Language Selection

English French German Italian Portuguese Spanish

Dutch CA banished for life from Chrome, Firefox

Filed under
Software
Moz/FF

The network breach in July that forged a near-perfect replica of a Google.com credential minted more than 200 other SSL certificates for more than 20 different domains, a top manager for Mozilla's Firefox browser said.

In stern rebuke of substandard practices at Netherlands-based certificate authority DigiNotar, Director of Firefox Engineering Johnathan Nightingale recited a litany of failures that put entire internet populations at risk. Bad enough was DigiNotar's inability to accurately account for the certificates it issued, and its six-week delay in warning Mozilla of fraudulent certificates detected in mid July, one of which spoofed the sensitive https://addons.mozilla.org site.

Worse yet was the determination that DigiNotar's lapses resulted in “multiple reports of these certificates being used in the wild.”

rest here




More in Tux Machines

IsoHunt releases roll-your-own Pirate Bay

Open Source Meritocracy Is More Than a Joke

In January 2014, Github removed the rug in its office's waiting room in response to criticism of its slogan, "United Meritocracy of Github." Since then, the criticism of the idea of meritocracy has spread in free software circles. "Meritocracy is a joke," has become a slogan seen on T-shirts and constantly proclaimed, especially by feminists. Such commentary is true — so far as it goes, but it ignores the potential benefits of meritocracy as an ethos. Anyone who bothers to look can see that meritocracy is more of an ideal than a standard practice in free software. The idea that people should be valued for their contributions may seem to be a way to promote fairness, but the practice is frequently more complicated. Read more Also: Unmanagement and unleadership

Linux Kernel Developers Consider Live Kernel Patching Solution

kPatch and kGraph may soon enable live kernel updates on all Linux distributions, making it possible to apply security and other patches on the open source operating system without rebooting. Read more

A real-time editing tool for Wikipedia

Wikipedia is one of the most frequently visited websites in the world. The vast online encyclopedia, editable by anyone, has become the go-to source for general information on any subject. However, the "crowdsourcing" used by Wikipedia opens their doors to spin and whitewashing–edits that may be less than factual in nature. To help journalists, citizens, and activists track these edits, TWG (The Working Group) partnered with Metro News and the Center for Investigative Reporting to build WikiWash. Read more