SP3

I started running a public sp3 server today. It’s a small side-project I’ve hacked together over the last couple weeks to make it easier for people to play with packet spoofing. The server works similarly to a public proxy, but with the trade-off that while it won’t send high-volumes of traffic, it will allow you… Continue reading SP3

The state of Internet Censorship

I’ll be presenting next week at 32C3 on the state of Internet access, transparency, and measurement. Lots of the work is done each year on measuring and learning about the state of access, but this phenomenon with growing relevance to many countries is poorly publicized. Much of this is a fear that being too public… Continue reading The state of Internet Censorship

IETF and the HRPC working group

The Internet Engineering Task Force, the multi-stakeholder organization which shepherds the standards process for many of the technologies used on-line, is continuing to evolve that process. Protocol standards are already expected to include discussions on their security and privacy implications, in order to force an explicit conversation on those issues and hopefully encourage the development… Continue reading IETF and the HRPC working group

I’ve begun to transition this site to use Lets Encrypt! for signing of SSL. Because the site has specified an HPKP previously, a transition period is needed where clients can see the old certification signing the intention to transition to the new certification.

That process has started, and the full transition will happen in a couple months. The good news is that the letsencrypt setup process was otherwise painless.

Tech Community

Having spent the last few days at CCCamp, I am incredibly jealous of the community that exists in Germany. cbase, the physical center of the community, has existed for 20 years, and has created a really powerful movement. One of the aspects of the berlin free software community is the tight connection between technologists and… Continue reading Tech Community

CascadiaFest

I’m quite excited to be talking at CascadiaFest this summer about the work I’ve been doing on scanning the Internet. My talk proposal is archived here. The cool end-results are still getting ready for publication, but one of the code modules I’m pretty excited about that happened in the process is ip2country.

I’ve updated this domain to include the new HPKP mechanism and a stronger intermediate cert. HPKP supplements the previous HSTS mechanism to define a specific signing key that must be present on subsequent HTTPS interactions with the server, helping to mitigate one class of man in the middle attacks.