by grittygrease (karma: 253)
Post stats: Points: 156 - Comments: 55 - 2019-03-18T18:08:10Z

\#HackerNews #detecting #for #https #interception #... Show more...
 
#HTTPS Server: now with seamless #LetsEncrypt support https://ar.al/2019/03/08/https-server-now-with-seamless-lets-encrypt-support/ promising work from @aral on #dweb vision
 
Latest releases from @aral for #dweb https://ar.al/2019/03/07/https-server/ https://ar.al/2019/03/07/nodecert/ #freesw #https #nodecert
 
Nouvelles de l'archive Dogmazic

Bonjour,

auditrices, auditeurs, musiciens et musiciennes conviés sur Dogmazic, pour commencer cette année voici deux bonnes nouvelles de l’archive:

La première, c’est que Aisyk a pu récupérer les droits d’accès au serveur ! Une personne de plus avec les accès, cela signifie plus de souplesse, de réactivité et d’indépendance pour la gestion des problèmes techniques de l’archive. Vous vous en doutez, c’est une très bonne nouvelle 😉

La deuxième, qui est une conséquence directe de la première, c’est que l’accès SSL au site est de nouveau opérationnel, merci à Aisyk et à Florian de s’en être occupé, lors d’un contrib’atelier 🙂

Donc il est de nouveau possible de se connecter au site de mani... Show more...
 
I have to reopen #https://github.com/friendica/friendica/issues/5092 again. I would say we really should fix it before we release the new version
 

All the federal HTTPS domains that'll expire soon because of US gov't shutdown


We like to think of ourselves as nerds here at TechCrunch, which is why we’re bring you this. During the government shutdown, security experts noticed several federal websites were throwing back…
Article word count: 637

HN Discussion: https://news.ycombinator.com/item?id=18933950
Posted by jmsflknr (karma: 385)
Post stats: Points: 161 - Comments: 115 - 2019-01-17T19:50:10Z

\#HackerNews #all #because #domains #... Show more...
 

Show HN: Mkcert: valid HTTPS certificates for localhost


The web is moving to HTTPS, preventing network attackers from observing or injecting page contents. But HTTPS needs TLS certificates, and while deployment is increasingly a solved issue thanks to the…

HN Discussion: https://news.ycombinator.com/item?id=18842218
Posted by FiloSottile (karma: 5881)
Post stats: Points: 159 - Comments: 30 - 2019-01-07T02:15:44Z

\#HackerNews #certificates #for #https #localhost #... Show more...
 
Later posts Earlier posts