Because SSL/TLS doesn't work that way. The IP address (or IP:Port address) must be unique per certificate.
SSL works at the transport level, so it is there before the client makes the HTTP/HTTPS request. At that level, there are no host headers, so no virtual hosting (in the sense you are using it).
I ditched my 350+ CD collection after ripping them all to FLAC last year. Half-Price Books (used brick-and-mortar bookstore) gave me ~$160 USD for all of them; some of those were singles.
Ah, yes. Your constitutional right to online anonymity.
The enumeration in the Constitution of certain rights shall not be construed to deny or disparage others retained by the people. Should the people wish to post anonymously on bulletin boards, their identity shall be protected, even in such cases where visibility of public boards transcends State or Union boundaries, or even if they're being a total dick.
The green graphs are the traffic over the previous three weeks, yet turn yellow for single-day traffic anomalies somewhere in the previous three weeks? The X axis is labeled with only one set of dates.
I guess we're supposed to look at these and go "yup, the problem is here, where this line appears to not be part of the same pattern as the others."
This scorecard thing is terrible. I can only be thankful for the many paragraphs which state exactly the same thing, only clearer.
Almost no one would have gear that could handle that
It's called "layered clothing" and I've done the same thing in Montana with no "specialized" gear other than a windbreaker (and many layers underneath).
Not recommending against the gear, but people did manage to survive before North Face and Columbia brand clothing.
I used WordPerfect 5.1 to open a shell prompt from our "locked down" PCs in high school. I used WordPerfect until working at a job that had Microsoft Office.
To this day, I yearn for a word processor that's fully-featured, yet not a copy of MS Office's shitfest of a UI.
How would this technique add any useful information to law enforcement's monitoring in countries with banned sites? Assuming I owned the HTTP stream (literally), I could discover pretty much whatever I want without resorting to this.
Look what happened in Tunisia. Since they literally owned the HTTP stream, they just injected code to harvest personal information. XSS protection is useless if the basic stream is compromised.
The technique involves using Javascript to load an image only available when logged in to one of these services, and checking the HTTP status code returned.
Doesn't seem to be a ton of potential for abuse, but I suppose it's somewhat privacy-related.
Indeed. How could anybody have missed all the caterers, ferrys, guards, and janitors who all contributed to the explosion? A skilled BP shill wouldn't have overlooked such things.
"this book aims to give the user the equivalent of a "Hello, world!" application in Android and succeeds in doing that but doesn't take the reader much further"
From the review, the book does the following: 1. Hello World 2. Create a Sudoku game 3. Play video and audio using Android MediaPlayer 4. Add music to previously mentioned Sudoku 5. PreferenceActivity API 6. WebKit wrapper for displaying HTML content 7. Android sensor types (GPS, accelerometer, and so on) 8. SQLite on Android 9. OpenGL ES 10. Multitouch on Android 11. Widgets and live wallpapers 12. Analysis of platform fragmentation 13. Android Marketplace
How is that not "much further" than a Hello World app? That sounds like most of the information an Android developer needs.
All the GP said was that Australians aren't so attached to their money as to resist changes to it. As in, the polymer bills mentioned in the post the GP was replying to?
Work on reading comprehension before you go off all half-cocked.
Can't Ice Cube claim prior art with his 1992 song, "Now I Gotta Wet'cha?" The opening lyric is "It's on like Donkey Kong."
I'm sure Cube would be willing to license his copyrighted lyrics to Nintendo, if they just asked.
every time they click a mailto: link, or click a link to a stream that would open in VLC, or any number of other things that are completely innocuous
Right. And there, you need to balance "security" with "convenience." Windows Vista had a similar problem of being nosy like this, and was vilified for it (along with a host of other problems outside the scope of this discussion).
So after you've mounted your access point and storage in the wall, how do you keep it powered? I think the idea here is that the USB sticks need no independent power of their own. Amazed at how many people are saying, "well, just build it wireless." THEN HOW IS IT A DEAD DROP?
Our attendance and grading were on computers, but the network was slightly better managed.
The big mistake they made though, is to leave reams of traction-feed report card paper in the detention room. After filling my backpack with about a 4-inch stack of report card paper, my Commodore 64 printer could duplicate the report cards perfectly. So the question then becomes, "what grades do you want?"
Back when I got handwritten report cards, this was a much more difficult thing to do.
Granted, this story is about attendance and not grades, but can the teachers really not be bothered to, I don't know, check for themselves?
Slashdot Mirror
I submitted this same story 4 hours before this submission, but mine was missing the breathless editorializing. Good to know for next time.
Because SSL/TLS doesn't work that way. The IP address (or IP:Port address) must be unique per certificate.
SSL works at the transport level, so it is there before the client makes the HTTP/HTTPS request. At that level, there are no host headers, so no virtual hosting (in the sense you are using it).
Mod parent and grandparent befriending wusses? I don't understand.
They're just a couple of classy ladies making insightful comments and befriending each others' beloveds.
Oblig: http://xkcd.com/161/
I have a pressed original that will last for a century, most likely
Let me know how that works out for you.
I ditched my 350+ CD collection after ripping them all to FLAC last year. Half-Price Books (used brick-and-mortar bookstore) gave me ~$160 USD for all of them; some of those were singles.
Ah, yes. Your constitutional right to online anonymity.
This story was also featured on NPR yesterday (no reg. required). I don't know if it goes into the same details as the NYT article, but here it is: http://www.npr.org/templates/story/story.php?storyId=5280031
The green graphs are the traffic over the previous three weeks, yet turn yellow for single-day traffic anomalies somewhere in the previous three weeks? The X axis is labeled with only one set of dates.
I guess we're supposed to look at these and go "yup, the problem is here, where this line appears to not be part of the same pattern as the others."
This scorecard thing is terrible. I can only be thankful for the many paragraphs which state exactly the same thing, only clearer.
Thanks for calling out attention to the fact that "close attention to details" is not a Slashdot comment requirement.
eliminated by the defense
Defense, not prosecution.
Almost no one would have gear that could handle that
It's called "layered clothing" and I've done the same thing in Montana with no "specialized" gear other than a windbreaker (and many layers underneath).
Not recommending against the gear, but people did manage to survive before North Face and Columbia brand clothing.
http://www.davis.ca/publication/Summary-of-Video-Game-Case-Law.pdf
Here's a summary. It seems to be missing a few high-profile cases, so certainly not a comprehensive list.
I used WordPerfect 5.1 to open a shell prompt from our "locked down" PCs in high school. I used WordPerfect until working at a job that had Microsoft Office.
To this day, I yearn for a word processor that's fully-featured, yet not a copy of MS Office's shitfest of a UI.
Too bad you had to be an ass about it, or I'd have modded you up for this.
How would this technique add any useful information to law enforcement's monitoring in countries with banned sites? Assuming I owned the HTTP stream (literally), I could discover pretty much whatever I want without resorting to this.
Look what happened in Tunisia. Since they literally owned the HTTP stream, they just injected code to harvest personal information. XSS protection is useless if the basic stream is compromised.
The technique involves using Javascript to load an image only available when logged in to one of these services, and checking the HTTP status code returned.
Doesn't seem to be a ton of potential for abuse, but I suppose it's somewhat privacy-related.
After around 100 years like this, neither of those things will continue to be a problem.
Indeed. How could anybody have missed all the caterers, ferrys, guards, and janitors who all contributed to the explosion? A skilled BP shill wouldn't have overlooked such things.
"this book aims to give the user the equivalent of a "Hello, world!" application in Android and succeeds in doing that but doesn't take the reader much further"
From the review, the book does the following:
1. Hello World
2. Create a Sudoku game
3. Play video and audio using Android MediaPlayer
4. Add music to previously mentioned Sudoku
5. PreferenceActivity API
6. WebKit wrapper for displaying HTML content
7. Android sensor types (GPS, accelerometer, and so on)
8. SQLite on Android
9. OpenGL ES
10. Multitouch on Android
11. Widgets and live wallpapers
12. Analysis of platform fragmentation
13. Android Marketplace
How is that not "much further" than a Hello World app? That sounds like most of the information an Android developer needs.
Ah, delicious irony...
All the GP said was that Australians aren't so attached to their money as to resist changes to it. As in, the polymer bills mentioned in the post the GP was replying to?
Work on reading comprehension before you go off all half-cocked.
It's called gelatin.
Can't Ice Cube claim prior art with his 1992 song, "Now I Gotta Wet'cha?" The opening lyric is "It's on like Donkey Kong." I'm sure Cube would be willing to license his copyrighted lyrics to Nintendo, if they just asked.
Is the word "whoosh" still used around here?
every time they click a mailto: link, or click a link to a stream that would open in VLC, or any number of other things that are completely innocuous
Right. And there, you need to balance "security" with "convenience." Windows Vista had a similar problem of being nosy like this, and was vilified for it (along with a host of other problems outside the scope of this discussion).
So after you've mounted your access point and storage in the wall, how do you keep it powered? I think the idea here is that the USB sticks need no independent power of their own. Amazed at how many people are saying, "well, just build it wireless." THEN HOW IS IT A DEAD DROP?
Our attendance and grading were on computers, but the network was slightly better managed. The big mistake they made though, is to leave reams of traction-feed report card paper in the detention room. After filling my backpack with about a 4-inch stack of report card paper, my Commodore 64 printer could duplicate the report cards perfectly. So the question then becomes, "what grades do you want?" Back when I got handwritten report cards, this was a much more difficult thing to do. Granted, this story is about attendance and not grades, but can the teachers really not be bothered to, I don't know, check for themselves?