mercutio: by "more secure" you mean https://letsencrypt.org ?
i looked at let's encrypt today, wondering when it was out
umm trying to think when i said more secure
oh no by more secure, i mean making sure that people are legitimate
and really own the company etc
there are various grades of certificates, but browsers don't really make it easy to notice if people are using a higher level trust certificate
secure as in i am who i say i am, rather than secure in being able to eaves drop
ok, I thought the push was for encryption everywhere and make certs free, simple and automated
I guess we'll see what happens when let's encrypt goes live
yeh most people care about casual encyption, rather than identity verification
i care more about identity verification :)
i think i got the best workout of my life this morning
I had thought Let's Encrypt isn't for EV certs.
That's what she said!!
Is EV even worth it? Didn't we prove that it's broken?
mercutio, most people don't know the difference
The ssl trust system as a whole is broken, most assuredly. I don't think EV itself is any more or less broken than the rest of the system, and I applaud its effort (or the idea therein).
phlux: chased by rabid dogs?
looks like i may have hashimoto's thyroiditis and addison's disease
those are two crazy diagnoses to get in the matter of a week
wow
crazy
i don't know anything about the first, and hardly anything about the second.
the upshot seems to mean that you'll gain a lot of weight, hmm
apparently the ssl vulnerability is coming out sometime between 11:00 and 15:00 gmt, that's a really annoying time.
I know, right? That's my siesta time!
(okay it's actually 03.00-08.00 local, so I'm asleep anyways)
*04
mercutio: fortunately, that can be controlled (weight)
you sure it's that time?
it looks like it's 1 am to 5 am for me
i thought it was 12 to 4 at first
so in pdt it would be 5 am to 9 am ?
mercutio: PDT is GMT-7
hmm
PST is GMT-8
but we just started DST
NZDT is GMT+13
hey that is midnight
why did that stupid site say it was 1 am :/
it does seem like they should have pushed it back a bit to me
I read that they just finished reformatting all the code
wonder where that idea came from
it sucks that there's no ground roots alternative implementation which is good
err grass roots
libressl is fixing the old code, which is at least a step in the right direction
gnutls sucks
i imagine libressl just don't have the time to do a reimplementation
but it's needed to fix the license issue :(
mercutio: soruce for release time? I herad 10am-3pm
and by people who haven't seen the openssl code i think
( emphasis "heard" :/ )
https://mta.openssl.org/pipermail/openssl-announce/2015-March/000021.html
yeah i'm going based off this
perfect, thanks.
it's the 19th already here
same
10pm beers and OpenSSL cheers :-/
ebay has cheap qdr infiniband cards now, hmm