Slashdot stories can be listened to in audio form via an RSS feed, as read by our own robotic overlord.

 



Forgot your password?
typodupeerror

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).

×

Comment: Re: Is there any way to block the use of old ciphe (Score 1) 67

by chill (#49179469) Attached to: FREAK Attack Threatens SSL Clients

I was thinking server side, for the web server. But yes, you need to ensure every service you provide that uses TLS is properly configured.

I'm not sure how much this would impact something like SMTP-S or IMAPS, since the connection duration on those types of service is so short.

The big target is going to be web servers.

Comment: Re:Is there any way to block the use of old cipher (Score 3, Interesting) 67

by chill (#49175663) Attached to: FREAK Attack Threatens SSL Clients

Yes. http://www.openssl.org/docs/apps/ciphers.html

The question is does OpenSSL accept the weak ciphers as a downgrade bug even when EXPLICITLY DISALLOWD.

I haven't seen answered in any of the linked articles so am digging/testing.

After the last couple of bugs my organization set the explicit cipher/algorithm/has acceptable list. The export ciphers were excluded on purpose from our list.

SSL Labs https://www.ssllabs.com/ has a recommended list buried in their documentation somewhere.

Comment: Re:Typical government official, breaking the law (Score 1) 522

Nope. The devil is in the details as to the nature of the law being violated.

The difference between a civil offense and a criminal offense are usually defined by the nature of the offense and the punishment assessed. Civil offenses involve violations of administrative matters.

Read more: http://criminal-law.freeadvice...

Comment: Re:The Keystone Pipeline already exists (Score 4, Informative) 433

by chill (#49122571) Attached to: Obama Vetoes Keystone XL Pipeline Bill

Almost.

The Keystone-Cushing extension (Phase II), running away480-kilometre (300 mi) from Steele City to storage and distribution facilities (tank farm) at Cushing, Oklahoma, completed in February 2011.

The Gulf Coast Extension (Phase III), running 784-kilometre (487 mi) from Cushing to refineries at Port Arthur, Texas was completed in January 2014, and a lateral pipeline to refineries at Houston, Texas and a terminal will be completed in mid-2015.

It is only the Phase IV leg, running from between Hardisty, Alberta, and Steele City, Nebraska that wasn't approved. That part crosses the U.S.-Canadian border.

Obama signed off on the rest (symbolically, I believe, as I don't think it required Federal approval), back in 2011.

The number of UNIX installations has grown to 10, with more expected. -- The Unix Programmer's Manual, 2nd Edition, June 1972

Working...