Released: #swad v0.1

Looking for a simple way to add #authentication to your #nginx reverse proxy? Then swad *could* be for you!

swad is the "Simple Web Authentication Daemon", written in pure #C (+ #POSIX) with almost no external dependencies. #TLS support requires #OpenSSL (or #LibreSSL). It's designed to work with nginx' "auth_request" module and offers authentication using a #cookie and a login form.

Well, this is a first release and you can tell by the version number it isn't "complete" yet. Most notably, only one single credentials checker is implemented: #PAM. But as pam already allows pretty flexible configuration, I already consider this pretty useful

If you want to know more, read here:
https://github.com/Zirias/swad

DDoS Attacks (HTTP/2, DNS, Hacktivist)
This is Real World Technical Analysis

YouTube video: https://youtu.be/t2jKcA1OyBE

#Sponsored #cybersecurity #ddos #dos #DNS #http #tls #hack #hacker #hacking #cyber #internet Radware

Hat hier wer Connections zur IT-Abteilung von aok.de? Die haben gestern das SSL-Zertifikat ihres mx1.aok.de getauscht, aber den TLSA-Record für DANE übersehen...

https://dane.sys4.de/smtp/service.bw.aok.de

20:00 Uhr: geht wieder! Danke :)

Join Sake Blok for his pre-conference class at SharkFest'25 US on June 16th:

"SSL/TLS Troubleshooting with Wireshark"

This hands-on session will take your troubleshooting skills to the next level, helping you diagnose complex network issues like a pro.

Secure your spot: https://sharkfest.wireshark.org/sfus

This morning I spent some time debugging an app which logs as if it's AD 57203, to wit

{"level":20,"time":1742987150412,"pid":1, ...

$ date -r 1742987150412
Fri Jan 24 10:20:12 CET 57203

but it turns out the other instance (the one that works, as in the user is able to download files from there) has roughly the same time internally, so *that* was not its main problem.

Mind boggled, debugging to continue until *something* improves.

So after listening to your feedback, I agree: let’s spend that money in the EU to create a publicly-owned, free and open ACME-compatible certificate authority.

See post quoted below, with links to Tom’s work as he’s already been thinking/working on this.

#EU #ACME #TLS #security #LetsEncrypt #technologyCommons #SmallTech https://mamot.fr/@tdelmas/114224564125819333

Let’s Encrypt at risk from Trump cuts to OTF: “Let’s Encrypt received around $800,000 in funding from the OTF”

Dear @EUCommission, get your heads out of your arses and let’s find @letsencrypt €1M/year (a rounding error in EU finances) and have them move to the EU.

If Let’s Encrypt is fucked, the web is fucked, and the Small Web is fucked too. So how about we don’t let that happen, yeah?

(In the meanwhile, if the Let’s Encrypt folks want to make a point about how essential they are, it might be an idea to refuse certificates to republican politicians. See how they like their donation systems breaking in real time…)

CC @nlnet @NGIZero@mastodon.xyz

#USA #fascism #OpenTechFund #LetsEncrypt #SSL #TLS #encryption #EU #web #tech #SmallWeb #SmallTech https://mastodon.social/@publictorsten/114223873439053263

After mulling over how to use SSL within a LAN in a way that I felt really satisfied with, it took me well over 20 years! Did that ever take a long time.
#SelfHosting #TLS #SSL #web #infosec

I am working on a decentralized, peer-to-peer, encrypted #chat written in #Python: https://github.com/FluxChat/fluxchat-py

It uses the #Kademlia algorithm to create an #overlay network. You can even use your existing GPG/PGP keys to join. I am looking forward to adding a #GUI, because currently it only has a #terminal interface and HTTP #API. And also to write the client/server part in #Zig. #E2E #P2P #TLS #decentralized #Decentralization #endtoend #TUI #DHT

Are you currently using #Cockpit with the builtin self-signed #TLS #certificate fallback? We would like to deprecate this, but need your input for that. Thank you in advance!

https://github.com/cockpit-project/cockpit/discussions/21695

By consulting the proper documents, one may speak a secure and secret tongue. #TLS #LetsEncrypt #OpenSource https://cromwell-intl.com/open-source/google-freebsd-tls/tls-certificate.html?s=mc

Learn the subtle battle language used in the realm of the clouds. #TLS #FreeBSD #GoogleCloud #OpenSource https://cromwell-intl.com/open-source/google-freebsd-tls/https-headers.html?s=mc

Is TLS fingerprinting a usual configuration option for web application firewalls (WAF)?

It seems a reasonable measure to block known malicious traffic from malware.

https://blog.foxio.io/ja4+-network-fingerprinting

#TLS
Tadam ! Bientôt Let's Encypt pourra signer des certificats pour des adresses IP (et pas juste des noms). https://github.com/letsencrypt/boulder/pull/8020

Build a fortress in the realm of the clouds. #FreeBSD #GCP #GoogleCloud #OpenSource #TLS https://cromwell-intl.com/open-source/google-freebsd-tls/?s=mc

Oh my fucking god.....you renamed all of the SSL setting keys, but you didn't take the opportunity to name them tls_*, but kept them ssl_*??!

#TLS #ACME
Il n'y a de page Wikipédia pour #certbot qu'en tchèque. https://cs.wikipedia.org/wiki/Certbot