hotips – WindowsTechs.com

How secure is HTTP auth digest in 2023

Posted on June 29, 2023 by hotips

I’m trying to figure out the time needed to crack an HTTP digest auth. According to the RFC2069, the digest in calculated according to this scheme :
HA1 = MD5(username:realm:password)
HA2 = MD5(method:digestURI)
response = MD5(HA1:nonce:HA… Continue reading How secure is HTTP auth digest in 2023→

Is DANE-EE TLSA version 3 (Domain-issued certificate from rfc6698) still supported in 2023?

Posted on May 22, 2023 by hotips

I would like to setup a webserver using TLS without relying on third party CA.
Is it still possible in 2023 ?
FreeBSD was using the feature and is now using Let’s Encrypt (as well as a lot of privacy-conscious projects)
Do you have an exam… Continue reading Is DANE-EE TLSA version 3 (Domain-issued certificate from rfc6698) still supported in 2023?→