Messing with migrating a web application to a HTTPS only version 21. March 2011 adrian (0) Last week, a client was in the process of migrating a web application(not a comp... [More]
FTP servers and their FTP over explicit SSL/TLS implementations 16. March 2011 adrian SSL (0) What was tested for servers supporting FTP over explicit SSL/TLS: - SSL/TLS v... [More]
RFC 6176 - what’s in for you 11. March 2011 adrian SSL (0) As you may be aware RFC 6176 was published. Basically the use of SSL 2.0 is pro... [More]
A quick look over some browsers and their SSL/TLS implementations 10. March 2011 adrian SSL (4) Here are a few observations regarding some browsers and their SSL/TLS implementa... [More]
SSL/TLS sloppy implementation of Astaro Security Gateway v8's outbound HTTPS inspection feature 8. March 2011 adrian (0) Today I was behind an Astaro Security Gateway v8 (8.102) doing outbound HTTPS in... [More]
Random SSL/TLS 101 - Differences between TLS 1.0 and SSL 3.0 3. March 2011 adrian SSL (0) The TLS protocol is based on the SSL 3.0 protocol specifications. Below are some... [More]
Random SSL/TLS 101 - SSL/TLS version rollbacks and browsers 1. March 2011 adrian SSL (0) A version rollback attack can enable an attacker to make the client and server f... [More]
Updates to my SSL/TLS project 23. February 2011 adrian SSL (0) Lately I’ve been updating my little SSL/TLS project. Sum-up: The doc listing t... [More]
Forefront TMG 2010 NIS detection methods with signatures/protocol anomalies examples 14. February 2011 adrian Forefront TMG (0) In this article we will discuss about Forefront TMG 2010 NIS detection methods w... [More]