|
(Amir is a guy at Google—I think?—who is involved in the WebPKI root programs and is asking tough questions in Entrust’s root program compliance incident reports.) https://open.substack.com/pub/webpki/p/entrust-considered-harmful-part-1
|
# ¿ Apr 18, 2024 23:13 |
|
|
# ¿ May 22, 2024 07:32 |
|
digitalist posted:We share this understanding. We have been posting for 20 years and advocating for a healthier posting ecosystem, but we consider this an exceptional circumstance and have decided not to delete our posts.
|
# ¿ Apr 23, 2024 23:52 |
|
chin up everything sucks posted:Last day at my current job, 2 weeks before my new job is going to start.... Got a phonecall with an offer for the job I really wanted, better pay, benefits, better work.... Everything. loving taking it. ISSO here I go. yeah baby get paid
|
# ¿ May 3, 2024 18:06 |
|
This is a courtesy notice that if your company has Entrust-issued TLS certificates in load-bearing capacities, you would do well to figure out how you would move to either or both of a) another CA, or b) 90-day cert validity periods . Thank you. You may return to burning effigies of the Palo Alto product manager of your choice.
|
# ¿ May 6, 2024 15:26 |
|
Rust Martialis posted:Anyone got a summary I can put in front of my CISO boss's eyes Expecting one from the head of Mozilla’s root program in the next day or two, maybe today. Amir’s above is pretty good though incomplete.
|
# ¿ May 6, 2024 18:24 |
|
Rust Martialis posted:Anyone got a summary I can put in front of my CISO boss's eyes https://wiki.mozilla.org/CA/Entrust_Issues just dropped waiting for Bruce Morton to release a diss track response
|
# ¿ May 6, 2024 22:09 |
|
dragon64 posted:Glad we have two Entrust threads now is that you, Bruce?
|
# ¿ May 7, 2024 22:54 |
|
only $20K for that? I guess inflation hasn’t hit that market yet
|
# ¿ May 8, 2024 20:20 |
|
The Infosec Thread: Yes, time to move to a mountain and raise goats
|
# ¿ May 8, 2024 20:44 |
|
I mean, the stock is down 3.3% on the day, which is pretty much within its normal volatility window from looking at the last month it’s not being dumped in panic …yet?
|
# ¿ May 8, 2024 21:11 |
|
Accipiter posted:WELP Very polite of them to try to blank out Ms No Reply’s email address.
|
# ¿ May 9, 2024 13:43 |
|
we are in a liminal ownage space teach the controversy
|
# ¿ May 9, 2024 14:16 |
|
Diva Cupcake posted:The someone is refuting Zscaler’s Trust Center response. is the thesis of this tweet that whatever that command line is from doesn’t run in a test environment?
|
# ¿ May 9, 2024 17:02 |
|
Diva Cupcake posted:I think they’re just saying “nuh uh” without any actual proof. Which side? I don’t know how you would prove that your stuff wasn’t breached, I guess publish an independent audit of everything over many months?
|
# ¿ May 9, 2024 17:29 |
|
Accipiter posted:I have a lot more details on the Zscaler situation than what's currently flying around the web, and yeah... this doesn't look good. yessss :sicko:
|
# ¿ May 9, 2024 21:46 |
|
(step on the dick! step on the dick!) 👠🍆💥
|
# ¿ May 9, 2024 22:01 |
|
ShoeFly posted:I'm waiting for the day that Cisco starts screwing with Splunk and fucks our whole business. We’re migrating off Splunk now, just signed our final contract with them. Just like with DataDog, they didn’t think we’d really do it…
|
# ¿ May 17, 2024 15:54 |
|
|
# ¿ May 22, 2024 07:32 |
|
Rust Martialis posted:Splunk told me they consider themselves price-comparable to Sentinel. Comments? I wasn't part of the assessment, but we're bringing it in-house so the ops cost is pretty different I'm sure.
|
# ¿ May 17, 2024 16:39 |