The exploit attacks the SSL protocol, and in the paper they explain the attack on IMAP over SSL.
People often use IMAP over SSL to avoid giving their email password to the whole Internet. Unfortunately, IMAP uses short, repeated messages, which makes it an ideal target for certain cypto attacks.
Postgres also seems to have an (unfair, IMHO), reputation for being hard to set up.
Agreed. Whoever thinks that PostgreSQL is hard to set up has never set up Oracle!
In the recent past, I have set up PostgreSQL on Linux, Mac OS X, and Win32/Cygwin. Setting it up on Linux and Mac OS X is an incredible breeze, it doesn't matter if you are installing from source or a package. It is only difficult to set up on Win32, and only because the user accounts and permissions are (sort of) separately managed across Win32 and Cygwin.
And thank goodness PostgreSQL doesn't have that ridiculous TNS layer. If TCP/IP and DNS were good enough for Grandpa, they are good enough for me!
Slashdot Mirror
c'mon, fucking review the shit already, dumbass!
People often use IMAP over SSL to avoid giving their email password to the whole Internet. Unfortunately, IMAP uses short, repeated messages, which makes it an ideal target for certain cypto attacks.
Agreed. Whoever thinks that PostgreSQL is hard to set up has never set up Oracle!
In the recent past, I have set up PostgreSQL on Linux, Mac OS X, and Win32/Cygwin. Setting it up on Linux and Mac OS X is an incredible breeze, it doesn't matter if you are installing from source or a package. It is only difficult to set up on Win32, and only because the user accounts and permissions are (sort of) separately managed across Win32 and Cygwin.
And thank goodness PostgreSQL doesn't have that ridiculous TNS layer. If TCP/IP and DNS were good enough for Grandpa, they are good enough for me!