Hacker Newsnew | comments | show | ask | jobs | submit | PleaseStand's commentslogin

GitHub now [allows HTTPS pushes][1], so a man-in-the-middle attack on a single connection would be sufficient to push backdoors. In any case, can't the intermediary just add another SSH key to the account?

[1]: https://help.github.com/articles/pushing-to-a-remote

-----


"Videos with ads are not supported (they will play in the Flash player)". http://www.youtube.com/html5

-----


I doubt anyone would have used CSS in 1996, and "FrontPage 6.0 [2003]" did not exist back then. FrontPage might have only been used as part of the archival process (for removing links to dynamically generated pages and other excluded content and adding a fourth footer line to every page).

-----


1) Increase Linux's usage share, and we will see a greater share of Linux exploits and malware. Case in point: Mozilla Firefox.

2) New versions of Windows have long retained backward compatibility with older applications (the upgrade from 98/ME to XP an exception largely necessary for security).

Just as importantly, Microsoft supports their operating systems for at least ten years after their initial release dates. In contrast, Ubuntu LTS releases are only supported for five years (and until 12.04 comes out, only three years on the desktop).

Keep in mind that upgrading software costs a business money, and rewriting (parts of) it to run on a totally different OS costs even more. No wonder why Windows is the business OS of choice.

-----

afsina 943 days ago | link

"Increase Linux's usage share, and we will see a greater share of Linux exploits and malware. Case in point: Mozilla Firefox."

Well, that is the main line a windows apologist would use. This does not make the main point invalid. Hospitals and such professional institutes can use a less known OS. Because what they mostly use is a dedicated crapy VB application. Yet, I think main problem here is not the OS but archaic Windows based Desktop applications.

I can offer one exit from this mess,

1- Switch all your apps to Browser only. 2- Use dumb terminals (dump windows OS and office if possible. too costly) 2- Use a cloud service or a browser based server application that has a web interface for your documentation needs.

-----

PleaseStand 1109 days ago | link | parent | on: IE WebGL

In general, it's not a new idea; software companies have long sold expensive authoring software for their free viewer programs. Shockwave, Flash, QuickTime, RealPlayer, and Viewpoint have all tried to use this business model for browser plug-ins. However, it's the most direct attempt I've seen to apply the business model to an already open standard.

-----


The backdoors in the two other plugins mentioned:

http://plugins.trac.wordpress.org/changeset/399276

http://plugins.trac.wordpress.org/changeset/399286

-----


Guidelines | FAQ | Lists | Bookmarklet | DMCA | News News | Bugs and Feature Requests | Y Combinator | Apply | Library | Contact

Search: