4d2 dot org Proof of Security

4d2.su: 4d2 dot org Proof of Security (Beta)

About this application - click to show

The problem: We've recently seen privacy-oriented services come under attack in several ways, from legislative saber-rattling like the EU's Chat Control initiative to an extremely concerning Man-in-the-Middle TLS attack where major hosting companies likely cooperated with law enforcement to violate the privacy of jabber.ru users.

In the jabber.ru attack, hosting companies used their privileged network position to obtain phony TLS certificates for jabber.ru services. These were then secretly used to create an intermediate termination point for secure traffic. Users and site admins saw that connections were encrypted, but communication was presumably being decrypted and funneled elsewhere. This continued for months before it was noticed.

How we're defending ourselves: We already take some precautions against this kind of attack that jabber.ru didn't. On this page we try to close some remaining gaps by testing the validity of our own certificates using as many mutually uncooperative parties as possible, making it as difficult as we can for a MitM attack against us to go unnoticed. Here's how it works:

This site uses a domain name registered in the .su top-level domain, a small (~100k domains) and somewhat lawless TLD originally created for the USSR in 1990. These domain names are currently difficult to register or modify, and the .su TLD's operators are unlikely to cooperate with government agencies outside of Russia. This makes a DNS hijack in the .su top-level zone unlikely.
Our DNS provider in Iceland has a history of non-cooperation with foreign authorities, and DNSSEC is used in all zones that support it. This makes a hijack of our local DNS zones unlikely.
The server hosting this page is leased from a different provider in a different country than our other machines. Sophisticated network attacks would require cooperation between parties.
This server uses a different CPU architecture and OS layout than our other machines, so it's less likely to be vulnerable to the same casual exploits.
Every few minutes, the servers hosting our public services (email, Matrix, CryptPad, etc.) export the SHA-256 fingerprint and validity dates of all their TLS certificates. This data comes from the local copies of these certificates on each application server. These fingerprints and validity dates are pushed to this machine via SSH with key-based authentication.
Every few minutes, a client machine that we control makes a TLS client connection to each of our applications that supports TLS, and logs the SHA-256 fingerprint and validity date it receives from the server. The results are then sent to this machine using SSH.
This app compares the data received by these two mechanisms. If certificate fingerprints or validity dates don't match, we flag that entry as "suspicious" on this page.
Each exchange of certificate information between servers also exchanges a randomly-generated UUID. The UUIDs received by this machine are displayed here, and the UUIDs sent by each remote machine are linked directly from those machines for you to compare. An attacker who compromised this app to display fake data would have to compromise all our machines for the UUIDs to match.

This is not absolute protection from an impersonation attack, or anything close. It just tries to make such an attack as inconvenient, expensive and obvious as possible.

Install our Proof of Security Client for automated monitoring from a machine you trust.

Service Name	Local Fingerprint	Fingerprint to Client	Local Expiry	Expiry to Client	LE Account ID	Trust Status
4d2.link	42:34:70:E9:08:87:85:4B89:5A:F7:3E:40:32:4E:F0:74:8C:D4:AE:B8:1B:D5:8A:C8:46:E6:7B:DD:12:E4:52:42:34:70:E9:08:87:85:4B	42:34:70:E9:08:87:85:4B89:5A:F7:3E:40:32:4E:F0:74:8C:D4:AE:B8:1B:D5:8A:C8:46:E6:7B:DD:12:E4:52:42:34:70:E9:08:87:85:4B	Feb 10 03:49:38 2025Nov 12 03:49:39 2024 - Feb 10 03:49:38 2025	Feb 10 03:49:38 2025Nov 12 03:49:39 2024 - Feb 10 03:49:38 2025	76782206https://acme-v02.api.letsencrypt.org/acme/acct/76782206	OK
4d2.org	07:C9:54:71:0F:36:46:79A2:B2:53:47:DB:F3:BD:81:C6:B5:17:E1:CB:76:39:B5:13:3B:AD:51:20:AC:94:95:07:C9:54:71:0F:36:46:79	07:C9:54:71:0F:36:46:79A2:B2:53:47:DB:F3:BD:81:C6:B5:17:E1:CB:76:39:B5:13:3B:AD:51:20:AC:94:95:07:C9:54:71:0F:36:46:79	Jan 12 04:32:50 2025Oct 14 04:32:51 2024 - Jan 12 04:32:50 2025	Jan 12 04:32:50 2025Oct 14 04:32:51 2024 - Jan 12 04:32:50 2025	76782206https://acme-v02.api.letsencrypt.org/acme/acct/76782206	OK
4d2.social	C5:F7:1C:2F:A8:09:82:02C1:41:DE:18:FC:52:5D:A9:AE:05:43:10:0B:E1:72:42:9B:E4:DE:21:0A:BB:75:92:C5:F7:1C:2F:A8:09:82:02	C5:F7:1C:2F:A8:09:82:02C1:41:DE:18:FC:52:5D:A9:AE:05:43:10:0B:E1:72:42:9B:E4:DE:21:0A:BB:75:92:C5:F7:1C:2F:A8:09:82:02	Jan 21 06:22:22 2025Oct 23 06:22:23 2024 - Jan 21 06:22:22 2025	Jan 21 06:22:22 2025Oct 23 06:22:23 2024 - Jan 21 06:22:22 2025	1801268617https://acme-v02.api.letsencrypt.org/acme/acct/1801268617	OK
4d2.su	04:2B:0D:D2:3E:25:51:FAA4:75:30:C8:73:36:1F:F9:84:56:9E:A4:8A:8F:A3:8E:1E:DB:DC:B1:62:A7:09:B3:04:2B:0D:D2:3E:25:51:FA	Verify this manuallyCheck cert details in your browser - Verify this SHA-256 fingerprint manually	Feb 11 22:53:47 2025Nov 13 22:53:48 2024 - Feb 11 22:53:47 2025	Verify this manuallyCheck cert details in your browser - Verify this manually	2014851357https://acme-v02.api.letsencrypt.org/acme/acct/2014851357	ImplicitThis server can't attest for itself
bayard.4d2.org	07:C9:54:71:0F:36:46:79A2:B2:53:47:DB:F3:BD:81:C6:B5:17:E1:CB:76:39:B5:13:3B:AD:51:20:AC:94:95:07:C9:54:71:0F:36:46:79	07:C9:54:71:0F:36:46:79A2:B2:53:47:DB:F3:BD:81:C6:B5:17:E1:CB:76:39:B5:13:3B:AD:51:20:AC:94:95:07:C9:54:71:0F:36:46:79	Jan 12 04:32:50 2025Oct 14 04:32:51 2024 - Jan 12 04:32:50 2025	Jan 12 04:32:50 2025Oct 14 04:32:51 2024 - Jan 12 04:32:50 2025	76782206https://acme-v02.api.letsencrypt.org/acme/acct/76782206	OK
cinny.4d2.org	57:15:58:04:EB:81:50:5361:EA:56:B7:6D:E2:EC:49:2F:C1:EB:56:0E:14:BF:C8:EF:63:40:8B:27:6E:87:60:57:15:58:04:EB:81:50:53	57:15:58:04:EB:81:50:5361:EA:56:B7:6D:E2:EC:49:2F:C1:EB:56:0E:14:BF:C8:EF:63:40:8B:27:6E:87:60:57:15:58:04:EB:81:50:53	Dec 22 21:26:55 2024Sep 23 21:26:56 2024 - Dec 22 21:26:55 2024	Dec 22 21:26:55 2024Sep 23 21:26:56 2024 - Dec 22 21:26:55 2024	1434949786https://acme-v02.api.letsencrypt.org/acme/acct/1434949786	OK
depot.4d2.org	2A:F3:09:14:64:9A:AB:56A5:BA:17:94:BF:5B:2D:1A:9D:A2:E0:02:4F:89:34:91:4A:7E:C1:E8:EB:93:8A:7B:2A:F3:09:14:64:9A:AB:56	2A:F3:09:14:64:9A:AB:56A5:BA:17:94:BF:5B:2D:1A:9D:A2:E0:02:4F:89:34:91:4A:7E:C1:E8:EB:93:8A:7B:2A:F3:09:14:64:9A:AB:56	Feb 10 03:57:04 2025Nov 12 03:57:05 2024 - Feb 10 03:57:04 2025	Feb 10 03:57:04 2025Nov 12 03:57:05 2024 - Feb 10 03:57:04 2025	1914608496https://acme-v02.api.letsencrypt.org/acme/acct/1914608496	OK
element.4d2.org	14:39:29:B0:CA:79:CB:1980:BA:C1:2E:7E:1D:E8:BC:B9:37:3F:BB:2B:01:90:86:68:38:7C:CB:F3:BF:63:34:14:39:29:B0:CA:79:CB:19	14:39:29:B0:CA:79:CB:1980:BA:C1:2E:7E:1D:E8:BC:B9:37:3F:BB:2B:01:90:86:68:38:7C:CB:F3:BF:63:34:14:39:29:B0:CA:79:CB:19	Dec 22 21:26:38 2024Sep 23 21:26:39 2024 - Dec 22 21:26:38 2024	Dec 22 21:26:38 2024Sep 23 21:26:39 2024 - Dec 22 21:26:38 2024	1434949786https://acme-v02.api.letsencrypt.org/acme/acct/1434949786	OK
jitsi.4d2.org	DD:53:45:2E:23:56:F1:D45C:4B:6A:C0:90:EC:37:59:82:DC:B6:C6:85:96:9E:9F:1C:6C:2B:5F:AE:3C:32:9B:DD:53:45:2E:23:56:F1:D4	DD:53:45:2E:23:56:F1:D45C:4B:6A:C0:90:EC:37:59:82:DC:B6:C6:85:96:9E:9F:1C:6C:2B:5F:AE:3C:32:9B:DD:53:45:2E:23:56:F1:D4	Dec 22 21:26:30 2024Sep 23 21:26:31 2024 - Dec 22 21:26:30 2024	Dec 22 21:26:30 2024Sep 23 21:26:31 2024 - Dec 22 21:26:30 2024	1434949786https://acme-v02.api.letsencrypt.org/acme/acct/1434949786	OK
matrix.4d2.org	34:5A:02:52:8A:12:5F:2804:5E:4F:66:82:F8:43:4B:13:02:63:8A:83:79:FB:BF:CE:57:58:CE:8B:C5:B3:13:34:5A:02:52:8A:12:5F:28	34:5A:02:52:8A:12:5F:2804:5E:4F:66:82:F8:43:4B:13:02:63:8A:83:79:FB:BF:CE:57:58:CE:8B:C5:B3:13:34:5A:02:52:8A:12:5F:28	Dec 22 21:26:46 2024Sep 23 21:26:47 2024 - Dec 22 21:26:46 2024	Dec 22 21:26:46 2024Sep 23 21:26:47 2024 - Dec 22 21:26:46 2024	1434949786https://acme-v02.api.letsencrypt.org/acme/acct/1434949786	OK
pad.4d2.org	04:A5:E0:65:25:51:BA:3386:46:EC:C7:04:12:15:F8:9D:F2:45:35:89:D4:3F:E6:9C:BD:AD:85:C0:4F:86:58:04:A5:E0:65:25:51:BA:33	04:A5:E0:65:25:51:BA:3386:46:EC:C7:04:12:15:F8:9D:F2:45:35:89:D4:3F:E6:9C:BD:AD:85:C0:4F:86:58:04:A5:E0:65:25:51:BA:33	Feb 10 03:57:21 2025Nov 12 03:57:22 2024 - Feb 10 03:57:21 2025	Feb 10 03:57:21 2025Nov 12 03:57:22 2024 - Feb 10 03:57:21 2025	1914608496https://acme-v02.api.letsencrypt.org/acme/acct/1914608496	OK
padsbx.4d2.org	04:A5:E0:65:25:51:BA:3386:46:EC:C7:04:12:15:F8:9D:F2:45:35:89:D4:3F:E6:9C:BD:AD:85:C0:4F:86:58:04:A5:E0:65:25:51:BA:33	04:A5:E0:65:25:51:BA:3386:46:EC:C7:04:12:15:F8:9D:F2:45:35:89:D4:3F:E6:9C:BD:AD:85:C0:4F:86:58:04:A5:E0:65:25:51:BA:33	Feb 10 03:57:21 2025Nov 12 03:57:22 2024 - Feb 10 03:57:21 2025	Feb 10 03:57:21 2025Nov 12 03:57:22 2024 - Feb 10 03:57:21 2025	1914608496https://acme-v02.api.letsencrypt.org/acme/acct/1914608496	OK
vault.4d2.org	07:C9:54:71:0F:36:46:79A2:B2:53:47:DB:F3:BD:81:C6:B5:17:E1:CB:76:39:B5:13:3B:AD:51:20:AC:94:95:07:C9:54:71:0F:36:46:79	07:C9:54:71:0F:36:46:79A2:B2:53:47:DB:F3:BD:81:C6:B5:17:E1:CB:76:39:B5:13:3B:AD:51:20:AC:94:95:07:C9:54:71:0F:36:46:79	Jan 12 04:32:50 2025Oct 14 04:32:51 2024 - Jan 12 04:32:50 2025	Jan 12 04:32:50 2025Oct 14 04:32:51 2024 - Jan 12 04:32:50 2025	76782206https://acme-v02.api.letsencrypt.org/acme/acct/76782206	OK

Last updated at Nov 21 06:40:20 2024. All times UTC.
Note that cdn.4d2.org, static.4d2.org and cdn.4d2.social are operated by our CDN vendor Bunny.net. They issue their own certificates.
These fingerprints are not shown here, and the "@" CAA records in the 4d2.org and 4d2.social zones are relaxed to allow this issuance.

Last update from arthur at Nov 21 06:40:00 2024
     Linux arthur.4d2.org 6.11.5-1-aarch64-ARCH #1 SMP PREEMPT_DYNAMIC Wed Oct 23 06:46:21 MDT 2024 aarch64 GNU/Linux
     UUID Received: 1549c00f-864d-43dc-9549-def4050a66eb
     UUID Sent: Compare
Last update from bayard at Nov 21 06:40:00 2024
     FreeBSD bayard.4d2.org 14.1-RELEASE FreeBSD 14.1-RELEASE releng/14.1-n267679-10e31f0946d8 GENERIC amd64
     UUID Received: 6e66bfc0-a7d3-11ef-b68d-5d7b03522583
     UUID Sent: Compare
Last update from zaphod at Nov 21 06:40:01 2024
     Linux zaphod.4d2.org 6.11.1-arch1-1 #1 SMP PREEMPT_DYNAMIC Mon, 30 Sep 2024 23:49:50 +0000 x86_64 GNU/Linux
     UUID Received: 4434deb2-a5bb-4d21-85fb-a07c8fe75d1d
     UUID Sent: Compare
Last update from zarniwoop at Nov 21 06:40:01 2024
     Linux zarniwoop.4d2.org 6.1.0-21-amd64 #1 SMP PREEMPT_DYNAMIC Debian 6.1.90-1 (2024-05-03) x86_64 GNU/Linux
     UUID Received: 6469ef75-ba3f-46e8-bc07-259784dba580
     UUID Sent: Compare

What attacks are still possible, and how do I mitigate them?

This site or server could be compromised and our code changed to display false results
- Verify the SHA-256 fingerprints on this page against your own browser and against the crt.sh database
- Compare the sent and received UUIDs above to ensure they match and are rotating every 10 minutes
- Verify that the sent UUIDs are linked directly from remote servers, and that the received UUIDs are embedded in the source of this page
The admins could be coerced into deliberately breaking this app
- Keep an eye on the warrant canary
- Keep your threat model realistic - this is unlikely as we're not a haven for criminality
We could be an elaborate corporate honeypot hellbent on collecting your personal data
- Only discuss sensitive topics over end-to-end encrypted services like Matrix or PGP email
The SHA-256 algorithm could be broken in some way not yet publicly known
- Relax, because you and the rest of the internet will soon have much bigger problems to worry about
And infinitely many more, depending on your level of paranoia...
- Consider a refreshing cup of chamomile tea

How can I find out right away if there's a new security problem?
You can install our Proof of Security Client on a machine you own and schedule it to run regularly.

Back to 4d2 dot org