About me

SECURITY

  • Reduce the maximum validity period for TLS/SSL server certificates

    Question: What would be the impact on your organization if the CA/Browser Forum approves a ballot reducing the maximum validity period for SSL/TLS server certificates from the current 825 days (27 months) at present to 397 days (13 months), effective for new certificates issued on or after March 1, 2020? (Existing certificates will remain valid for their full term).

    read more

  • Response to: Our Security Auditor Is an Idiot

    Some thoughts on the SO question about the idiot security consultant that demanded a list of everyone’s plaintext password plus some rather impossible things.

    read more

Tom Limoncelli

Tom Limoncelli

Recent Posts

  1. Facebook’s Metaverse Doomed to Fail
  2. Automating an un-automatable access issue
  3. How to disable stable-diffusion’s safety filter
  4. Usenix LISA is no more. Here’s my retrospective
  5. My new ACM Queue column: Operations and Life

Archive

Categories

Tags

I agree that this website may store my data to personalize my journey in accordance with their Terms & conditions

Powered by Hugo | Theme - YesThatTheme © 2017 - 2022 Tom Limoncelli