http://blog.ivanristic.com/ daily 1.0 http://blog.ivanristic.com/2022/02/bulletproof-tls-and-pki-is-out.html daily 0.8 http://blog.ivanristic.com/2021/02/openssl-cookbook-3ed-now-available.html daily 0.8 http://blog.ivanristic.com/2020/11/bulletproof-ssl-and-tls-second-edition-preview.html daily 0.8 http://blog.ivanristic.com/2017/07/announcing-bulletproof-ssl-and-tls-2017-revision.html daily 0.8 http://blog.ivanristic.com/2017/07/bulletproof-ssl-and-tls-three-years-later.html daily 0.8 http://blog.ivanristic.com/2017/06/ssl-labs-grading-redesign-preview-1.html daily 0.8 http://blog.ivanristic.com/2017/04/ssl-labs-distrusts-wosign-and-startcom-certificates.html daily 0.8 http://blog.ivanristic.com/2017/03/caa-mandated-by-cab-forum.html daily 0.8 http://blog.ivanristic.com/2017/02/ticketbleed-detection-added-to-ssl-labs.html daily 0.8 http://blog.ivanristic.com/2017/01/new-in-ssl-labs-1.26.5.html daily 0.8 http://blog.ivanristic.com/2016/11/per-protocol-cipher-suite-detection.html daily 0.8 http://blog.ivanristic.com/2016/11/ssl-labs-now-showing-multiple-certificate-chains.html daily 0.8 http://blog.ivanristic.com/2016/11/announcing-ss-labs-grading-changes-for-2017.html daily 0.8 http://blog.ivanristic.com/2016/09/is-http-public-key-pinning-dead.html daily 0.8 http://blog.ivanristic.com/2016/08/ssl-labs-improved-suite-detection.html daily 0.8 http://blog.ivanristic.com/2016/08/tls-version-intolerance-in-ssl-pulse.html daily 0.8 http://blog.ivanristic.com/2016/06/new-release-of-ssl-tls-best-practices.html daily 0.8 http://blog.ivanristic.com/2016/06/the-best-tls-training-in-the-world.html daily 0.8 http://blog.ivanristic.com/2016/05/ssl-labs-in-2016-and-beyond.html daily 0.8 http://blog.ivanristic.com/2016/03/ssl-labs-drown-test-implementation-details.html daily 0.8 http://blog.ivanristic.com/2016/03/drown-grading-update.html daily 0.8 http://blog.ivanristic.com/2016/03/drown-abuses-ssl-v2-to-attack-tls.html daily 0.8 http://blog.ivanristic.com/2015/08/bulletproof-maintenance.html daily 0.8 http://blog.ivanristic.com/2015/06/introducing-tls-maturity-model.html daily 0.8 http://blog.ivanristic.com/2015/05/ssl-labs-increased-penalty-no-tls12.html daily 0.8 http://blog.ivanristic.com/2015/05/ssl-labs-1-17-rc4-obsolete-crypto-logjam.html daily 0.8 http://blog.ivanristic.com/2015/04/what-is-new-in-ssl-labs-1-16-x.html daily 0.8 http://blog.ivanristic.com/2015/04/ssl-labs-rc4-deprecaton-plan.html daily 0.8 http://blog.ivanristic.com/2015/03/openssl-cookbook-second-edition-released.html daily 0.8 http://blog.ivanristic.com/2015/02/apache-security-ten-years-later.html daily 0.8 http://blog.ivanristic.com/2015/01/ssl-labs-apis-now-available-beta.html daily 0.8 http://blog.ivanristic.com/2014/12/ssl-labs-end-of-year-updates.html daily 0.8 http://blog.ivanristic.com/2014/12/poodle-bites-tls.html daily 0.8 http://blog.ivanristic.com/2014/10/ssl3-is-dead-killed-by-poodle.html daily 0.8 http://blog.ivanristic.com/2014/09/sha1-deprecation-what-you-need-to-know.html daily 0.8 http://blog.ivanristic.com/2014/08/bulletproof-ssl-and-tls-on-my-desk.html daily 0.8 http://blog.ivanristic.com/2014/08/bulletproof-ssl-and-tls-final-released.html daily 0.8 http://blog.ivanristic.com/2014/06/bulletproof-update-june-crypto-protocol-pki.html daily 0.8 http://blog.ivanristic.com/2014/06/ssl-labs-new-grades-for-trust-and-name-mismatch-issues.html daily 0.8 http://blog.ivanristic.com/2014/06/ssl-pulse-49-percent-vulnerable-to-cve-2014-0224-in-june-2014.html daily 0.8 http://blog.ivanristic.com/2014/05/bulletproof-update-may-deployment-and-performance.html daily 0.8 http://blog.ivanristic.com/2014/04/ssl-labs-test-for-the-heartbleed-attack.html daily 0.8 http://blog.ivanristic.com/2014/04/bulletproof-update-april-attacks.html daily 0.8 http://blog.ivanristic.com/2014/03/https-mixed-content-still-the-easiest-way-to-break-ssl.html daily 0.8 http://blog.ivanristic.com/2014/03/ssl-tls-improvements-in-java-8.html daily 0.8 http://blog.ivanristic.com/2014/03/building-your-test-for-apple-tls-auth-bug.html daily 0.8 http://blog.ivanristic.com/2014/03/bulletproof-update-protocol-attacks.html daily 0.8 http://blog.ivanristic.com/2014/02/ssl-labs-test-for-apple-tls-auth-bug.html daily 0.8 http://blog.ivanristic.com/2014/02/checking-ocsp-revocation-using-openssl.html daily 0.8 http://blog.ivanristic.com/2014/02/bulletproof-early-access-now-available.html daily 0.8 http://blog.ivanristic.com/2014/01/ssl-labs-stricter-security-requirements-for-2014.html daily 0.8 http://blog.ivanristic.com/2013/10/apple-enabled-beast-mitigations-in-mavericks.html daily 0.8 http://blog.ivanristic.com/2013/10/ssl-pulse-now-tracking-forward-secrecy-and-rc4.html daily 0.8 http://blog.ivanristic.com/2013/10/openssl-cookbook-v1.1-released.html daily 0.8 http://blog.ivanristic.com/2013/10/introducing-ssl-client-test.html daily 0.8 http://blog.ivanristic.com/2013/09/open-letter-from-uk-security-researchers.html daily 0.8 http://blog.ivanristic.com/2013/09/updated-best-practices-deprecate-rc4.html daily 0.8 http://blog.ivanristic.com/2013/09/is-beast-still-a-threat.html daily 0.8 http://blog.ivanristic.com/2013/08/increasing-dhe-strength-on-apache.html daily 0.8 http://blog.ivanristic.com/2013/08/defending-against-the-breach-attack.html daily 0.8 http://blog.ivanristic.com/2013/08/configuring-apache-nginx-and-openssl-for-forward-secrecy.html daily 0.8 http://blog.ivanristic.com/2013/08/compiling-apache-with-static-openssl.html daily 0.8 http://blog.ivanristic.com/2013/06/ssl-labs-deploying-forward-secrecy.html daily 0.8 http://blog.ivanristic.com/2013/05/announcing-bulletproof-ssl-tls-and-pki.html daily 0.8 http://blog.ivanristic.com/2013/03/rc4-in-tls-is-broken-now-what.html daily 0.8 http://blog.ivanristic.com/2013/02/ssl-labs-update-increases-security-requirements.html daily 0.8 http://blog.ivanristic.com/2012/11/large-scale-passive-ssl-monitoring-at-icsi.html daily 0.8 http://blog.ivanristic.com/2012/10/improved-passive-ssl-fingerprinting-in-sslhaf.html daily 0.8 http://blog.ivanristic.com/2012/09/crime-information-leakage-attack-against-ssl-tls.html daily 0.8 http://blog.ivanristic.com/2012/07/protocol-level-evasion-of-web-application-firewalls.html daily 0.8 http://blog.ivanristic.com/2012/07/how-good-is-client-side-support-for-rc4.html daily 0.8 http://blog.ivanristic.com/2012/06/lead-application-security-researcher-wanted-to-join-a-great-team.html daily 0.8 http://blog.ivanristic.com/2012/06/modsecurity-and-modsecurity-core-rule-set-multipart-bypasses.html daily 0.8 http://blog.ivanristic.com/2012/05/my-infosecurity-london-2012-ssl-panel-notes.html daily 0.8 http://blog.ivanristic.com/2012/04/announcing-ssl-pulse.html daily 0.8 http://blog.ivanristic.com/2012/03/qualys-supports-reform-at-ca-browser-forum.html daily 0.8 http://blog.ivanristic.com/2012/03/ssl-and-browsers-the-pillars-of-broken-security.html daily 0.8 http://blog.ivanristic.com/2012/02/announcing-the-ssl-tls-deployment-best-practices-guide.html daily 0.8 http://blog.ivanristic.com/2012/02/ironbee-reboot.html daily 0.8 http://blog.ivanristic.com/2011/10/tls-renegotiation-and-denial-of-service-attacks.html daily 0.8 http://blog.ivanristic.com/2011/10/mitigating-the-beast-attack-on-tls.html daily 0.8 http://blog.ivanristic.com/2011/09/ssl-labs-announcing-launch-of-two-convergence-notaries.html daily 0.8 http://blog.ivanristic.com/2011/09/key-ssl-tls-mailing-lists-to-follow.html daily 0.8 http://blog.ivanristic.com/2011/09/ssl-survey-protocol-support.html daily 0.8 http://blog.ivanristic.com/2011/08/so-what-really-breaks-ssl.html daily 0.8 http://blog.ivanristic.com/2011/05/a-study-of-what-really-breaks-ssl.html daily 0.8 http://blog.ivanristic.com/2011/04/fresh-internet-ssl-survey-results-april-2011-available.html daily 0.8 http://blog.ivanristic.com/2011/03/ironbee-versus-modsecurity.html daily 0.8 http://blog.ivanristic.com/2011/02/ironbee-a-new-apache-licensed-web-application-firewall.html daily 0.8 http://blog.ivanristic.com/2011/02/how-to-choose-a-good-name-for-your-product.html daily 0.8 http://blog.ivanristic.com/2011/01/unfortunate-current-practices-for-http-over-tls.html daily 0.8 http://blog.ivanristic.com/2010/12/ssl-labs-added-test-for-ephemeral-dh-parameters.html daily 0.8 http://blog.ivanristic.com/2010/12/modsecurity-handbook-wordle.html daily 0.8 http://blog.ivanristic.com/2010/12/apache-security-wordle.html daily 0.8 http://blog.ivanristic.com/2010/11/detection-of-certificate-chain-issues-in-ssl-labs.html daily 0.8 http://blog.ivanristic.com/2010/11/stop-complaining-and-solve-a-security-problem-instead.html daily 0.8 http://blog.ivanristic.com/2010/11/debian-stable-lenny-will-support-secure-renegotiation.html daily 0.8 http://blog.ivanristic.com/2010/11/were-hiring-i-have-3-open-positions-on-my-waf-team.html daily 0.8 http://blog.ivanristic.com/2010/10/private-assessment-option-added-to-the-ssl-server-test.html daily 0.8 http://blog.ivanristic.com/2010/10/disabling-ssl-renegotiation-is-a-crutch-not-a-fix.html daily 0.8 http://blog.ivanristic.com/2010/10/ssl-labs-releases-raw-data-from-the-internet-ssl-survey.html daily 0.8 http://blog.ivanristic.com/2010/09/introducing-canoe-context-aware-output-encoding-for-xss-prevention.html daily 0.8 http://blog.ivanristic.com/2010/07/internet-ssl-survey-2010-is-here.html daily 0.8 http://blog.ivanristic.com/2010/07/ssl-labs-1063-detection-and-reporting-of-certificate-chain-issues.html daily 0.8 http://blog.ivanristic.com/2010/07/ssl-server-survey-what-data-are-we-collecting.html daily 0.8 http://blog.ivanristic.com/2010/07/ssl-server-survey-so-whats-with-the-22m-invalid-certificates-claim.html daily 0.8 http://blog.ivanristic.com/2010/07/internet-ssl-server-survey-at-black-hat-usa-2010.html daily 0.8 http://blog.ivanristic.com/2010/06/ssl-labs-assessment-engine-v1059-improvements.html daily 0.8 http://blog.ivanristic.com/2010/06/qualys-acquires-ssl-labs.html daily 0.8 http://blog.ivanristic.com/2010/05/secure-renegotiation-test-added-to-ssl-labs.html daily 0.8 http://blog.ivanristic.com/2010/05/breaking-ssl-why-leave-to-others-what-you-can-do-yourself.html daily 0.8 http://blog.ivanristic.com/2010/05/deep-protocol-and-cipher-suite-testing-in-ssl-labs.html daily 0.8 http://blog.ivanristic.com/2010/04/speaking-on-ssl-at-owasp-appsec-research-in-sweden.html daily 0.8 http://blog.ivanristic.com/2010/04/apache-security-1ed-now-available-from-feisty-duck.html daily 0.8 http://blog.ivanristic.com/2010/04/the-state-of-modsecurity-in-march-2010-part-2.html daily 0.8 http://blog.ivanristic.com/2010/04/lua-programming-gems-pdf-now-available-from-feisty-duck.html daily 0.8 http://blog.ivanristic.com/2010/03/the-state-of-modsecurity-march-2010-part-1.html daily 0.8 http://blog.ivanristic.com/2010/03/modsecurity-handbook-in-print.html daily 0.8 http://blog.ivanristic.com/2010/03/modsecurity-handbook-shipping-soon.html daily 0.8 http://blog.ivanristic.com/2010/02/firefox-extension-installation-process-vulnerable-to-mitm-attack.html daily 0.8 http://blog.ivanristic.com/2010/01/ssl-labs-using-firefox-36-ca-certs.html daily 0.8 http://blog.ivanristic.com/2010/01/programming-in-lua-2ed-now-sold-by-feisty-duck-pdf-only.html daily 0.8 http://blog.ivanristic.com/2010/01/how-to-render-ssl-useless.html daily 0.8 http://blog.ivanristic.com/2009/12/testing-for-ssl-renegotiation.html daily 0.8 http://blog.ivanristic.com/2009/11/http-parser-for-intrusion-detection-and-web-application-firewalls.html daily 0.8 http://blog.ivanristic.com/2009/11/clientless-ssl-vpn-products-break-the-web.html daily 0.8 http://blog.ivanristic.com/2009/11/modsecurity-handbook-available-for-pre-order-and-early-access.html daily 0.8 http://blog.ivanristic.com/2009/11/initial-test-for-ssl-renegotiation-added-to-ssl-labs.html daily 0.8 http://blog.ivanristic.com/2009/11/announcing-modsecurity-handbook.html daily 0.8 http://blog.ivanristic.com/2009/11/not-just-csrf-ssl-authentication-gap-used-for-credentials-theft.html daily 0.8 http://blog.ivanristic.com/2009/11/planned-usability-improvements-for-modsecurity-26.html daily 0.8 http://blog.ivanristic.com/2009/11/ssl-and-tls-authentication-gap-vulnerability-discovered.html daily 0.8 http://blog.ivanristic.com/2009/10/entropy-on-a-usb-stick.html daily 0.8 http://blog.ivanristic.com/2009/09/the-key-to-successful-waf-deployment-is-getting-the-ownership-right.html daily 0.8 http://blog.ivanristic.com/2009/09/analysis-of-elliptic-curve-support-in-current-browsers.html daily 0.8 http://blog.ivanristic.com/2009/09/ssl-labs-improved-ec-and-tls-12-detection.html daily 0.8 http://blog.ivanristic.com/2009/09/ssl-threat-model.html daily 0.8 http://blog.ivanristic.com/2009/09/two-bugs-in-mod_sslhaf-fixed.html daily 0.8 http://blog.ivanristic.com/2009/09/ssl-labs-a-batch-of-small-improvements.html daily 0.8 http://blog.ivanristic.com/2009/09/tuning-modsecurity-console-on-windows.html daily 0.8 http://blog.ivanristic.com/2009/08/is-rc4-safe-for-use-in-ssl.html daily 0.8 http://blog.ivanristic.com/2009/08/black-hat-2009-ssl-review-breaking-the-myths-of-extended-validation-ssl-certificates-alexander-sotir.html daily 0.8 http://blog.ivanristic.com/2009/08/black-hat-2009-ssl-review-more-tricks-for-defeating-ssl-in-practice-moxie-marlinspike.html daily 0.8 http://blog.ivanristic.com/2009/08/black-hat-2009-ssl-review-black-ops-of-pki-dan-kaminsky.html daily 0.8 http://blog.ivanristic.com/2009/08/improved-sslv2-detection-in-ssl-labs.html daily 0.8 http://blog.ivanristic.com/2009/07/tls-server-name-indication-now-in-apache.html daily 0.8 http://blog.ivanristic.com/2009/07/can-you-have-too-much-ssl.html daily 0.8 http://blog.ivanristic.com/2009/07/announcing-the-ssl-server-rating-guide-and-the-public-ssl-server-database.html daily 0.8 http://blog.ivanristic.com/2009/07/firefox-ssl-extensions.html daily 0.8 http://blog.ivanristic.com/2009/07/examples-of-the-information-collected-from-ssl-handshakes.html daily 0.8 http://blog.ivanristic.com/2009/07/analysis-of-googlebots-frugal-cipher-suite-list.html daily 0.8 http://blog.ivanristic.com/2009/07/improved-handling-of-ssl-warnings-in-firefox-35.html daily 0.8 http://blog.ivanristic.com/2009/06/http-client-fingerprinting-using-ssl-handshake-analysis.html daily 0.8 http://blog.ivanristic.com/2009/06/security-researchers-ask-google-to-enable-ssl-encryption-by-default.html daily 0.8 http://blog.ivanristic.com/2009/06/ssl-labs-launches.html daily 0.8 http://blog.ivanristic.com/2009/05/the-death-of-dual-licensing-as-a-commercial-open-source-strategy.html daily 0.8 http://blog.ivanristic.com/2009/05/how-did-mysql-become-so-successful.html daily 0.8 http://blog.ivanristic.com/2009/03/security-is-difficult-open-source-security-sometimes-even-more-so.html daily 0.8 http://blog.ivanristic.com/2009/03/modsecurity-training-at-owasp-appsec-europe-2009.html daily 0.8 http://blog.ivanristic.com/2009/03/read-changethis-and-you-may-not-need-to-buy-a-business-book-ever-again.html daily 0.8 http://blog.ivanristic.com/2009/03/signing-the-modsecurity-contribution-agreement.html daily 0.8 http://blog.ivanristic.com/2009/03/a-taxonomy-of-open-source-business-models.html daily 0.8 http://blog.ivanristic.com/2009/03/advantages-and-disadvantages-of-duallicensing.html daily 0.8 http://blog.ivanristic.com/2009/03/d-j-bernstein-i-salute-you.html daily 0.8 http://blog.ivanristic.com/2009/03/is-that-open-source-project-secure-enough.html daily 0.8 http://blog.ivanristic.com/2009/03/application-security-italian-style.html daily 0.8 http://blog.ivanristic.com/2009/02/apache-security-model.html daily 0.8 http://blog.ivanristic.com/2009/01/the-worst-idea-ever-let-s-break-ssl-for-mobile-users.html daily 0.8 http://blog.ivanristic.com/2009/01/on-technical-writers-and-their-wives.html daily 0.8 http://blog.ivanristic.com/2008/12/will-the-real-john-viega-please-stand-up.html daily 0.8 http://blog.ivanristic.com/2008/12/howto-create-a-rogue-ca-certificate-for-2000.html daily 0.8 http://blog.ivanristic.com/2008/12/leaving-modsecurity.html daily 0.8 http://blog.ivanristic.com/2008/10/modsecurity-at-apachecon-us-2008.html daily 0.8 http://blog.ivanristic.com/2008/09/the-world-is-full-of-penetration-testers.html daily 0.8 http://blog.ivanristic.com/2008/09/stop-picking-on-google-chrome.html daily 0.8 http://blog.ivanristic.com/2008/08/how-to-explain-open-source-to-a-non-technical-crowd.html daily 0.8 http://blog.ivanristic.com/2008/07/defect-free-code-is-vulnerability-free-code.html daily 0.8 http://blog.ivanristic.com/2008/07/changes-to-computer-misuse-act-will-turn-security-professionals-into-criminals.html daily 0.8 http://blog.ivanristic.com/2008/07/self-signed-certificates-in-production-point-to-a-failure-of-ssl.html daily 0.8 http://blog.ivanristic.com/2008/07/edward-tufte-is-dull.html daily 0.8 http://blog.ivanristic.com/2008/07/firefox-versus-ssl-is-really-about-security-versus-usability.html daily 0.8 http://blog.ivanristic.com/2008/07/computerweekly-it-security-blog-award-nomination.html daily 0.8 http://blog.ivanristic.com/2008/06/verizons-data-breach-investigations-report-is-a-pot-of-gold.html daily 0.8 http://blog.ivanristic.com/2008/06/eliminating-session-hijacking-forever.html daily 0.8 http://blog.ivanristic.com/2008/05/bitfrost-olpc-solved-the-desktop-security-problem.html daily 0.8 http://blog.ivanristic.com/2008/05/open-source-lesson-springsource-falling-from-grace.html daily 0.8 http://blog.ivanristic.com/2008/04/firefox-3-improves-handling-of-invalid-ssl-certificates.html daily 0.8 http://blog.ivanristic.com/2008/04/open-source-must-be-free-of-commercial-interests.html daily 0.8 http://blog.ivanristic.com/2008/04/microsoft-vs-yahoo-analysis-on-marc-andreessens-blog.html daily 0.8 http://blog.ivanristic.com/2008/04/pci-council-clarifies-requirement-6-6-ends-ambiguities.html daily 0.8 http://blog.ivanristic.com/2008/04/no-such-thing-as-open-source-business-model.html daily 0.8 http://blog.ivanristic.com/2008/04/changes-to-british-law-target-criminals-but-affect-the-entire-security-industry.html daily 0.8 http://blog.ivanristic.com/2008/03/criminals-are-taking-over-the-internet.html daily 0.8 http://blog.ivanristic.com/2008/03/open-source-wants-to-ruin-my-life.html daily 0.8 http://blog.ivanristic.com/2008/03/threat-modelling-real-life-asset-devaluation-example.html daily 0.8 http://blog.ivanristic.com/2008/03/open-source-continuity-solid-is-dead-will-soliddb-survive.html daily 0.8 http://blog.ivanristic.com/2008/02/extended-validation-ssl-certificates-not-going-anywhere-as-predicted.html daily 0.8 http://blog.ivanristic.com/2008/02/barracuda-networks-is-defending-itself-the-rest-is-spin.html daily 0.8 http://blog.ivanristic.com/2008/02/is-pci-6-6-good-for-web-application-firewalls.html daily 0.8 http://blog.ivanristic.com/2008/01/do-not-confuse-companies-with-open-source-products-for-open-source.html daily 0.8 http://blog.ivanristic.com/2008/01/tide-is-turning-for-web-application-firewalls.html daily 0.8 http://blog.ivanristic.com/2008/01/another-year-another-blog.html daily 0.8 http://blog.ivanristic.com/2008/01/speaking-about-modsecurity-at-apachecon-europe-2008.html daily 0.8 http://blog.ivanristic.com/2007/06/apache-process-infection.html daily 0.8 http://blog.ivanristic.com/2007/06/extended-validation-certificates-a-change-for-the-better-but-not-enough.html daily 0.8 http://blog.ivanristic.com/2006/09/modsecurity-has-been-acquired.html daily 0.8 http://blog.ivanristic.com/2006/08/apache-reverse-proxy-memory-consumption-observations.html daily 0.8 http://blog.ivanristic.com/2006/07/forrester-research-q2-2006-web-application-firewall-evaluation.html daily 0.8 http://blog.ivanristic.com/2006/06/secure-browsing-mode-proposal.html daily 0.8 http://blog.ivanristic.com/2006/06/apache-security-in-japanese.html daily 0.8 http://blog.ivanristic.com/2006/06/apache-suexec-chroot-patch.html daily 0.8 http://blog.ivanristic.com/2006/06/jailing-apache-on-windows.html daily 0.8 http://blog.ivanristic.com/2006/03/apache-security-one-year-after.html daily 0.8 http://blog.ivanristic.com/2005/11/our-bundle-of-joy-has-arrived.html daily 0.8 http://blog.ivanristic.com/2005/11/software-documentation-with-docbook-quick-howto.html daily 0.8 http://blog.ivanristic.com/2005/09/apache-programming-book-on-the-way.html daily 0.8 http://blog.ivanristic.com/2005/09/apache-2-1-7-beta-released.html daily 0.8 http://blog.ivanristic.com/2005/06/the-php-chapter-from-apache-security-available-for-download.html daily 0.8 http://blog.ivanristic.com/2005/04/the-public-life-of-apache-security-begins.html daily 0.8 http://blog.ivanristic.com/2005/02/apache-security-cover-and-beta-chapter-available.html daily 0.8