GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Conversation

Notices

  1. Embed this notice
    NGI Zero open source funding (ngizero@mastodon.xyz)'s status on Tuesday, 10-Dec-2024 02:56:31 JST NGI Zero open source funding NGI Zero open source funding
    • hanno

    badkeys is an open source tool to check cryptographic keys for known vulnerabilities. Its developer @hanno gave a talk at German OWASP Day where he discussed how old bugs never die. He tested for the Debian OpenSSL bug discovered in 2008 & found hundreds of DKIM setups still vulnerable. Vulnerable hosts included prominent names like Cisco, Oracle, Skype, and Github. But he sees even older vulns including one which is over 300 years old.
    Watch the talk here: https://media.ccc.de/v/god2024-56276-the-debian-openssl-bug-and
    #NGI #NGI0

    In conversation about 6 months ago from mastodon.xyz permalink

    Attachments

    1. Domain not in remote thumbnail source whitelist: static.media.ccc.de
      The Debian OpenSSL bug and other Public Private Keys
      from Hanno Böck
      In early 2024, hundreds of DKIM setups still used cryptographic keys vulnerable to a bug from 2008 in Debian's OpenSSL package. Vulnerabl...

    Feeds

    • Activity Streams
    • RSS 2.0
    • Atom
    • Help
    • About
    • FAQ
    • TOS
    • Privacy
    • Source
    • Version
    • Contact

    GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

    Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.