Forgot your password?
typodupeerror

+ - Mozilla to Support Key Pinning in Firefox 32

Submitted by Trailrunner7
Trailrunner7 (1100399) writes "Mozilla is planning to add support for public-key pinning in its Firefox browser in an upcoming version. In version 32, which would be the next stable version of the browser, Firefox will have key pins for a long list of sites, including many of Mozilla’s own sites, all of the sites pinned in Google Chrome and several Twitter sites.

Public-key pinning has emerged as an important defense against a variety of attacks, especially man-in-the-middle attacks and the issuance of fraudulent certificates. In the last few years Google, Mozilla and other organizations have discovered several cases of attackers using fraudulent certificates for high-value sites, including Gmail. The function essentially ties a public key, or set of keys, issued by known-good certificate authorities to a given domain. So if a user’s browser encounters a site that’s presenting a certificate that isn’t included in the set of pinned public keys for that domain, it will then reject the connection. The idea is to prevent attackers from using fake certificates in order to intercept secure traffic between a user and the target site.

The first pinset will include all of the sites in the Chromium pinset used by Chrome, along with Mozilla sites and high-value sites such as Facebook. Later versions will add pins for Twitter, a long list of Google domains, Tor, Dropbox and other major sites."

+ - Twitch streamer SWATted while broadcasting live.->

Submitted by halfEvilTech
halfEvilTech (1171369) writes "Police in Littleton, Colorado are investigating a prank call on Thursday that led a SWAT team to raid an online video gamer's office. Heavily armed officers forced a well-known gamer to the ground in what is believed to be a case of "swatting" by an unknown rival gamer.

"I think we're getting swatted," Jordan Mathewson, who was playing Counter-Strike, said during his Twitch livestream. "What in the world?"

full video of the raid is also available at the source"

Link to Original Source

Comment: Re:Main Confusion Stems From Vocabulary? (Score 1) 117

by sjames (#47783407) Attached to: No, a Stolen iPod Didn't Brick Ben Eberle's Prosthetic Hand

Generally bricked means the device cannot be recovered using a normal end-user procedure. Needs JTAG to recover (especially if you must solder the connection in) ==bricked. Needs to be turned on while holding volume up key == not bricked (wedged hard). Needs reset button or power cycle to recover == wedged. No procedure can recover it == dead.

Space

Software Error Caused Soyuz/Galileo Failure 114

Posted by samzenpus
from the put-that-anywhere dept.
schwit1 writes An investigation into the recent failed Soyuz launch of the EU's Galileo satellites has found that the Russian Fregat upper stage fired correctly, but its software was programmed for the wrong orbit. From the article: "The failure of the European Union’s Galileo satellites to reach their intended orbital position was likely caused by software errors in the Fregat-MT rocket’s upper-stage, Russian newspaper Izvestia reported Thursday. 'The nonstandard operation of the integrated management system was likely caused by an error in the embedded software. As a result, the upper stage received an incorrect flight assignment, and, operating in full accordance with the embedded software, it has delivered the units to the wrong destination,' an unnamed source from Russian space Agency Roscosmos was quoted as saying by the newspaper."

<<<<< EVACUATION ROUTE <<<<<

Working...