Tag: Scott Helme

Read the original article: The M140i project post – Part 5 Things are coming along nicely now and there are some more important upgrades to be made in Part 5. In Part 4 we got more power and with great…

Read more →

Read the original article: Upgrading my crawler to do HTTP/2.0, TLSv1.3 and other cool stuff! I’ve upgraded my crawler fleet many times over the years to look at new security mechanisms, gather deeper insight and more data and this change…

Read more →

Read the original article: Upgrading my crawler to do HTTP/2.0, TLSv1.3 and other cool stuff! I’ve upgraded my crawler fleet many times over the years to look at new security mechanisms, gather deeper insight and more data and this change…

Read more →

Read the original article: The M140i project post – Part 4 Time for things to get serious! In Part 4 of the project we’re going to be making some quite big changes to the car and getting a little more…

Read more →

Read the complete article: b’Launching SMTP TLS Reporting on Report URI!’ This post doesn’t have text content, please click on the link below to view the original article.   Advertise on IT Security News. Read the complete article: b’Launching SMTP…

Read more →

Things are certainly moving along with the project now and in Part 3 we have a few more modifications on the cosmetic side, some repair work and the next modification to move towards bigger power! The series Working on cars…

Read more →

I recently made some changes to my home network to increase the speed and reliability of my connection, but I did hit a little bump in the road along the way. My Ubiquiti Home Network If you’re not familiar with…

Read more →

In Part 1 of this series I introduced my BMW M140i and talked about some of the initial modifications I made to it. These mods were mostly cosmetic and made for great starter mods but now, in Part 2, we’re…

Read more →

I’m sure many of you, like me, have found yourselves spending a lot more time at home recently and with that comes the need to work from home a little more too! In this blog I’m going to look at…

Read more →

I’m sure many of you, like me, have found yourselves spending a lot more time at home recently and with that comes the need to work from home a little more too! In this blog I’m going to look at…

Read more →

Over the years we’ve constantly worked on Report URI to improve it with the goal of helping more and more websites improve their security. Today, I’m really happy to announce that we’re partnering with Joomla! as their official Reporting Partner…

Read more →

In late 2018 I was incredibly excited to pick up my realistic dream car. After having driven several different BMW cars over the years, as part of my 12 car and 3 motorbike history, this has to be, by far,…

Read more →

It’s time for another 6 month update on the state of security online that’s a little late! This is the second report using the new data source that was announced in the last report so we have some good comparisons…

Read more →

It’s time for another 6 month update on the state of security online that’s a little late! This is the second report using the new data source that was announced in the last report so we have some good comparisons…

Read more →

Things have certainly been interesting over the last few weeks and it’s fair to say that a lot things have changed in quite a short amount of time! With any negative event like the one we’re currently experiencing though, I…

Read more →

I’m fortunate to have spent the last few years either working from home or travelling the World doing training, consultancy and public speaking. With the recent Coronavirus epidemic having quite literally wiped my travel schedule clean, I find myself doing…

Read more →

A lot has changed in the browser landscape recently and we’ve seen all of the mainstream browsers move away from running their own XSS Auditor or XSS Filter. Given this shift, it’s time for me to update a few things…

Read more →

I’ve worked from home for quite some time and having both fast and reliable internet access has of course always been a huge concern for me. In order to increase both the speed and reliability of my internet connection, I…

Read more →

I’ve talked a lot about revocation checking before on my blog and made various arguments against it and explained why it’s not such a great idea, but there’s nothing like demonstrating something. I decided to do a little experiment and…

Read more →

Yesterday it was announced that Let’s Encrypt are to revoke a large number of certificates after identifying a bug in their CA software, Boulder. This blog is here to keep a record of details related to this event and help…

Read more →

Yesterday it was announced that Let’s Encrypt are to revoke a large number of certificates after identifying a bug in their CA software, Boulder. This blog is here to keep a record of details related to this event and help…

Read more →

I’ve talked a lot about revocation in recent years and the issues with the current methods for checking the revocation status of a certificate are well understood and widely documented. We may now have something that changes that, let’s take…

Read more →

I’ve relied on a lot of different projects over the years that have helped me in various different ways and recently had the opportunity to start giving something back. Running Report URI We’re lucky enough to have Michal Špaček with…

Read more →

It’s finally happening! We’ve had 2 failed attempts through the CA/B Forum and now Apple has decided to enforce a maximum lifetime of 398 days on certificates issued from 1st Sep 2020. Previous attempts to reduce to 1 year The…

Read more →

There has been a huge focus on encryption on the web recently, with lots of that centred around HTTP with things like HTTPS and HSTS. Now we’re taking the same concept and extending it to email with MTA-STS, or Mail…

Read more →

There has been a huge focus on encryption on the web recently, with lots of that centred around HTTP with things like HTTPS and HSTS. Now we’re taking the same concept and extending it to email with MTA-STS, or Mail…

Read more →

With TLS having taken some great steps forwards in recent years, with TLSv1.2 in 2008 and TLSv1.3 in 2018, it’s time to start dropping support for the legacy versions of TLS. Legacy TLS TLSv1.0 was released in 1999, that’s more…

Read more →

It’s been an interesting ride over the last few years but HPKP, or HTTP Public Key Pinning, is finally coming to the end of its tenure. With support now gone in the last remaining browser, HPKP has been consigned to…

Read more →

It’s been an interesting ride over the last few years but HPKP, or HTTP Public Key Pinning, is finally coming to the end of its tenure. With support now gone in the last remaining browser, HPKP has been consigned to…

Read more →