Last Thursday (June 15th, 2023), Let's Encrypt went down for about| www.agwa.name
I’ve noticed that there’s a common misconception that Certificate Transparency is a replacement for HTTP public key pinning. If those words make no sense to you: HTTP public key pinning was a now-mostly-defunct mechanism whereby websites could “pin” themselves to a set of public keys, so that browsers would not accept a certificate for that website’s hostname unless one of those pinned public keys appeared in its certificate chain. Certificate Transparency is a system whereby certif...| Emily M. Stark
Mitigating the Hetzner/Linode XMPP.ru MitM interception incident| www.devever.net
TL;DR: we have discovered XMPP (Jabber) instant messaging protocol encrypted TLS connection wiretapping (Man-in-the-Middle attack) of jabber.ru (aka xmpp.ru) service’s servers on Hetzner and Linode hosting providers in Germany.| notes.valdikss.org.ru
Why certificates issued by "Cloudflare" and "Baltimore" are really issued by DigiCert| www.agwa.name
Considering all the progress that has been made over the last decade making SSL certificates| www.agwa.name