That is a good point, perhaps this is a way of them being able to "launder" stories obtained by indefensable means.

I think the Sun is more interested in who has been leaking body fluids on who, than any matters of global import. Its like the national inquirer setting up a securedrop site.

But if it allows us to stop digging it out of the ground and burning that, then its a win win.

I think they are saying that the fuel does not contain any nitrogen, if its made from water and co2 then how can it?. It may well produce nitrogen containing byproducts when combusted in air, but it is itself nitrogen free.

Would he have had the means without thier support, there are loads of nutters roaming around raging at the world, most of it is just impotent rage. However if you stand them up, pander to thier psychosis, give them a box with bomb written on the side and point them at a bunch of picket fence citizens, dont be suprised if they dont go for it.

Lol, waiting for the outrage in 3..... 2...... 1......

http://flightaware.com/adsb/pi...

Build your own for under $100, raspberry pi, dtv reciever, internet connection.

They are however required to keep the realtime databases that the websites mentioned in the article use. The reciever is basicaly a usb DVB-T terrestial digital tv receiver working as a software defined radio and a bunch of code to pickup the ADS transmissions. The results are streamed to the tracking sites databases.

They dont need to, the packages are signed, they are not trying to keep the contents of the packages secret, or hide thier contents during transfer, they are only trying to ensure that they are distributed unmodified. To perform a MITM attack on the packages pulled down from a repo, you would need the private signing keys To creat new packages.

Looking through most of the .repo files in /etc/yum.repos.d on my fedora install, all the dl links are already https.

I suspect that ubuntu is the same.

Its probaly full of holes, i dont think i have seen a decent, analysis of the package managers from a security standpoint, but they seem to have most of the basics.

I dont know if the private keys are distributed to the packagers, if they are then that could be an issue.

I suspect its for anywhere you want to provide TLS protected connections, SSL on webservers is just the biggest use case, so its going to get the attention initialy, but i dont see any reason why agents cant be built to handle the maintenance and signup protocol on other transports than http. SSL and HTTP are not co dependant.

Its also going to be a big help in the migration to HTTP 2.0, which mandates SSL. I have a bunch of domains that i would like to move to HTTP 2.0 once it settles down, but im not up to paying $30-40 a pop for a cert.

Im hoping that they will roll HTTP 2.0 migration into thier easy setup software.

Back under your bridge troll........

Its ok for us linux nerds

Seriously, this is all about low barriers of access to SSL certs for webservers, the vast majority of which are either linux or other ix based. Client systems general dont need these certs, so they are not relevant. They just need a suitable root CA Cert.

I think its more a case of FOSS office is great at being everything but being Microsoft Office, it does not have the "looks like MS Office, works exactly like MS Office" comfort.

Spot on, all this pursuit of youth is futile, i dont ever want to be that stupid again.

We also routinely humanely kill millions of cattle every year, why not just use the same method, a large metal cylinder driven by compressed air into the side of the head. Its about as instantanious as you can get. Alternativly the guilliotine was also considered to be pretty damm fast.