OpenSSL Cookbook | Feisty Duck
Chapter 1: Getting Started Getting Started Key and Certificate Management Server Configuration Creating a Private Certification Authority from Scratch Chapter 2: Testing with OpenSSL Sixteen sections cover testing of various aspects of TLS server configuration For all its warts, OpenSSL is one of the most successful and most important open source projects. It’s successful because it’s so widely us
Mapping OpenSSL Cipher Suite Names to Official Names and RFCs
Mapping OpenSSL Cipher Suite Names to Official Names and RFCs OpenSSL, and a lot of software that uses it (httpd, nginx etc) have their own cipher suite names. To map from the OpenSSL cipher suite name, such as: ECDHE-ECDSA-AES256-SHA384 1) Look up the ID Use the OpenSSL ciphers(1) tool to look up the cryptographic suite selector code (2 hex values used to represent that cipher suite on the wire)
ã„ã‚ã„ã‚ãªSSL/TLSè¨å®šã‚¬ã‚¤ãƒ‰ãƒ©ã‚¤ãƒ³ (JNSAé›»åç½²åWG 実世界ã®æš—å·ãƒ»èªè¨¼æŠ€è¡“勉強会資料)
1. © 2015 Kenji Urushima All rights reserved. ã„ã‚ã‚“ãªSSL/TLSè¨å®šã‚¬ã‚¤ãƒ‰ JNSA臨時スã‚ルアップTF 実世界ã®æš—å·ãƒ»èªè¨¼æŠ€è¡“ã«é–¢ã™ã‚‹å‹‰å¼·ä¼š 於:NTTソフトウェア(å“å·) 日時:2015å¹´6月22æ—¥(月) 19:00-19:30 漆嶌賢二 JNSA é›»åç½²åWG(ゾンビ?)メンム2. © 2015 Kenji Urushima All rights reserved. 1 ãƒ»çµŒæ´ ãƒ»å¯Œå£«ã‚¼ãƒãƒƒã‚¯ã‚¹(2010~) ・エントラストジャパン(2005~2010) ・セコム(1988~2005) ・興味: PKI,  TLS,  電åç½²å,  SSO,  èªè¨¼,  暗å·, CSIRT,  脆弱性検査,  フォレンジック, スマホ,  プãƒã‚°ãƒ©ãƒŸãƒ³ã‚°,  ビットコイン ・別å ・証明書ãƒãƒ³ã‚¿ãƒ¼ ・(TLS)æš—å·ã‚¹ã‚¤ãƒ¼ãƒˆã‚¦ã‚©ãƒƒãƒãƒ£ãƒ¼ ・委員ã€æ¨™æº–
SSL(TLS)ã®DHã¨DHEã®é•ã„
702NK (1) 705NK (1) Activity (1) Adapter (2) add-on (1) AES (1) agile (3) amazon (2) Android (19) Android Studio (1) arm (2) assembler (1) bash (2) Bluetooth (2) book (3) bridge (1) C (13) cache (2) canna (1) catch.com (1) codereview (4) CPU (3) cruisecontrol (1) current (1) cygwin (1) debian (2) debug (2) dictionary (1) disklabel (2) distcc (2) DMA (2) Dropbox (1) embedded (2) encfs (1) english (
TLSæš—å·è¨å®šã‚¬ã‚¤ãƒ‰ãƒ©ã‚¤ãƒ³ 安全ãªã‚¦ã‚§ãƒ–サイトã®ãŸã‚ã«ï¼ˆæš—å·è¨å®šå¯¾ç–編) | æƒ…å ±ã‚»ã‚ュリティ | IPA 独立行政法人 æƒ…å ±å‡¦ç†æŽ¨é€²æ©Ÿæ§‹
「TLSæš—å·è¨å®šã‚¬ã‚¤ãƒ‰ãƒ©ã‚¤ãƒ³ã€ã¯ã€TLSサーãƒã®æ§‹ç¯‰è€…ã‚„é‹å–¶è€…ãŒé©åˆ‡ãªã‚»ã‚ュリティを考慮ã—ãŸæš—å·è¨å®šãŒã§ãるよã†ã«ã™ã‚‹ãŸã‚ã®ã‚¬ã‚¤ãƒ‰ãƒ©ã‚¤ãƒ³ã§ã™ã€‚「様々ãªåˆ©ç”¨ä¸Šã®åˆ¤æ–ææ–™ã‚‚åŠ å‘³ã—ãŸåˆç†çš„ãªæ ¹æ‹ ã€ã‚’é‡è¦–ã—ã¦ã€TLS通信ã§ã®å®Ÿç¾ã™ã¹ã安全性ã¨å¿…è¦ã¨ãªã‚‹ç›¸äº’接続性ã¨ã®ãƒˆãƒ¬ãƒ¼ãƒ‰ã‚ªãƒ•ã‚’考慮ã—ãŸ3ã¤ã®è¨å®šåŸºæº–(「高セã‚ュリティ型ã€ã€ŒæŽ¨å¥¨ã‚»ã‚ュリティ型ã€ã€Œã‚»ã‚ュリティ例外型ã€ï¼‰ã‚’è¨ã‘ã¦ãŠã‚Šã€å„々ã®è¨å®šåŸºæº–ã«å¯¾å¿œã—ã¦ã€TLSサーãƒã§è¨å®šã™ã¹ã具体的ãªè¦æ±‚è¨å®šï¼ˆã€Œéµå®ˆé …ç›®ã€ã¨ã€ŒæŽ¨å¥¨é …ç›®ã€ï¼‰ã‚’決ã‚ã¦ãŠã‚Šã¾ã™ã€‚ 本ガイドラインã¯å®‰å…¨ãªã‚¦ã‚§ãƒ–サイトã®ä½œã‚Šæ–¹ã¨ã¨ã‚‚ã«é©åˆ‡ãªæš—å·è¨å®šã‚’ã™ã‚‹è³‡æ–™ã®ä¸€ã¤ã¨ã—ã¦ãŠä½¿ã„ã„ãŸã ã‘ã¾ã™ã€‚ ãªãŠã€æœ¬ã‚¬ã‚¤ãƒ‰ãƒ©ã‚¤ãƒ³ã¯ã€æš—å·æŠ€è¡“評価プãƒã‚¸ã‚§ã‚¯ãƒˆCRYPTRECã§ä½œæˆã•ã‚Œã¾ã—ãŸã€‚ 「TLSæš—å·è¨å®šã‚¬ã‚¤ãƒ‰ãƒ©ã‚¤ãƒ³ã€ã®å†…容 1ç« ã¨2ç« ã¯ã€æœ¬ã‚¬ã‚¤ãƒ‰ãƒ©ã‚¤ãƒ³ã®ç›®çš„ã‚„SSL/TLSã«ã¤ã„ã¦ã®æŠ€è¡“çš„ãªåŸºç¤ŽçŸ¥è˜ã‚’
講演フォãƒãƒ¼/PKIDay2015 - kurushima @ è‡ªå •è½ãªæŠ€è¡“者ã®ãƒ°ã‚(公開版)
[[JNSA PKI Day 2015>http://www.jnsa.org/seminar/pki-day/2015/]]ã®è¬›æ¼”「SSL/TLS生誕20å¹´ã€è„†å¼±æ€§ã¨å¯¾ç–を振返るã€ã¨ãƒ‘ãƒãƒ«ã€ŒSSL/TLSã®å®Ÿè£…ãŒé€²ã‚€ã¹ãé“を語ã‚ã†ã€ã®è£œè¶³æƒ…å ±ã‚’ã€è¬›æ¼”後ã«ã“ã®ãƒšãƒ¼ã‚¸ã§å…¬é–‹ã—ã¾ã™ã€‚ *講演スライドã®å·®ã—替ãˆ(2015å¹´4月10æ—¥(金) 15:48) 講演「SSL/TLS生誕20å¹´ã€è„†å¼±æ€§ã¨å¯¾ç–を振返るã€ã«ã¤ãã¾ã—ã¦ã€[[JNSAサイト>http://www.jnsa.org/seminar/pki-day/2015/]]ã§å…¬é–‹ã—ã¦ã„ã‚‹ã‚‚ã®ã‹ã‚‰ã€ã‚¹ãƒ©ã‚¤ãƒ‰ã‚’6æžšè¿½åŠ ã•ã›ã¦é ‚ãã¾ã—ãŸã€‚最新版ãŒJNSAサイトã§ãƒ€ã‚¦ãƒ³ãƒãƒ¼ãƒ‰ã§ãã¾ã™ã®ã§ã”利用ãã ã•ã„。 - [[JNSAサイト最新マージ版PDF(1.8MB)>http://www.jnsa.org/seminar/pki-day/2015/data/2
[PDF]SSL/TLS生誕20å¹´ã€è„†å¼±æ€§ã¨å¯¾ç–を振返る | PKI Day 2015
© 2015 Fuji Xerox Co., Ltd. All rights reserved. JNSA  PKI相互é‹ç”¨WG・電åç½²åWG共催セミナー PKI  Day  2015  サイãƒãƒ¼ã‚»ã‚ュリティã®è¦ã¨ãªã‚‹PKIを見直㙠SSL/TLS生誕20å¹´ã€è„†å¼±æ€§ã¨å¯¾ç–を振返る 2015å¹´4月10æ—¥(金)  13:40-14:15 於:ヒューリックカンファレンス秋葉原ROOM1 漆嶌 賢二,  CISSP © 2014 Fuji Xerox Co., Ltd. All rights reserved. 1 ãƒ»çµŒæ´ ãƒ»å¯Œå£«ã‚¼ãƒãƒƒã‚¯ã‚¹(2010~) ・エントラストジャパン(2005~2010) ・セコム(1988~2005) ・興味: PKI,  TLS,  電åç½²å,  SSO,  èªè¨¼,  暗å·, CSIRT,  脆弱性検査,  フォレンジック, スマホ,  プãƒã‚°ãƒ©ãƒŸãƒ³ã‚°,  ビットコ
sslscanã§ã‚µãƒ¼ãƒã®SSL/TLS状態を簡å˜ã«ãƒã‚§ãƒƒã‚¯ã™ã‚‹ - ã‚ã°é›»åãŒè©°ã¾ã¤ã¦ã‚ã‚‹
最近ã¯SSL/TLSã®ã‚»ã‚ュリティå•é¡ŒãŒå¤šç™ºã—ã¦ã„ã‚‹ãŸã‚ã€è‡ªåˆ†ã§é‹ç”¨ã—ã¦ã„るサーãƒã®SSL/TLSã®è¨å®šã‚’テストã—ãŸã„ã¨ã„ã†äººã¯å¤šã„ã¨æ€ã„ã¾ã™ã€‚ SSL/TLSã®çŠ¶æ…‹ã‚’ãƒã‚§ãƒƒã‚¯ã™ã‚‹ã«ã¯ã€Qualys SSL Labsã®SSL Server TestãŒã‚ˆã使ã‚ã‚Œã¾ã™ã€‚ã—ã‹ã—ã“ã‚Œã¯å¤–部ã‹ã‚‰ç¬¬ä¸‰è€…ã«ã‚¹ã‚ャンã•ã›ã‚‹ã‚ã‘ã§ã™ã‹ã‚‰ã€(心ç†çš„・社内政治的ãª)æ•·å±…ãŒé«˜ã„ã¨ã„ã†ç‚¹ã‚‚ã‚ã‚Šã¾ã™ã—ã€ãã‚‚ãもインターãƒãƒƒãƒˆå´ã‹ã‚‰ç›´æŽ¥æŽ¥ç¶šã§ããªã„環境ã®ãƒ†ã‚¹ãƒˆãŒè¡Œãˆã¾ã›ã‚“。 ãã“ã§ã€IPアドレスを指定ã™ã‚‹ã ã‘ã§ã‚ˆã‚ã—ã対象ã®SSL/TLSサーãƒã®çŠ¶æ…‹ã‚’ãƒã‚§ãƒƒã‚¯ã—ã¦ãれるツールãŒã‚ã‚‹ã¨ä¾¿åˆ©ã ãªã€ã¨ã„ã†ã“ã¨ã«ãªã‚Šã¾ã™ã€‚本稿ã§ã¯ã€ã“ã®ã‚ˆã†ãªç›®çš„ã«åˆ©ç”¨ã•ã‚Œã‚‹sslscanã¨ã„ã†ã‚³ãƒžãƒ³ãƒ‰ã‚’紹介ã—ã¾ã™ã€‚ sslscanã¯Linuxã§å‹•ä½œã—ã€ãƒšãƒãƒˆãƒ¬ãƒ¼ã‚·ãƒ§ãƒ³ãƒ†ã‚¹ãƒˆç”¨ã«ä½¿ã‚れるKali Linuxã«ã‚‚インストールã•ã‚Œã¦ã„ã‚‹ãŠæ‰‹è»½ãªSS
Tracking the FREAK Attack
On Tuesday, March 3, 2015, researchers announced a new SSL/TLS vulnerability called the FREAK attack. It allows an attacker to intercept HTTPS connections between vulnerable clients and servers and force them to use weakened encryption, which the attacker can break to steal or manipulate sensitive data. This site is dedicated to tracking the impact of the attack and helping users test whether they
Superfish/eDellRootãŒå±é™ºãªç†ç”± - ã‚ã‚‚ãŠãã°
Lenovo製ã®PCã®ä¸€éƒ¨ã«Superfishã¨ã„ã†ãƒžãƒ«ã‚¦ã‚§ã‚¢ãŒæ¨™æº–ã§ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã•ã‚Œã¦ã„ã‚‹ã“ã¨ãŒç¢ºèªã•ã‚Œã€å¤§ããªå•é¡Œã¨ãªã£ã¦ã„ã¾ã™ã€‚ [2015-11-24追記] DELL製ã®PCã«ã‚‚ã€ã€ŒeDellRootã€ã¨ã•ã‚Œã‚‹Superfishã¨åŒæ§˜ã®å•é¡Œã‚’æŒã¤ãƒ«ãƒ¼ãƒˆè¨¼æ˜Žæ›¸ãŒå°Žå…¥ã•ã‚Œã¦ã„るよã†ã§ã™ã€‚ Dellã®PCã«ä¸å¯©ãªãƒ«ãƒ¼ãƒˆè¨¼æ˜Žæ›¸ã€Lenovoã®Superfishã¨åŒã˜å•é¡Œã‹ - ITmedia エンタープライズ Dude, You Got Dell’d: Publishing Your Privates - Blog - Duo Security Joe Nord personal blog: New Dell computer comes with a eDellRoot trusted root certificate https://t.co/chURwV7eNE eDellRootã§
Outbound Port 80 blocking ã®ã”æ案
Outbound Port 80 blocking ⽵竹 <takesako@shibuya.pm.org> http://www.janog.gr.jp/meeting/janog31/program/OP80B.html [ ] � MacBook Air â¾è¡Œï¨ˆ � [ ] � â¾è¡Œï¨ˆ ⼈人 � [ ] � ⼊入 � [ ] � ⼈人 � [ ] � ⽤用 Google Wireshark ⾯é¢â¼ˆäºº Firesheep � 2010 10⽉月 �Firefox � �Eric Butlerâ½’æ° ï¿½ LAN facebook Twitter ⽂文 HTTP Cookie � �PoC⽰示 Firesheep â¾¯é¢ Eric  Butlerâ½’æ°â½¤ç”¨ Firesheep � Web �Amazon.com CNET dropbox Evernote Facebook Flickr Gith
HTTP/2ã‹ã‚‰è¦‹ãˆã‚‹TLS事情 - ã‚ã©ã‘ãªã„話
ã“れ㯠HTTP/2 アドベントカレンダー19日目ã®è¨˜äº‹ã§ã™ã€‚ ã“ã®è¨˜äº‹ã¯ãŸãã•ã‚“ã®è³‡æ–™ã‚’èªã‚“ã 上ã§æ›¸ãã¾ã—ãŸãŒã€é–“é•ã„ã¨ã‹å‹˜é•ã„ã¨ã‹ãŒã‚ã‚‹ã‹ã‚‚ã—ã‚Œã¾ã›ã‚“。もã—ã‚ã‚Œã°ã€æŒ‡æ‘˜ã—ã¦ã„ãŸã ã‘ã‚‹ã¨å¹¸ã„ã§ã™ã€‚ 実質的ã«å¿…é ˆã¨ãªã£ãŸTLS HTTP/2ã¯ã€HTTP/1.1ã¨åŒã˜ãã€æš—å·åŒ–ãªã—/ã‚ã‚Šã®ãƒãƒ¼ãƒˆã¨ã—ã¦ã€80ã¨443を使ã„ã¾ã™ã€‚ãã®ãŸã‚ã€é€šä¿¡é–‹å§‹æ™‚ã«HTTP/1.1ã¨HTTP/2ã‚’ãƒã‚´ã‚·ã‚¨ãƒ¼ã‚·ãƒ§ãƒ³ã™ã‚‹ãŸã‚ã®ä»•çµ„ã¿ãŒã€HTTP/2ã§å®šã‚られã¦ã„ã¾ã™ã€‚ ã“ã®ã‚ˆã†ã«ä»•æ§˜ã¨ã—ã¦ã¯æš—å·åŒ–ãªã—ã®HTTP/2ãŒå®šç¾©ã•ã‚Œã¦ã„ã¾ã™ãŒã€Firefox ã‚„ Chrome ㌠TLS ã‚’è¦æ±‚ã™ã‚‹ãŸã‚ã«ã€å®Ÿè³ªçš„ã¯æš—å·åŒ–ã‚ã‚ŠãŒå¿…é ˆã¨ãªã£ã¦ã„ã¾ã™ã€‚ã“ã‚Œã¯ã€ç±³å›½ã®ç›£è¦–プãƒã‚°ãƒ©ãƒ PRISMã«ä»£è¡¨ã•ã‚Œã‚‹åºƒåŸŸç›£è¦–(pervasive surveillance)ã«å¯¾æŠ—ã™ã‚‹ãŸã‚ã«ã€IETFãŒã•ã¾ã–ã¾ãªé€šä¿¡ã«ãƒ—ライãƒã‚·ã®å¼·åŒ–ã‚’è¦æ±‚ã™ã‚‹æ–¹
è‡ªå •è½ãªæŠ€è¡“者ã®æ—¥è¨˜ : Internet Week 2014パãƒãƒ«ã§è©±ã—ãã³ã‚ŒãŸãƒã‚¿2: イントラ内ã§SSLサーãƒãƒ¼è¨å®šã‚’確èªã™ã‚‹ãƒ„ールsslaudit - livedoor Blog(ブãƒã‚°ï¼‰
先週ã®Internet Week 2014ã§HTTPSサーãƒãƒ¼è¨å®šã®ã‚»ãƒƒã‚·ãƒ§ãƒ³ã®ãƒ‘ãƒãƒ«ãƒ‘ãƒãƒ«ã§è¨€ãˆãªã‹ã£ãŸäº‹ã®ç¬¬äºŒå¼¾ã§ã™ã€‚ 自分ã®ã‚µã‚¤ãƒˆãŒå…¬é–‹ã‚µã‚¤ãƒˆã§ã‚ã‚‹å ´åˆã«ã¯Qualys SSLLabsã®ã‚µã‚¤ãƒˆã‚’使ã£ã¦å¤–部ã‹ã‚‰SSLã®æš—å·ã‚¹ã‚¤ãƒ¼ãƒˆã®è¨å®šã‚’確èªã™ã‚Œã°ã‚ˆã„ã‚“ã§ã™ãŒã€ã‚¤ãƒ³ãƒˆãƒ©å†…ã®å ´åˆã«ã¯åŽ„介ã§ã™ã‚ˆã。パケットã‚ャプãƒãƒ£ã§èª¿ã¹ã‚‹ã‚ã‘ã«ã‚‚ã„ã‹ãªã„ã—ã€OpenSSLã®s_clientã§æš—å·ã‚¹ã‚¤ãƒ¼ãƒˆä¸€ã¤ä¸€ã¤ãƒã‚¯ãƒã‚¯èª¿ã¹ã‚‹ã®ã¯é¢å€’ã ã—。 ãã‚“ãªæ™‚ã€ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆå´ã«WindowsãŒä½¿ãˆã‚Œã°www.g-sec.luã§å…¬é–‹ã—ã¦ã„ã‚‹sslauditã¨ã„ã†ãƒ„ールãŒä¾¿åˆ©ã§ã™ã€‚ 検査対象ã®ã‚µãƒ¼ãƒãƒ¼(IPアドレスã§ã‚‚å¯)ã¨ãƒãƒ¼ãƒˆ(デフォルトã§ã¯443)を指定ã—ã¦ã€ã€ŒStartã€ãƒœã‚¿ãƒ³ã‚’押ã™ã ã‘ã§ã™ã€‚利用å¯èƒ½ãªã‚‚ã®ã ã‘を表示ã™ã‚‹å ´åˆã«ã¯ã€ŒDisplay supported ciphersã€ã‚’ãƒã‚§ãƒƒã‚¯ã—ã¦ã‹ã‚‰ã‚¹ã‚¿ãƒ¼ãƒˆã™ã‚‹
è‡ªå •è½ãªæŠ€è¡“者ã®æ—¥è¨˜ : Internet Week 2014パãƒãƒ«ã§è©±ã—ãã³ã‚ŒãŸãƒã‚¿: çµ±è¨ˆæƒ…å ±ã§ã¿ã‚‹SSL/TLS - livedoor Blog(ブãƒã‚°ï¼‰
基本ã¯å–°ã£ã¦ã‚‹ã‹é£²ã‚“ã§ã‚‹ã‹ã§ã™ãŒã€ã‚ˆã趣味ã§ã‚«ãƒ©ã‚ªã‚±ãƒ»PKI・署å・èªè¨¼ãƒ»ãƒ—ãƒã‚°ãƒ©ãƒŸãƒ³ã‚°ãƒ»æƒ…å ±ã‚»ã‚ュリティをやã£ã¦ã„ã¾ã™ã€‚旅好ã。テレビ好ãã§èŠ¸èƒ½é€š 先週ã®Internet Week 2014ã§HTTPSサーãƒãƒ¼è¨å®šã®è©±ã‚’ã•ã›ã¦é ‚ãã¾ã—ãŸã€‚ãŠè¶Šã—é ‚ã„ãŸæ–¹ã€ã‚ã‚ŠãŒã¨ã†ã”ã–ã„ã¾ã—ãŸã€‚マニアックãªå†…容ã ã£ãŸã®ã§ã™ãŒã€ä½•ã‹å‚考ã«ãªã‚‹æ‰€ãŒã‚ã‚Œã°å¬‰ã—ã„ã§ã™ã€‚ ã•ã¦ã€ä»Šæ—¥ã¯ãƒ‘ãƒãƒ«ãƒã‚¿ã§ä»•è¾¼ã‚“ã§ãŠã„ãŸã®ã«é™½ã®ç›®ã‚’見ãªã‹ã£ãŸè©±ã‚’ã¡ã‚‡ã£ã¨ãƒ–ãƒã‚°ã§æ›¸ã“ã†ã¨æ€ã„ã¾ã™ã€‚SSL/TLS関連ã§çµ±è¨ˆãƒ‡ãƒ¼ã‚¿ã¿ãŸã„ãªã‚‚ã®ã‚’出ã—ã¦ã„るサイトãŒå¹¾ã¤ã‹ã‚ã£ã¦ã€ãã“ã‹ã‚‰ä¸–ã®ä¸ã®å‚¾å‘ãŒã‚ã‹ã£ãŸã‚Šã€ãれを元ã«è‡ªåˆ†ã®ã‚µãƒ¼ãƒãƒ¼ã¯ã©ã†è¨å®šã™ã‚‹ã‹ãªãã€ãªã©ã¨è€ƒãˆã‚‹ã®ã«å½¹ã«ç«‹ã¤ã®ã§ã¯ã¨æ€ã„紹介ã—ãŸã„ã¨æ€ã„ã¾ã™ã€‚ SSL Pulse ã¾ãšæœ€åˆã«ç´¹ä»‹ã—ãŸã„ã®ãŒSSL Pulseã¨ã„ã†ã‚µã‚¤ãƒˆã§ã™ã€‚ 出典:SSL Pulse https://www.tr
Qualys SSL Labs
HOW WELL DO YOU KNOW SSL? If you want to learn more about the technology that protects the Internet, you’ve come to the right place. Books Bulletproof SSL and TLS is a complete guide to deploying secure servers and web applications. This book, which provides comprehensive coverage of the ever-changing field of SSL/TLS and Web PKI, is intended for IT security professionals, system administrators, a
Changed default settings of ext/openssl
Posted by usa on 27 Oct 2014 We changed the default setting of ext/openssl in Ruby 2.1.4, Ruby 2.0.0-p594 and Ruby 1.9.3-p550. With this change, insecure SSL/TLS options are now disabled by default. However, by this change, there is a possibility of some problems in the SSL connection. Details OpenSSL still implements protocols and ciphers that are considered insecure today by historical circumsta
リリースã€éšœå®³æƒ…å ±ãªã©ã®ã‚µãƒ¼ãƒ“スã®ãŠçŸ¥ã‚‰ã›
最新ã®äººæ°—エントリーã®é…ä¿¡
j次ã®ãƒ–ックマーク
kå‰ã®ãƒ–ックマーク
lã‚ã¨ã§èªã‚€
eコメント一覧を開ã
oページを開ã
GitHub - droe/sslsplit at 0.5.0
Use SSLsplit to transparently sniff TLS/SSL connections - including non-HTTP(S) protocols - Philipp's Tech Blog
PCI DSS 3.1 to Address SSL Security Holes
GoogleãŒWebã§ã®SHA-1ã®åˆ©ç”¨åœæ¢ã‚’急ãç†ç”± | POSTD
{{#tags}}- {{label}}
{{/tags}}