Published in WE BUILD VEND·Jul 18, 2016How “The Internet’s Biggest Blind Spot” lead to a 15 year old security vulnerabilityDiscovering and Disclosing httpoxy — Over the past two weeks, I’ve been coordinating the disclosure of a pretty big and very old security vulnerability. If you’re looking for the technical details, you can head to httpoxy.org, …Security9 min read
Published in WE BUILD VEND·Jul 18, 2016What is httpoxy?An explanation for non-technical audiences — Hi! I’ve been telling the open source community about a security vulnerability that was recently rediscovered lurking in a bunch of software. This is an attempt at a simple explanation of the problem, for people who don’t write or deploy web applications. If you’re looking for technical details, and mitigation…Web Development5 min read
