blog.ivanristic.com
Ivan RistićComputer security, open source, and continous publishing for geeks.
http://blog.ivanristic.com/
Computer security, open source, and continous publishing for geeks.
http://blog.ivanristic.com/
TODAY'S RATING
>1,000,000
Date Range
HIGHEST TRAFFIC ON
Thursday
LOAD TIME
9.2 seconds
16x16
32x32
64x64
128x128
160x160
192x192
256x256
PAGES IN
THIS WEBSITE
19
SSL
EXTERNAL LINKS
106
SITE IP
104.130.13.11
LOAD TIME
9.152 sec
SCORE
6.2
Ivan Ristić | blog.ivanristic.com Reviews
https://blog.ivanristic.com
Computer security, open source, and continous publishing for geeks.
blog.ivanristic.com
Ivan Ristić: Tag: Canoe
https://blog.ivanristic.com/canoe
Canoe: XSS prevention via context-aware output encoding. September 24, 2010. Ivan Ristić is an entrepreneur, software engineer, author, and application security researcher. F3FC A799 1828 32D6 8302. EE20 0514 59B0 ED36 74B3. Bulletproof SSL and TLS.
Ivan Ristić: Tag: Computer Misuse Act
https://blog.ivanristic.com/computer_misuse_act
Tag: Computer Misuse Act. Changes to Computer Misuse Act will turn security professionals into criminals. July 23, 2008. Changes to British law target criminals, but affect the entire security industry. April 01, 2008. Ivan Ristić is an entrepreneur, software engineer, author, and application security researcher. F3FC A799 1828 32D6 8302. EE20 0514 59B0 ED36 74B3. Bulletproof SSL and TLS.
Ivan Ristić: SSL Labs end of year 2014 updates
https://blog.ivanristic.com/2014/12/ssl-labs-end-of-year-updates.html
Laquo; POODLE bites TLS. SSL Labs APIs now available in Beta ». SSL Labs end of year 2014 updates. December 08, 2014. From the SSL/TLS perspective, 2014 was quite an eventful year. The best way to describe what we at SSL Labs did is we kept running to stay in the same place. What I mean by this is that we spent a lot of time reacting to high profile vulnerabilities: Hearbleed. The ChangeCipherSpec protocol issue in OpenSSL. POODLE (against SSL 3 in October. And against TLS in December. And our open sourc...
Ivan Ristić: Tag: BEAST
https://blog.ivanristic.com/beast
Apple enabled BEAST mitigations in OS X 10.9 Mavericks. October 31, 2013. Updated SSL/TLS Deployment Best Practices deprecates RC4. September 17, 2013. Is BEAST still a threat? September 10, 2013. RC4 in TLS is broken: Now what? March 19, 2013. Mitigating the BEAST attack on TLS. October 17, 2011. Ivan Ristić is an entrepreneur, software engineer, author, and application security researcher. F3FC A799 1828 32D6 8302. EE20 0514 59B0 ED36 74B3. Bulletproof SSL and TLS.
Ivan Ristić: Apache Security: free, ten years later
https://blog.ivanristic.com/2015/02/apache-security-ten-years-later.html
Laquo; SSL Labs APIs now available in Beta. OpenSSL Cookbook 2nd Edition released ». Apache Security: free, ten years later. February 26, 2015. Officially, Apache Security. About a week ago, quietly, and ten years after the original publishing date, we set Apache Security. Free (You can get it from the Feisty Duck web site. Although it's been clear for a long time that Apache Security. Isn't going anywhere, it's only now that its journey is finally complete. Today, Apache Security. Exists largely only as...
TOTAL PAGES IN THIS WEBSITE
19
HTTPSWatch | About
https://httpswatch.nz/about.html
HTTPSWatch assigns every tracked site a rating approximating the quality of its HTTPS support. If a verified TLS connection cannot be established or no page can be loaded over TLS, the site is given the Bad. Rating. The Mediocre. Rating means a TLS connection can be established but there are quality issues with the site’s implementation of HTTPS (e.g. the HTTP site doesn’t redirect to HTTPS or the. Header isn’t set). If everything looks good, a Good. Some sites which HTTPSWatch rates as Mediocre. There&r...
Certificate Error: August 2011
http://certificateerror.blogspot.com/2011_08_01_archive.html
My own brain dump, which is mostly, but not limited, to encryption, signing and certificates. Access Local Machine certificates without Admin rights. Digital certificates in windows, either the end entitty certificates, called Personal Certificates, the subCAs or the Root CAs, are stored in the so called Certificate Stores. There are different types of Certificate Stores but the more relevant ones are:. 8226; Personal CA Store:. 8226; Local Machine CA Store. From the command line open an MMC:. 8226; Inte...
Certificate Error: Mobile operators header enrichment assessment: Part 4/6 - Spain
http://certificateerror.blogspot.com/2010/09/mobile-operators-header-enrichment_21.html
My own brain dump, which is mostly, but not limited, to encryption, signing and certificates. Mobile operators header enrichment assessment: Part 4/6 - Spain. This time we´ll go for the main mobile operators in Spain: Orange, Vodafone and Telefonica/Movistar. See the previous posts if you need more information on the procedure. Orange Spain through WAP GW/Proxy = =. TE: deflate,gzip;q=0.3. Accept-Language: en-us,en;q=0.5. Via: WTP/1.1 nwg3 (Nokia WAP Gateway 4.1/CD21/4.1.116). TE: deflate,gzip;q=0.3.
Certificate Error: September 2010
http://certificateerror.blogspot.com/2010_09_01_archive.html
My own brain dump, which is mostly, but not limited, to encryption, signing and certificates. Mobile operators header enrichment assessment 6/6: Summary. During the last weeks I have been posting the results of header enrichment assessment I've done in several mobile operators. Let's do a quick check and summarize the results. 1) All operators in the same country have similar configurations. I was surprised to see how mobile operators appear to mimic other operators in the same territory. I hope you enjo...
Certificate Error: May 2010
http://certificateerror.blogspot.com/2010_05_01_archive.html
My own brain dump, which is mostly, but not limited, to encryption, signing and certificates. As the first real post I want to start with the basics. As a manager of a trusted CA the most common complain I receive is that the certificate "does not work". In 99% of the cases the root of the problem is that the administrator did not install the proper SubCA or SubCAs or it install them in the wrong CA store (if the server is a IIS). Http:/ www.openssl.org/. If you can have acess to it just run:. Subject=/C...
Certificate Error: How to validate the Subject Key Identifier (SKI) from a X509 certificate
http://certificateerror.blogspot.com/2011/02/how-to-validate-subject-key-identifier.html
My own brain dump, which is mostly, but not limited, to encryption, signing and certificates. How to validate the Subject Key Identifier (SKI) from a X509 certificate. In order to reproduce the problem I extracted the public key of the Root CA, converted to DER, hashed it with SHA1 and verified that indeed the hash did not match. Let’s do a demonstration of what I did with a public available Root CA:. Now let's calculate the SHA1 of the public key:. As reported, both hashes did not match! At this point I...
Zucco Weblog: ModSecurity Series - Part 1 - english
http://jczucco.blogspot.com/2012/07/modsecurity-series-part-1-english.html
Sexta-feira, julho 27, 2012. ModSecurity Series - Part 1 - english. Clique aqui para ver esse post em português. I decided to copy the Série Snortando. Of my friend Rodrigo "Sp0oKeR" Montoro. And even at his suggestion, create a series of posts about ModSecurity. I always intend to post a version in Portuguese and one in English of the same post, and the frequency of the posts will be weekly. You can also use the comments to suggest topics to be addressed in future posts, with your issues. Version is 2&#...
Learning Resources Lists | LempStacker
http://lempstacker.com/learning
Master Technology, Change Destiny. 21 Security Official Blog. 22 Security Personal Blog. 34 Linux Personal Blog. SSL and TLS Deployment Best Practices. Red Hat Enterprise Linux. Unix, Linux, and variants. The Grymoire - home for UNIX wizards. If Not True Then False. Readings in Database Systems. Percona Data Performance Blog. FALSE IS NOT NULL. Using The Index,Luke. 201603.05 23:26 Sat Asia/Beijing. 201603.21 08:44 Mon Asia/Beijing. 201606.29 17:13 Wed Asia/Shanghai. 201606.30 10:13 Thu Asia/Shanghai.
HTTPSWatch | About
http://leopard.kyhwana.org/about.html
HTTPSWatch assigns every tracked site a rating approximating the quality of its HTTPS support. If a verified TLS connection cannot be established or no page can be loaded over TLS, the site is given the Bad. Rating. The Mediocre. Rating means a TLS connection can be established but there are quality issues with the site’s implementation of HTTPS (e.g. the HTTP site doesn’t redirect to HTTPS or the. Header isn’t set). If everything looks good, a Good. Some sites which HTTPSWatch rates as Mediocre. There&r...
TOTAL LINKS TO THIS WEBSITE
106
All About Mobile Development: Alexander Ivanov's Blog | All You Need To Create A Successfull Mobile App
All About Mobile Development: Alexander Ivanov's Blog. All You Need To Create A Successfull Mobile App. SCM (Software Control Management). Website for Your App. Getting Started With Windows Phone Development. Windows Phone is the easiest platform to develop for. That is why I will describe the development for Windows Phone 7, so that your app will be accessible for all Windows Phone devices. You need to download and install the following tools for getting started with the development for Windows Phone:.
Оцените блог!
Оценивайте по кнопке каждый блог! Ваша оценка двигает материал вверх или вниз! Подписаться на этот канал RSS. Так что это на самом деле: движение литосферных плит или же предвестник конца света? Это поразило даже бывалых ученых. Неужели ОН существует? Каталонский сюрреализм в Государственном Эрмитаже. Подробнее - здесь /a. ДРЕВНЯЯ УЛИЦА В ЦЕНТРЕ МОСКВЫ. Оригинал - здесь- http:/ myotpusk.mirtesen.ru/blog/43272604580/Drevnyaya-ulitsa-v-tsentre-Moskvyi? Национальный украинский характер (о котором так. Вчера...
ivan pope | Holding a torch in the heart of darkness
On May 1, 2014. Bull; 10:22 am. Why nobody will use the Tesla patents, ever. The Billion Dollar Artist. Shedboatshed, a classic. Decent stories will find great readers. A life in books. The story of my life.
AppMoFo
Mobile, tablet, desktop ]. We design, build and deploy apps. We will make your app idea a reality on mobile, tablet and desktop. We design and build applications. Taking your ideas and using our vision and experience to turn them into reality. Phone apps are more than just about entertainment. Work smarter, not harder! Tablets are increasingly replacing laptops and pc's. Get your apps on the move with your tablet. See some recent work. Some of our recent deployments. Find the nearest toilet in a hurry.
Ivan Richards Audio
The Rich Drive Pedal has been discovered in Housto. Bob Spencer Update Winter 2008. Drawings On A Chalkboard. The Land of the Rising Sun embraces the Rich Drive. The Rich Drive Pedal has been discovered in Houston Texas. Thursday, July 31, 2008. The Rich Drive Pedal has been discovered in. Houston, Texas USA! Mr Craig Feazel of Houston Texas, guitar &. Player with Katie Stuckey and also. The Small Sounds' (see. Purchased the 'Rich Drive' pedal. Please check out his very thorough review here:. There was l...
Ivan Ristić
Announcing Bulletproof SSL and TLS, the 2017 revision. July 11, 2017. I am very happy to announce Bulletproof SSL and TLS, the 2017 revision. The manuscript is complete and it’s now undergoing copyediting. We expect that the revision will be fully done by the end of July. Get your updates now if you can’t wait, or in August if you can. MORE ». Bulletproof SSL and TLS, three years later. July 04, 2017. SSL Labs Grading Redesign (Preview 1). June 30, 2017. June 29, 2017. April 05, 2017. In the second half ...
Papyri. Ivan Stanev's Blog
Poems in Posthuman Akkadian. LUXOR LAS VEGAS /picture book. Bitte bei TOTLEBEN klingeln. TTV Live from Todessa. LUXOR LAS VEGAS. The film. VILLA DEI MISTERI. The film. MOON LAKE. The film.
ivan的博客
粘贴之前 CTRL U/K/W 删除的内容. 使下一个特殊字符可以插入在当前位置,如CTRL-V 可以在当前位置插入一个字符,其ASCII是9, 否则一般情况下按结果是命令补齐. 使下一个单词首字母大写, 同时光标前进一个单词,如光标停留在单词的某个字母上,如word中的o字母上, 则o字母变大写. 而不是w. 使下一个单词所有字母变大写, 同时光标前进一个单词 如光标在o字母上, 则ord变大写, w不变. 使下一个单词所有字母变小写, 同时光标前进一个单词 如光标在o字母上, 则ord变小写, w不变. 调用上一条指令的最后一个参数作为当前指令对象,如,假设上一条指令为 ls abc.txt bbc.txt 那么, vi! 相当于 vi bbc.txt. 学习 ApacheHttpComponents,HttpCore 一. Javautil.concurrent.CountDownLatch 是一个并发构造,它允许一个或多个线程等待一系列指定操作的完成。 Raquo; Next Page. 学习 ApacheHttpComponents,HttpCore 一.
Ivant Technologies
The WEB can HELP your business! Friday, December 5, 2008. Drivers of Online Usage in the Philippines. Where do we go from here? Posted by Ivant Technologies Blog. Tuesday, August 5, 2008. The Future of the Undervalued Website. The value of a website as a marketing tool is most of the time underestimated because of the lack of internet traffic in the Philippines. Web marketing is still in its infancy in the Philippines compared to the developed countries like US , Singapore, and Korea. But the growth ...
SOCIAL ENGAGEMENT