Aaron Parecki

#https

• Problem with certificates - Ask Ubuntu (askubuntu.com)

  "sudo apt-get install --reinstall ca-certificates"

  Thu, Sep 30, 2021 11:10am -07:00 #ssl #https
• Will You Be Impacted by Let’sEncrypt DST Root CA X3 Expiration? | by Liejun Tao | Geek Culture | Medium (medium.com)

  Thu, Sep 30, 2021 10:52am -07:00 #openssl #https #certificates
• Let's Encrypt's Root Certificate is expiring! (scotthelme.co.uk)

  Thu, Sep 30, 2021 10:51am -07:00 #openssl #https #certificates

• Better Default Security for IndieAuth Login Forms

  Last year, I posted a JavaScript snippet that I've started using in all my projects that have an IndieAuth login form, which will automatically add the http scheme if you type a plain domain. This is particularly a problem because the iOS keyboard doesn't include the : character in URL mode.

  continue reading...

  3 likes 1 reply

  Mon, May 13, 2019 12:49am +02:00 #indieweb #indieauth #security #https
• Google: Chrome is backing away from public key pinning, and here's why | ZDNet (www.zdnet.com)

  Sun, Sep 30, 2018 2:34pm -07:00 #https
• Securing Web Sites Made Them Less Accessible – Eric’s Archived Thoughts (meyerweb.com)

  Tue, Aug 7, 2018 4:01pm -07:00 #https #security #web
• Google Online Security Blog: A secure web is here to stay (security.googleblog.com)

  Mon, Feb 12, 2018 5:29am -08:00 #https
• Create a Subject Alternative Name (SAN) CSR with OpenSSL (www.lisenet.com)

  

  Tue, Jun 27, 2017 6:02pm -07:00 #openssl #ssl #https
• How to setup your own CA with OpenSSL (gist.github.com)

  

  Tue, Jun 27, 2017 6:02pm -07:00 #openssl #ssl #https

• Day 80: Replaced my HTTPS Certificates #100DaysOfIndieWeb

  Normally I wouldn't have let this kind of change qualify for my #100Days project, but I was blocked from using any of my indieweb tools, and I feel like there's a good lesson here.

  continue reading...

  3 mentions

  Fri, Mar 10, 2017 6:09pm -08:00 #100daysofindieweb #letsencrypt #https #startcom
• 

  Nice follow-up to @CloudFlare's disaster bug by @1Password ♥️🔐 https://blog.agilebits.com/2017/02/23/three-layers-of-encryption-keeps-you-safe-when-ssltls-fails/ Keep being awesome, 1Password!

  Portland, Oregon, USA

  2 likes 4 reposts 1 reply

  Thu, Feb 23, 2017 7:03pm -08:00 #1password #security #cloudflare #ssl #https
• RFC 5929 - Channel Bindings for TLS (tools.ietf.org)

  

  Wed, Aug 31, 2016 12:09pm -07:00 #tls #https #security
• StartEncrypt considered harmful today - Computest (www.computest.nl)

  

  Thu, Jun 30, 2016 8:39am -07:00 #ssl #https #startssl
• 

  This is perhaps the first step in the fall of certificate authorities in favor of p2p root CA trust sharing. https://twitter.com/FiloSottile/status/735940720931012608

  Portland, Oregon, USA

  1 like 1 repost 2 mentions

  Thu, May 26, 2016 3:19pm -07:00 #security #ssl #https #bluecoat
• 

  I wrote about my relatively painless process of getting an https cert using letsencrypt! http://aaronparecki.com/articles/2015/12/07/1/letsencrypt

  Portland, Oregon, USA

  10 likes 5 reposts 2 replies

  Mon, Dec 7, 2015 10:27am -08:00 #https #letsencrypt

• Setting up HTTPS with Letsencrypt.org

  

  I use nginx to serve my HTTPS domains, and Letsencrypt support for nginx is still in beta. I also have a relatively specialized nginx config setup so I don't want any automated script messing with those files. Below are the steps I took to use the letsencrypt tool to generate and automatically renew a certificate for a domain.

  continue reading...

  10 likes 5 reposts 2 replies 3 mentions

  Mon, Dec 7, 2015 9:59am -08:00 #https #ssl #letsencrypt #indieweb
• HTTPS at IndieWebCamp UK 2014 (www.designingsecurity.com)

  Mon, Sep 15, 2014 1:42pm -07:00 #indiewebcamp #https