Kevin Karhan :verified: · @kkarhan
1424 followers · 100799 posts · Server mstdn.social

@wedistribute Congratulations, you just cloned the that tried to establish but got cockblocked by and even @mozilla from getting off the ground because they didn't bribe said platforms with $$$$$$ to accept their certificate the same way @letsencrypt did - or at least got blessed for...

#gafams #cacert #WebOfTrust

Last updated 1 year ago

Alex · @alexca
4 followers · 9 posts · Server digitalcourage.social

Sicherheit im Internet, signierte E-Mails, spannende Gespräche. auf der - am 5. und 6. August in Sankt Augustin nahe Köln/Bonn. blog.cacert.org/

#froscon #cacert

Last updated 1 year ago

Alex · @alexca
4 followers · 9 posts · Server digitalcourage.social

Sicherheit im Internet, signierte E-Mails, spannende Gespräche. auf der - am 5. und 6. August in Sankt Augustin nahe Köln/Bonn. blog.cacert.org/

#froscon #cacert

Last updated 1 year ago

Kevin Karhan :verified: · @kkarhan
1142 followers · 75781 posts · Server mstdn.social

@yuki2501 for contrast, it is far easier, faster and cheaper to get an EV-SSL cert from one of the major resellers than to install sufficient amounts of people in to even "fully assure" fake identities...

And no I'll not tell you how I know...

#cacert

Last updated 1 year ago

Kevin Karhan :verified: · @kkarhan
1142 followers · 75781 posts · Server mstdn.social

@yuki2501 I know, but I also know how the internet works and that blocking PRISM snitches like all the |s is more realistic than manually allow-listing.
github.com/greyhat-academy/lis

-based systems failed due to universal blockade by corporate interests - espechally the ...
Otherwise would've rightfully taken the place that has, because as the norm of CAs has nothing to do with at all...
en.wikipedia.org/wiki/CAcert.o

#gafams #gafam #ITSec #allowlisting #letsencrypt #cacert #reputation

Last updated 1 year ago

"1 Identität to rule them all" 👍🏻 Tolle Inspirationen und ein super Vortrag ❤️

#identity #identitat #openid #cacert

Last updated 1 year ago

Kevin Karhan :verified: · @kkarhan
1085 followers · 69274 posts · Server mstdn.social

@q Which reminds me how fucked up and fundamentally broken is and that the entire businesses of 's must be abolished.

Instead of @letsencrypt, we should've pushed for since the latter one actually does and is harder to penetrate or even abuse than getting an EV-SSL - cert fraudulently via ...

#socialhacking #duediligence #cacert #ca #rentSeeking #ssl

Last updated 1 year ago

mupan 📚 · @mupan
326 followers · 9505 posts · Server digitalcourage.social

2/2
Die für IT-Laien bedienbaren Tools bzw. die Integration in die Anwendungen kommen dann quasi von allein. Mehr zum Thema bei mir oder beim Verein wiki.cacert.org/CAcert

#cacert

Last updated 1 year ago

Kevin Karhan :verified: · @kkarhan
1010 followers · 60909 posts · Server mstdn.social

@cryptoparty ist unfixbar kaputt und ist und bleint schlechter als vom Prinzip!

#cacert #letsencrypt #ssl

Last updated 1 year ago

🇺🇦 Aarøn :oko: · @f
130 followers · 1542 posts · Server social.okoyono.de

So, die Identity Verification Forms hab ich jetzt lange genug aufbewahrt. Ab in den Schredder damit. Auf das Verbrennen verzichte ich.

Hat denke ich seit sowieso keine praktische Relevanz mehr.

#cacert #letsencrypt

Last updated 2 years ago

Kevin Karhan :verified: · @kkarhan
875 followers · 47159 posts · Server mstdn.social

@kusuriya @mail At this point I'd like to point out that the ideological predecessor of , , only failed due to |s + x - espechally and - refused to integrate their CA certificate.

Otherwise we'd have an even easier and more versatile option that would also allow S/MIME and code signing certificates whilst not being prone to abuse and nefarious users like LetsEncrypt is...

#Microsoft #Apple #gafam #cacert #letsencrypt

Last updated 2 years ago

Kevin Karhan :verified: · @kkarhan
875 followers · 47159 posts · Server mstdn.social

@mail I do and I nag everyone to fucking use it.

At this point I'm so done with it that I want to make a service that FORCES ALL EMAILS TO BE ENCRYPTED PROPERLY and not only deletes and blocks unencrypted eMails but flat-out tells senders that they MUST encrypt it with links on how to do it.

It's the same as with [or before them]: Just nag people hard and long enough to comply with basic / / / until they comply!

#comsec #opsec #InfoSec #ITSec #cacert #letsencrypt

Last updated 2 years ago

David Sardari · @duxsco
23 followers · 255 posts · Server digitalcourage.social

@jwildeboer @kikobar I wouldn't recommend even if they get their root cert in the certificate store. You just need to take a closer look at their bug tracker.

#cacert

Last updated 2 years ago

David Sardari · @duxsco
23 followers · 255 posts · Server digitalcourage.social

@kikobar @jwildeboer and back in the days StartCom (I think) support(ed) such an approach:
wiki.cacert.org/EmailCertifica

#cacert

Last updated 2 years ago

Kevin Karhan :verified: · @kkarhan
786 followers · 38411 posts · Server mstdn.social

@benaryorg yeah, the.only hack if / ain't an option is buying a fecking expensive cert.

Sadly got boycotted by big tech cuz they did wildcard certs.

#cacert #wildcard #certbot #letsencrypt

Last updated 2 years ago

Kevin Karhan :verified: · @kkarhan
707 followers · 31812 posts · Server mstdn.social

@SteffoSpieler no, it's better than no SSL whatsoever.

I just think that it's proving the reservations against to be flat-out lies, since doesn't do any verification whatsoever.

#letsencrypt #cacert

Last updated 2 years ago

Kevin Karhan :verified: · @kkarhan
707 followers · 31813 posts · Server mstdn.social

@SteffoSpieler I'm still mad about big corporations - espechally Microsoft and Apple, but also Mozilla - cockblocking back in the day yet being total supporters of when in fact the latter one does nithing against abuse and literally issues certs to everyone with no records but CACert which exceed "Extended Validation" in most cases get denied recodnition despite having excellent InfoSec & ITsec.

#letsencrypt #cacert

Last updated 2 years ago

Kevin Karhan :verified: · @kkarhan
645 followers · 26219 posts · Server mstdn.social

@stux @SwiftOnSecurity @shanselman *nodds in agreement*

And whilst I've prefered if and it's -alike & would've taken ocer instead of , I'd rather see a sloppy "free for everyone" than paywalling of said feature.

#ssl #letsencrypt #assurance #identification #ev #cacert

Last updated 2 years ago

Steve Zakulec · @keen456
24 followers · 206 posts · Server infosec.exchange

This is genuinely fascinating watching a company basically destroy a large part of itself, not so much for what they originally did, but how they reacted when asked about it: groups.google.com/a/mozilla.or

#cacert #rootCA #certificates #trustcor

Last updated 2 years ago

Hraban (fiëé visuëlle) · @fiee
202 followers · 4535 posts · Server literatur.social

@ebildungslabor @digitalcourage
Ich bin bzw. war -Assurer und habe jahrelang meine Mails mit deren S/MIME-Zertifikat signiert. Es können nur vereinzelte Mails gewesen sein, die ich verschlüsselt bekommen habe.
Für habe ich immerhin zwei Kontakte, mit denen ich verschlüsselt mailen kann – jetzt endlich auch auf dem Telefon.

Bei S/MIME würde m.E. nur eine staatl. Zertifizierungsstelle helfen – eins der verpennten Themen der Digitalisierung, siehe & Co.

#cacert #openpgp #ausweisapp

Last updated 2 years ago