Megaleecher.Net

Making technology work for you...

Get Your Free Subscription By Email:

SSL

Fake Websites 101: How to Spot Them?

Data security is paramount for anyone using sophisticated devices like smartphones, laptops, PCs, and tablets to connect to the internet. Phishing is a serious threat for individuals as well as businesses who value their data. According to ENISA (The European Union Agency for Cybersecurity), phishing attacks witnessed a huge spike in 2020 when people across the globe were forced to stay indoors due to the lockdown. Google is doing its bit in labeling malware and phishing sites. However, a little knowledge at your end makes it easier for you to such tackle threats.

Let's Encrypt - Free, Automated, and Open SSL Certification Service

Let's EncryptWith so much of personal and sensitive information flowing through internet which can be easily tapped into, end-to-end encryption should be the default mode of online communication. But to achieve that website owners not only need to purchase SSL certificates from verified registry's but also have to install(takes 2-3 hours), and manage them which makes them keep using HTTP instead of HTTPS.

Let’s Encrypt is all set to change that, the new "free certificate authority" lets everyone be up and running with basic server certificates for their domains through a simple one-click process. Backed by tech biggies like Mozilla, Cisco, Akamai, Electronic Frontier Foundation and IdenTrust etc. this new offering will be free, automated, transparent, secure and open.

Checkout how easy it is to add free, instant https security to your domains with Let's Encrypt in the demonstration video shared below.

5 tips for starting your own website: from SSL Certs to memorable domain names

The reason why a website is created varies. It can be for personal reasons or it can also be for profitable reasons. Whatever it may be, the bottom line is: it is an important tool that will help you achieve the goals that you have set before you decided to create one. Here are top 5 tips for starting up your own website. Observe these tips and you can surely take advantage of what it can bring.

from SSL Certs to memorable domain names

First: Identify your goal

What do you want to achieve in the end? Or what is your reason for creating a website? Why do want a website? Be very clear with the reasons why you want it because that reasons will be the one to guide you all throughout your journey. Doing business today requires a good website because it is their where impressions about your company are generated. Thus, there is a need for you to make your website very well. Do you plan to use your website to give an overview about your company and the products that you are offering or you want to use that page to sell? Identify your goal because all the rest will follow.

Fixing the "error: SSL certificate problem, verify that the CA cert is OK" Error On Linux

While trying to use git clone on my CentOS server, I encountered fatal: HTTP request failed with error description showing something being wrong with my SSL CA Root certificates as shown below. To resolve this error simply follow any one of the solution posted below.

error: SSL certificate problem, verify that the CA cert is OK. Details:
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed while accessing https://github.com/........

SSL verification error

SSL Trick Allows Spoofing Domain Certificates

SSL HackingThis years BlackHat security conference revealed some serious security loophole in way SSL certificates can be made to spoof domain identity, the trick allows phishers to spoof and display certificate of their choice on user browsers, this means that the attacker could make you land onto a phishing domain (say www.paypal.com.hisfakesite.com) and your browser will validate the SSL certificate for genuine domain (say www.paypal.com), the spoof works like this - the attacker applies for a SSL certificate with a null-character in the sub-domain for example : www.paypal.com[null character here].hisfakesite.com, the certificate authority ignores the sub-domain and contacts the domain owner to verify its legitimacy and issue the certificate, the problem arrives when clients like Firefox stop at the null character and wrongly displays the certificate valid for www.paypal.com on the phishing domain in this case.

This is just one of the many helpful tips we have posted, You can find more stories here,
Do subscribe to updates using your favorite RSS feed reader or using the secure FeedBurner email update form on top of this post.