Tag: certificates

  1. Canonical Wikileaks URLs and SSL certificate fingerprints.

    31 July 2010

    Official Wikileaks document submission URLs:

    http://suw74isz7wqzpmgu.onion/ (Tor only)

    Source: /pictures/the_next_hope-2010/img_1624.jpg, taken 17 July 2010 at the keynote address. Image taken of Jacob Appelbaum's presentation slide.

    Official SHA-256, SHA-1, and MD5 fingerprints of the Wikileaks document submission URLs:


    71:F1:30:3D:8A:AD:8E:33 …


  2. "MD5 considered harmful today"... but why?

    01 January 2009

    If you've been following net.news in the past twenty-four to forty-eight hours you heard about what went down at the Chaos Computer Congress yesterday - a group of security researchers figured out how to exploit the flaws in the MD5 hash algorithm to forge CA certificates, thus placing SSL encryption as we know it in jeopardy.

    ...right? Breaking SSL is bad, yeah?

    Like many things in life (and nearly everything in cryptography) it's not that simple or that straightforward. Yes, this is bad, but it's not "go back to punchcards" bad.

    Let's take it step by step. First of all …


  3. Random knowledge VIII.

    25 January 2007

    You're getting old if you consider sleeping until 0900 'sleeping in'.

    When configuring a firewall with IPTables you have to specify the protocol before the port number(s) in each command. Do this:

    iptables -A INPUT -s -p tcp --dport 22 -j ACCEPT

    and not this

    iptables -A INPUT -s --dport 22 -p tcp -j ACCEPT

    If you don't, you'll see error messages to the effect of "Unknown arg '--dport'"

    When writing Snort rules, there are a few things to keep in mind. First of all, rules come in two parts: the …