[B! SSL] fumi1ã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

fumi1 id:fumi1

SSLã«é–¢ã™ã‚‹fumi1ã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯ (36)

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

${{author_name}}$
{{author_name}}{{created}}
{{ #comment }}{{ comment }}{{ /comment }}
- {{ label }}

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

TechCrunch | Startup and Technology News
Anterior, a company that uses AI to expedite health insurance approval for medical procedures, has raised a $20 million Series A round at a $95 million post-money valuation led byâ€¦
fumi1 2016/09/09
Chrome

HTTP

SSL
ãƒªãƒ³ã‚¯
Letâ€™s Encryptã¨Nginx : ã‚»ã‚ãƒ¥ã‚¢ãªWebãƒ‡ãƒ—ãƒã‚¤ãƒ¡ãƒ³ãƒˆã®ç¾çŠ¶ | POSTD
æœ€è¿‘ã¾ã§ã€SSLæš—å·åŒ–é€šä¿¡ã¯ã€Œã‚ã‚‹ã¨å¥½ã¾ã—ã„æ©Ÿèƒ½ã€ã¨ã„ã†ç¨‹åº¦ã«ã—ã‹è€ƒãˆã‚‰ã‚Œã¦ã„ã¾ã›ã‚“ã§ã—ãŸã€‚ãã®ãŸã‚ã€å®‰å…¨ãªã®ã¯ã‚¢ãƒ—ãƒªã®ãƒã‚°ã‚¤ãƒ³ãƒšãƒ¼ã‚¸ã ã‘ã¨ã„ã†ã‚µãƒ¼ãƒ“ã‚¹ãŒæ•°å¤šãå˜åœ¨ã—ã¦ã„ã¾ã—ãŸã€‚ ã—ã‹ã—ã€çŠ¶æ³ã¯è‰¯ã„æ–¹å‘ã¸ã¨å¤‰åŒ–ã—ã¦ã„ã¾ã™ã€‚ç¾åœ¨ã§ã¯æš—å·åŒ–ã¯å¿…é ˆã¨è€ƒãˆã‚‰ã‚Œã€ã»ã¨ã‚“ã©ã®é–‹ç™ºè€…ãŒå°Žå…¥ã‚’ç¾©å‹™ä»˜ã‘ã¦ã„ã¾ã™ã€‚ã¾ãŸã€å·¨å¤§æ¤œç´¢ã‚¨ãƒ³ã‚¸ãƒ³Googleã§ã¯ã€SSLã®å°Žå…¥ãŒæ¤œç´¢çµæžœã®é †ä½ã‚’æ±ºå®šã™ã‚‹è¦å› ã«ã•ãˆãªã£ã¦ã„ã¾ã™ã€‚ ã—ã‹ã—ã€SSLãŒåºƒç¯„ã«æ™®åŠã—ã¦ã„ã‚‹ã«ã‚‚é–¢ã‚ã‚‰ãšã€ã‚»ã‚ãƒ¥ã‚¢ãªWebã‚µãƒ¼ãƒ“ã‚¹ã‚’æ§‹ç¯‰ã™ã‚‹ã“ã¨ã¯ã€æœªã ã«é¢å€’ã§ã€æ™‚é–“ãŒã‹ã‹ã‚Šã€ã‚¨ãƒ©ãƒ¼ã®åŽŸå› ã«ãªã‚Šã‚„ã™ã„ã¨è€ƒãˆã‚‰ã‚Œã¦ã„ã¾ã™ã€‚ æœ€è¿‘ã“ã®åˆ†é‡Žã§ã¯ã€ Letâ€™s Encrypt ãŒã€SSLè¨¼æ˜Žæ›¸ã‚’ã‚ˆã‚Šåºƒãæ™®åŠã•ã›ã€Webã‚µã‚¤ãƒˆã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ç¶æŒã«ä¿‚ã‚‹ãƒ¯ãƒ¼ã‚¯ãƒ•ãƒãƒ¼ã‚’å¤§å¹…ã«ç°¡ç•¥åŒ–ã—ã‚ˆã†ã¨å–ã‚Šçµ„ã‚“ã§ã„ã¾ã™ã€‚ å¼·åŠ›ãªWebã‚µãƒ¼ãƒNginxã‚„ã€ä»–ã®ãƒãƒ¼ãƒ‰ãƒ‹ãƒ³ã‚°æ–¹æ³•ã¨çµ„ã¿åˆã‚
fumi1 2016/04/21
nginx

SSL
ãƒªãƒ³ã‚¯
Let's Encrypt
A nonprofit Certificate Authority providing TLS certificates to 450 million websites. Read all about our nonprofit work this year in our 2023 Annual Report. From our blog Jul 23, 2024 Intent to End OCSP Service Moving to a more privacy-respecting and efficient method of checking certificate revocation. Read more Jun 24, 2024 More Memory Safety for Letâ€™s Encrypt: Deploying ntpd-rs NTP is critical t
fumi1 2016/04/14
SSL
ãƒªãƒ³ã‚¯
SSLè¨¼æ˜Žæ›¸ãªã‚‰ã•ãã‚‰ã®SSLï½œã•ãã‚‰ã‚¤ãƒ³ã‚¿ãƒ¼ãƒãƒƒãƒˆ
æ³•äººãƒ»çµ„ç¹”ã®ãŠå®¢æ§˜ ã‚³ãƒ¼ãƒãƒ¬ãƒ¼ãƒˆã‚µã‚¤ãƒˆã«ã¯ä¼æ¥èªè¨¼ï¼ˆOVï¼‰ã€ECã‚µã‚¤ãƒˆãªã©å€‹äººæƒ…å ±ã‚’å–ã‚Šåˆã†ã‚µã‚¤ãƒˆã«ã¯EVï¼ˆExtended Validationï¼‰èªè¨¼ã‚’åˆ©ç”¨ã—ã¾ã™ã€‚
fumi1 2015/07/31
SSL
ãƒªãƒ³ã‚¯
ã•ãã‚‰ã‚¤ãƒ³ã‚¿ãƒ¼ãƒãƒƒãƒˆã€å¹´é¡1500å††ã§åˆ©ç”¨ã§ãã‚‹ãƒ‰ãƒ¡ã‚¤ãƒ³èªè¨¼SSLã€Œãƒ©ãƒ”ãƒƒãƒ‰SSLã€ã€€
fumi1 2015/07/31
SSL
ãƒªãƒ³ã‚¯
https://jp.techcrunch.com/2014/11/19/20141118mozilla-eff-and-others-band-together-to-provide-free-ssl-certificates/
fumi1 2014/11/19
Web

Security

SSL
ãƒªãƒ³ã‚¯
This POODLE bites: exploiting the SSL 3.0 fallback
The latest news and insights from Google on security and safety on the Internet Anonymous said... Does this apply to SSLv2 as well? October 14, 2014 at 7:39â€¯PM Scott Ruebush said... I can't wait to see POODLE take over the internet! Thank goodness we have heroes to save us from the evils of SSL 3.0 and such and such, etc. October 14, 2014 at 8:52â€¯PM Paul said... Not sure how to enable TLS_FALLBACK
fumi1 2014/10/16
SSL

Security
ãƒªãƒ³ã‚¯
æˆ‘ã€…ã¯ã©ã®ã‚ˆã†ã«ã—ã¦å®‰å…¨ãªHTTPSé€šä¿¡ã‚’æä¾›ã™ã‚Œã°è‰¯ã„ã‹ - Qiita
Modern Ciphersuite: ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES1
fumi1 2014/05/20
HTTP

SSL

nginx
ãƒªãƒ³ã‚¯
OpenSSL Valhalla Rampage
Many thanks to all of the awesome hackers that have made this release possible. Again, if you like the work that OpenBSD is doing, please donate here Provide a ressl config function that explicitly clears keys. Now that ressl config takes copies of the keys passed to it, the keys need to be explicitly cleared. While this can be done by calling the appropriate functions with a NULL pointer, it is s
fumi1 2014/04/25
ã‚¿ã‚¤ãƒˆãƒ«ãŒ

SSL
ãƒªãƒ³ã‚¯
LibreSSL
LibreSSL 4.0.0 released Oct 14th, 2024 LibreSSL is a version of the TLS/crypto stack forked from OpenSSL in 2014, with goals of modernizing the codebase, improving security, and applying best practice development processes. Primary development occurs inside the OpenBSD source tree with the usual care the project is known for. On a regular basis the code is re-packaged for porta ble use by other ope
fumi1 2014/04/22
At the moment we are too busy deleting code...

SSL
ãƒªãƒ³ã‚¯
Chrome users oblivious to Heartbleed revocation tsunami | Netcraft
In the aftermath of Heartbleed, it has become clear that revoking potentially compromised certificates is essential. On Thursday, CloudFlare announced it was reissuing and revoking all of its SSL certificates. The effects of CloudFlareâ€™s mass revocation are evident in a single Certificate Revocation List (CRL) belonging to GlobalSign, which grew by almost 134,000 certificates. So, we @CloudFlare d
fumi1 2014/04/21
Chrome

SSL
ãƒªãƒ³ã‚¯
Heartbleed hack case sees first arrest in Canada
The Canada Revenue Agency said that more than 900 social insurance numbers had been stolen A 19-year-old Canadian became the first person to be arrested in relation to the Heartbleed security breach. Stephen Arthuro Solis-Reyes from London, Ontario was accused of hacking into the Canadian Revenue Agency (CRA)'s website last Friday by the Royal Canadian Mounted Police. The RCMP say Mr Solis-Reyes t
fumi1 2014/04/17
Heartbleed ã§é€®æ•è€…ãŒ

SSL

Security
ãƒªãƒ³ã‚¯
DeNA Engineering - DeNAã‚¨ãƒ³ã‚¸ãƒ‹ã‚¢ã®ãƒãƒ¼ã‚¿ãƒ«ã‚µã‚¤ãƒˆ
æŠ€è¡“ã‚’æ´»ã‹ã—ã€æ–°ã—ã„ä¾¡å€¤ã‚’å‰µé€ ã™ã‚‹ DeNAã®ã‚¨ãƒ³ã‚¸ãƒ‹ã‚¢ã¯ã€æƒ³åƒã‚’è¶…ãˆã‚‹Delightã‚’å±Šã‘ã‚‹ãŸã‚ã«ä½•ãŒã§ãã‚‹ã‹ã‚’è€ƒãˆã€æŠ€è¡“åŠ›ã¨ç™ºæƒ³åŠ›ã§æ–°ã—ã„ä¾¡å€¤ã‚’ç”Ÿã¿å‡ºã—ã¦ã„ã¾ã™ã€‚ å¤šæ§˜ãªå°‚é–€æ€§ã‚’æŒã£ãŸã‚¨ãƒ³ã‚¸ãƒ‹ã‚¢ãŒåˆ‡ç£‹ç¢ç£¨ã—ã€äº’ã„ã«åˆºæ¿€ã—åˆãˆã‚‹ç’°å¢ƒã‚„åˆ¶åº¦ãŒã•ã‚‰ãªã‚‹æˆé•·ã¸ã¨ã¤ãªã’ã¾ã™ã€‚
fumi1 2014/04/16
SSL

Security
ãƒªãƒ³ã‚¯
OpenSSL ãƒžã‚¸ãƒ¤ãƒã„ã£ã™ï¼ ï½ž Heartbleed è„†å¼±æ€§ã‚’è©¦ã—ã¦ã¿ãŸã‚ˆ - ãƒ¢ãƒ©ãƒˆãƒªã‚¢ãƒ ã“ã˜ã‚‰ã›ãŸ
å®Ÿéš›ã«ãƒ‡ãƒ¼ã‚¿ãŒæ¼ã‚Œã‚‹æ§˜åã‚’è¦‹ãŸã„æ–¹ã¯ã‚³ãƒãƒ©â†’ã‚ã€ä½•ã‹æ¼ã‚Œã¦ã‚‹â€¦ OpenSSL Heartbleed å®Ÿé¨“ãã®ï¼’ã¸ã©ã†ãžã€‚ ã•ã¦ ãƒãƒƒãƒˆä¸Šã®é€šä¿¡ã®å¤§éƒ¨åˆ†ã«ãŠã„ã¦ã€Œå®‰å…¨ã€ã‚’æ‹…ä¿ã—ã¦ã„ãŸ OpenSSL ãªã®ã§ã™ãŒ... ã§ã£ã‹ã„ç©´ ãŒç©ºã„ã¦ã„ãŸã“ã¨ãŒæ˜Žã‚‰ã‹ã«ãªã£ãŸã‚ˆã†ã§ã™ã€‚ã„ã‚ã‚†ã‚‹ Heartbleed ãƒã‚°ã€‚ãƒˆãƒ›ãƒ›ã§ã™ã€‚ ã€Œãƒãƒƒãƒˆä¸Šã®ã‚µãƒ¼ãƒ“ã‚¹ã§ OpenSSL ã‚’ä½¿ã£ã¦ã„ã‚‹(ã„ãŸ)ã‚µã‚¤ãƒˆã¯ã€ã‚‚ã—ã‹ã—ãŸã‚‰ã“ã®ãƒã‚°ã‚’çŸ¥ã£ã¦ã„ãŸæ‚ªã„äººã‹ã‚‰ã‚µãƒ¼ãƒãƒ¼ä¸Šã®æƒ…å ±ã‚’ç›—ã¾ã‚Œã¦ã„ãŸã‹ã‚‚ã‚ˆï¼Ÿ ã—ã‹ã‚‚ç›—ã‚“ã å½¢è·¡ã¯æ®‹ã‚‰ãªã„ã‚“ã ãœï¼Ÿã€ ã¨ã„ã†ã“ã¨ã«ãªã‚Šã¾ã™ã€‚ ã‚µãƒ¼ãƒãƒ¼ä¸Šã®æƒ…å ±ã¨ã„ã†ã®ã¯ã€ä¾‹ãˆã° ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ã€ãƒ¡ãƒ¼ãƒ«ã‚¢ãƒ‰ãƒ¬ã‚¹ è‡ªåˆ†ã§ç™»éŒ²ã—ãŸåå‰ã¨ã‹ä½æ‰€ã¨ã‹ ã‚‚ã¡ã‚ã‚“è‡ªåˆ†ã§å…¥åŠ›ã—ãŸã‚¯ãƒ¬ã‚¸ãƒƒãƒˆã‚«ãƒ¼ãƒ‰ç•ªå·ã¨ã‹â€¦ ãªã©ãªã©ã€‚ Mashableã«ã‚ˆã‚‹ã¨ã€æœ‰åãªã‚µãƒ¼ãƒ“ã‚¹ã§ãƒ¤ãƒã‚¤ã®ã¯ã€ Facebook Tumblr Google Y
fumi1 2014/04/15
SSL

Security
ãƒªãƒ³ã‚¯
Canadian taxman says hundreds pierced by Heartbleed SSL skewer
fumi1 2014/04/15
SSL

Security
ãƒªãƒ³ã‚¯
Heartbleed hacks hit Mumsnet and Canada's tax agency
The BBC's Rory Cellan-Jones explains what users should do next A leading UK site for parents and the Canadian tax authority have both announced they have had data stolen by hackers exploiting the Heartbleed bug. Mumsnet - which says it has 1.5 million registered members - said that it believed that the cyber thieves may have obtained passwords and personal messages before it patched its site. The
fumi1 2014/04/15
ã‚ãƒ¼ã¨ã†ã¨ã†è¢«å®³ãŒæ˜Žã‚‰ã‹ã«ãªã£ã¦ããŸãª

SSL

Security
ãƒªãƒ³ã‚¯
heartbleedã‚’iptablesã§æ¢ã‚ã‚‹ã“ã¨ã«ã¤ã„ã¦ - yasulib memo
å‰æ›¸ã OpenSSLã®è„†å¼±æ€§ï¼ˆCVE-2014-0160ï¼‰ãŒå…¬é–‹ã•ã‚Œã¾ã—ãŸã€‚ è©³ç´°ã¯piyokangoã•ã‚“ã®ç´ æ™´ã‚‰ã—ã„ã¾ã¨ã‚ã‚’å‚ç…§ã—ã¦ãã ã•ã„ã€‚ OpenSSLã®è„†å¼±æ€§ï¼ˆCVE-2014-0160ï¼‰é–¢é€£ã®æƒ…å ±ã‚’ã¾ã¨ã‚ã¦ã¿ãŸ - piyolog ã‚¨ãƒ•ã‚»ã‚ãƒ¥ã‚¢ãƒ–ãƒã‚°ã«ã¦ã€ãƒˆãƒ¼ãƒžãƒ„ã®å²©äº•ã•ã‚“ãŒæ›¸ã„ãŸèˆˆå‘³æ·±ã„è¨˜äº‹ãŒã‚ã‚Šã¾ã—ãŸã€‚ ã‚¨ãƒ•ã‚»ã‚ãƒ¥ã‚¢ãƒ–ãƒã‚° : Openssl Heartbleed æ”»æ’ƒã®æ¤œçŸ¥ã«ã¤ã„ã¦ ï¼ƒæ ¹æœ¬çš„ãªå¯¾ç–ã§ã¯ãªãã€ã‚ãã¾ã§æ”»æ’ƒæ¤œçŸ¥ã¨ã„ã†æ„å‘³ã§ã€‚ iptables log rules iptables -t filter -A INPUT -p tcp --dport 443 -m u32 --u32 "52=0x18030000:0x1803FFFF" -j LOG --log-prefix "BLOCKED: HEARTBEAT" iptables block rules i
fumi1 2014/04/14
SSL

Security
ãƒªãƒ³ã‚¯
OpenSSLã®â€œå‡ºè¡€ãƒã‚°â€ã‚’æŠ±ãˆã¦ã„ã‚‹ã‚µã‚¤ãƒˆã€ã€Œ.jpã€ã§ã¯HTTPSã‚µã‚¤ãƒˆã®45ï¼…ã€€
fumi1 2014/04/12
SSL

Security
ãƒªãƒ³ã‚¯
ãªãœTheo de Raadtã¯IETFã«æ¿€æ€’ã—ã¦ã„ã‚‹ã®ã‹
æœ¬ã®è™«: OpenBSDã€æ€’ã‚Šã®ã‚³ãƒŸãƒƒãƒˆã§ã€OpenBSDã®Theo de RaadtãŒIETFã«å¯¾ã—ã¦æ¿€æ€’ã—ã¦ã„ã‚‹ã€‚ src/lib/libssl/ssl/Makefile - view - 1.29 Segglemannã®RFC520 heatbeatã‚’ç„¡åŠ¹åŒ–ã€‚ ã‚ã®ã¾ã¨ã‚‚ãªãƒ—ãƒãƒˆã‚³ãƒ«ã²ã¨ã¤åˆ¶å®šã§ããªã„IETFã®ç„¡èƒ½é›†å›£ãŒã€è¶…é‡è¦ãªãƒ—ãƒãƒˆã‚³ãƒ«ã§64Kã®ç©´ã‚’ã“ã—ã‚‰ãˆã‚‹ã¨ã‹ã€ãƒžã‚¸ã§ã‚ãã‚Œã¦ã‚‚ã®ã‚‚è¨€ãˆããƒ¼ã‚ã€‚å¥´ã‚‰ã¯ãƒžã‚¸ã“ã®å•é¡Œã‚’æœ¬æ°—ã§æ¤œè¨¼ã™ã¹ãã ã‚ã€‚ãªã‚“ã§ã“ã‚“ãªã“ã¨ã‚’ã—ã§ã‹ã—ãŸã®ã‹ã€‚ã“ã‚“ãªäº‹æ…‹ã‚’æ‰¿èªã—ãŸè²¬ä»»ã‚ã‚‹é€£ä¸ã‚’å…¨å“¡ã€æ„æ€æ±ºå®šãƒ—ãƒã‚»ã‚¹ã‹ã‚‰å–ã‚Šé™¤ãå¿…è¦ãŒã‚ã‚‹ã€‚IETFã€ã¦ã‚ãƒ¼ã¯ä¿¡ç”¨ãªã‚“ãã‡ã€‚ ãªãœTheo de Raadtã¯ã€OpenSSLã§ã¯ãªãã€IETFã«å¯¾ã—ã¦æ¿€æ€’ã—ã¦ã„ã‚‹ã®ã‹ã€‚IETFã¨ã„ã†ã®ã¯ã€ã‚¤ãƒ³ã‚¿ãƒ¼ãƒãƒƒãƒˆä¸Šã®è¦æ ¼åˆ¶å®šã®å›£ä½“ã§ã‚ã‚‹ã€‚ä»Šå›žã€ä¸–ä¸Šã‚’é¨’ãŒã›ã¦ã„ã‚‹Heartbeatå•é¡Œã¯
fumi1 2014/04/11
SSL

IETF

Standards
ãƒªãƒ³ã‚¯
The Heartbleed Hit List: The Passwords You Need to Change Right Now
It's time to update your passwords to various sites affected by the Heartbleed bug. Credit: Mashable composite. iStockphoto, SoberP An encryption flaw called the Heartbleed bug is already being dubbed one of the biggest security threats the Internet has ever seen. The bug has affected many popular websites and services -- ones you might use every day, like Gmail and Facebook -- and could have quie
fumi1 2014/04/10
SSL

Security
ãƒªãƒ³ã‚¯
1 2 æ¬¡ã®ãƒšãƒ¼ã‚¸