Stefan Eissing on Nostr: If you run several TLS based services, better give them all separate dns names *and* ...
Published at
2025-02-20 07:50:35Event JSON
{
"id": "350fcdab9a73f98c475d95cf8b98f798da4c2936ebf9e709755738132b467d34",
"pubkey": "f173ca7ed8f3adf61d35abb4915401c1d01b59463e62ab7afdac428612559580",
"created_at": 1740037835,
"kind": 1,
"tags": [
[
"proxy",
"https://chaos.social/users/icing/statuses/114035119556916049",
"activitypub"
]
],
"content": "If you run several TLS based services, better give them all separate dns names *and* separate certificates.\n\nMitm exploit using an FTP server to generate arbitrary https: responses:\nhttps://blog.pspaul.de/posts/gymtok-breaking-tls-with-alt-svc/",
"sig": "c10eaa2439443406a914862f38fd4e8f0ffa0016d6bed184bb605a056326bde6ad89d7019bbdb79d7718dfe59270225ea441fc038abea69f628d6272f85d25a5"
}
