Android: Der Beitrag stellt die Vorbereitung des Testgeräts sowie Werkzeuge (Frida, Magisk) zur Analyse des Datensendeverhaltens von Apps vor. Reinschauen! ✌️ 👇
Please, don't ever let you company adopt Netskope. I'm constantly running into websites wrongly categorized and getting warnings about if I want to proceed.
Plus, they hijack the TLS certificates which makes software development a hell. You need to manually config each of your CLI tools to trust a special set of "Netskope certificates" to have the chain work.
SSL Labs (https://www.ssllabs.com/ssltest) from Qualys used to be a useful HTTPS testing tool. However, it hasn't received significant updates since 2019 and is now holding back HTTPS security. The biggest issue is that many of the tests don't support TLSv1.3 so it penalizes disabling legacy TLSv1.2.
@GrapheneOS Good to know. Thanks for the heads up! 👍
Can't we have a #FOSS version of SSLlabs? Sounds like generally desirable for the whole industry and likely to receive Merge Requests once established. I think many updates would be mere changes of opinions about recommended settings. #ssl#tls#https#openssl
Für Leute, die eigene Server betreiben und mal Klarheit bei der vorliegenden #TLS#SSL#encryption benötigen, können es hiermit testen.
testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL #ciphers, protocols as well as recent cryptographic flaws and more.
Je viens juste de me rendre compte que #TCPFastOpen n'était pas activé sur mes 2 serveurs faisant autorité acceptant les requêtes via #TLS (chiffrement opportuniste, les certificats sont auto-signés — mais vérifiables via #DANE/TLS). J'étais donc en (léger) froid avec la section 4.1 du RFC 9210 (aka BCP 235) :
Getting close to a full green #Bunny running fully on @reactphp. There is one #TLS/#SSL test left to resolve before this will become the base for 0.6.x. #php#rabbitmq#amqp