Inside Google’s pushing revocation list approach 8. February 2012 adrian SSL (0) A couple of days ago Adam Langley from Google published a blog entry [1] where s... [More]
Forefront TMG 2010, Schannel and the SSL Renegotiation DoS 2. December 2011 adrian Forefront TMG, SSL (2) As you may be aware some time ago a tool[1] to exploit a known SSL Renegotiation... [More]
BEAST, TLS and You 28. September 2011 adrian SSL (2) Lately has been a lot of buzz regarding BEAST [1][2] and TLS, including some med... [More]
On the diginotar breach and the current PKI model 3. September 2011 adrian SSL (4) Originally intended to publish this in the second part of my SSL rant, but can&r... [More]
A critique noob’s view of SSL – Part 1 Quick SSL thoughts 31. August 2011 adrian SSL (0) There will be three parts: Part 1: Quick SSL thoughts Part 2: SSL and PKI P... [More]
The StartSSL security breach debate: we need more diplomacy and transparency; enough with the arrogance 9. August 2011 adrian SSL (0) With great power comes great responsibility. All too often arrogance accompanie... [More]
How to quickly interpret Qualys SSL Labs results 16. July 2011 adrian SSL (0) So you’ve rated your web server’s SSL configuration with SSL Labs. ... [More]
Follow-up to the default SSL/TLS settings shipped on various Linux distros for Apache 2.2.x tests 17. May 2011 adrian SSL (0) After testing how various Linux distros or freeBSD ship Apache’s(version 2... [More]
On scope: default SSL/TLS settings shipped on various Linux distros for Apache 2.2.x 5. May 2011 adrian SSL (1) Reading a while ago the One-Fourth Of SSL Websites At Risk article published on ... [More]
Forefront TMG 2010 Outbound HTTPS Inspection vs certificate revocation checking connection failures 29. March 2011 adrian Forefront TMG, SSL (0) After the Comodo buzz [1][2] some wondered how TMG’s Outbound HTTPS Inspec... [More]