jhealy + security   83

Using Microscanner in a CI/CD Pipeline
scanning docker images for known vulnerabilities
security  docker 
24 days ago by jhealy
Forseti Security
Open source security tools for GCP
gcp  security 
february 2018 by jhealy
Ubuntu LTS: many vulnerabilities despite long-term support | Wilders Security Forums
Handy tools to verify the security support status of Debian and Ubuntu packages
debian  ubuntu  security  linux 
april 2016 by jhealy
Rate Limiting and Velocity Checking
advice on rate limiting users or IPs in a web app
security  programming 
april 2015 by jhealy
Introducing CFSSL - CloudFlare's PKI toolkit | CloudFlare Blog
handy tool that automates build SSL certificate bundles
ssl  security 
july 2014 by jhealy
ImperialViolet - TLS Symmetric Crypto
Interesting update on recent SSL/TLS work in chrome. Also mentions annoying F5 bug with handshake packets over 256 bytes
tls  security  google 
february 2014 by jhealy
Reset Roaming Profile and Folder Redirection Permissions
handy set of commands for fixing borked file permissions on a windows domain
windows  networking  security 
august 2011 by jhealy
It's Time to Fix HTTPS
interesting slide deck on the brokenness of HTTPS and PKI
ssl  web  security  presentation 
march 2011 by jhealy
SSL with Rails // Collective Idea
So you saw Firesheep and are worried about security in your app? That’s good, you should be. SSL is easy to do and there’s no reason not to these days. Also, the tools are much better than before, so let’s get started.
ruby  rails  programming  ssl  security 
november 2010 by jhealy
A Waste of Money and Time - Room for Debate - NYTimes.com
A good opinion piece by Bruce Schneier on airport security
security  travel  terrorism  opinion  tsa  airport 
november 2010 by jhealy
Firesheep - codebutler
Today at Toorcon 12 I announced the release of Firesheep, a Firefox extension designed to demonstrate just how serious this problem is.
security  firefox  plugins 
october 2010 by jhealy
Ivan Ristić: Internet SSL Survey 2010 is here!
interesting slides on the state of SSL in 2010, based on an empirical survey of SSL server
ssl  security  networking 
july 2010 by jhealy
Qualys SSL Labs
test your SSl server for standards support
ssl  security  tools  test  network  networking  http 
july 2010 by jhealy
Cheap Cracks - Of dictionaries and rainbows - The H Security: News and Features
Modern cryptological attacks can crack mobile phone calls, as well as debit and credit card systems, in seconds. The trick is to find a practical compromise between computing time and memory space with the help of precomputed tables. Probably no algorithm is immune to such an approach, but special techniques can thwart such attacks.
cryptography  security  encryption 
january 2010 by jhealy
SEO 2.0 | Top 7 Ways To Crash Internet Explorer
code techniques that apparently *crash* ie6
ie  css  security  html  web 
july 2009 by jhealy
Tim Callan's SSL Blog - This morning's MD5 attack - resolved
statement from VeriSign on the md5 SSL attack vector revealed in December 2008
blog  cryptography  security  ssl  md5  sha1 
february 2009 by jhealy
SSL Blacklist - CodeFromThe70s.org
firefox extension that can detect weak ssl connections tha tresulted from the Debian OpenSSL kerfuffle
ssl  security  firefox  plugin  openssl 
august 2008 by jhealy
[SECURITY] [DSA 1576-1] New openssh packages fix predictable randomness
how to deal with the Debian openssl vulnerability of May 2008
debian  linux  openssl  security 
may 2008 by jhealy
Nikto | CIRT.net
Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers (security holes, unsafe cgi scripts, etc)
internet  networking  linux  software  security 
may 2008 by jhealy
http://www.cs.cmu.edu/~dst/Adobe/Gallery/anon21jul01-pdf-encryption.txt
The following explains how PDF encryption, using Adobe's "Standard
Security Handler", works.
adobe  cryptography  encryption  security  pdf 
may 2008 by jhealy
Docs:SSL - lighttpd - secure, fast, compliant, and very flexible web-server - Trac
some tricks for working with SSL in lighttpd. Includes disabling ye olde SSL protocols that are less secure
lighttpd  ssl  security 
march 2008 by jhealy
Integrating OpenSSH with Secure DNS
cool idea for retrieving an public key for a host via DNS instead of just trusting it like we usually do
ssh  security  networking  dns  pki 
february 2008 by jhealy
SourceForge.net: rsync friendly file encryption
A slightly reduced strength bulk encryption. In exchange for the reduced strength, you get the ability to rsync the encrypted files, so that local changes in the plaintext file will result in (relatively) local changes to the cyphertext file.
rsync  encryption  software  security 
january 2008 by jhealy
« earlier      
per page:    204080120160

Copy this bookmark:



description:


tags: