That's not the only way to get a compromised certificate.
Remember that any CA can create a certificate for any domain. So It might be that some attacker got hold of an intermediate CA certificate and issued a certificate for the bank's domain. Now, the CA detects the breach and revokes the intermediate certificate, but since Chrome fails to check them, it still gets accepted.
You have a full MITM scenario without any fault from the bank or the bank's CA.
People can find more vulnerabilities when they have access to the source. News at 11.
And treating the fact that the CAs were running Linux as evidence that Linux was the problem is ridiculous. Most vulnerabilities are on flaws of the userspace code. In fact, your second link shows it very well - Javascript injections are hardly an OS exploit. Good FUD there.
I do wonder why you host your email on a Linux based provider, though.
NPAPI is just an API, not a sandbox. plugin-container just prevents flash from taking the browser with it when it crashes randomly, it doesn't protect anything from malicious code.
Or are you suggesting that the proposal is for a service where a website can issue notifications to a server that ends up NOT delivering them to the intended end user?
Of course it delivers them. Doesn't mean it has to deliver them using push over an open connection. In fact, from what I could tell, they considered pushing them to Twitter and email, for example, which aren't necessarily push.
So, can you tell me where they specify that the delivery to the client has to be done using push over an open connection?
Can you please point out that part in the proposal? As far as I can see, the proposal only specifies the website to Notification Service part, not the part where those notifications are delivered to the user.
Slashdot Mirror
Pfft. Just use RPN:
[your borrowed books] [total borrowed books] / [monthly fund] *
Nobody will make the connection because everyone's already sick of hearing you Apple trolls repeating it ad nauseam in every single Android story.
I don't know, but apparently you're logically handicapped. The fact that "n00bs" use consoles doesn't mean that only them use consoles.
https://sonofatweet.appspot.com/cant-tell-if-troll.png
Yes, but I don't think infants have the same number of neurons - the number referenced in TFA is for an adult brain, I think.
So it starts with 1.1 kg and then it drops to 1.75 kg?
Neither. The average for an adult is ~1400 grams, which according to Google is ~3 pounds.
CAs get up to hundreds of dollars per certificate. Whatever they need to keep a damn static file with 100% uptime has been more than paid.
Twitter as an example of reliability? Are you joking? You do know where the expression "fail whale" came from, right?
That's not the only way to get a compromised certificate.
Remember that any CA can create a certificate for any domain. So It might be that some attacker got hold of an intermediate CA certificate and issued a certificate for the bank's domain. Now, the CA detects the breach and revokes the intermediate certificate, but since Chrome fails to check them, it still gets accepted.
You have a full MITM scenario without any fault from the bank or the bank's CA.
if you did someone a tape it took at least as long as the movie or album to do it.
The "High Speed Dubbing" in my tape recorder disagrees.
People can find more vulnerabilities when they have access to the source. News at 11.
And treating the fact that the CAs were running Linux as evidence that Linux was the problem is ridiculous. Most vulnerabilities are on flaws of the userspace code. In fact, your second link shows it very well - Javascript injections are hardly an OS exploit. Good FUD there.
I do wonder why you host your email on a Linux based provider, though.
But NoScript already blocks Flash (and all other plugins), why install both?
NPAPI is just an API, not a sandbox. plugin-container just prevents flash from taking the browser with it when it crashes randomly, it doesn't protect anything from malicious code.
Yeap. Using sudo it's very easy to set that up.
A sandbox can permit saving files to a single specific directory while still denying access to any other directory.
NoScript blocks Flash, there's no point in having the two installed.
I'm not saying they should do that, I'm saying they can.
Cyprus is governed by a communist party since 2008. I haven't heard of the elimination of democracy and imposition of dictatorship, have you?
Or are you suggesting that the proposal is for a service where a website can issue notifications to a server that ends up NOT delivering them to the intended end user?
Of course it delivers them. Doesn't mean it has to deliver them using push over an open connection. In fact, from what I could tell, they considered pushing them to Twitter and email, for example, which aren't necessarily push.
So, can you tell me where they specify that the delivery to the client has to be done using push over an open connection?
Actually, it's very easy if a government wants to; they just need to tax it heavily.
Some white guys here killed people, therefore all white guys are murderers, right?
Not all communists are despotic, nor are all Muslims extremists. Stereotyping is a great way of giving those extremists more power.
Can you please point out that part in the proposal? As far as I can see, the proposal only specifies the website to Notification Service part, not the part where those notifications are delivered to the user.
Agnostic and atheist are not incompatible. See http://freethinker.co.uk/2009/09/25/8419/
No. Some atheists believe there is no god, but other atheists (called agnostic atheists) simply don't believe in god(s).
The only thing common to all atheists is the lack of belief in god(s).