Gabriel Fair – WindowsTechs.com

Why does Firefox use unsecured port 80 to download certs? [duplicate]

Posted on March 28, 2023 by Gabriel Fair

When firefox (v111 2023) is opened for the first time it connects to ocsp.digicert.com on port 80 in cleartext. Isn’t this a terrible security vulnerability. Can someone help me understand why this would be allowed practice?

Continue reading Why does Firefox use unsecured port 80 to download certs? [duplicate]→

How can one identify if a ssid is an evil twin before connecting?

Posted on March 10, 2021 by Gabriel Fair

How can I check before I connect that the WPA2 ssid I am connecting to is the correct one when I’m in an area with spoofed ssid’s?
How can I evade an evil twin without trying to connect with a fake password? I would prefer to only connect … Continue reading How can one identify if a ssid is an evil twin before connecting?→

How can a site preemptively notify browsers to enforce an SSL on their domain?

Posted on February 4, 2021 by Gabriel Fair

I learned about this years ago and don’t remember enough of the keywords to search for it appropriately.
Its where sites can tell the browser that the site must not allow the site to be downgraded to HTTP.

Continue reading How can a site preemptively notify browsers to enforce an SSL on their domain?→

Is there any way I can have an out of band certification of a site’s self signed certs?

Posted on October 12, 2020 by Gabriel Fair

Sometimes given the laws and the circumstances one is subjected to, obtaining an official SSL Certificate for a webservice might be extraordinarily difficult if not illegal.
For those who are stuck with having to self-sign their sites, is … Continue reading Is there any way I can have an out of band certification of a site’s self signed certs?→

How can Apple allow all my devices to use iMessages without the key leaving my phone?

Posted on April 12, 2019 by Gabriel Fair

This question is related but different to this question.

Apple says that all iMessages are end-to-end encrypted, but how can a newly enrolled apple laptop read my phone’s iMessages that were sent before my laptop’s time, wit… Continue reading How can Apple allow all my devices to use iMessages without the key leaving my phone?→

Would it be a security risk if I moved PsTools to the windows system32 folder?

Posted on May 22, 2018 by Gabriel Fair

Microsfot Sysinternals has a helper program called PsTools inside this PsTools suite are a bunch of .exe tools that I use regularly from a command line.

I was thinking about moving all these files to my system32 directory s… Continue reading Would it be a security risk if I moved PsTools to the windows system32 folder?→

Would it be a security risk if I moved PsTools to the windows system32 folder?

Posted on May 22, 2018 by Gabriel Fair

Microsfot Sysinternals has a helper program called PsTools inside this PsTools suite are a bunch of .exe tools that I use regularly from a command line.

I was thinking about moving all these files to my system32 directory s… Continue reading Would it be a security risk if I moved PsTools to the windows system32 folder?→