Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror

Comment couples with joint accounts? (Score 1) 114

everyone's getting excited about outing some LGBTQs, but i'm guessing there are many more couples sharing joint accounts with names like John Jane Doe. and then you have all the completely fake accounts that do nothing but spam. my guess is that if someone wants to use a fake name, the only way facebook is going to know about it and take some action is if some of their friends are jerks and turn them in.

Comment Re:Wny did they need the certificates? (Score 1) 95

Issuing for .test and .local are strictly prohibited by the CABForum EV requirements. They will soon be outlawed for DV under the basic requirements.

What seems to have happened is that instead of issuing all test certs for test.verisign.com as the procedure manual required, they had to modify the procedure when Symantec took over and they no longer had verisign.com.

So instead of doing what they should have done and using test.symantec.com or a test domain bought for the purpose, they typed the first name that entered their head.

Comment Re:Self Signed (Score 1) 95

Actually it doesn't. DANE certificates are not self-signed for a start, they are signed by the DNSSEC key for the zone.

The problem with DANE is that you swap the choice of multiple CAs for a monopoly run by ICANN, a shadowy corporation that charges a quarter million bucks for a TLD because that is what the market will bear. What do you think the price of DANE certification will rise to if it takes off?

ICANN is the Internet version of the NFL only with greater opportunities for peculation and enrichment.

Comment Re:Wny did they need the certificates? (Score 1) 95

Damn right they should. The CPS has a long section on the use of test hardware.

The problem is that all the original team that built VeriSign have been gone for years. A lot of us left before the sale of the PKI business to Symantec. The PKI/DNS merger was not a happy or successful partnership. The original point of the merger was to deploy DNSSEC. that effort was then sabotaged by folk in IETF and ICANN which has delayed the project by at least 10 and possibly 20 years. ATLAS was originally designed to support DNSSEC.

Unfortunately, in PKI terms what VeriSign was to IBM, Symantec is to Lenovo.

They apparently remember the ceremonies we designed but not the purpose. So they are going through the motions but not the substance.

One of the main criticisms I have heard is that we built the system too well. From 1995 up to 2010 it worked almost without any issues. So people decided that they didn't need things like proper revocation infrastructure. The only recent issue the 1995 design could not have coped with was DigiNotar which was a complete CA breach.

There are some developments on the horizon in the PKI world that will help add controls to mitigate some of the issues arising since. But those depend on cryptographic techniques that won't be practical for mass adoption till we get our next generation ECC crypto fully specified.

Comment Re:What is a pre-certificate? (Score 3, Informative) 95

A pre-certificate is created for use in the Certificate Transparency system. Introducing pre-certificates allows the CT log proof to be included in the certificate presented to an SSL/TLS server.

The CT system generates a proof that a pre-certificate has been enrolled in it. The proof is then added to the pre-certificate as an extension and the whole thing signed with the production key to make the actual certificate.

If the CT system logged the actual certificate, the proof of enrollment would only be available after the certificate had been created.

Comment Re:Wrong! (Score 1) 485

Flags have been around for ages, too.

Possibly not as long as you think. The UK, for example, has the second oldest flag in the world and it dates from the beginning of the 19th century (Denmark has the oldest).

Comment Re:20% slowdown isn't that bad... (Score 1) 128

Vista wasn't crippled by processor speed, anyway, it was crippled by being installed on low RAM systems. That and having lots of shit services running as default.

I'm still typing from my almost 10 year old Vista system on which I play Elite : Dangerous and a whole host of other new games. The graphics card is newer.

Comment Re:Me and some political prisoner in Iran (Score 1) 114

You acquire knowledge through reading; through either written words or equations on the page. Knowledge acquistion for humans is inherently and forever a process of abstract symbol processing- we process speech and scratches on a page and transform it into understanding. That's as natural as breathing. Plain text is the once and a future king of the internet.

Suer[sic] somethings are better demonstrated than explained verbally. No one is arguing with that.

It seems like you are.

Writing is a new invention in terms of the history of humanity. A hundred thousand year old caveman could (in theory) understand a youtube video in a language they knew, but they could not read anything. They could also get something from a youtube video even if they did not understand the language. You can't get anything from text if you don't understand it.

Comment Re:I agree (Score 1) 114

There's far more on Wikipedia alone now than there was on the the web in totality in the early days. If you don't like adverts, and just like information, you can just use wikipedia now.

Yes, I'm saying that Wikipedia (one site) now is better (much better) than the entire web used to be.

If you don't like the sites that you're seeing, close the window (or tab). No one is forcing you to go to sites that you do not like.

Comment Re:Ball tracking is not new (Score 1) 68

Cricket is actually a poor comparison as Hawkeye is used to predict where the ball would have gone

That's just one thing that hawkeye does in cricket. To be out leg before wicket in cricket, the ball cannot have pitched outside leg stump. Also to be out lbw when playing a shot, the ball must not have hit the batter outside off stump, which is also checked for. Both of these examples check where the ball has been, and decisions are often overturned on these things.

Also, if the umpire's decision is not out, and the ball is just clipping the stumps (or very close in another area), the umpire's decision is upheld - hawkeye does not overrule the umpire when the decision is close.

Slashdot Top Deals

"Old age and treachery will beat youth and skill every time." -- a coffee cup

Working...