Free ones (at least StartSSL) are recognized by most browsers that I have tried. That's an anecdotal, non-exhaustive list, of course. I'd be curious to find out what mainstream browsers do not recognise them though.
With StartSSL the actual cert generation is easier than that as they create the key on their server first and they ask for the forms on the site. No CSR is needed, though you can do it that way if you wish.
What is a tiny bit annoying is their authentication - you need a client authentication cert installed on your browser. Not hard in itself, but annoying if you have let the old one expire as they then need to review your request for a new one.
One other thing is verification that you own the domain, through various methods. Not hard to do, but automated and very necessary.
No
What? I think this thread is going off track somewhat. I don't think Dave420 was talking about Client Auth certs. He was talking about root certs installed on the clients. Without the standard set of root and intermediate certs installed on the client (Installed by default on web browsers and some other clients such as Java virtual machines etc), TLS will not work (Well it will, but there will be warnings).
What Dave420 meant was that for the appliances and software solutions that cache/inspect the TLS traffic can only do so if a new root cert is installed on the client. This root cert enables the MITM device to create its own cert for any website without the client throwing up a warning.
Nothing to do with client auth.
Except modern browsers and servers support SNI, so the hostname is now sent as plaintext on the network.
Even for lower use images, caching them closer to the poster could be helpful given that their circle of friends is likely, statistically, to be in the same region. One image alone would not make much difference in this case, but millions of low use images mostly coming from caches closer to most of the people viewing them would make a huge difference.
The Corolla has CVT now too. It's getting pretty common out there in some mass-market cars.
Also, on his other comment about Wankel engines, I believe that Mazda are re-introducing one. Just rumours now, but it's not necessarily dead yet.
Very relevant, lol...
Who will build and maintain the infrastructure needed to accommodate said leisure society?
He's probably thinking of when it switched to MTP. There were a few glitches when that happened, some linux boxes could not mount it without fiddling, but it's pretty universally supported now. Except on OSX, I think?
"All lifeforms use DNA and protein synthesis using almost identical mechanisms. It is extremely unlikely that these mechanisms evolved in parallel, so *it's extremely likely that* they have shared a common ancestor."
FTFY
Well we can start with the memory limit. I'd only be able to use 1/4 of the RAM in my laptop if I had the 32 bit edition of Win7.
The profile is sourced after the bash shell has already initialised. If my understanding is correct, the exploits are triggered because bash parses the environment during initialisation.
Not sure if this is 100% correct, or if there is a difference in before vs after parsing, but if I am correct, this would not affect user profiles.
Anyone care to expand?
But they are not all in place, there was no mention in the apple security announcement of CVE-2014-6277 or CVE-2014-6278 being fixed...
Cut it off first and put it in there. Bonus points if you can still pull a different face on every rotation of the turntable!
The biggest difference between time and space is that you can't reuse time. -- Merrick Furst
