news
today's howtos
-
Markup from Hell ☛ Speculation rules improvements
The Speculation Rules API allows you to speed up future navigations by prefetching or even prerendering URLs in advance of a user actually clicking a link. When the link is clicked, the speculation is used, and the user experiences a faster load than if no speculation was used.
-
University of Toronto ☛ Sending DMARC reports is somewhat hazardous
DMARC has a feature where you can request that other mail systems send you aggregate reports about the DMARC results that they observed for email claiming to be from you. If you're a large institution with a sprawling, complex, multi-party mail environment and you're considering trying to make your DMARC policy stricter, it's very useful to get as many DMARC reports from as many people as possible. Especially, 'you' (in a broad sense) probably want to get as much information from mail systems run by sub-units as possible, and if you're a sub-unit, you want to report DMARC information up to the organization so they have as much visibility into what's going on as possible.
-
Trickster Dev ☛ Advanced network traffic interception techniques with mitmproxy
The most common way to use mitmproxy for API traffic interception is to use it in a default forward proxy mode. One would run mitmproxy server on a laptop or desktop computer, then configure proxy settings and install X.509 certificate on a client device (e.g. smart phone). But there is more to mitmproxy than that. It can also be used as reverse proxy, transparent proxy (on Linux and macOS), Wireguard VPN server that also intercepts network traffic, SOCKS proxy server, customisable DNS server and even as a virtual network interface on Linux. In this article we will go through some of the lesser known mitmproxy features for uncovering what goes on between servers and clients.