The microblog: 2015.11.17 12:38:29

2015.11.17 12:38:29 (666581169253822464) from Daniel J. Bernstein:

I run some HTTPS servers. Protecting against ISPs: good. Privilege escalation via Apache+OpenSSL bugs: bad. Are there any auditable options?

2015.11.17 12:42:10 (666582094907338753) from Daniel J. Bernstein:

How hard would it be tweak libtlssep to build something like stunnel with every connection separately jailed? Has anyone already tried this?