Andrew Ayer AGWA

## WebPKI Business Sales.md

      
              1 file
            
          
              3 forks
            
          
              1 comment
            
          
              17 stars
            
          
                rmhrisk
                / WebPKI Business Sales.md
            
            
              Last active
              March 25, 2024 17:33
            
          
    WebPKI and Digital Signature related M&A + Investment + Public Offerings


This was inspired by Matt Suiche's great post on cyber security M&A related activity; there is some overlap but not much.
This is all public data.
I have also intentionally excluded sales of WebPKI key material, not only are these prices not public but they are usually very special cases that are in-essence impossible to compare effectively.
I have also included HSMs, Smart card, Digital signatures and CA related software companies in this list as it seems relevant.


Purchased
Purchaser
Date
Price
Structure
Notes


## ocsp-stapling.md

      
              1 file
            
          
              6 forks
            
          
              10 comments
            
          
              51 stars
            
          
                sleevi
                / ocsp-stapling.md
            
            
              Last active
              February 21, 2024 14:20
            
          
    On Twitter the other day,
I was lamenting the state of OCSP stapling support on Linux servers, and got
asked by several people to write-up what I think the requirements are for OCSP
stapling support.


Support for keeping a long-lived (disk) cache of OCSP responses.
This should be fairly simple. Any restarting of the service shouldn't
blow away previous responses that were obtained. This doesn't need to be
disk, just stable - and disk is an easy stable storage for most server


## Makefile
WAYLAND_PROTOCOLS=/usr/share/wayland-protocols

# wayland-scanner is a tool which generates C headers and rigging for Wayland
# protocols, which are specified in XML. wlroots requires you to rig these up
# to your build system yourself and provide them in the include path.
xdg-shell-protocol.h:
	wayland-scanner server-header \
		$(WAYLAND_PROTOCOLS)/stable/xdg-shell/xdg-shell.xml $@

xdg-shell-protocol.c: xdg-shell-protocol.h

## for-servers.md

      
              2 files
            
          
              1 fork
            
          
              0 comments
            
          
              8 stars
            
          
                sleevi
                / for-servers.md
            
            
              Created
              April 19, 2017 01:32
            
              
                CT Best Practices (April 2017)
              
          
    CT For Server (Developers)

Intro

Similar to my advice regarding OCSP Stapling
for servers/server developers, based on questions I've received about "CT best practices," I wanted to
write something similar for those writing server software. That is, this isn't targeted at server
operators, but for those writing software like Apache, nginx, Caddy, etc.
At the most basic level, the deployment of Certificate Transparency to date has largely tried to
focus the burden on CAs, rather than on server developers. If the CA is doing everything right,
	WAYLAND_PROTOCOLS=/usr/share/wayland-protocols

	# wayland-scanner is a tool which generates C headers and rigging for Wayland
	# protocols, which are specified in XML. wlroots requires you to rig these up
	# to your build system yourself and provide them in the include path.
	xdg-shell-protocol.h:
	wayland-scanner server-header \
	$(WAYLAND_PROTOCOLS)/stable/xdg-shell/xdg-shell.xml $@

	xdg-shell-protocol.c: xdg-shell-protocol.h