It DOES make you more secure. Not every attacker is capable of planting MITM attack, and current CA infrastructure works just fine against passive eavesdropping. Some security is better then no security at all.
No, it isn't. This article implicitly assumes user trusts server with everything or not at all. Not a case with GMail: in most attack models I can perfectly assume Google will deliver me correct Javascript code over SSL, but never trust it with securing my email content. Account hijacks are quite usual and replacing code on GMail servers is completely another thing.
How come I should care about legality of given software in any given country? Do you really propose to put yourself under chinese or madagascarian software patent, copyright and hacking laws?
No they can't. HTTPS inspection works only if user installed "trusted" certificate on his computer. This can be done in corporate environment, but not for home users.
So why doctors are not fingerprinted? Financial programmer can just stole some money and doctor can actually KILL people. Same for medical equipment programmer, aircraft programmers, even your car brake control programmer: they are all in control of your LIFE, not just money. And somebody, think about children, check your school bus driver and school janitor!
May be you need some other security procedures here, like code reviews, testing, etc? Looks like this fingerprinting isn't good security trade-off.
Seriously, think about it: imagine you were living in a small apartment building and a sniper hides on top of it. You didn't ask for him to be there, you don't want him there, maybe you'd even turn him in if you weren't afraid of the guerillas, but suddenly 500 lbs. of explosive land on the roof. Are you suddenly going to be won over by the military?
You are suddenly going to never turn in another sniper: there is no more building and no more you. There is enough bombs in US for entire Iraq population, they are just not used... yet.
But you missing a point: this is not a counterinsurgency tool. Snipers can be on the battlefield too.
Slashdot Mirror
How it stood up for all companies listed? Give us links to that stories!
So using RC4 in TLS/SSL is cryptographically suspicious and legally troubled. What else do you need to disable it on your servers?
It DOES make you more secure. Not every attacker is capable of planting MITM attack, and current CA infrastructure works just fine against passive eavesdropping. Some security is better then no security at all.
Also, every time you write an article based on Snowden leaks, god kills a kitten.
Why the same logic do not apply for every router on the way?
Somebody MUST think about children!
False positives' possibility is still ignored. Let's just grab everyone and think about children.
I honestly believe being another DigiNotar event victim is a few orders of magnitude less likely then having some script kiddie hack my account.
Why would in-mail javascript run at all?
No, it isn't. This article implicitly assumes user trusts server with everything or not at all. Not a case with GMail: in most attack models I can perfectly assume Google will deliver me correct Javascript code over SSL, but never trust it with securing my email content. Account hijacks are quite usual and replacing code on GMail servers is completely another thing.
How come I should care about legality of given software in any given country? Do you really propose to put yourself under chinese or madagascarian software patent, copyright and hacking laws?
No they can't. HTTPS inspection works only if user installed "trusted" certificate on his computer. This can be done in corporate environment, but not for home users.
How exactly can they plan to go deeper: go down and then dig?
World coming to its end!
In year 2010 we have automatic certificate distribution facilities in enterprise systems.
There is no trace of commits to linux filesystems, but article about Microsoft claims NTFS was updated.
NTFS in Windows 7 does. Read the links.
So why doctors are not fingerprinted? Financial programmer can just stole some money and doctor can actually KILL people. Same for medical equipment programmer, aircraft programmers, even your car brake control programmer: they are all in control of your LIFE, not just money. And somebody, think about children, check your school bus driver and school janitor!
May be you need some other security procedures here, like code reviews, testing, etc? Looks like this fingerprinting isn't good security trade-off.
You are suddenly going to never turn in another sniper: there is no more building and no more you. There is enough bombs in US for entire Iraq population, they are just not used... yet.
But you missing a point: this is not a counterinsurgency tool. Snipers can be on the battlefield too.
Man could face 30-year prison term for murder. http://www.ky3.com/news/5123006.html
It's better to die then see naked people.
doctors don't call their patients "meatbags" at least, not publicly Only if you never read doctor's blogs.
There is no "false sense of security". It's just "every single bit counts".
Also, not to be a wiseass, but how do skydivers get out of a plane?
Easy: this planes do not have pressurized cabins.
A gravitation force between Moon and Sun already stronger than between Moon and Earth. Doesn't it mean that Moon orbits Sun?
Read single sector. Modify 1 byte. Write single sector.
It takes same time no matter how big is sector size: 512 bytes, 1K, 4K. It's limited by rotation speed, not data size: SATA is fast enough.