-
Posts
1,230 -
Joined
-
Last visited
Reputation Activity
-
mpsparrow reacted to Spotty in I found linus screwdriver! :0
For $173 Australian dollars that screwdriver better come with a successful tech youtube channel included.
-
-
mpsparrow reacted to Zando_ in AMD Threadripper 3990X for €4
Lol, again it's four thousand and ninety-nine euros. They use the period to denote thousands instead of a comma.
aka:
4.099,00 = 4,099.00
-
mpsparrow reacted to colonel_mortis in Your Connection Is Not Private - Let's Encrypt are revoking over 3 million TLS certificates
Sources: Let's Encrypt announcement, Scott Helme's Blog
TLS certificates are used by websites to prove that you are talking to the actual website, and to not someone who is intercepting the connection, as part of HTTPS. To make it work there are a number of trusted companies, called certificate authorities, to whom website owners can prove that they are the actual owner of the site; the certificate authority then issues a certificate which basically says "I confirm that the holder of this certificate is the owner of the site". Let's Encrypt is (one of) the largest certificates, and use a completely automated system to issue certificates for free.
There are a lot of rules that certificate authorities are required to follow during the certificate issuing process, including that they must check for a CAA record, which is a special DNS record that restricts which certificate authorities are allowed to issue certificates for that domain. The idea of CAA is that if you know that you always get your certificates from DigiCert, you can prevent Let's Encrypt for issuing any certificates for your domain so that you are more protected in the event of a problem at one certificate authority.
On the 29th February 2020, Let's Encrypt discovered a bug in their implementation of the CAA check which could a certificate to be issued by Let's Encrypt even if the CAA record prohibits it:
When the vulnerability was discovered, they immediately stopped issuing certificates and fixed the issue, but any wrongfully issued certificates would be unaffected by that. Therefore, Let's Encrypt are now revoking 3 million certificates that could have experienced this bug (certificates where the CAA check was not performed correctly). From their FAQ:
Everyone whose certificates have been revoked should have been emailed, but if you are concerned then you can check using this online tool, or look up the certificate's serial number in the list of revoked certificates by following Let's Encrypt's instructions.
It is very unlikely that anyone has actually abused this vulnerability, but it is absolutely right for Let's Encrypt to revoke those certificates just in case.
If a site has had their certificate revoked and they haven't yet reissued it, visitors will get a scary error message when they try to access it. For example, in Chrome it looks like this:
Certificate authorities rely on being trusted by browsers to operate, and certificate authorities that have had repeated serious violations of the the rules in the past have been distrusted by browsers, effectively forcing them out of business. That is not going to happen in this case, because this was a single incident that affected only one additional layer of security. It is also very reassuring that Let's Encrypt have been so open and proactive about this issue. However, it does raise important concerns about the consequences that other simple bugs in certificate authorities' code could have.
Unfortunately there are no practical alternatives to certificate authorities at the moment because entirely decentralising trust is an extremely hard problem, but it will be interesting to see if this leads to more research in that area.
-
mpsparrow reacted to RadiatingLight in How to learn to code?
you just have to make a lot of stuff
Try making a basic interface with tkinter, learn stuff along the way.
try making a tool that can view (or modify) file properties, learn stuff along the way
try making a "game of life" type thing, or cookie clicker, learn stuff along the way.
rinse and repeat until you are the next steve jobs.
-
mpsparrow reacted to CPotter in Weight loss challenge for LTX2020?
I'm in! My goal is to lose 10 - 15lbs by LTX. Good luck everyone, see you all at the show.
-
mpsparrow got a reaction from Ben17 in What's the Oldest Hardware in Your System right now?
Probably my old Dell 19" monitor that I use for my server. That thing must be at least 8 years old.
-
mpsparrow got a reaction from GOTSpectrum in BOINC Pentathlon 2019 Contest
I'm at school most of the day so I set it up to run all night and then while I am at school. Glad I am able to help in some way ?
-
mpsparrow got a reaction from Ithanul in BOINC Pentathlon 2019 Contest
I'm at school most of the day so I set it up to run all night and then while I am at school. Glad I am able to help in some way ?
-
mpsparrow got a reaction from leadeater in BOINC Pentathlon 2019 Contest
I'm at school most of the day so I set it up to run all night and then while I am at school. Glad I am able to help in some way ?
-
-
-
mpsparrow reacted to kelvinhall05 in gtx 1060 $70
How do people still fall for this shit? You'd be lucky if you got a video card at all. For that price you can probably expect a real 1060's COOLER.
-
mpsparrow reacted to dizmo in Are there silent non-linear mx cherry switches out there
If you don't know much, you don't have anything to base wanting a non-linear Cherry switch on.
Either go to a store and try them out in person, or order a key switch tester. No amount of reading is going to tell you which key switch is best for you, you have to try them.
-
mpsparrow reacted to jiyeon in if only this wasnt a scam...
It's Alienware, it's a scam to begin with. (Only partly sarcasm)
-
mpsparrow reacted to 3 Lions in Are solid state hybrid drives (SSHD) worth it?
Not really, if you want an SSD get an SSD.
-
mpsparrow reacted to wildgg in DIY Testbench
Not sure if this thread is still a thing but here goes
i use this as a test bench but it's also being used as a OBS encoding pc with the NDI pluggin.
-
mpsparrow got a reaction from hconverse02 in Anyone Else Getting Banned On Fortnite
Have you waited more than 5 minutes for a response?
-
mpsparrow got a reaction from Bajantechnician in Anyone Else Getting Banned On Fortnite
Have you waited more than 5 minutes for a response?
-
mpsparrow got a reaction from Canada EH in Anyone Else Getting Banned On Fortnite
They probably receive hundreds of emails daily from whiny kids asking why they got banned. I don't blame them.....
-
mpsparrow reacted to LinusTech in Does LTT actually make money from youtube red/premium?
Yep we do, but not having used the service because it's not available in Canada I haven't been able to really promote it to our viewers.
-
mpsparrow reacted to aezakmi in Anyone Else Getting Banned On Fortnite
You can't get banned if you don't play
-
mpsparrow reacted to QuantumBit in 4ms IPS 144hz Panel vs 1ms TN 165hz panel (Both at 1440p)
1ms vs 4ms isn't noticeable. I would get the IPS one for better angles and color accuracy.
-
mpsparrow reacted to Skyper100 in DIY Testbench
I made a test bench with an old case. But I did not like it the first time so I did some more work on it. This is the result.
Version1:
This is verion 2:
-