SSL Archive

eNom taking their customers for stupid

I guess everyone knows by now about the major DDoS attack perpetrated by a botnet of zombie IoT devices and as it seems the folks at eNom learned about it too. So they thought that using the attack they could take their customer for fools and upsell SSL certificates, because why not? Didn’t you know

Self hosted Git service with Gogs

I’ve been searching for a solution for private repositories that would not assume paying Github. It was not the money that represented an issue, but actually the security as I wanted it to be more internal and private, while Github was after all subject to a password reuse attack, because if they know it’s public

Most people don’t really care

While reading an article on Ars Technica about the fact that 20 hotel chains were hacked and credit card data was exposed I remembered about a local case I came across a while back with a small rural hotel where the reservation system was using an old PHP form to submit the reservation data via

Let’s Encrypt came too late

When I first heard about Let’s Encrypt I was pretty skeptical simply because I didn’t think someone could offer for free what Comodo and many others were offering for at least $50 a year without any backfires. And if the unfair competition perfectly patented before by companies like Microsoft would have been the least of