Need for additional verification in mutual TLS authentication with own CA

Say, the goal is to facilitate secure communication between two parties. The definition of secure is that

both parties can be sure that they are actually talking to a trusted party, not somebody else
they can be sure that n… Continue reading Need for additional verification in mutual TLS authentication with own CA

How effective is Expect-CT against content inspection in an enterprise context?

HPKP was used to ensure that a browser accepts to connect to a site only if the public key he has on file is the one presented by the target site. I saw it as a way to make deep content inspection more complicated (some sites… Continue reading How effective is Expect-CT against content inspection in an enterprise context?

OpenVPN Android App – Please help understand the security functions [on hold]

Hi guys can anyone help me out please? This openvpn app https://play.google.com/store/apps/details?id=de.blinkt.openvpn&hl=de

I do not understand following 11 options in the settings menu. What is their meaning/impact? I… Continue reading OpenVPN Android App – Please help understand the security functions [on hold]

mitmproxy: Error starting proxy server: OSError(98, ‘Address already in use’)

I just installed mitmproxy tool. I want to run it. Once I type: sudo mitmproxy I get this error:

Error starting proxy server: OSError(98, ‘Address already in use’)

I searched and found some suggestion for changing the p… Continue reading mitmproxy: Error starting proxy server: OSError(98, ‘Address already in use’)