Public
- Public
- Network
- Groups
- Featured
- Popular
- People

Conversation

Notices

Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Sunday, 31-Mar-2024 03:27:45 JST Ryan Castellucci :nonbinary_flag:

https://rya.nc/cert-tricks.html
In conversation about 10 months ago from infosec.exchange permalink
Attachments
1. Domain not in remote thumbnail source whitelist: rya.nc
  
  Stupid Certificate Tricks
  
  Sometimes I do things for no real reasons other than “because I can” and/or “it amuses me”. For example, embedding a snarky message into my HTTPS certificate.
- Embed this notice
  Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Sunday, 31-Mar-2024 04:13:35 JST Ryan Castellucci :nonbinary_flag:
  in reply to
  - 0xC0DEC0DE07E8
  @c0dec0dec0de https://bsky.app/profile/filippo.abyssdomain.expert/post/3kowk2vdagg2c
  In conversation about 10 months ago permalink
  Attachments
  1. No result found on File_thumbnail lookup.
    
    Filippo Valsorda (@filippo.abyssdomain.expert)
    
    The payload is extracted from the N value (the public key) passed to RSA_public_decrypt, checked against a simple fingerprint, and decrypted with a fixed ChaCha20 key before the Ed448 signature verification.
- Embed this notice
  0xC0DEC0DE07E8 (c0dec0dec0de@hachyderm.io)'s status on Sunday, 31-Mar-2024 04:13:36 JST 0xC0DEC0DE07E8
  in reply to
  
  @ryanc :revblobfoxcrylaugh:
  
  In conversation about 10 months ago permalink
- Embed this notice
  Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Sunday, 31-Mar-2024 05:53:55 JST Ryan Castellucci :nonbinary_flag:
  in reply to
  - 0xC0DEC0DE07E8
  @c0dec0dec0de I need to check the access logs for this:
  https://rya.nc/ssh-vanity.html
  In conversation about 10 months ago permalink
  Attachments
  1. Domain not in remote thumbnail source whitelist: rya.nc
    
    SSH “Vanity” Key Generator
    
    What is this? Type something consisting of base64 characters into the “Embedded Text” field, then click “Submit”. An SSH keypair will be generated, and the public key will contain your…
- Embed this notice
  0xC0DEC0DE07E8 (c0dec0dec0de@hachyderm.io)'s status on Sunday, 31-Mar-2024 05:53:57 JST 0xC0DEC0DE07E8
  in reply to
  
  @ryanc oh noes. I forgot about that whole thing for a minute and thought you were just goofing around. Spent a minute or two tossing around whether I thought it constituted any kind of weakness on the part of a server using one and decided “probably not” especially given how some keys were generated in the last with an eye towards having fewer up bits to reduce processing time.
  
  In conversation about 10 months ago permalink
  
  Ryan Castellucci :nonbinary_flag: repeated this.

Public

Conversation

Notices

Feeds