Hijack HTTPS over TLS 1.2 without Charles Proxy

TLS 1.2

Charles Proxy 3.9 uses the bouncycastle 1.4 for SSL/TLS, but TLS 1.2 is not yet supported in bcprov’s latest release(1.51), that’s why I got a

on some sites.

I tried to upgrade bcprov.jar, some incompatible exceptions were thrown.

To check if a https site uses TLSv1.2:

Continue reading “Hijack HTTPS over TLS 1.2 without Charles Proxy” »

Hijack HTTPS over TLS 1.2 without Charles Proxy by @sskaje: https://sskaje.me/2014/09/charles-proxy-tls-1-2/

Incoming search terms:

Image Thumbnail Proxy

A friend of mine asked me how to check if a file exists remotely (http 404) so that he can create thumbnail for images which don’t have a thumbnail of that size.

As what he planned to do, a visitor browse his page, his script will check all images ready for rendering have a suitable thumbnail.

Checking a HTTP 404 is quite easy, but it’s not wise checking on page’s loading, if there are n images to be checked, a single page visit would makes server requests n to 2*n times for checking/generating thumbnail. These requests are useless at most time.
Continue reading “Image Thumbnail Proxy” »

Image Thumbnail Proxy by @sskaje: https://sskaje.me/2014/07/image-thumbnail-proxy/

Incoming search terms:

SSL Certificates Updated

Free SSL from StartSSL.com, enough for basic usage.

To make certs working under nginx, just

And then

SSL Certificates Updated by @sskaje: https://sskaje.me/2014/05/ssl-certificates-updated/

Simplified Nginx Proxy for Google URLs in WordPress

In Nginx proxy for Google URLs in WordPress, I wrote lots of lines configuring proxies and subs_filter rules.
Here is the newer simplified one:

Updated(2014-09-19):

Simplified Nginx Proxy for Google URLs in WordPress by @sskaje: https://sskaje.me/2014/01/simplified-nginx-proxy-google-urls-wordpress/

Incoming search terms:

Nginx proxy for Google URLs in WordPress

I wrote a script how to make fonts.googleapis.com not bring down the load speed of WordPress for visitors from China.
Here is the link: Google Font Api Proxy for WordPress
To use this proxy, I have to edit themes’ files even the script-loader.php by WordPress, that’s a disaster for upgrading.

Another problem is, I have SSL enabled on my blog. Every time I visit my blog, Chrome notices me that

The page at ‘https://sskaje.me/’ was loaded over HTTPS, but displayed insecure content from ‘/p/themes.googleusercontent.com/static/fonts/opensans/v6/xxxxxxxx.woff’: this content should also be loaded over HTTPS.

The SSL green lock icon in the address bar is always be ‘warned’.

Continue reading “Nginx proxy for Google URLs in WordPress” »

Nginx proxy for Google URLs in WordPress by @sskaje: https://sskaje.me/2014/01/nginx-proxy-google-urls-wordpress/

Incoming search terms: