Hello, welcome to the Tuesday, September 15th, 2020 edition of the Sandinand Storm Center's Stormcast.

My name is Johannes Ulrich, and today I'm recording from Jacksonville, Florida.

Today I wrote a quick diary about the dot well-known directorates, something we have mentioned in diaries in the past, but

figured it's time to really take a look at all the different features that are available

in this directory and of course what files you may find in it.

I highlighted six different ones that I found interesting, also from a security point of view,

and also some that are actually being used.

Like many features, of course, there are probably a couple dozen different files that are

defined for dot well-known, but many of them you won't really see used much.

Now, the one that's the most commonly used is the Agmi challenges.

That's, of course, for the ACMI protocol to retrieve TLS certificates from certificate authorities,

like Let's Encrypt.

One that's a bit new but Safari started to implement this is the change password file.

This actually just redirects to a web page on your site that will allow the user to change their password.

And the idea is to make it for password managers if a user would like to change a password

in the password manager to then automatically send the user to the right page to change their

password.

Pretty simple standard, actually.

Not a half a certain sure how useful it is.

The Safari implementation I find a little bit clumsy.

But, well, take a look.

I think it's something it's easy to implement,

...