The browser is going "Show me that this cert is valid for paypal.com" and the CA is going "Here it is, for paypay.com" , at least as far as the browser is concerned.
This is no more a flaw then if the CA just started letting anyone buy certs for paypal.com.
Having multiple CAs (and cheap CAs) is a good thing, but we're only ever secure with ssl as the least secure CA.
As far as I understand, it's more like:
* Browser gets cert for Paypal.com\0.badguy.com from the server
* Browser reads domain from cert, but does so invalidly, and only gets Paypal.com
Now I'm looking at keeping my Sanza Fuze and Nokia E51. Apple can get fucked.
Your Fuze gets feature-rich updates often?
Point being — I find it somewhat strange that when Apple charges for an update, it's somehow worse than the competitors who don't offer any of the features, free or otherwise.
But when are they going to patch these security flaws on my 2.1 ipod? Paying for an update is ridiculous, especially when it fixes critical security flaws. I sure hope apple does the right thing.
Sure, paying for a security update alone is a bit strange, but really — it's only $10 and gives you so much more. Besides, it's not like your iPod has been taken over by viruses due to the bugs.
The question is: why is Apple so quiet about rolling this update out and what it fixes, and since when does a minor Safari update require a reboot?!!
I'm not sure (lousy memory etc), but I believe (some) previous Safari updates have required a reboot too. It might have something to do with the Webkit engine being used by apps other than Safari
M-voting and E-voting aren't that different after all.
In case of E-voting, user identification is done using a smart card (to digitally sign your vote. And no, the procedures make sure no one can see how you voted.) With the so-called "m-voting", the crypto chip is simply in the mobile's SIM card, to eliminate the need for a smart card reader.
Here's a small (and somewhat disturbing) animation about how mobile-id works: http://www.id.ee/public/Mobiil_ID_multikas/ (in Estonian, but the visuals might still make sense)
I think it's annoying that Google removes symbols...
I totally agree, but also believe this is a case where the technical difficulty of fixing it actually is significant - in addition to creating indexes of single words (and numbers) they'd also have to index all punctuation etc (in addition to word order, which they already do)
I'd say the response is exactly the same as with "(", meaning the special sequence is not special after all and that google simply ignores all-symbol searches. Or something.
Slashdot Mirror
You can use the pass code erase feature on the iphone. Type ten wrong codes fast and all is gone.
The iPhone makes you wait for a long time after some incorrect attempts, so it's impossible to quickly wipe it like that.
amen.
if the Internet was opt-in everything, we'd still be in the stone ages.
This isn't really a browser issue.
The browser is going "Show me that this cert is valid for paypal.com" and the CA is going "Here it is, for paypay.com" , at least as far as the browser is concerned.
This is no more a flaw then if the CA just started letting anyone buy certs for paypal.com.
Having multiple CAs (and cheap CAs) is a good thing, but we're only ever secure with ssl as the least secure CA.
As far as I understand, it's more like:
* Browser gets cert for Paypal.com\0.badguy.com from the server
* Browser reads domain from cert, but does so invalidly, and only gets Paypal.com
* etc
Now I'm looking at keeping my Sanza Fuze and Nokia E51. Apple can get fucked.
Your Fuze gets feature-rich updates often?
Point being — I find it somewhat strange that when Apple charges for an update, it's somehow worse than the competitors who don't offer any of the features, free or otherwise.
The upgrade to 3.0 is free.
not for iPod touches.
But when are they going to patch these security flaws on my 2.1 ipod? Paying for an update is ridiculous, especially when it fixes critical security flaws. I sure hope apple does the right thing.
Sure, paying for a security update alone is a bit strange, but really — it's only $10 and gives you so much more. Besides, it's not like your iPod has been taken over by viruses due to the bugs.
What I meant is that for 99% of the people a *new* file system doesn't create any new value.
e.g. - Time Machine is already an existing feature, improving the back-end by using ZFS is an unimportant change.
Snow Leopard is about performance and optimization. A new file system would fall under new features.
There are other new features as well. Also, a new file system would be an update to the existing one, no?
(That doesn't mean ZFS will be there)
I'm not sure (lousy memory etc), but I believe (some) previous Safari updates have required a reboot too. It might have something to do with the Webkit engine being used by apps other than Safari
...You can do the same on Youtube
my fail-joke was more inspired by the 3 decimal places. simply bored (and European myself).
Hey man, here in Italy the iPod (16GB) is priced at 569 â which means 907,412 US Dollars today.
nine hundred thousand dollars. Sucks to be European
M-voting and E-voting aren't that different after all.
In case of E-voting, user identification is done using a smart card (to digitally sign your vote. And no, the procedures make sure no one can see how you voted.) With the so-called "m-voting", the crypto chip is simply in the mobile's SIM card, to eliminate the need for a smart card reader.
Here's a small (and somewhat disturbing) animation about how mobile-id works: http://www.id.ee/public/Mobiil_ID_multikas/ (in Estonian, but the visuals might still make sense)
Excuse me, but how does this qualify as a Troll?
Communism's other name is "command economics" truly is very wrong.
(one good old reply-to-self) Note: Some people actually DO know how to politely (quietly) talk on a phone while in public places/transport.
Your selection of examples is disturbing.
I totally agree, but also believe this is a case where the technical difficulty of fixing it actually is significant - in addition to creating indexes of single words (and numbers) they'd also have to index all punctuation etc (in addition to word order, which they already do)
I'd say the response is exactly the same as with "(", meaning the special sequence is not special after all and that google simply ignores all-symbol searches. Or something.
I believe "profit" (in the legal meaning) only implies physical, measurable, commercial advantage.
From the spell checker:
That's so very AJAX.
Umm... what interview?
I believe most ad blockers don't load the ads at all and use url-based filtering (http://*.crappyadnetwork.com/*).