Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).

×

Comment: routers, package management, vpn (Score 1) 144

Generally you're right to point to router security, but I don't think it's relevant here. Router software package installation -- where you might think you want tls to fetch the package safely -- should be using package signatures rather than relying on tls.

Article writer Dan Goodin missed this point in his first draft. He thought he had a story, and failed at the fact-checking stage.

Would you rely on X.509 for a vpn? The implementation is irrelevant.

ATMs, no. Web banking really does have a problem, and it's much bigger than bugs in tls.

I think David Jao and others are right, and this is not news.

If you steal from one author it's plagiarism; if you steal from many it's research. -- Wilson Mizner

Working...