schmonz.com is a Fediverse instance that uses the ActivityPub protocol. In other words, users at this host can communicate with people that use software like Mastodon, Pleroma, Friendica, etc. all around the world.

This server runs the snac software and there is no automatic sign-up process.

Search results for tag #TLS

Stefano Marinelli boosted

[?]Peter N. M. Hansteen » 🌐
@pitrh@mastodon.social

LibreSSL 4.3.2 released undeadly.org/cgi?action=articl

    Justine Smithies boosted

    [?]Larvitz :fedora: » 🌐
    @Larvitz@burningboard.net

    Let's Encrypt just stopped the issuance of certificates after an (so far not publicly disclosed) incident:

    letsencrypt.status.io/pages/in

    If anyone encounters issues today with failed certificate renewals: It's probably not your setup.

      Stefano Marinelli boosted

      [?]Peter N. M. Hansteen » 🌐
      @pitrh@mastodon.social

      LibreSSL 4.3.1 released undeadly.org/cgi?action=articl

        [?]Jan Schaumann » 🌐
        @jschauma@mstdn.social

        System Administration: Week 8: HTTPS

        We sketched out the basics of HTTP in our last class, so necessarily we'll have to cover now. These slides illustrate the benefits (transport encryption, endpoint authentication) as well as some of the pitfalls (complexity, cert revocation, endpoint "authentication").

        stevens.netmeister.org/615/08-

          [?]Jan Schaumann » 🌐
          @jschauma@mstdn.social

          I know everybody is up in the Merkel Tree right now, but PQC affects more than just TLS. Here's a quick high-level summary of some other areas where we want to pay attention:

          akamai.com/blog/security/post-

            [?]Jan Schaumann » 🌐
            @jschauma@mstdn.social

            I expect the adoption rate going forward to be slow: most of the large services support PQC at this point, but may require customers to opt in, and anybody not on one of the major CDNs will have to do the work themselves. I'll check again in another 6 months, but I'll be surprised if we exceed 50% at that point.

            All of the above and a little bit more information about the current status of PQC adoption in this blog post:

            netmeister.org/blog/pqc-use-20

              [?]Jan Schaumann » 🌐
              @jschauma@mstdn.social

              It's been almost 6 months since I last checked, so here's a quick update on what sites are using key exchanges in for HTTPS.

              Overall, not much movement since September: by now, around 41% of the Top 1M Domains support PQC, up from ~39%:

              Count Percent1 Total 374,183 41.06% Out of those: X25519MLKEM768 374,152 99.99% SecP256r1MLKEM768 35,088 9.38% SecP384r1MLKEM1024 2,102 0.56% MLKEM1024 842 0.23%

              Alt... Count Percent1 Total 374,183 41.06% Out of those: X25519MLKEM768 374,152 99.99% SecP256r1MLKEM768 35,088 9.38% SecP384r1MLKEM1024 2,102 0.56% MLKEM1024 842 0.23%

                0 ★ 0 ↺

                [?]Amitai Schleier [he/they] » 🌐
                @schmonz@schmonz.com

                #qmail lacks #TLS. #notqmail doesn't include it either (yet!). But if you install from #pkgsrc…

                \# chown qmaild:nofiles control/servercert.pem
                \# chmod 640 control/servercert.pem
                \# ln -s control/servercert.pem control/clientcert.pem
                \# update_tmprsadh
                \# /etc/rc.d/qmail restart

                🔐

                  about this site - powered by snac/2.89