Collaborate Disseminate
I’m seeing some curious issues with cert verification for an Issuer: Entrust – L1K cert that was issued and is in use (per inspection of the cert in Chrome and Firefox) for an internal site here.
I don’t see any Subject: En… Continue reading How to determine effective trust chain for cert on MacOS X?
This management system runs under a user’s password. Should you let this software manage your Disk Utility encrypted folder passwords and the like (e.g. GnuPG!)? My thoughts are, "No." Why should there be a software on my oper… Continue reading Apple’s Keychain – good security?
some months ago I was travelling and flew from Frankfurt airport and, while there, I probably connected to some Telekom.de free hotspot. I have an iPhone 6 with iOS 9.02 (at that time it was 8.1.x).
Couple days ago I looked … Continue reading Security flaw in iOS, Safari weird behavior or what else?
I have a PKI certificate in Keychain Access.app on OS X 10.9, together with the private key.
The manual page for /usr/bin/security indicates that there is a -x option for security import to specify that private keys are non-extractable af… Continue reading Export non-extractable private key from Keychain on OS X
On OS X, when an application requests access to a Keychain item, the user is prompted whether to grant or deny that access.
Supposedly, the system saves not only the binary path, but also its hash in the ACL entry that is created after th… Continue reading How secure is OS X’s Keychain access control?