A compelling way to get holdouts to upgrade iOS/OSX. Get those iPhone 4 folks who are content with iOS 6.x to install iOS 7.x.
God only knows what incompetence and disregard for user privacy and sanity awaits in these "new" versions. What are they adding that we really need? Oh, the ability to use SSL PKI. Yeah, I guess you have to upgrade.
Why isn't HN discussing the effects this screw up has on email? Email is bigger than the web, belive it or not.
And most of the world appears to use webmail.
With this "bug" HTTPS for your webmail is futile.
You have no way to know you are connecting to the real googlemail, yahoomail, hotmail, etc.
The "authentication" functions of SSL need to be made an compilation option, not a default.
It's obvious almost no knows or cares how to use SSL's PKI mechanism properly.
SSL's encryption capabilities have been useful, but using SSL to do server authentication causes more problems than it solves.
History has shown it's just not easy enough to use.
SSH can do authentication without PKI. Alas, it is embedded into a program that only nerds use.
I'm using the authentication framework in CurveCP. I'm working on making it very easy to use.
God only knows what incompetence and disregard for user privacy and sanity awaits in these "new" versions. What are they adding that we really need? Oh, the ability to use SSL PKI. Yeah, I guess you have to upgrade.
Why isn't HN discussing the effects this screw up has on email? Email is bigger than the web, belive it or not.
And most of the world appears to use webmail.
With this "bug" HTTPS for your webmail is futile.
You have no way to know you are connecting to the real googlemail, yahoomail, hotmail, etc.
The "authentication" functions of SSL need to be made an compilation option, not a default.
It's obvious almost no knows or cares how to use SSL's PKI mechanism properly.
SSL's encryption capabilities have been useful, but using SSL to do server authentication causes more problems than it solves.
History has shown it's just not easy enough to use.
SSH can do authentication without PKI. Alas, it is embedded into a program that only nerds use.
I'm using the authentication framework in CurveCP. I'm working on making it very easy to use.