* Posts by nineworlds

19 posts • joined 14 Dec 2009

Trend Micro: Internet scum grab Let's Encrypt certs to shield malware


Re: No revocation?

They're not certifying who you're talking to, except that they control the server, merely providing encrypted channels to all. If you want to trust the site and don't know its other features, look for extended verification.


Re: Revocation

One of the points of LE's setup is that SSL is a basic element of the web, and it's all automated. They are pointedly not verifying the identity of the requester, simply making sure that encryption to a particular server that is controlled by the requester is secure. We need to educate users to look for actual verification if they don't trust the source.


Re: So how do I remove Let's Encrypt from my list of trusted CAs?

The service they provide is no worse than every other CA that does domain authentication as their basic SSL cert level. Most of the low-value sites I use that just need SSL for logging in or protecting a small amount of content seem to have the $10 domain certificates. If you want the browser bar to turn green, you're still going to need a verified certificate, which costs much more, and isn't offered by LE.

Essentially they're saying that SSL is a basic of the web (good and bad) these days, and are bringing the lowest level of certification, domain, to anyone for free. If you want to know who the website is run by, check that it's got an actually verified certificate.

LibreOffice 5.0 debuts, complete with fewer German code comments


Whatever happened to LibreOffice Online?

At one point, the developers were demonstrating LibreOffice running in a web browser, with collaboration baked in so that you could run a cloud collaboration suite on your own servers. Nice proof of concept, but I've seen no mention of it for ages.

Document Foundation pledges Office 365 and Google Docs challenger


Re: Nice but...

When you are sharing a Dropbox folder and someone saves their document over yours while you're still editing, you have to work out the differences and merge them. Online app suites like Google Docs or Office 365 avoid this problem with everyone seeing the edits of other collaborators as they're made.

Premier League wants to PURGE ALL FOOTIE GIFs from social media


Re: This is bollocks anyway

From your Out-Law link: "Whilst live sporting events themselves are not protected by copyright, broadcasts of them and film, sound recordings, graphics, music and other features included within a broadcast are."

That seems to say that pictures and recordings of the game are copyrightable - "broadcasts of them and film, sound recordings ... are." A phone recording does have a copyright, but it belongs to the person who was using the phone at the time. They may, however, be in breach of a contract they entered into when buying their ticket, not to take recordings...

In the case above, I read that as saying that the Premier League had licensed their stream to a foreign provider, who sold the decoder card back to the UK. Preventing this by contract would be a breach of EU free trade laws, so those companies abroad have the right to show the copyrighted film of the game anywhere in the EU. Because separate copyrights exist in the logos and anthem, the Premier League *can* stop those being shown. Seems a pretty unclear case all round, though.

However, nothing I've seen says which the League will be looking for: footage captured from TV signals or that from illicit recordings made at the match.

IANAL, etc...

'Ribbed' for your pleasure: Jony Ive unveils NAKED IPHONE


Like all equipment boxes for the last few hundred years?

Every small equipment box I've worked with for electronics projects has essentially been a ribbed container, usually of plastic. Adding "made of glass" surely doesn't make this patentable, so you'd hope that the fusing process was super-clever for this to be an innovation.

Free Red Hat clone CentOS-7 is full of Linux Container love


Re: RHEL's choices determine CentOS

I imagine a graphics-less minimal install will be along fairly soon.

LASER STRIKES against US planes on the rise


Peril-sensitive cockpits

Easy solution: when the windscreen detects laser light, it turns black. No danger of blinding anyone inside...

CentOS penguins maul Oracle's Linux migration pitch


Re: "If it 'ain't broke, why break it?"

Except that when there's a major new release to work on, CentOS seems to stop issuing security updates. Perhaps the new version is much more fun than repackaging bug fixes, or perhaps it's just that they want everyone to upgrade ASAP, but that's unacceptable for a production system, and I switched away about a year ago.

Telly is becoming moving wallpaper for constantly online Brits


Re: my eyes

He has some rather better graphic designers on-hand...

SOPA poked an angry bear and set it loose on the net


Re: Going to the "Copyright In Three Dimensions"

And yet, Disney and other corporations weren't the target of original copyrights. I bet the creators of the concept of copyright understood fairly well that some things never go out of style (the bible springs to mind), but thought that twenty-odd years return on a creative work was incentive enough for anyone to keep producing. If those artists wanted a pension, they'd have to save for it, not just spend all the income and hope that their work became "timeless" enough to keep them in luxury through old age. And Disney would't even have half material they use if older copyrights hadn't expired on the works.

Copyright was an incentive to produce new work, not a cash cow to help society stagnate.

Qantas lets fly with 'net access



The article makes it sound as though Qantas is the first carrier to do this; when I flew with US Airways last summer this was already a standard feature of some routes:


Ebuyer knocked out by own £1 deals site


They cut and run 8 hours early

It's over. Ebuyer have decided to pull the promotion:


Nice that they decided to end it all with a smiley...

Facebook's complexity will be its doom


And better yet...

Employ dozens of UI experts to go through weeding out all the interface SNAFUs created by said programmers.

Google turns off sidelined Labs section altogether


Google jumped the shark?

Again? Sheesh!

Got a website? Pay attention, Cookie Law will come


A cookie could be seen as an instruction...

if you take it as a mnemonic for what the server has to do. Sure, it's generated by the server, rather than programmed by hand, but you're basically turning the web into an interpreter, generating single-use programs that take the cookie as one of their input instructions and return different output based on that. Sounds pretty much like a procedure call in any other programming language.

Well, that's one possible argument....

Global warming may be normal at this point in glacial cycle


taxes and fines

... imposed by governments...

3 billion have suffered Slade's 'Merry Xmas Everybody'


Jethro Tull

Ring Out, Solstice Bells, I believe; definitely a cut above, that one. Recently we've had Christmas No. 1s inflicted by the hype of the X Factor, which has just about killed the whole process.


Biting the hand that feeds IT © 1998–2020