Gabriel Huber
Gabriel Huber
I was able to make the revocation check pass by generating an empty CRL in DER format using OpenSSL and adding it to the certificate like this: cert.add_extensions( [OpenSSL.crypto.X509Extension( b"crlDistributionPoints",...
Thanks for your interest. I'm not sure what you mean by traffic going to your public DNS server. The initial domain query should never reach your servers, only the primary...
I understand your privacy concerns. I think the best option would be to reuse the CRL URLs of the original cert but replace the path with a some hash that...
As this is purely a compatibility issue and has no impact on security, I don't think going with the option that offers the least compatibility but the best security is...
I've made a basic implementation in this fork: https://github.com/Yepoleb/mitmproxy-crl/tree/crl It's very hacked together and does not quite match the concept previously discussed, but it's something I could give to people...
I improved the implementation in https://github.com/Yepoleb/mitmproxy-crl/commit/0a095b28cd15abe3bbc2da25563bc7899a6b3309 so it no longer uses a private domain and matches the behavior described in https://github.com/mitmproxy/mitmproxy/issues/3140#issuecomment-390504365. The concept can easily be extended to also provide...
I don't think we need an interpreter for the scripts. I see innoextract more as a reverse engineering tool than a cross platform Inno Setup. Getting all the data and...
It was planned at some point, but I'm not adding new features to GOG DB currently, sorry.
I have the same problem on Debian unstable with Xfce. Wasn't sure if it's a bug but if it is I can confirm it.
I went through the current error list of the package scanner and checked each package to see if it has been renamed or rehosted, this is what I ended up...