On 26/04/11 22:32, Michael Chesterton wrote: > ... and > always check for https. Banking should be fine, it's https. Make sure > your email is https/ssl too. >
The scary thing is that even this is no longer a guarantee. The recent Comodo certificate authority breach [1] means that some people were able to falsify certificates for Google, Microsoft, etc. in a manner transparent to the end users. My best suggestion for a counter-measure is to use Firefox, install the Certificate Patrol add-on, and learn to interpret its output well. Still, SSL is starting to show signs of coming apart at the seams (see [2] and listen to the linked podcast for more details). Paul [1] http://www.schneier.com/blog/archives/2011/03/comodo_group_is.html [2]http://packetpushers.net/show-41-media-management-security-breach-rsa-comodo-low-cost-data-centre-design-l3-switch-vs-router/
<<attachment: paul.vcf>>
-- ubuntu-au mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-au
