SSL termination: stunnel, nginx & stud | Vincent Bernat
9 weeks ago by mcroydon
Thoughts on SSL termination (with a link to an update).
nginx
performance
security
ssl
9 weeks ago by mcroydon
Peter Gutmann's Home Page
august 2011 by mcroydon
Includes the biggest crypto deck ever.
crypto
people
research
security
august 2011 by mcroydon
Preventing timing attacks in Python
may 2011 by mcroydon
A simple non-linear comparison function to prevent timing attacks when checking passwords.
security
encryption
python
may 2011 by mcroydon
Welcome to StartCom
april 2011 by mcroydon
Stupid cheap SSL.
certificate
certificates
linux
security
ssl
april 2011 by mcroydon
Everything you need to know about cryptography in 1 hour
february 2011 by mcroydon
What it says on the tin.
code
crypto
cryptography
security
development
february 2011 by mcroydon
Multi-domain UCC SSL certificates on Nginx with 1 IP address | PlayNice.ly
january 2011 by mcroydon
Awesome and frightening.
http
nginx
security
ssl
sysadmin
january 2011 by mcroydon
Benlog » Don’t Hash Secrets
january 2011 by mcroydon
What it says on the tin.
cryptography
encryption
hash
security
january 2011 by mcroydon
Overclocking mod_ssl | Paul's Journal
november 2010 by mcroydon
Like how Google does it for mere mortals.
apache
cryptography
http
https
memcache
optimisation
ops
ssl
server
security
scaling
scalability
ping.fm
performance
web
webdev
mod_ssl
openssl
november 2010 by mcroydon
ImperialViolet - Overclocking SSL
november 2010 by mcroydon
How Google does it.
article
authentication
cost
crypto
network
cryptography
encryption
optimization
latency
internet
howto
google
http
performance
protocol
scalability
security
ssl
speed
server
web
toread
tcp
sysadmin
certificate
certificates
https
overclocking
tls
november 2010 by mcroydon
Coffee on the Keyboard » Bleach, HTML sanitizer and auto-linker
october 2010 by mcroydon
"Bleach is a whitelist-based HTML sanitizer and auto-linker in Python, built on html5lib, for AMO and SUMO and released under the BSD license."
development
html
html5
oss
mozilla
library
parser
python
web
software
url
text
security
october 2010 by mcroydon
Tagish JAAS « The Kirschners
may 2010 by mcroydon
Includes an updated version.
authentication
java
opensource
security
shibboleth
windows
jaas
may 2010 by mcroydon
Tagish JAAS Login Modules
may 2010 by mcroydon
Lightweight JAAS backend.
java
security
idp
shibboleth
may 2010 by mcroydon
Principles for Standardized REST Authentication - O'Reilly Broadcast
may 2010 by mcroydon
I want to live in this fantasty world where RESTful authentication isn't so hard or repetitive.
api
architecture
auth
authentication
dev
cloud
development
restful
rest
read
programming
patterns
oauth
http
distributed
security
soa
soap
toread
webservices
may 2010 by mcroydon
python-saml2 - Project Hosting on Google Code
may 2010 by mcroydon
A relatively recent ASF-licensed Python SAML 2.0 library.
identity
library
opensource
programming
python
saml
security
xml
may 2010 by mcroydon
Introduction
march 2010 by mcroydon
Here's the one-minute introduction: "Imagine that it's fifteen years from now. Somebody announces that he's built a large quantum computer. RSA is dead. DSA is dead. Elliptic curves, hyperelliptic curves, class groups, whatever, dead, dead, dead. So users are going to run around screaming and say 'Oh my God, what do we do?' Well, we still have secret-key cryptography, and we still have some public-key systems. There's hash trees. There's NTRU. There's McEliece. There's multivariate-quadratic systems. But we need more experience with these. We need algorithms. We need paddings, like OAEP. We need protocols. We need software, working software for these systems. We need speedups. We need to know what kind of key sizes to use. So come to PQCrypto and figure these things out before somebody builds a quantum computer."
research
security
math
computing
information
cryptography
key
theory
public
encryption
crypto
mathematics
hash
to_read
quantum
number
march 2010 by mcroydon
Public Documentation (Google OAuth & Federated Login Research)
february 2010 by mcroydon
Research (usability and otherwise) on OpenID, OAuth and others.
programming
development
web
reference
data
google
webdev
research
ui
wiki
work
security
usability
information
documentation
identity
openid
portable
authentication
oauth
contacts
login
federation
saml
opensocial
sso
february 2010 by mcroydon
Tunnelier (Bitvise)
february 2010 by mcroydon
SSH and SFTP client and SSH tunnel program for Windows.
software
tools
free
server
network
internet
security
networking
windows
application
freeware
tool
apps
utilities
backup
utility
encryption
vpn
ssh
proxy
client
downloads
putty
ftp
scp
terminal
tunnel
sftp
tunnelier
bitvise
february 2010 by mcroydon
m2secret: AES encryption/decryption module in Python
december 2009 by mcroydon
High-level API around M2Crypto.
python
library
toread
security
crypto
oss
encryption
lib
december 2009 by mcroydon
Django | Cross Site Request Forgery protection | Django Documentation
october 2009 by mcroydon
I was caught unawares by this one on a project tracking trunk. It's definitely A Good Thing(tm) but is going to require some template work as part of an upgrade to Django 1.2.
web
django
webdev
javascript
ajax
hack
security
django-1.2
october 2009 by mcroydon
bobby-tables.com: A guide to preventing SQL injection
october 2009 by mcroydon
How to avoid little bobby tables in several languages. There are more subtle attacks but handling the basics right is the first step.
programming
development
database
webdev
howto
computer
rails
hack
security
coding
hacks
fun
databases
geek
hacking
mysql
tips
sql
db
bugs
c#
injection
tables
sqlinjection
sql-injection
october 2009 by mcroydon
jezdez / django-authority / source — bitbucket.org
october 2009 by mcroydon
A pretty fantastic reusable. Well done, Jannis!
django
security
app
plugin
permission
permissions
auth
october 2009 by mcroydon
Django | Weblog | Security updates released
october 2009 by mcroydon
An impressive and quick reaction from all involved. If you're running Django 1.0 or greater, now is the time to update to the latest maintenance release for the version you are using.
development
django
security
patch
october 2009 by mcroydon
Thread: Does Amazon EC2 meet PCI Compliance guidelines?
august 2009 by mcroydon
While Amazon's cloud is reasonably secure, it'll never reach PCI Level 1 compliance. So don't save or store credit card information on EC2 or S3.
amazon
security
s3
ecommerce
ec2
cloud
processing
payment
PCI
august 2009 by mcroydon
iPhone-like password fields using jQuery // DECAF° blog für digitale kommunikation
july 2009 by mcroydon
Alas, this isn't an iphone UI pattern but a mobile UI pattern that has been in place for several years. It makes sense and it's way better than a bunch of stuff you can't see though.
programming
design
tools
webdev
apple
javascript
ui
security
usability
iphone
cool
ideas
plugin
jquery
js
forms
form
password
field
like
passwords
july 2009 by mcroydon
Cryptographic Right Answers
june 2009 by mcroydon
Cryptography is hard. Let's go phreaking!
programming
development
web
reference
code
blog
toread
security
howto
tips
cryptography
list
crypto
hash
advice
freebsd
encryption
password
2009
faq
recommendations
bestpractices
secure
passwords
answers
choices
aes
june 2009 by mcroydon
Vyatta Open Networking - The Open-Source Alternative to Cisco
may 2009 by mcroydon
Open source Cisco-a-like. Via Daniel.
web
software
linux
open-source
hardware
tools
business
free
computer
opensource
network
internet
sysadmin
networking
security
debian
freeware
open
source
vpn
oss
community
appliance
distro
routing
cisco
firewall
livecd
router
vyatta
may 2009 by mcroydon
Chrooted SSH HowTo - Page 2 | HowtoForge - Linux Howtos and Tutorials
april 2009 by mcroydon
This includes a script similar to the process I went through to bootstrap a chroot.
projects
software
linux
python
howto
security
sysadmin
network
administration
ssh
chroot
april 2009 by mcroydon
djbdns 1.05 lets AXFRed subdomains overwrite domains
march 2009 by mcroydon
An expensive diff.
security
dns
exploits
diff
march 2009 by mcroydon
robert’s rant room » Blog Archive » OpenSSH 5.1 and ASCII Art Fingerprints
february 2009 by mcroydon
This is awesome. I totally want to use this from the commandline
linux
security
key
ssh
february 2009 by mcroydon
They Write the Right Stuff | Fast Company
january 2009 by mcroydon
A fantastic article on truly serious software.
programming
design
software
development
code
business
technology
science
computer
dev
security
interesting
work
coding
cool
space
management
projectmanagement
methodology
articles
inspiration
process
shuttle
quality
tips
article
productivity
engineering
nasa
qa
january 2009 by mcroydon
Permissive Action Links
january 2009 by mcroydon
Via James, this is lots and lots of reading for later.
hardware
reference
electronics
history
technology
tech
security
interesting
engineering
politics
article
crypto
cryptography
military
action
weapon
nuclear
weapons
nukes
cold_war
pal
risk
bomb
january 2009 by mcroydon
Chris Shiflett: Adobe PDF XSS Vulnerability
november 2008 by mcroydon
Explanation of in-browser PDF XSS vulnerability.
webdev
security
pdf
november 2008 by mcroydon
Schneier on Security: The Skein Hash Function
november 2008 by mcroydon
The paper on Skein was pretty readable. Either that or I know more about cryptography than I thought I did. I love that Skein performs insanely fast on 64 bit processors, acceptably fast on 32 bit processors and runs at all on 8-bit AVR chips.
programming
software
development
news
code
security
sysadmin
tech
algorithms
algorithm
cool
source
cryptography
crypto
article
hash
encryption
tips
nist
schneier
skein
function
sha
november 2008 by mcroydon
Keyczar
august 2008 by mcroydon
Nice to see this see the light of day. i remember reading (or watching) about this several months back.
python
software
programming
development
google
library
tools
java
api
security
apache
cryptography
crypto
encryption
opensource
apl
c++
toolkit
crypt
august 2008 by mcroydon
Schneier on Security: MC Frontalot Raps About Encryption
march 2008 by mcroydon
Brings tears to my eyes.
security
music
march 2008 by mcroydon
How an information system helped nail Eliot Spitzer and a prostitution ring | Between the Lines | ZDNet.com
march 2008 by mcroydon
I wonder if they use MapReduce at the FBI...
money
privacy
reporting
security
technology
visualization
politics
march 2008 by mcroydon
Adobe - Developer Center : Security changes in Flash Player 9
january 2008 by mcroydon
"Starting in version 9,0,115,0, Flash Player will ignore any HTTP policy file that is not sent with a Content-Type value that gives some assurance that the file is intended to be a text file." Either text/<something> or application/xml are required, other
adobe
flash
programming
security
january 2008 by mcroydon
Schneier on Security: Social-Engineering Bank Robbery
january 2008 by mcroydon
Seriously, social engineering can sting. That bank in Wheaton isn't 10 minutes from the house that I grew up in.
security
january 2008 by mcroydon
pyinotify - filesystem monitoring in Python with inotify
january 2008 by mcroydon
Very nice. If only there were a cross-platform wrapper that handled various OSes filesystem notification systems.
dev
event
events
filesystem
file
interface
library
linux
module
monitor
programming
python
security
shell
software
sysadmin
system
tagging
utility
unix
january 2008 by mcroydon
YouTube - Theory and Practice of Cryptography
december 2007 by mcroydon
Covers what not to do and why.
cryptography
education
google
security
video
december 2007 by mcroydon
Building a UAV for photo mapping - Autopilot - DIY Drones
december 2007 by mcroydon
"I had planned to use the Pico-Pilot and Pico-GPS for the autopilot in my UAV, but I have now discovered that since Jan 2007, they have been classed as MILITARY technology and are controlled by US Export License regulations."
uav
export
security
regulations
sad
december 2007 by mcroydon
IRC Analysis
december 2007 by mcroydon
"IRC is a big, dangerous city full of crime. I just happen to live with a bunch of people in one of the nice streets in the suburbs. There are lots of suburbs."
computer
computers
internet
irc
network
news
technology
security
december 2007 by mcroydon
Adding Math to List of Security Threats - New York Times
november 2007 by mcroydon
"Mr. Shamir is the S in RSA; he, Ronald Rivest and Leonard Adleman developed it in 1977."
crypography
math
security
november 2007 by mcroydon
XML.com: Fixing AJAX: XMLHttpRequest Considered Harmful
september 2007 by mcroydon
mod_proxy seems to be the easiest way.
ajax
apache
javascript
hack
programming
proxy
security
server
september 2007 by mcroydon
Docuticker » Guide to Secure Web Services
september 2007 by mcroydon
Focused on SOAP and WS-crap but chapter 5 and 6 and appendix A are pretty interesting even if you take a more lightweight approach.
web-services
security
soap
soa
september 2007 by mcroydon
How We Learned to Cheat at Online Poker: A Study in Software Security [Cigital]
june 2007 by mcroydon
"Breaking the system" is the best part.
algorithm
games
interesting
poker
programming
random
security
toread
june 2007 by mcroydon
Bitfrost - OLPCWiki
march 2007 by mcroydon
The security model for the OLPC is absolutely fascinating.
documentation
hardware
interface
laptop
linux
olpc
os
programming
protocols
python
security
storage
toread
unix
wiki
march 2007 by mcroydon
5o9 Inc - Making Web Applications Location, Device & User Aware
march 2007 by mcroydon
Good idea, though the patent pending part kinda scares me. I've thought for a long time that X-LATITUDE/X-LONGITUDE headers could be used for that missing context.
dev
geo
location
mobile
security
software
toread
tracking
wireless
march 2007 by mcroydon
Reverse MD5 hash lookup
february 2007 by mcroydon
With bonus web service.
algorithms
computer
crypto
database
development
encryption
hacking
hash
md5
password
php
programming
security
software
tools
web
work
xml
february 2007 by mcroydon
Never store passwords in a database!
february 2007 by mcroydon
Wow, that's horrible. Friends don't let friends store passwords without salting and hashing them first.
database
development
hash
internet
password
programming
reddit
security
software
tech
theft
web
web2.0
webdev
february 2007 by mcroydon
» The case for OpenID | Digital ID World | ZDNet.com
december 2006 by mcroydon
OpenID rocks, I wish that more people used it and deployed it.
identity
openid
security
standards
technology
december 2006 by mcroydon
related tags
@toread ⊕ academic ⊕ action ⊕ admin ⊕ administration ⊕ adobe ⊕ advice ⊕ aes ⊕ ajax ⊕ algorithm ⊕ algorithms ⊕ amazon ⊕ analysis ⊕ anonymity ⊕ answers ⊕ apache ⊕ api ⊕ apl ⊕ app ⊕ apple ⊕ appliance ⊕ application ⊕ apps ⊕ architecture ⊕ article ⊕ articles ⊕ asterisk ⊕ attack ⊕ auth ⊕ authentication ⊕ availability ⊕ backup ⊕ bash ⊕ bcrypt ⊕ bestpractices ⊕ bioinformatics ⊕ birthday ⊕ bitvise ⊕ blog ⊕ blogs ⊕ bluetooth ⊕ bomb ⊕ book ⊕ books ⊕ bugs ⊕ business ⊕ c# ⊕ c++ ⊕ cap ⊕ certificate ⊕ certificates ⊕ choices ⊕ chroot ⊕ cisco ⊕ classic ⊕ client ⊕ cloud ⊕ code ⊕ coding ⊕ cold_war ⊕ community ⊕ compsci ⊕ computer ⊕ computers ⊕ computing ⊕ conference ⊕ congress ⊕ contacts ⊕ cool ⊕ cost ⊕ cpu ⊕ cracking ⊕ crypography ⊕ crypt ⊕ crypto ⊕ cryptography ⊕ data ⊕ database ⊕ databases ⊕ db ⊕ ddos ⊕ debian ⊕ denial-of-service ⊕ design ⊕ desktop ⊕ dev ⊕ development ⊕ device ⊕ diff ⊕ distributed ⊕ distro ⊕ diy ⊕ django ⊕ django-1.2 ⊕ dns ⊕ documentation ⊕ dos ⊕ downloads ⊕ earth ⊕ ebook ⊕ ec2 ⊕ ecommerce ⊕ education ⊕ electronic ⊕ electronics ⊕ embedded ⊕ encrypt ⊕ encryption ⊕ engineering ⊕ ethics ⊕ event ⊕ events ⊕ exploit ⊕ exploits ⊕ export ⊕ faq ⊕ fbi ⊕ federation ⊕ field ⊕ file ⊕ filesystem ⊕ firewall ⊕ flash ⊕ form ⊕ forms ⊕ free ⊕ freebsd ⊕ freeware ⊕ ftp ⊕ full-disclosure ⊕ fun ⊕ function ⊕ funny ⊕ future ⊕ games ⊕ geek ⊕ geo ⊕ geowanking ⊕ gmail ⊕ google ⊕ gpg ⊕ gps ⊕ guide ⊕ hack ⊕ hacking ⊕ hacks ⊕ hardware ⊕ hash ⊕ hashing ⊕ history ⊕ home ⊕ how-to ⊕ howto ⊕ html ⊕ html5 ⊕ http ⊕ httpd ⊕ https ⊕ humour ⊕ ideas ⊕ identity ⊕ idp ⊕ indigo ⊕ information ⊕ injection ⊕ inspiration ⊕ install ⊕ installation ⊕ interesting ⊕ interface ⊕ internet ⊕ ip ⊕ iphone ⊕ iptables ⊕ irc ⊕ j2me ⊕ jaas ⊕ java ⊕ javascript ⊕ jquery ⊕ js ⊕ key ⊕ kindle ⊕ laptop ⊕ latency ⊕ lib ⊕ library ⊕ like ⊕ linux ⊕ list ⊕ livecd ⊕ location ⊕ lock ⊕ login ⊕ mac ⊕ macosx ⊕ management ⊕ map ⊕ mapping ⊕ maps ⊕ math ⊕ mathematics ⊕ md5 ⊕ memcache ⊕ memory ⊕ meta ⊕ methodology ⊕ microsoft ⊕ midp ⊕ military ⊕ mining ⊕ mobile ⊕ module ⊕ mod_ssl ⊕ money ⊕ mongrel ⊕ monit ⊕ monitor ⊕ monitoring ⊕ mozilla ⊕ munin ⊕ music ⊕ mysql ⊕ nasa ⊕ navigation ⊕ network ⊕ networking ⊕ news ⊕ nginx ⊕ nist ⊕ nokia ⊕ nsa ⊕ nuclear ⊕ nukes ⊕ number ⊕ oauth ⊕ olpc ⊕ omg-ponies ⊕ open ⊕ open-source ⊕ openid ⊕ opensocial ⊕ opensource ⊕ openssl ⊕ ops ⊕ optimisation ⊕ optimization ⊕ os ⊕ oss ⊕ osx ⊕ overclocking ⊕ pal ⊕ papers ⊕ parser ⊕ password ⊕ passwords ⊕ patch ⊕ patterns ⊕ payment ⊕ PCI ⊕ pdf ⊕ penguin ⊕ pentest ⊕ people ⊕ performance ⊕ perl ⊕ permission ⊕ permissions ⊕ php ⊕ pinboard ⊕ ping.fm ⊕ plugin ⊕ poker ⊕ politics ⊕ portable ⊕ privacy ⊕ process ⊕ processing ⊕ productivity ⊕ programming ⊕ projectmanagement ⊕ projects ⊕ protocol ⊕ protocols ⊕ proxy ⊕ public ⊕ pure-python ⊕ putty ⊕ python ⊕ qa ⊕ quality ⊕ quantum ⊕ radio ⊕ rails ⊕ random ⊕ read ⊕ recommendations ⊕ reddit ⊕ reference ⊕ regulations ⊕ reporting ⊕ research ⊕ rest ⊕ restful ⊕ rfid ⊕ risk ⊕ router ⊕ routing ⊕ ruby ⊕ s3 ⊕ sad ⊕ saml ⊕ sandbox ⊕ scalability ⊕ scaling ⊕ scan ⊕ schneier ⊕ science ⊕ scp ⊕ screen ⊕ screensaver ⊕ secure ⊕ security ⊖ selinux ⊕ sensor ⊕ server ⊕ sftp ⊕ sha ⊕ sha1 ⊕ shell ⊕ shibboleth ⊕ shuttle ⊕ sign ⊕ skein ⊕ slowloris ⊕ soa ⊕ soap ⊕ software ⊕ source ⊕ space ⊕ speed ⊕ sql ⊕ sql-injection ⊕ sqlinjection ⊕ ssh ⊕ ssl ⊕ sso ⊕ standards ⊕ stars ⊕ statistics ⊕ storage ⊕ sun ⊕ symbian ⊕ sysadmin ⊕ system ⊕ tables ⊕ tagging ⊕ tcp ⊕ tech ⊕ technology ⊕ terminal ⊕ test ⊕ testing ⊕ text ⊕ theft ⊕ theory ⊕ tips ⊕ tls ⊕ todo ⊕ tool ⊕ toolkit ⊕ tools ⊕ tor ⊕ toread ⊕ to_read ⊕ tracking ⊕ traffic ⊕ trend ⊕ tunnel ⊕ tunnelier ⊕ tutorial ⊕ uav ⊕ ubuntu ⊕ ui ⊕ uiq3 ⊕ unix ⊕ url ⊕ usability ⊕ usenix ⊕ utilities ⊕ utility ⊕ video ⊕ visualization ⊕ voting ⊕ vpn ⊕ vyatta ⊕ war-on-terror ⊕ weapon ⊕ weapons ⊕ web ⊕ web-services ⊕ web2.0 ⊕ webapps ⊕ webdev ⊕ webmail ⊕ webserver ⊕ webservices ⊕ wi-fi ⊕ wiki ⊕ windows ⊕ wired ⊕ wireless ⊕ work ⊕ xml ⊕Copy this bookmark: