#Development #Reports
TLS certificate lifespan is going down · It will gradually drop to 47 days by 2029 https://ilo.im/163cjr

_____
#CA #TLS #Certificates #Https #Privacy #Security #Network #WebDev #Frontend #Backend

TLS Certificate Lifetimes Will Officially Reduce to 47 Days

https://www.digicert.com/blog/tls-certificate-lifetimes-will-officially-reduce-to-47-days

- A reputable anonymizing VPN service
- Linux
- Firefox (or compatible) web browser
- HTTPS-Only Mode
- Noscript
- User-Agent Switcher

These are some easy things that will keep you safe in the age where you shouldn't trust *anything* your device connects to online.

New and Improved!
Choose your flavour, cURL or wget!

#curl
```
curl -o- #https://gist.githubusercontent.com/ajaxStardust/674b5d86f1f4386e72937a607e263608/raw/install.sh | bash
```
(Octothorpe placed, in hopes that st nick soon would eliminate any unwanted html anchors as hyperlink. i.e. remove it)
**Note:** it will place the app in your file system, at the location (if able without sudo):
/var/www/html/mydocs/11011101/

#wget
```
wget -qO- #https://gist.githubusercontent.com/ajaxStardust/674b5d86f1f4386e72937a607e263608/raw/install.sh | bash
```
Seriously. Anyone. please do check it out. I'm curious if it's working on anyone's system other than mine. It's as easy as running that curl command, just like you were installing #nvm for example. Nothing is easier than that. Except getting pregnant.

https://github.com/ajaxStardust/AnnieDeBrowsa#description

One of my favorite interview questions is “What happens when you hit enter in the address bar of your browser?” It’s a great question that reveals how full stack someone is and whether they understand latency, protocols, architecture, and implementation details/boundaries.

I’d hire someone in an instant if they used this as the basis of their answer:

https://youtu.be/atcqMWqB3hw?si=Bril-EBTYpWArYLN

New security requirements adopted by #HTTPS certificate industry

https://security.googleblog.com/2025/03/new-security-requirements-adopted-by.html

Bringing Record and Replay debugging everywhere on Linux

https://github.com/sidkshatriya/me/blob/master/008-rr-everywhere.md

#HackerNews #Bringing #Record #and #Replay #debugging #everywhere #on #Linux #https://github.com/sidkshatriya/me/blob/master/008-rr-everywhere.md

RecordReplay #Linux #Debugging #OpenSource #SoftwareDevelopment

Cloudflare puts an end to insecure HTTP

Plain text communication also allows unauthorized persons to view data. Cloudflare therefore also no longer supports HTTP for API calls.

https://www.heise.de/en/news/Cloudflare-puts-an-end-to-insecure-HTTP-10328265.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

Cloudflare macht unsicherem HTTP den Garaus

Klartextkommunikation erlaubt auch Unbefugten Einsicht in Daten. Cloudflare unterstützt daher auch für API-Aufrufe kein HTTP mehr.

https://www.heise.de/news/Cloudflare-macht-unsicherem-HTTP-den-Garaus-10328030.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

Should you ever run across an article that says you don't need a VPN because most every website use HTTPS, be aware that you can not see the encryption, or the lack of it, in mobile apps. Thus, things like this happen - Apple did not bother to upgrade their own software from HTTP to HTTPS.

https://9to5mac.com/2025/03/18/apples-passwords-app-was-vulnerable-to-phishing-attacks-for-nearly-three-months-after-launch/
Apple’s Passwords app was vulnerable to phishing attacks for nearly three months after launch
#vpn #http #https #encryption

How browsers REALLY load Web pages

When browsers load a Web page and its subresources, A LOT happens under the hood. They need to take into account render/parsing blocking resources, use a preload scanner, listen to resource hints (like preload/preconnect), loading modifiers (async/defer/module), fetchpriority, responsive images, and much more. […]

https://fosdem.org/2025/schedule/event/fosdem-2025-4852-how-browsers-really-load-web-pages/

Meine Güte, ich wusste gar nicht, dass man sich so lange mit Browser-Headern beschäftigen kann...

Wer seine eigene Webseite mal testen möchte:

Link: securityheaders.com

#Sicherheit, #Security, #Webseite, #Website, #HTTPS

DockerでローカルHTTPS通信を実現
https://qiita.com/li_beiyao/items/fc5720cb053d2b4ba531?utm_campaign=popular_items&utm_medium=feed&utm_source=popular_items

Corporate networks that MitM HTTPS are pain in the ass.

If you follow best practice and use certificate pining (or just use NodeJS with its build in CA list) then stuff just breaks and customer blame you for their broken network

https://www.gotorola.com/139894/ #吉川晃司 #music #https://kikkawa.com/#奥田民夫 #Entertainment #エンタメ #吉川晃司

【七日参り 】ネットで噂の七日参りやってみた https://www.playing-games.com/534585/ #games #gaming #GamingTrending #https://store.steampowered.com/app/3408470/__7_Days_Shrine/?l=japanese #TrendingGames #ガッチマン #ゲーム #ゲーム実況 #ゲーム攻略 #ゲーム最新情報 #ホラーゲーム #実況プレイ

#Development #Launches
Six-day certificates · Let’s Encrypt brings short-lived SSL/TLS certificates https://ilo.im/162g23

_____
#LetsEncrypt #CA #Certificates #Https #Domains #Website #Security #WebDev #Frontend #Backend

#shakespear always ahead of his time #ssl #https #encryption #error #lol #meme #fun #funny

New releases

• Kitten (rolling release)
• @small-tech/https version 5.3.2
• Auto Encrypt version 4.1.3

OCSP support has been reinstated in the server so existing sites with Let’s Encrypt certificates provisioned prior to the removal of the OCSP stapling requirement will not fail to load in Firefox.

Kitten servers in production will automatically update to this version in a few hours. You can also sign in to the Kitten settings page on your server and do a manual update to update Kitten immediately.

Thanks to @stefan and @s1r83r for bringing this to my attention. (https://mastodon.ar.al/@aral/113969540950647873)