Forgot your password?
typodupeerror

Comment: Re:Getting rid of cookies is okay (Score -1) 499

by Erik Hensema (#44553085) Attached to: IAB Urges People To Stop "Mozilla From Hijacking the Internet"

Speak for your self.

I like free websites. Websites like slashdot. If the ads on slashdot would lose effectiveness because advertisers can't target any more, slashdot will lose revenue. So maybe then they'll try to find an alternative revenue stream. Advertorials. Paywalls. Whatever.

It costs real money to operate a serious website. If you make advertisements ineffective by rejecting third party cookies, then the website owner will try to find another revenue stream. Maybe sell all account data to the highest bidder?

Believe me. Ads are annoying, but the alternatives are evil.

Comment: Re:still debian. (Score 2) 627

by Erik Hensema (#44520385) Attached to: Your preferred Linux distribution for 2013?
Erhm. Package management in Debian is far from superior. You're confusing good packages (which Debian has) with good package management (which apt isn't). Nowadays the yum and zypper package managers are *far* superior to anything debian has to offer. Arguably, if Debian switched to either of them, Debian would become a better distribution.

Comment: Re:A Green Light to all Hackers (Score 2, Informative) 114

by Erik Hensema (#43618289) Attached to: Dutch Bill Seeks To Give Law Enforcement Hacking Powers

No, this is completely normal. For example, governments have a monopoly on violence (see wikipedia). Citizens don't have the freedom to shoot each other, for example. A police officer does have the right to shoot under certain circumstances.

This isn't something from the past few years. Governments have reserved certain rights to itself for many centuries, in order to maintain civil order and sovereignty.

So, it's also completely normal that the government reserves the right to hack into computers under certain circumstances. For example, permission from a judge is needed. You can compare this to a search warrent for a private home, also the exclusive right for the government.

Comment: Re:why is this release announcement buried? (Score 1) 124

by Erik Hensema (#41690255) Attached to: NetBSD 6.0 Has Shipped

Facebook, Microsoft, Amazon, Apple and Oracle all have a whole lot more users than NetBSD. To most people, NetBSD brings absolutely nothing that Linux doesn't bring. NetBSD may run in some routers, but Linux probably runs in a *lot* more routers. Even FreeBSD may run in more routers than NetBSD (JunOS is FreeBSD based..).

So, to most of us, NetBSD is "meh, don't care". Sorry.

Comment: Apple (Score 1) 460

by Erik Hensema (#41593931) Attached to: Linus Torvalds Will Answer Your Questions
Apple is heading fast into the direction Microsoft went in the nineties. Even today news came out that Apple spends more on patents than on R&D. Now my question: what are your feelings towards Linux developers and users buying Apple hardware in order to run Linux on it? Do you feel they are in a way approving the way Apple operates nowadays?

Comment: Re:Linkgin'2WP = infringement (Score 2) 203

by Erik Hensema (#41332787) Attached to: Dutch Court Rules Hyperlinks Can Constitute Infringement

No it isn't. Wikipedia was known by the general public before you linked them from your comment. Furthermore, the content on wikipedia isn't infringing.

I've got copies of music available on my private server at home. That server can be reached from the internet. If you'd somehow found out the url of the copied songs, then you'd be publishing (i.e. making them known to the general public) them, which would be infringing. And my personal copies are legal since I'm allowed to make a private copy of music I own.

Comment: Re:Security by obcurity? (Score 4, Interesting) 203

by Erik Hensema (#41332767) Attached to: Dutch Court Rules Hyperlinks Can Constitute Infringement

Copyright law protects Security By Obscurity. So the judge was correct in this case.

In order in infringe on copyright law, you'll have to make a copied work public. So, as long as you don't publish a copied work (i.e. keeping it obscure), it's not an infringement. This, for instance, allows you to make a private copy of a copyrighted work without infringing on copyright law.

In this case, a private copy was made. Nobody knew where to find the copy, except for the person who placed the copy online. So, while the copy was on the internet, it wasn't public. Geenstijl made the copy public by making the URL known to the general public. Therefore Geenstijl infringed on dutch copyright law.

Comment: Re:Seasons are tied to the equinoxes and solstices (Score 1) 454

by Erik Hensema (#37308214) Attached to: I say (N. Hemisphere) Fall starts ...

Most of modern science started in western europe. Weather in western europe is dependent mostly on the temperature of the atlantic ocean. At the summer solstice, warmup of the ocean is at its quickest, but the temperature is still rising. It will continue to rise up until august or so. Therefore august is the hottest month in western europe and therefore seasons are defined as they are.

Somehow those late medieval scientists didn't care much about other regions of the world. Sue them.

Comment: Re:So they don't know... (Score 1) 177

by Erik Hensema (#37262442) Attached to: Diginotar Responds To Rogue Certificate Problem

Any competent CA uses an HSM. I can even imagine using an HSM is a requirement for inclusion into the default CA bundle in webbrowsers.

An HSM is a Hardware Signing Module. It's a piece of hardware (supported by OpenSSL, by the way) which holds the secret keys. Secret keys cannot possibly be copied out of the HSM, except for backup purposes. But the backups are encrypted within the HSM itself, so the backed up keys can't be used for signing.

Diginotar, as most CA's I know of, uses multiple secret keys. One key is used for automated signing, typically used with Domain Validated certificates (blue address bar in your browser). For this key, a passphrase is kept somewhere available for the automated process, which of course is unsafe. Another key is used for higher security certificates. This is why not all certificates issued by diginotar are untrusted now. The certificates used by the Dutch governement for example, are signed with another key than the compromised key used for *.google.com.

So, nobody got hold of the private key -- it's safely in the HSM. Not all of Diginotar is untrusted, just the key used for signing *.google.com. Removing Diginotar entirely from browsers is a bit of an overreaction. It also causes distrust of certificates not signed by the key used for *.google.com. This includes the central Dutch identity service, DigiD. DigiD is used for authenticated the inhabitants of the Netherlands to websites operated by the governement, so removing the entirety of Diginotar from browsers has a very large and unintended side effect.

Comment: I disagree (Score 1) 173

by Erik Hensema (#36349964) Attached to: IPv6-only Hosting Won't Make Sense For Years

At some point, connection quality on IPv4 will be worse than connection quality on IPv6 for a significant amount of people. Their CGNAT may be overloaded. They may run applications which don't work correctly behind CGNAT.

When this point is reached, dual stacked hosting will be an advantage over IPv4-only hosting. Search engines may start to weigh in IPv6-reachablilty of sites. When this happens, you'll want to be with a hoster which supports IPv6 already.

Comment: Re:Dual Stacks..... forever... (Score 1) 321

by Erik Hensema (#35828782) Attached to: Asia Runs Out of IPv4 Addresses

I don't think the first push to IPv6 will be on the web. I think I'll be on peer to peer protocols and gaming. People soon will start to notice that carrier grade nat will work mostly fine to connect to webservers. However, they'll also notice their VoIP will suck. The connection to the game server will lag on IPv4 via NAT.

To webservers, they'll notice they can't post to any popular bulletin boards. The external CGNAT IP is likely to be banned from posting due to some other customer on the same CGNAT posting abusive messages. They may not be able to submit their mail to their favorite SMTP server because of a DNSBL.

So, they'll want IPv6 to avoid the GCNAT. IPv6 to them will be the superior solution to connect to specific services on the internet. So, I think this will start the snowball effect. When more and more users are demanding IPv6 servers due to the limited CGNAT they're behind, more and more server operators will think the transition to IPv6 will be worthwhile.

So yes, we'll be on dual stack for a while. But the IPv6 internet will soon be superior due to CGNAT being cumbersome to the end user.

I came, I saw, I deleted all your files.

Working...