Note: if they cheat again, trust in existing ones will be pulled without warning.

That's one option. Are there others left?

I was only aware of WoSign (which I happened to start using, before LetsEncrypt was released) and StartCom as alternatives for free trusted SSL certs.

You may want to skip S6, it was quite a misstep by Samsung (no waterproofing, no SD card, no removable battery compared to S5). They have gone back on some of that in the next generation.

AdBlock Plus.
HTTPS Everywhere.
Desktop Notifications for StackExchange.
Chrome extension source viewer (allows examining extensions and apps without installing them).
Kicktraq (shows funding graphs embedded in the header of Kickstarter page)
RSS Subscription Extension + The Old Reader Notifier (disclosure: I maintain that one)
A few self-written extensions for Fallen London browser game.

You will find that each instance is edited by BeauHD. It's his "shtick". But I agree it's more often than not irrelevant and annoying.

At home: a competent gaming + VR (Vive, DK2) machine running Win10. At work: top-spec Dell Optiplex running Ubuntu (not that I need top spec for all the LaTeXing I do).
I prefer Sublime Text and Chrome. Vim when GUI is unavailable.

And that's why, as a Russian, I need keys to exist. After the ruble crash happened, Valve decided to region-lock activation of gifts from Russian accounts. And I have many friends outside the geofence.

As a result, I have to use sources outside Steam to gift games to those friends (Humble, GMG, direct sales).

This also adds a single point of failure to all ISP offerings.

You pay a monthly fee for technically not pirating music (while the artists only get fractions of a cent), as long as you're paying and the country you're in is blessed by licensing agreements.

If you don't pay, you can't cache music for offline use and it inserts ads (but still can listen to it).

Whoosh.

Well, if you don't secure the WiFi, you're broadcasting all your packets in plain text.

Don't look at WPA2 as access control only, it's also providing channel encryption.

Guest networks (isolated from the main one) are a nice idea but they should be secured anyway for the sake of the guests.

One should be able to pay electricity bills with Bitcoins.

That would give an important perspective.

Mine did give me a warning yesterday. It's probable that the rule was quickly retracted.

Note that it wasn't a malware warning - it was a "DECEPTIVE SITE" warning, the ruleset against fake download buttons. Possibly targeting the "Anonymous download!" deceptive ads under magnet links.

It may be in line with Google's recently proclaimed war on fake download buttons.

By using homomorphic encryption, of course!

While true that it doesn't break the encryption algorithm itself - such things are rare.

But one can argue it breaks an implementation of an algorithm. Which, arguably, doesn't "exist physically" either, it's still a bunch of bytes.

However, there are software countermeasures to some side channel attacks (like constant-time calculations), so question is whether such mitigation is possible here. Looking at the article - that's exactly what's lacking with some software.

Notable quote:
> The OpenSSL's developers notified us that "hardware side-channel attacks are not in OpenSSL's threat model"