I am writing this post because Thunderbird 78.x has issues for advanced PGP users
I met someone through this very blog. We have been emailing back and forth, and eventually the question arised why I'm so interested in IT security. My response was, that there's no particular reason and I guess it's just "obvious" to me. To which he replied seemingly perplexed, that I [...]
Not really, or at least that's not the goal. Let me explain. So, people have been posting about the new macOS update being evil and sending an application hash to Apple before allowing you to open the application (unless you're offline, then it will just open the application). This sounded [...]
I had some thoughts about password hashing and password strength, and would like to share those with you. First we'll look into hashing and then into the topic of commonly used passwords, password strength, and possible ways to enforce strong passwords.
Today we'll set up a DoH forwarder which will act as DNS server that will accept queries and forward them to a DNS over HTTPS provider of your choosing. This is useful when you want to run a local forwarder so that your ISP or attackers cannot spy on- or [...]
You might have encountered websites with a pretty onion address that contains a human-readable prefix. I will show you how to get a custom onion address, using your GPU! Whats an onion address? An onion address can only be reached through Tor. It's like a domain name but which ends [...]
An SPF record is basically a DNS record of the TXT type, which contains information about who may send email from your domain. It is used to avoid spoofing and spam. So how does it work? Basically, when a (decent) email server receives an email that is supposedly originating from [...]
Pi-hole recently released an update that tells Firefox to bypass DoH, and this might be undesirable. I have the solution! Firefox basically checks for specific DNS records, and if found, will disable DNS over HTTPS. This can be useful if you're on a corporate network and have DNS servers in [...]
While VPN's are great for virtual private networks (hence the name), it is often overkill if you just want to bypass a firewall or get an encrypted tunnel to protect yourself from snooping (e.g. on public Wi-Fi). More often than not, a VPN is also a paid service unless you [...]
Revoking certain certificates on March 4th - 5th, 2020 UTC Due to a bug related to CAA checking in Let's Encrypt, millions of certificates will be revoked "today". To quickly check if your domains are affected, use this tool: https://checkhost.unboundtest.com/ If your domain is affected, you have to renew your [...]