Tag Archives: name

Google Chrome 將 .dev 設為 HSTS Preload 名單

其實是兩件事情... 第一件是 Google Chrome 把 .dev 結尾的網域設為 HSTS Preload 名單:「Chrome to force .dev domains to HTTPS via preloaded HSTS」。 第二件事情是隨著第一件來的,HSTS Preload 必須由 domain 擁有人提出啊... 所以 .dev 是合法的 TLD (gTLD)? 文章作者給了答案,是的,而且就是 Google 擁有的: Wait, there's a legit .dev gTLD? Yes, unfortunately. … Continue reading

Posted in Computer, DNS, Murmuring, Network, Programming, Security, Service, WWW | Tagged , , , , , , , , , , , , , , , , | Leave a comment

在 Git/Mercurial/Subversion 上 "-" 發生的問題

在「[ANNOUNCE] Git v2.14.1, v2.13.5, and others」這邊看到 - 開頭產生的問題: These contain a security fix for CVE-2017-1000117, and are released in coordination with Subversion and Mercurial that share a similar issue. CVE-2017-9800 and CVE-2017-1000116 are assigned to these systems, respectively, for issues … Continue reading

Posted in Computer, Murmuring, Network, Security, Software | Tagged , , , , , , , , , , , , , | Leave a comment

直接接管整個 .io 的網域...

在「The .io Error – Taking Control of All .io Domains With a Targeted Registration」這邊看到的 XDDD 其實就是這樣: ;; AUTHORITY SECTION: io. 172800 IN NS ns-a1.io. io. 172800 IN NS ns-a2.io. io. 172800 IN NS ns-a3.io. io. 172800 IN NS ns-a4.io. io. … Continue reading

Posted in Computer, DNS, Murmuring, Network, Security, Service | Tagged , , , , , , , | 2 Comments

StackOverflow 對於多 DNS 商的同步方式...

他們的解法是設計出一套 DSL (Domain Specific Language),然後從 DSL 轉出各 DNS 商的格式:「Introducing DnsControl – “DNS as Code” has Arrived」。 以 stackoverflow.com 來說,可以看到有同時使用 AWS 的 Route 53 與 Google 的 Cloud DNS: ;; ANSWER SECTION: stackoverflow.com. 36458 IN NS ns-cloud-e2.googledomains.com. stackoverflow.com. 36458 IN NS … Continue reading

Posted in AWS, Cloud, Computer, DNS, GCP, Murmuring, Network, Software | Tagged , , , , , , , , , , , , | 1 Comment

Netflix 的 BetterTLS,推廣 CA 的 Name Constraints

Netflix 因為想用 Name Constraints,所以決定自己跳出來推廣了:「BetterTLS - A Name Constraints test suite for HTTPS clients」。 就是在 CA 上可以綁定條件,只允許哪些 domain 可以被發放: 網站在「BetterTLS: Name Constraints」這邊可以看。

Posted in Computer, Murmuring, Network, Security, WWW | Tagged , , , , , , , , , , , , , , , | Leave a comment

線上測試 SQL Injection 喔喔喔

在「An SQL Injection Attack Is a Legal Company Name in the UK」這邊看到英國的這家公司:「; DROP TABLE "COMPANIES";-- LTD」,根本就是在幫大家測試 XDDD 當然,大家也都馬上聯想到這則 xkcd 漫畫:「Exploits of a Mom」。 來招喚 QQ 姊翻譯這則 xkcd 漫畫?

Posted in Computer, Database, Joke, Murmuring, Network, Recreation, Security, Social, Software, WWW | Tagged , , , , , , , , , , , , , , , | Leave a comment

Let's Encrypt 支援 IDN

Let's Encrypt 宣佈支援 IDN:「Introducing Internationalized Domain Name (IDN) Support」,這代表可以申請的範圍變得更廣了: This means that our users around the world can now get free Let’s Encrypt certificates for domains containing characters outside of the ASCII set, which is built primarily for the English … Continue reading

Posted in Computer, DNS, Murmuring, Network, Security, WWW | Tagged , , , , , , , , , , , , | Leave a comment

CA/Browser Forum 在三月底的會議記錄

在 CA/Browser Forum 三月底的會議記錄裡看到了關於 wildcard ssl certificate 的一些討論,還蠻有趣的:「2016-03-31 Minutes」。 主要是第五條的記錄,在討論更廣泛的 wildcard 用法。首先是 Microsoft 對 ww*.example.com 這種 domain 的認定: Rick said there was a Microsoft tech note that allows ww*.example.com. Jody confirmed the platform supports it. 但有爭論,而且目前看起來暫時沒有打算要實作: Rick suggested the BRs … Continue reading

Posted in Browser, Computer, DNS, Murmuring, Network, Security, Software, WWW | Tagged , , , , , , , , , , | Leave a comment

Route53 的 Health Check 支援 HTTPS SNI 了...

Route53 的 Health Check 總算支援 SNI 了:「Amazon Route 53 Adds SNI Support for HTTPS Health Checks」。 With SNI and HTTPS support, you can now create health checks for secure websites that rely on SNI to serve the correct website and … Continue reading

Posted in AWS, Cloud, Computer, DNS, Murmuring, Network | Tagged , , , , , , , , , , , | Leave a comment

Hostname 與 Username 的保留名稱問題

在「Hostnames and usernames to reserve」這邊提到公開服務時的保留名稱問題。 首先是提到 hostname 的部分,被各協定使用到的都散落在各標準裡,另外就是利用前幾天提到的「Mozilla 維護的 Public Suffix List」加減擋 cookie... 比較感興趣的是 email 的部分的標準,這邊主要在討論 SSL certificate 的註冊。在「Baseline_Requirements_V1_3_1」的 3.2.2.4. Authorization by Domain Name Registrant 的第四項提到: Communicating with the Domain’s administrator using an email address created by pre‐pending ‘admin’, ‘administrator’, … Continue reading

Posted in Computer, DNS, Mail, Murmuring, Network, Security, WWW | Tagged , , , , , , , , , , , , , , , , , , , | Leave a comment