Collaborate Disseminate
I want to teach myself how modern email works, especially those protocols used to secure emails, such as STARTTLS, S/MIME, DKIM, etc. However, I exhausted all my searching skills and was unable to find a single book that explains (secure) … Continue reading Any recommended book for email security? [closed]
I am reading about IPsec and am confused of what exactly is "IPsec", is it a network layer protocol, or is it a technology that uses involves multiple protocols? All web searches tell me IPsec is a "protocol" that runs … Continue reading Shouldn’t IPsec be an application layer protocol since it is "over UDP"?
In the process of finding RSA key pairs, we first find a e that is relatively prime to φ(n) (where n = p × q), and then find d such that e × d mod φ(n) = 1. Is d also relatively prime to φ(n), or not necessarily?
In practice, e is usually … Continue reading In RSA, is e and d technically equivalent? [migrated]
I found most CDNs allow the user to claim any domains to be the backend, I wonder why they do this instead of verifying if the user owns the backend domain. If I have myowndomain.com and set the backend to be facebook.com, wouldn’t it be a… Continue reading Why do CDNs allow arbitrary backend to be set, is it not a big security concern?
I wonder what is the volume of traffic, in terms of requests/second, forms a legit DDoS attack against a website. I know it highly depends on the website and where it is hosted. But is there any real-world example that at least gives some … Continue reading What is the traffic volume of practical DDoS attacks
I have done some research but have not found an absolute answer to my specific question. I understand the basic concept of how this header will allow or disallow website A from sending request and viewing response to resources on website B… Continue reading Concrete example of how can Access-Control-Allow-Origin:* cause security risks?
I want to test out some censorship evasion techniques and want to get a connect to some censored area, such as China or so. I purchase several VPN that claims to have servers in these countries, but when I dial in, I can still visit the we… Continue reading How to get myself into a censored network?
I want to test out some censorship evasion techniques and want to get a connect to some censored area, such as China or so. I purchase several VPN that claims to have servers in these countries, but when I dial in, I can still visit the we… Continue reading How to get myself into a censored network?
I recently came across the technical domain fronting, and I understanding it has largely been prohibited by Amazon and Google, etc. I have also read the original paper introducing this technique Blocking-resistant communication through dom… Continue reading How could domain fronting get over the firewall if CDN node is within?
I recently came across the technical domain fronting, and I understanding it has largely been prohibited by Amazon and Google, etc. I have also read the original paper introducing this technique Blocking-resistant communication through dom… Continue reading How could domain fronting get over the firewall if CDN node is within?