Menu

Tag: security

Webauthn's userVerification:preferred and its Pitfalls

Webauthn is a beauty. A relatively easy to implement way to allow users a secure 2-Factor experience. (easy enough that I could re-create my Webauthn Sandbox after losing it in my migration, FUN! Well, sarcasm aside, there are a few things I dont like with it, and one of them is the default state of the userVerification Flag. For anyone who isnt all-aware in Webauthn and stuff: more modern Fido2 devices are generally capable of a feature called userVerification, in ...

Fido Shootout - Too Lazy to Count Edition

I have loved Hardware based security for a Fucking eternity, and so I accumulated quite a few different Devices (for the rest of this article, "key" generally refers to the cryptographic keys to avoid confusion) over the years.so now I am going to compare them.

My1's Crazy Tech Ideas #01: Integrity header for proxies

Hi everyone, it's me again (not as if there would be many other options) I rather often have some pretty crazy Ideas and I kinda want to preserve them and also hear what the people think about them and maybe someone picks them up if they are good. so let's start with the first Idea of my set. Many people probably have heard of middleboxes or company-proxies and other similar things which attempt to "legitimately" play a Man in the ...

Quick Rant: Hosters and Updates [Update]

Hi it's me again. PHP7.2 Released today and I went around to do a quick check of some webhosters to see who can offer it, and well it is abysmal as always. We start off with the big German Hoster Strato which offers PHP 7.1, so far so normal, but they have a "newest version" label right next to it. Their excuse? well testing of course, but the even worse thing was the anser regarding the "newest version label". PHP ...

Fun with Primeauth? Not really :-(

Hi again. Remember when I wrote about Primeauth the pretty promising and intresting authentication service? Well, to be honest, my trust in them dropped a bit. What happened? Well, let's start from the beginning.