ssl pinning

SSL pinning plays a very important role in building a highly secure mobile app. Today, however, many users are using wireless mobile devices to access countless unsecured wireless networks.This article mainly covers the SSL pinning technology to help us deal with the most common security attacks-man-in-the-middle attac

Session pinning The main concern about sessions is the confidentiality of session identities. If it is confidential, there is no risk of session hijacking. With a legitimate session ID, an attacker can be very successful in posing as one of your users. There are three ways an attacker can obtain a valid session ID: L Guess L Capture L Fixed PHP generates a very random session ID, so the risk of being guessed does not exist. It is common to obtain a

Issue: You want to ensure that the app is not subject to a session pinning attack, which means that the attacker forces the user to use a predefined session ID.Solution: A session cookie is required but the session identifier is not appended to the URL, and a new session ID is generated frequently:1PHP2 Ini_set(' Session.use_only_cookies ',true);3 //prevent session pinning attacks4 Session_Start();5 6 //gen

body onload="Showfix (True,false,inittableid);" > 　　Column pinning for table

Did a small demo, belonging to the common page layout application, for Ie7+,chrome,safari,firefox,opera, other browsers did not test. There should be a lot of small problems, but here is only a small demo, if you have found some small problems, you can communicate with me, learn from each other. Here's all the code:1234567 the146147148149 Max151 the153154155156157 158159 the161162163View CodeSource File Links: Http://pan.baidu.com/s/1slMPPaXCommon page layouts-head

　　HTML Header pinning

There are no shortcuts on Ubuntu, and software Center-installed apps have icons and can be added to the launcher because they have a desktop configuration file. These configuration files under /usr/share/applications This folder, since this kind of, casually open a configuration file, and then according to gourd painting Scoop, wrote a sublime text of the desktop file: 12345678910 #!/usr/bin/env xdg-open[Desktop Entry]Name=Sublime Text 2Comment=Sublime Text 2Exec=/usr/local/sof

How does the Mac system turn on the page label pinning function? The Mac OS new system El Capitan10.11 Safari has also received important updates, one of which is the fixed function of the Safari web tab. Below is a brief introduction to how to open the Web tab of Safari in OS X 10.11 new system. Here are the detailed steps: 1, Zoo Press the label and drag to the left 2, OK, this is the completion of the label fixed 3, the label fixed not only

1. Some special font styles:Indent 2 characters in first line: {text-indent:2em;}Center horizontally: {text-align:center;}Justify: {text-align:justify;}Center vertically: {vertical-align:middle;}Word spacing 2 characters: {letter-spacing:2em;}Line spacing twice times: {line-height:2;}2. The navigation bar is fixed somewhere on the page (relative to {position:fixed;left:px;top:px;}3. Block-level elements and inline elements: Common block-level elements:Common inline elements:, Block-level elemen

;　　margin-bottom: 0;}So footer will always be at the bottom of the browser.Here's another way to do this: completely through CSS.footer class="footer">div class="container">p class="text">版权所有，翻版不究! https://www.iteblog.comp>div>footer>Here's the CSS:html {position: relative;min-height: 100%;}body {margin-bottom: 60px;}.footer {position: absolute;bottom: 0;width: 100%;height: 60px;background-color: #f5f5f5;}.container {width: auto;max-width: 680px;padding: 0 15px;}.container .text {margin: 20px 0

CSS Background color settingsbackground-color:red; Set the background color to red;Background color settings support 3 ways of writing:Color name16 binaryRgbCSS Background Image color settingsBackground-image:url (image address), such as setting a background imageThe path is not in the description!CSS background picture tiling settings (if you do not set the picture by default to the x-axis y-axis tile at the same time value is repeat)Background-repeat:repeat-x, such as setting the x-axis tile;B

　　Table column Pinning

The effect of fixing the top and bottom is very easy, and many people will choose this way, that is, the top position:fixed, the bottom is also position:fixed. The effect is like the following two images, the container area is covered with the entire screen, and the scroll bar is also scrolled throughout the screen, adjust the content area only height adjustment.In fact, there is a way to achieve better results, that is, the content area only in the middle of the top and bottom, the content and

"position:relative" in the Div#container container to allow the elements inside the absolute positioning of the Div#container container will not run; div#page Container:div#page This container has a very critical setting that requires a Padding-bottom value to be set on this container, and this value is equal to (or slightly greater than) the height value of the footer div#footer. div#footer Container:The Div#footer container must have a fixed height set. Div#footer also needs to be absolut

encrypted HTTPS protocol, if the HTTPS communication packets are intercepted during transmission, we can decipher the information in these packets, there are some user name, password, cell phone number and other sensitive information, and if the use of HTTPS communication, even if the packet is intercepted, And we can't decipher what's inside. Interpreting the SSL workflow The browser sends an HTTPS request to the server; Server to

SSL is a security protocol that provides privacy and integrity between communication applications that use TCP/IP. The Hypertext Transfer Protocol (HTTP) of the Internet uses SSL for secure communication.The data that is transferred between the client and the server is encrypted by using a symmetric algorithm such as DES or RC4. The public key algorithm (usually RSA) is used to obtain encryption key exchang

responses to 48 hours. At regular intervals, the server connects to the OCSP responder of the CA to obtain the latest OCSP records. The location of OCSP respondents is obtained from the Authority Information Access field of the signing certificate. HTTP Strict Transport Security If possible, you should open the HTTP Strict Transport Security (HSTs), which instructs the browser to access your site only through HTTPS. HTTP Public Key Pinning Extensi

................ ........ 4.6 Caching off sensitive content as cloud-based applications increase, you must differentiate between open resources and sensitive content. ............. 4.7 Make sure there are no other vulnerabilities SSL does not represent security, and SSL is designed to cover only one aspect of security-the confidentiality and integrity of the communication process, but there are other threa

SSL/TLS Security Series: SSL/TLS Overview1. the SSL/TLS protocol is an important cornerstone of secure network communication. This series will briefly introduce the SSL/TLS Protocol, focusing on the security of the SSL/TLS Protocol, especially the correct implementation of t

The FTP client is FlashFTP. The FTP server is Serv-U. 1. Enable SSL encryption protocol for Serv-UI. Create an SSL CertificateTo use the SSL function of Serv-U, you must support the SSL certificate. Although Serv-U has automatically generated an SSL certificate at the time o