If the CA is doing it right, they only had to reissue the signed certificates of endusers, but they might have had to replace intermediate certificates.
And this is why I reject any email linked to linkedin. It surely felt more then 3 times semi random people (with who I might have corresponded on some mailinglists) try to invite you.
I found a compromised website on my companies shared hosting platform (which runs a 2.6 kernel (Debian/oldstable)). But the files where "infected" by a ftp account via proftpd on a machine running a 3.2 kernel (Debian/stable), the login was right on the first try. My guess is malware on the site owners machines stealing ftp logins (which is old news).
You didn't know that because it is not true. SSL encrypts everything before anything is send. That is why (before SNI) it is impossible to have multiple certificates for multiple virtualhosts on 1 ip adress: the host that is being queried and has to match a certificate CN isn't known at the time of the SSL handshake.
"But this is a bus. There is an active connection to the central office."
Until the perp. is using a gsm jammer (or you get into an area without coverage). The bus terminal will store the transaction for later validation, but since the perp is using an anonymous or cloned card he has gotten an untracable free ride.
"The reality is that 99.9% of people are honest and will pay what they should regardless of whether the cards are insecure and could be 'hacked'."
People are less honest then you think, most will do stuff they know they shouldn't if they think they will not get caught, even when there is no financial need.
You need to take into consideration that there is no active connection to the central office, terminals and cards have to be able to work standalone if you want to stop abuse of anonymous cards and gsm jammers (in busses).
There have been already a couple of mifrate classic public transport implementations where they discovered the card was abusable! eg http://en.wikipedia.org/wiki/OV-chipkaart#Technology This was known in 2007.
But if (and only when) these rules change, storing might be usefull. But I doubt storing electric power is very useful. I'm partial to storing heat instead ( http://en.wikipedia.org/wiki/Geothermal_heat_pump )
"What I'm waiting for is swapping the prices of day and night electricity prices. In the summer "peak" demand has shifted to night time by now."
Until this happens, storing solar generated energy is just dumb. At the moment my panels help me in 2 ways: -it lowers my electricity demand for a year by about 50%. -it saves about 10% on the price per kWh since I send energy to the grid at peak rates (0.22 EUR/kWh) and almost exclusively use offpeak (0.20 EUR/kWh)
I have absolutely nothing to gain by storing electricity right now.
If you really have important data on it (import enough to keep the drive), you should have saved the interface card from the dump, also you should have kept a machine that could take the interface card.
My guess is I still have such hardware, if you make it worth my while I can retrieve the data for you.
"Unlike today's version madness, Windows 2000 came in only one edition: Professional It was never intended to be marketed for home use. That was XP's job."
There were more version: -professional -server -advanced server maybe more. It had something to do with memory and cpu/sockets. But there was only one non server version.
Slashdot Mirror
If the CA is doing it right, they only had to reissue the signed certificates of endusers, but they might have had to replace intermediate certificates.
I have nothing to hide, but nobody needs to know that.
Mailing lists are a source in my bad experience. I also hated the people in which names these messages arrived (before blacklisting linkedin).
And this is why I reject any email linked to linkedin. It surely felt more then 3 times semi random people (with who I might have corresponded on some mailinglists) try to invite you.
You patched your telnet to connect to port 80 by default? Our is the telnet command an alias?
Then I have good news for you: not all 2 factor auths need phonenumbers. Don't know what Apple uses/requires though.
Is there a setting in the bios to change this 4s to power off to immediatly?
I found a compromised website on my companies shared hosting platform (which runs a 2.6 kernel (Debian/oldstable)). But the files where "infected" by a ftp account via proftpd on a machine running a 3.2 kernel (Debian/stable), the login was right on the first try. My guess is malware on the site owners machines stealing ftp logins (which is old news).
And that technique is called: SNI
And even though the servers supported it for a "long" time, some clients didn't, most notably the mobile browsers.
OSX appears to have something called a keychain, store the password to crypt there and keep the store encrypted.
"Thanks, I didn't know that."
You didn't know that because it is not true. SSL encrypts everything before anything is send. That is why (before SNI) it is impossible to have multiple certificates for multiple virtualhosts on 1 ip adress: the host that is being queried and has to match a certificate CN isn't known at the time of the SSL handshake.
"But this is a bus. There is an active connection to the central office."
Until the perp. is using a gsm jammer (or you get into an area without coverage). The bus terminal will store the transaction for later validation, but since the perp is using an anonymous or cloned card he has gotten an untracable free ride.
"The reality is that 99.9% of people are honest and will pay what they should regardless of whether the cards are insecure and could be 'hacked'."
People are less honest then you think, most will do stuff they know they shouldn't if they think they will not get caught, even when there is no financial need.
This chipcards and the required tollgates were introduced with a promise to stop fare dodgers. Recent news of the dutch system appears to have the effect of going from 11% to 2%. http://www.ad.nl/ad/nl/1012/Nederland/article/detail/2943764/2011/10/03/Aantal-zwartrijders-RET-daalt-spectaculair-door-ov-chippoortjes.dhtml
The same might have been achived cheaper with more actual people in the public transport actually checking tickets..
Bluetooth? They just shouldn't have picked a known bad contactless smartcard. NFC is perfectly suitable for this (and can be tied to "modern" phones)
You need to take into consideration that there is no active connection to the central office, terminals and cards have to be able to work standalone if you want to stop abuse of anonymous cards and gsm jammers (in busses).
There have been already a couple of mifrate classic public transport implementations where they discovered the card was abusable! eg http://en.wikipedia.org/wiki/OV-chipkaart#Technology
This was known in 2007.
In NL the utilities aren't buying the excess power up until to 5MWh, it just gets deducted from your usage: http://nl.wikipedia.org/wiki/Salderen
If you are a nett producer (which is not possible for most homes due to a lack of viable sun facing surface area), you get might get less (eg Nuon pays you about 0.07 EUR/kWh http://www.nuon.nl/energie-besparen/zonnepanelen/terugleveren/ ).
But if (and only when) these rules change, storing might be usefull. But I doubt storing electric power is very useful. I'm partial to storing heat instead ( http://en.wikipedia.org/wiki/Geothermal_heat_pump )
"What I'm waiting for is swapping the prices of day and night electricity prices. In the summer "peak" demand has shifted to night time by now."
Until this happens, storing solar generated energy is just dumb. At the moment my panels help me in 2 ways:
-it lowers my electricity demand for a year by about 50%.
-it saves about 10% on the price per kWh since I send energy to the grid at peak rates (0.22 EUR/kWh) and almost exclusively use offpeak (0.20 EUR/kWh)
I have absolutely nothing to gain by storing electricity right now.
"I guess browsers need "pay attention to refresh" to become an opt-in option."
If you have noscript installed it is optional, can't remember if I disabled the noscript html element or that is the default
I'm looking for an intelligent thermostat that speaks an open protocol: Opentherm ( http://en.wikipedia.org/wiki/OpenTherm / http://www.opentherm.eu/ ). Nest is not an option. Back to the DIY projects....
Because a tomato flood IS messy: http://www.latomatinatours.com/
Those plastic sheets don't effectively protect your home.
How does searching work for this kind of tranport/storage?
If you really have important data on it (import enough to keep the drive), you should have saved the interface card from the dump, also you should have kept a machine that could take the interface card.
My guess is I still have such hardware, if you make it worth my while I can retrieve the data for you.
"Unlike today's version madness, Windows 2000 came in only one edition: Professional
It was never intended to be marketed for home use. That was XP's job."
There were more version:
-professional
-server
-advanced server
maybe more. It had something to do with memory and cpu/sockets. But there was only one non server version.
The day you have a phone that runs the latest version.