Jamie Scaife - United Kingdom 🇬🇧

No Ads, No Tracking, No JavaScript

This website does not have any adverts, tracking or other internet annoyances.
It's also 100% JavaScript free.

Tor Hidden Services

This site is available through Tor at:

Automatically Testing Your Content Security Policy Using Travis-CI and Headless Chrome Crawler

Saturday 28th July 2018

I have recently put together a Travis-CI build configuration that automatically tests your website for Content Security Policy violations. The configuration sets up a local copy of your site on a Travis-CI virtual machine with a CSP header set to send violation reports to a local reporting endpoint. The site is then crawled using Headless Chrome Crawler, which causes CSP violation reports to be generated where required. These are then displayed at the end of the build log. Continue reading...

Security Apache Chrome

Launching a Public HackerOne Security Vulnerability Disclosure Program

Friday 11th May 2018

Last month, I launched a public HackerOne security vulnerability disclosure program for my website. I've been working on this for a while, and I'm now very happy to have launched the program publicly! If you're a hacker and you'd like to have a go, the program is accessible on HackerOne here: https://hackerone.com/jamieweb Continue reading...

Security Bug Bounty

Using a Public Wi-Fi Hotspot Securely

Tuesday 8th May 2018

The problem: You want to connect to the internet in a hotel or coffee shop, but don't want to expose your laptop to the insecure, unencrypted Wi-Fi network. A solution: Connect to the internet through a Raspberry Pi, and have it forward a secure VPN connection through to your laptop. Continue reading...

Security Guide

Let's Encrypt SCTs in Certificates

Wednesday 4th April 2018

As of 29th March 2018, all certificates issued by Let's Encrypt now include a Signed Certificate Timestamp (SCT) embedded in the certificate in the form of an X.509 v3 extension. Continue reading...

Security TLS Chrome

View All Posts

GitHub

Twitter

YouTube

Keybase

HackerOne

RSS

Popular Pages

Raspberry Pi + BOINC Stats

Stats from my RPi cluster + BOINC.

Updated Every 10 Minutes

Exploitable Web Content Blocking Test

Test whether exploitable web content is blocked in your web browser.

Tor Onion v3 Hidden Service

Testing the new Onion v3 Hidden Services.

Saturday 21st October 2017

Namecoin .bit Domain

Guide to registering a Namecoin .bit domain.

Tuesday 16th January 2018