 |
Post AwNrlte91xvKhmwOoq by [email protected] |
 |
More posts by [email protected] |
|
Post #AwKCYAaSZPo5b2foqe by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Some people prioritize setting up a site and making logos rather than working w… |
|
|
|
Post #AwKCYAiy3mc21Qec6q by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@[email protected] Even curl was not contacted regarding this? That's … |
|
|
|
Post #AwKDSUU9m9eNWia5po by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@bagder AFAIR, @albinowax found issues like that before and communicated them t… |
|
|
|
Post #AwKFQwL7RXSFFCk4mW by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@bagder I’ve been practising responsible disclosure for over ten years. I’v… |
|
|
|
Post #AwKHAjZ1NKUqtbe2me by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder $ curl -I --http1.1 https://http1mustdie.comHTTP/1.1 200 OK |
|
|
|
Post #AwKHAjg6wyATFaxhpo by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jschauma @bagder the long version of the title is “upstream HTTP/1 must die�… |
|
|
|
Post #AwKLG3D69pBt5oBJ9U by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@fuomag9 @bagder why would curl need to be notified? It’s a talk about a prot… |
|
|
|
Post #AwKOt2AaGAQn1PHlL6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@albinowax maybe I'm wrong. Your site makes it sound like I'm not as HT… |
|
|
|
Post #AwKOt2GbtlFfK66ZjU by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@bagder if you click through to the talk abstract you’ll find more details. M… |
|
|
|
Post #AwKXo85zhOSxXYsJ6m by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@albinowax @bagder Yeah, understood that neither social media nor branded vuln … |
|
|
|
Post #AwKXo8CjILqzsS1gbg by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jschauma @bagder Yeah the nuance will be in the white paper. I originally said… |
|
|
|
Post #AwKwYpr5jQCNTlhyHw by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@[email protected] @[email protected] If you have a HTTP/1.1 protocol v… |
|
|
|
Post #AwLqbiFM4VTQBQ0QxE by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@fuomag9 @bagder @fuomag9 @bagder @dan As usual with desync attacks, it's p… |
|
|
|
Post #AwLrBvN6kacBJZtpDs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder It as that vibe of the usual "old = bad, new = good" band wag… |
|
|
|
Post #AwLrBvTqLY0DeT3Cim by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@qwertz @bagder I also looked at HTTP2 a few years ago! Although that title is … |
|
|
|
Post #AwLsS7ZpEvNtkv8R7I by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@albinowax @fuomag9 @bagder @dan honestly there's no point trying to defend… |
|
|
|
Post #AwMCGHNwwcVPmhD9Jw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@albinowax @fuomag9 @dan the website, the naming, the scare, the secrecy |
|
|
|
Post #AwMCGHUgXZtS7aMWoq by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@bagder @fuomag9 @dan The 'secrecy' is coordinated disclosure - that th… |
|
|
|
Post #AwMCXwd2r6D6cbhANE by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@bagder @fuomag9 @dan Ultimately misinformed takes benefit no-one, and I will b… |
|
|
|
Post #AwME5sGLh8Fksep1mq by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@bagder @albinowax @fuomag9 @dan Weird take... 🤔 James has a legit track rec… |
|
|
|
Post #AwMT3V3UVUBbda8M3E by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Ok I exaggerated a bit. Mislead by the title, scaremonger and logo. It is claim… |
|
|
|
Post #AwMT3V9s7lI3xN7Rzs by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@bagder that you pattern matched on marketing hype is probably due to the marke… |
|
|
|
Post #AwNrlte91xvKhmwOoq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder The interesting part of their marketing pitch is that "you should… |
|
|
|
Post #AwNrltmIXeRh74kuWm by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@huitema This is about the upstream connections between the front-end and origi… |
|
|
|
Post #AwQ95ipj1xjIUtJi0u by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@dercraig @albinowax we can't control what people do. We can just hope that… |
|
|
|
Post #AwQRAcEOnpBAe0LCIS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder to be fair, we've had a rash of fancy-named vulnerabilities whose i… |
|
|
|
Post #AwQRB7sB9yQ2mMBu6a by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder A bit confused, what happens in 16 days? If it's the public reveal … |
|
|
|
Post #AwQRCQqC7fxbtesxl2 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@albinowax @bagder Maybe the link to the abstract should be more clear, because… |
|
|
|
Post #AwQRCQxzegCOHqXBui by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Varpie @bagder to be honest I didn’t expect the page to get much visibility … |
|
|
|
Post #AwQRCRTBmh9Vqb86XQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Varpie @bagder it is my first time using a dedicated website to promote resear… |
|
|
|
Post #AwQRCYlWeuymTUlLai by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder what are the chances that whatever they found bad about HTTP/1.1 isn… |
|
|
|
Post #AwQRCYqqL9EUjzFasa by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@a1ba typically these findings identify implementation issues, not protocol fla… |
