2015.11.17 12:38:29 (666581169253822464) from Daniel J. Bernstein:
I run some HTTPS servers. Protecting against ISPs: good. Privilege escalation via Apache+OpenSSL bugs: bad. Are there any auditable options?
2015.11.17 12:42:10 (666582094907338753) from Daniel J. Bernstein:
How hard would it be tweak libtlssep to build something like stunnel with every connection separately jailed? Has anyone already tried this?