I’ve begun to transition this site to use Lets Encrypt! for signing of SSL. Because the site has specified an HPKP previously, a transition period is needed where clients can see the old certification signing the intention to transition to the new certification.
That process has started, and the full transition will happen in a couple months. The good news is that the letsencrypt setup process was otherwise painless.
I’ll be giving a talk next week at CCCamp on the Open Proxy ecosystem, following up on some work I did last year looking at the operators, users, and traffic.
The video of my talk last month on scanning the Internet using Node.js has been published by Cascadia Fest.
I’m quite excited to be talking at CascadiaFest this summer about the work I’ve been doing on scanning the Internet. My talk proposal is archived here. The cool end-results are still getting ready for publication, but one of the code modules I’m pretty excited about that happened in the process is ip2country.
I’ve updated this domain to include the new HPKP mechanism and a stronger intermediate cert. HPKP supplements the previous HSTS mechanism to define a specific signing key that must be present on subsequent HTTPS interactions with the server, helping to mitigate one class of man in the middle attacks.
I gave a talk last week at CCC in Hamburg on the state of consumer technology in Pyongyang. It’s available for streaming online. Images shown in the talk are available.
I started ip2country over the last few days, as a self contained npm module for determining the country of an IP address.
WebRTC continues to develop towards an evolving standard, requiring some additional leg work to use it in projects. In yet another attempt at bridging that gap, I’ve been working on maintaining an adapter lessening some of the deviation from standard in current browsers.
It currently fixes
- Response of format of getStats in Chrome
- Translation to ‘url’ from the standard ‘urls’ when configuration is passed to Firefox
- Emission of the ‘negotiationneeded’ event when a data channel is created in Firefox
The main hope is that this will be easier to include in projects than previous attempts.
I spent a bit of time last month looking at Open Proxies. They’re are one of the dark corners of the internet that have been around forever but which we still don’t really understand. It was really cool to get a view into the largely international nature of the servers, get a sense of where… Continue reading Open Proxies
Work over the last month has largely focused on using freedom.js as a platform for server security. I’m very happy with the submission we made to OSDI yesterday describing that work.