- How to prevent domain verification bypasses of your server certificate https://www.pentagrid.ch/en/blog/domain-verification-bypass-prevention-caa-accounturi/ 3 comments netsec
Linked pages
- Encrypted traffic interception on Hetzner and Linode targeting the largest Russian XMPP (Jabber) messaging service — https://notes.valdikss.org.ru/jabber.ru-mitm/ 364 comments
- How to mitigate the Hetzner/Linode XMPP.ru MitM interception incident https://www.devever.net/~hl/xmpp-incident 145 comments
- Engineering deep dive: Encoding of SCTs in certificates - Let's Encrypt https://letsencrypt.org/2018/04/04/sct-encoding.html 0 comments
- Deep dive into QUANTUM INSERT – Fox-IT International blog http://blog.fox-it.com/2015/04/20/deep-dive-into-quantum-insert/ 0 comments
- Kazakhstan man-in-the-middle attack - Wikipedia https://en.wikipedia.org/wiki/Kazakhstan_man-in-the-middle_attack 0 comments
- https://blog.mozilla.org/netpolicy/files/2023/11/eIDAS-Industry-Letter.pdf 0 comments
- GitHub - SSLMate/certspotter: Certificate Transparency Log Monitor https://github.com/SSLMate/certspotter 0 comments