Berkeley CSUA MOTD:Entry 26597
Berkeley CSUA MOTD
 
WIKI | FAQ | Tech FAQ
http://csua.com/feed/
2025/05/25 [General] UID:1000 Activity:popular
5/25    

2002/11/22 [Politics/Domestic/California, Computer/SW/Security] UID:26597 Activity:nil
11/20 How can I verify Soda's certificate?
       ...
       \_ No. You can't add self signed certs to your cert store.
          \_ yes, you can... the easiest way is if the machine is using
             the same cert for https... you can import it simply using
             IE... otherwise you need to manuall add import it, but it
             can be done.
             \_ Does the CSUA have a https site?  Still haven't found
                the self-signed cert ... -OP
             \_ Not all versions of OE/IE support this.
          \_ Really? That's dumb. Another reason not to use Lookout(tm)
             \_ A self signed cert has no meaning in the PKI
                model, since all it says that you vouch that
                you are who you claim you are. If you really
                want to implement the cert mgmt correctedly
                there is no reason to allow such certs into
                the cert store.
                \_ Point taken.  Where can I view this cert, and how was it
                   generated, for technical curiosity's sake?  And does the
                   CSUA have a cert for https?  -OP
                       \_ http://www.openssl.org has all the goodies
                \_ By the way, is self-signed certificate different from
                   a certificate that was signed by an untrusted CA (say
                   you have setup a certificate authority within your company
                   for signing certificates)
                       \_ self-signed: signed by untrusted (your own) CA
       \_ I like the original minty green certs best, but some of the more
          orange flavored ones that came later were ok too.
          \_ Before being bought out by RSA, Xcert minted their own brand for
             a promo ... labeled obviously as: "XCerts"! -OP
             \_ Sweet!
         \_ Another approach if you really want secure POP is to set up
            SSH forwarding on a local port to csua:110, then just set up
            Outlook to retrieve email across the SSH (i.e., localhost: 110).
2025/05/25 [General] UID:1000 Activity:popular
5/25    

You may also be interested in these entries...
2013/2/7-3/19 [Politics/Domestic/California] UID:54602 Activity:nil
2/7     Christopher Dorner is my hero.
        \_ "We are going to get this guy even if we have to shoot
            200 more women bystanders before we find him." -LAPD
            \_ THAT is awesome. LAPD is my hero.
        \_ Dang, they got him. He could have been a folk hero. -OP
                 \_ Yeah, and they got his drivers license twice.
	...
2011/5/27-7/30 [Politics/Domestic/Crime] UID:54121 Activity:nil
5/27    Pharamcist convicted of first-degree murder for shooting at armed
        robberers:
        http://www.csua.org/u/tfk (news.yahoo.com)
        What the f**k!!??
        \_ Shooting the robber and leaving him on the floor unconscious was
           obviously self-defense.  Calmly returning to the store afterwards
	...
2010/11/2-2011/1/13 [Politics/Domestic/California, Politics/Domestic/President/Reagan] UID:54001 Activity:nil
11/2    California Uber Alles is such a great song
        \_ Yes, and it was written about Jerry Brown. I was thinking this
           as I cast my vote for Meg Whitman. I am independent, but I
           typically vote Democrat (e.g., I voted for Boxer). However, I
           can't believe we elected this retread.
           \_ You voted for the billionaire that ran HP into the ground
	...
2010/8/29-9/30 [Politics/Domestic/California, Politics/Domestic/Immigration] UID:53942 Activity:kinda low
8/29    OC turning liberal, maybe there is hope for CA afterall:
        http://www.nytimes.com/2010/08/30/us/politics/30orange.html
        \_ and the state is slowly turning conservative. Meg 2010!
           \_ We will see. Seems unlikely.
        \_ Yeah, because CA sure has a problem with not enough dems in power!
           If only dems had been running the state for the last 40 years!
	...
2010/7/27-8/25 [Politics/Domestic/California, Reference/Tax] UID:53900 Activity:nil
7/25    Is there a polite way to tell a recruiter "too busy at the moment
        but keep me in mind for future stuff."  Or  "not in that field at
        this exact moment but am switching positions over the next few
        months for your role, keep me in mind" ?  Thx.
        \_ You know what, recruiters have thick skins.  You won't hurt
           their feelings.  Go ahead, try, you can't possibly get them down.
	...
2010/7/15-8/11 [Politics/Domestic/California] UID:53885 Activity:nil
7/15    "Mom jailed over sex with 14-year-old son"
        http://www.msnbc.msn.com/id/38217476/ns/us_news-crime_and_courts
        \_ I just bought a hot homeless teen runaway lunch.
           Am i going to jail?
           \_ Was she 18?
        \_ FYI people "MILF" doesn't always mean what you think it means.
	...
2010/7/5-20 [Politics/Domestic/Crime] UID:53875 Activity:nil
7/5     I think this is the first time a CA cop has EVER been put on trial
        for murdering a black man.
        \_ Really?  CA cop, or CA white cop?
        \_ The case marked the first murder prosecution of an on-duty Bay Area
           police officer. Prosecutors rarely file charges against police for
           shootings. A Chronicle review of police use-of-force cases around
	...
2010/5/17-26 [Politics/Domestic/California] UID:53832 Activity:nil
5/14    Where's the guy who kept claiming that the CA state budget always
        grew faster than inflation adjusted per capita?
	...
2012/8/26-11/7 [Computer/SW/Security] UID:54465 Activity:nil
8/26    Poll: how many of you pub/priv key users: 1) use private keys that
        are not password protected 2) password protect your private keys
        but don't use ssh-agent 3) use ssh-agent:
        1) .
        2) ..
        3) ...
	...
2012/8/7-10/17 [Computer/SW/Security] UID:54455 Activity:nil
8/6     Amazon and Apple have lame security policies:
        http://www.wired.com/gadgetlab/2012/08/apple-amazon-mat-honan-hacking/all
        "First you call Amazon and tell them you are the account holder, and
         want to add a credit card number to the account. All you need is the
         name on the account, an associated e-mail address, and the billing
         address. "
	...
2012/7/18-8/19 [Health/Men, Computer/SW/Security] UID:54438 Activity:nil
7/18    "Largest penis record holder arouses security suspicions at airport"
        http://www.csua.org/u/x2f (in.news.yahoo.com)
        \_ I often have that same problem.
        \_ I think the headline writer had some fun with that one.
           \_ One time when I glanced over a Yahoo News headline "U.S. busts
              largest-ever identity theft ring" all I saw was "U.S. busts
	...
2012/4/23-6/1 [Computer/SW/WWW/Browsers] UID:54360 Activity:nil
4/19    My Firefox 3.6.28 pops up a Software Update box that reads "Your
        version of Firefox will soon be vulnerable to online attacks."  Are
        they planning to turn off some security feature in my version of
        Firefox?
        \_ Not as such, no, but they're no longer developing this version,
           so if a 3.6.x-targeted hack shows up, you're not going to get
	...
2011/11/8-30 [Computer/SW/Security, Computer/SW/OS/Windows] UID:54218 Activity:nil
11/8    ObM$Sucks
        http://technet.microsoft.com/en-us/security/bulletin/ms11-083
        \_ How is this different from the hundreds of other M$ security
           vulnerabilities that people have been finding?
           \_ "The vulnerability could allow remote code execution if an
               attacker sends a continuous flow of specially crafted UDP
	...
2011/11/11-30 [Computer/SW/Security] UID:54224 Activity:nil
11/11   MacOSX's Sandbox security hole:
        http://preview.tinyurl.com/7ph2wtg [arstechnica]
	...
2011/2/10-19 [Computer/SW/Security] UID:54034 Activity:nil
2/9     http://www.net-security.org/secworld.php?id=10570
        Summary: iPhone passwd storage is unsafe after all
	...
Cache (1854 bytes)
www.openssl.org
Open Source toolkit implementing the 10 Secure Sockets Layer (SSL v2/v3) and 11 Transport Layer Security (TLS v1) protocols as well as a full-strength general purpose cryptography library. The project is managed by a worldwide community of volunteers that use the Internet to communicate, plan, and develop the OpenSSL toolkit and its related documentation. OpenSSL is based on the excellent SSLeay library developed by Eric A. The OpenSSL toolkit 12 is licensed under an Apache-style licence, which basically means that you are free to get and use it for commercial and non-commercial purposes subject to some simple license conditions. This software package uses strong cryptography, so even if it is created, maintained and distributed from liberal countries in Europe (where it is legal to do this), it falls under certain export/import and/or use restrictions in some other parts of the world. PLEASE REMEMBER THAT EXPORT/IMPORT AND/OR USE OF STRONG CRYPTOGRAPHY SOFTWARE, PROVIDING CRYPTOGRAPHY HOOKS OR EVEN JUST COMMUNICATING TECHNICAL DETAILS ABOUT CRYPTOGRAPHY SOFTWARE IS ILLEGAL IN SOME PARTS OF THE WORLD. SO, WHEN YOU IMPORT THIS PACKAGE TO YOUR COUNTRY, RE-DISTRIBUTE IT FROM THERE OR EVEN JUST EMAIL TECHNICAL SUGGESTIONS OR EVEN SOURCE PATCHES TO THE AUTHOR OR OTHER PEOPLE YOU ARE STRONGLY ADVISED TO PAY CLOSE ATTENTION TO ANY EXPORT/IMPORT AND/OR USE LAWS WHICH APPLY TO YOU. THE AUTHORS OF OPENSSL ARE NOT LIABLE FOR ANY VIOLATIONS YOU MAKE HERE. CREDIT INFORMATION: This product includes cryptographic software written by Eric A. Engelschall and generated with 20 Website META Language (WML). All markup code and graphics on this website are Copyright 1999-2002 21 The OpenSSL Project, All rights reserved. This website is served by an 22 Apache webserver environment. Hardware and bandwidth provided by 23 Cable & Wireless Germany.