HackerTrans
TopNewTrendsCommentsPastAskShowJobs

28mm

no profile record

comments

28mm
·2 года назад·discuss
Any amount of carriage returns would still amount to one line. A newline character is needed.
28mm
·2 года назад·discuss
Evidently it has never had such a certificate: https://crt.sh/?q=curvezmq.org
28mm
·3 года назад·discuss
hn.algolia.com used to return a pair of cloudflare IPs: 104.16.46.55 and 104.16.45.55. Requesting hn.algolia.com from these IPs now results in an "Origin DNS error" from Cloudflare.

I interpret this to mean that there is another record missing, as well: whatever the origin was set to.
28mm
·3 года назад·discuss
I am not sure about that. On my system that openssl invocation fails because the site doesn't staple the intermediate Letsencrypt R3 certificate, and openssl doesn't retrieve it while browsers do.

If their system is old enough perhaps they have a version of the ISRG X1 certificate that is cross-signed by the expired DST X3 certificate. Some ssl imlementations did poorly with this. https://letsencrypt.org/docs/dst-root-ca-x3-expiration-septe...
28mm
·3 года назад·discuss
I received one of the phishing messages as well as the follow up / apology. An interesting wrinkle is that both were handled by sendgrid and used the same dkim selector. I would guess that a set of sendgrid api credentials shared with some 3rd party service was compromised.
28mm
·3 года назад·discuss
I received one of these phishing emails, today, and also Namecheap's follow-up/apology. The phony email purported to be from DHL, which really stood out.

Both emails were handled by Sendgrid, passing spf, dkim, and dmarc. They appear to use the same dkim selector, though I suppose that isn't so important--just that the headers were convincing enough.