Limiting certificate issuance to a server that posses a particular private key| Clément Joly – Open-Source, Rust & SQLite
Expect-CT Lite: A humble proposal for minimal CT enforcement in TLS certificates| www.devever.net
Mitigating the Hetzner/Linode XMPP.ru MitM interception incident, part 2: XMPP-specific mitigations| www.devever.net
TL;DR: we have discovered XMPP (Jabber) instant messaging protocol encrypted TLS connection wiretapping (Man-in-the-Middle attack) of jabber.ru (aka xmpp.ru) service’s servers on Hetzner and Linode hosting providers in Germany.| notes.valdikss.org.ru