Tag Archives: Security

my.com “MyMail” disaster: when security and privacy become marketing gags

The internet is a constantly evolving agglomeration of excellent, mediocre and weird ideas. As it seems, my.com [1] seems to have taken the weird path for their MyMail app, an iOS and Android email application claiming to “Focus on what’s important” [2] Well, tell me, what do you think, are security and privacy important for Continue Reading →

Spread the love

OpenVPN: extended verification of X.509 client certificates

X.509 certificates have become a key part for secure authentication in corporate environments and unsurprisingly, OpenVPN[1] allows to use X.509 certificates for identifying authorized clients. Now, the default mode for OpenVPN is to verify the presented client certificates against a certificate authority (CA) and if that test succeeds, the clients are allowed in. That however is more than Continue Reading →

Spread the love

gitblit: Apache as frontend for x509 client authentication

It took us a long journey to finally come to the point where we decided to add a git repository server to our existing subversion source control infrastructure. The journey was quite long mostly due to the fact that both the development and management tools for git were just not good enough – at least Continue Reading →

Spread the love

unwanted http:// to https:// rewrites in Firefox

HTTPS is a good thing, especially in times of Big Brother watching every byte you send over the wires. That must be the reason why Firefox tries to be very smart and automatically remembers, if you’ve once visited a site using HTTPS and automatically redirects you to it. So far, so good. This becomes a Continue Reading →

Spread the love

google-chrome or chromium and SSL client certificates

Many of our restricted services rely on client authentication based on X.509 SSL certificates. And some of the better (say user friendly 🙂 ones’ are accessible using a web interface. So, with Firefox certificate based authentication is relatively easy to implement, yet when using google-chrome or chromium I was quite lost on how to manage Continue Reading →

Spread the love