Wednesday, 2008-09-03

« Tuesday, 2008-09-02 Index Thursday, 2008-09-04 »
nkinkadeSince when do SSL certificates cost $250/year!00:02
*** jgay has joined #cc00:14
*** rohitj has joined #cc00:17
*** Yaco has joined #cc00:20
*** rohitj has quit IRC00:22
paulproteusnkinkade, I paid $15 for mine.00:31
nkinkadepaulproteus: From some cert. authority in Russia?00:31
paulproteushttp://www.rapidsslonline.com/?ref=usgoogle&gclid=CJuPiq6vvpUCFSJIagodCVhqPw00:31
paulproteushttps://secure.makesad.us/ and https://secure.laroia.net/ use them.00:31
nkinkadeHmm.  Let me check it out,.00:32
*** javaman1 has joined #cc00:33
*** ftobia has joined #cc00:33
*** javaman1 has quit IRC00:33
ftobiacurrybot: list00:34
paulproteusSSL By Chinese00:34
paulproteusftobia, list00:35
ftobia(1) SOME KIND OF PANEER00:35
Bovinityftobia: IT FELL DOWN AND CAN'T GET UP00:35
ftobiaapparently.00:35
ftobiagah.00:35
Bovinitycurrybot: food00:35
currybotBovinity: mmm... curry...00:35
nkinkadepaulproteus: Maybe I'm missing something, but it seems that they support low bit rates for the encryption.  I just created a 1024 bit CSR, but their Thawte certs only support up to 256-bit.00:35
ftobiacurrybot: 100:35
currybotftobia: mmm... curry...00:35
ftobiahmm.00:35
nkinkadeMaybe there's something I don't understand about it all.00:35
paulproteusWhich "they"?00:36
paulproteus256-bit would be the symmetric key.00:36
paulproteus1024-bit would be the asymmetric key.00:36
paulproteusThe 256-bit key would be a session key generated at session time.00:37
paulproteusI'll accept links, though. (-:00:37
*** stevel has quit IRC00:40
paulproteusDoes the Thawte one give you a green thing like PayPal has?00:42
paulproteusI perceive no value in spending more than $15 on this cert.00:43
paulproteusFeel free to say something nkinkade.00:43
paulproteus(voice is fine, I'm getting ready to go to the OM thing)00:44
nkinkadepaulproteus: From the RapidSSL.com FAQ: "However it is our opinion that sites conducting more than 50 transactions will require a Professional Level SSL certificate due to the increased likelihood  that the website's customers will expect SSL from a highly credible and established SSL provider and well known internationally accepted SSL brand."00:46
paulproteusThey also sell more expensive certs.00:46
paulproteusThey'd *prefer* you buy those.00:46
paulproteusI guess maybe there's some value in more expensive certs for people who view the cert.00:47
Bovinityfwiw, eff.org use a 256-bit cert00:47
paulproteusEr, that's the session key, not the cert - the cert uses asymmetric crypto.00:48
Bovinityoops00:48
nkinkadeI guess the price difference comes down to brand recognition, though it would seem that the RapidSSL.com certs are fully trusted by default in Firefox and probably most every browser.00:48
paulproteusI also can't find any SSL'd EFF pages.00:48
Bovinityhttps://secure.eff.org/site00:48
Bovinity-site00:49
paulproteushttps://secure.makesad.us/ also uses a 256-bit session key.00:49
nkinkadeModulus (1024 bits)00:50
nkinkadeFrom the EFF cert.00:50
paulproteusWow, I have the same "Verified by:" as EFF does.00:50
paulproteusEquifax.00:50
paulproteusAs far as I can tell, EFF uses the same vendor I do.00:51
paulproteusThey may not; I'm not totally sure.00:51
nkinkadeYeah, I saw that, and it seems that somehow the RapidSSL.com ones are also signed by Equifax, or GeoTrust, but there seems to be a relationship there.00:51
mlinksvai think http://en.wikipedia.org/wiki/Extended_Validation_Certificate is what ff3 requires for the green bar00:51
paulproteusAnyway, they look the same, and mine cost me fifteen bucks.00:51
paulproteusYou can get an Extended Validation cert for as little as US$500.00:51
nkinkade$250/year from Thawte *does* seem a little crazy.00:51
nkinkadeShuttleworth! I'm uninstalling Ubuntu tonight!00:52
paulproteusIf you try RapidSSL for one month, and NY doesn't like it, it pays for itself in two weeks of not paying the Thawte price.00:52
paulproteusOh!00:52
paulproteusNo, he *quit* that to make Ubuntu.00:52
paulproteusAnd you can now either give your money to the Forces of Good, or Shuttleworth's old company.00:52
paulproteusOr keep your money for your *own* forces of good (as we are) and just buy a RapidSSL cert.00:53
paulproteusnkinkade, How about you buy a RapidSSL cert, say you bought a Thawte one, and since no one will ever read the SSL certificate info, we buy ourselves an amazing $235 dinner?00:55
paulproteusOh, mlinksva is here.00:55
paulproteusWe can invite him too.00:55
nkinkadepaulproteus: Good plan.  I've emailed with Nathan about it off-line and we can discuss it more tomorrow.00:56
paulproteusGreat, so now we have FOUR people to invite to dinner with the spoils of our cert.00:56
paulproteusIn 2006, researchers at Stanford University and Microsoft conducted a usability study[8] of the EV display in Internet Explorer 7. The study measured users' ability to distinguish real sites from fraudulent sites when presented with various kinds of phishing attacks, and found that there was no significant difference between users who saw extended validation indicators and those who did not. Users who received training with the Internet Explo00:56
paulproteusrer 7 help file were more likely to judge all sites legitimate, regardless of whether they were fraudulent.00:56
paulproteus-- http://en.wikipedia.org/wiki/Extended_Validation_Certificate00:56
nkinkadeI imagine that most people won't particularly care about the particular CA, as long as their browser doesn't complain.00:56
*** ftobia has quit IRC00:57
paulproteusThere has been some concern that EV certificates, despite their improved authentication and higher cost, will not prevent phishing attacks.[7]00:57
paulproteusAKA: "It's more expensive, but that's its only benefit."00:57
nkinkadeOperating under the old axiom that you get what you pay for, clearly.\00:58
nkinkadeAnd many Windows users get what they pay for, and then some.00:59
paulproteusThe Internet gets what Windows users pay for.01:02
*** nkinkade has left #cc01:03
*** Bovinity has quit IRC01:17
*** stevel has joined #cc01:20
*** jgay has quit IRC01:26
*** jonico has quit IRC01:29
*** mlinksva has quit IRC01:31
*** isforinsects has joined #cc01:35
*** BobChao has quit IRC02:25
*** tvol has quit IRC02:34
*** stevel has quit IRC02:35
*** ftobia has joined #cc02:45
*** Yaco has quit IRC04:30
*** bringatowel has joined #cc04:46
*** ankitg has quit IRC05:01
*** ftobia has left #cc05:12
*** BobChao has joined #cc05:43
*** pmiller has quit IRC05:52
*** ankitg has joined #cc07:11
*** pmiller has joined #cc08:17
*** pmiller has left #cc08:17
*** balor has joined #cc08:37
*** Ekushey has joined #cc10:30
*** BjornW has joined #cc10:32
*** sama has joined #cc11:15
*** ereslibre has joined #cc11:19
*** Roderick_ has quit IRC11:29
*** Roderick_ has joined #CC11:39
*** BobChao has quit IRC12:58
*** tvol has joined #CC13:06
*** BjornW_ has joined #cc13:26
*** tvol has quit IRC13:27
*** tvol has joined #CC13:29
*** BjornW has quit IRC13:42
*** ftobia has joined #cc13:56
*** balor has quit IRC14:10
*** Ekushey has quit IRC14:15
*** Ekushey has joined #cc14:16
*** tvol has quit IRC14:21
*** tvol has joined #CC14:23
*** skyfaller has joined #cc14:41
*** Ekushey has quit IRC14:50
*** Ekushey has joined #cc14:52
*** jgay has joined #cc14:55
*** sama has quit IRC15:10
ftobiacurrybot: list15:12
*** currybot has quit IRC15:13
*** currybot has joined #cc15:13
ftobiacurrybot: list15:13
currybot(1) DAL LOUKI (Chickpea lentil cooked with white squash)15:13
currybot(2) SINDHI BHAJI (Fresh vegetables cooked with red onions, tomatoes, sesame seeds, and spices)15:13
currybot(3) TULSI MURG (Boneless chicken cubes cooked in a basil leaves curry sauce)15:13
currybot(4) PORK-DO-PIYAZA (Boneless pork cubes cooked in curry flavored raw mangoes, onions, tomatoes, red bell pepper and vinegar)15:13
*** mlinksva has joined #cc15:14
*** stevel has joined #cc15:15
*** Roderick_ has quit IRC15:20
*** tvol has quit IRC15:39
*** tvol has joined #CC15:39
*** BobChao has joined #cc15:49
paulproteusankitg, Howdy.16:11
paulproteusWell done, ftobia.16:11
ankitgpaulproteus: Hey ...16:12
paulproteusDo you think you're going to continue thinking about / working on the stats stuff?16:13
ankitgsurely16:14
paulproteusCool - what are you working on now, how's it going, and do you have any questions for me?16:15
ankitgright now, I'll am working on making the algo a bit smarter ... instead of picking out the whole history of URLs that change(d) their license, the script will only retrieve the changes ... as for questions, I am trying to get Giorgos involved with this, am I allowed to share info. or do I ned to go through some NDA or something?16:18
paulproteusWell, we never signed an NDA.16:19
ankitgyay!16:19
paulproteusI would treat the data as private for now, so you can share it with other people you trust, but I wouldn't publish a whole lot of blog URLs yet until we've had a chance to think about it.16:19
paulproteusBut Giorgos is surely a trustworthy dude, by all means let's talk to him.16:20
ankitgnoted16:20
paulproteusI'd appreciate being CC:d on your discussions with him if they're by email since I'm interested in the project too.16:20
*** Bovinity has joined #cc16:20
ankitgmostly IM ... or in-person ...16:20
paulproteusAw well. (-:16:20
paulproteusThen try to keep me posted one way or another, if you can.16:20
ankitgdone.16:21
paulproteusankitg, Okay, can we talk about a code review sometime soon?16:22
paulproteusLet's pick a time.16:22
paulproteusIs the latest code in git yet?16:22
paulproteusI don't understand how you don't use git all the time for everything.16:22
ankitgyep, licChange.py has be bumped up to version 8.216:23
ankitgHow about the weekend ... does that work for you ... ?16:23
paulproteusHmm, lemme see.16:25
paulproteusWhat might be some times?16:25
ankitgwhatever works for you ...16:26
ankitgsay this time, your Saturday?16:26
paulproteusOkay, great.16:33
*** nkinkade has joined #cc16:33
paulproteusMorning, nkinkade.16:35
nkinkadepaulproteus: Good morning.16:36
nkinkadeI recovered my Debian install on the Freerunner.16:36
paulproteusHow, trivial fdisk?16:36
nkinkadeIt was just a matter of running fdisk and recreating the partitions.16:36
nkinkadeYes, trivial fdisk.16:36
*** ftobia has quit IRC16:37
*** balor has joined #cc16:37
*** Bovinity has quit IRC16:47
*** Bovinity has joined #cc16:48
*** Yaco has joined #cc16:50
*** Bovinity has quit IRC17:03
*** Bovinity has joined #cc17:04
*** K`Tetch has quit IRC17:09
*** luisv has joined #cc17:35
*** Yaco has quit IRC17:49
*** sama has joined #cc17:59
*** BjornW_ has quit IRC18:02
nkinkadeBovinity: So do you think this comment issue for ccLearn will be trivial to fix.  Off the top of my head it seems like it could be somewhat difficult.18:07
Bovinitynkinkade: it's trivial18:07
nkinkadeThe posts are made at CC.org, right?18:08
Bovinityyeah18:08
nkinkadeBut display at ccLearn.18:08
nkinkadeJust pulled in as an RSS feed.18:08
Bovinityi mean, it's non-trivial to display a comment count at cclearn, but it's trivial to make the comments form show up for cclearn feature articles18:08
nkinkadeSo people will have to view the article at ccLearn, and then go to CC.org to actually make a comment.18:08
Bovinityyes18:08
nkinkadeThat seems less than ideal.18:08
nkinkadeIt'll probably confuse people.18:09
Bovinityi'm sure having the features link back to cc.org is confusing already18:09
nkinkadeBut I guess this who thing with RSS feeds is somewhat less than ideal too.18:09
nkinkades/who/whole/18:09
*** tvol_ has joined #CC18:12
*** tvol has quit IRC18:12
*** OuzOuzA has joined #cc18:26
*** paulproteus has quit IRC18:28
*** paulproteus has joined #cc18:30
*** luisv has left #cc18:31
*** paulproteus has joined #cc18:32
*** paulproteus has joined #cc18:34
*** paulproteus has joined #cc18:36
*** paulproteus has joined #cc18:38
*** paulproteus has joined #cc18:40
*** paulproteus has joined #cc18:42
*** paulproteus has joined #cc18:42
*** paulproteus has joined #cc18:45
*** paulproteus has joined #cc19:02
*** tim_hwang has joined #cc19:02
nkinkadeBovinity: Are you able to login to the wiki?19:10
Bovinitynkinkade: ack, no!19:11
nkinkadeBovinity: Neither can I.  I guess I'll investigate it.19:13
Bovinityis it becuase our memory banks are clogged?19:13
Bovinity:P19:13
*** Ekushey has quit IRC19:32
*** mecredis has joined #cc19:39
mecredishey there19:40
mecredisanyone play around with picasa.exe?19:40
*** sama has quit IRC19:45
*** jonico has joined #cc19:51
nkinkadenathany: Bovinity: Can you login to the wiki now?19:57
*** Ekushey has joined #cc20:00
Bovinitynkinkade: aye20:40
*** tvol_ has quit IRC20:45
*** tvol has joined #CC20:46
*** tvol has joined #CC20:48
mlinksvapaulproteus: is labs pointing to the wrong place again? http://labs.creativecommons.org/~paulproteus/csv-dumps/ only goes to aug 1320:49
*** balor has quit IRC20:59
*** jgay has quit IRC21:02
*** pktck has joined #cc21:15
*** Yaco has joined #cc21:17
*** [mharrison] has quit IRC21:19
*** Ekushey- has joined #cc21:19
*** jonico has quit IRC21:27
*** tvol has quit IRC21:27
*** Ekushey has quit IRC21:39
paulproteusnkinkade especially, but for all: http://www.flickr.com/photos/publicresourceorg/2789712883/in/set-72157606911738805/21:43
paulproteus(more in that set)21:43
nkinkadepaulproteus: And that is apropos to ... ? :-)21:48
paulproteusOur earlier discuss of proprietary standards.21:48
paulproteusMEET: Proprietary law!21:48
paulproteusThink about this one.21:49
* paulproteus chuckles21:49
*** tim_hwang has quit IRC21:50
nkinkadepaulproteus: You're using APC for the FC wiki, right?21:50
paulproteusYup.21:50
paulproteusWhy, is it corrupting everything? (-:21:51
paulproteusnkinkade, Any decision? re: expensive vs. cheap SSL certs21:52
nkinkadeBefore lunch authentication was failing for everyone on the CC wiki.  I was poking around and somewhat accidentally figured out that APC was behind it.21:52
paulproteusOh!21:52
paulproteus...curious.21:52
paulproteusI did upgrade to the latest a few days ago at SFC.21:52
*** pktck has quit IRC21:54
*** pktck has joined #cc21:56
nkinkadeSadly, we are already at what I believe is the newest version 3.0.19.21:57
nkinkadeNow to find some mailing list where I can complain.21:58
*** pmiller has joined #cc22:05
*** skyfaller has quit IRC22:13
paulproteusCuriously, it works okay for us.22:31
paulproteusI upgraded our PHP to lenny's, 5.2.6.22:31
paulproteusThat may have something to do with why it works for SFC but not CC.22:31
paulproteusOr we have older MW/SMW/SF/etc.22:31
*** nathany has joined #cc22:36
nathanypaulproteus: it appears that the domain dir is configured in development.ini22:36
paulproteusnathany, Oh, right.22:36
paulproteusBTW, the permissions interface will be /bureau and called "Bureaucracy".22:37
nathanyok22:37
nkinkadenathany: Removing the "st" dir from the i18n/po dir stopped the Deed from showing up, but didn't remove the link to the language.  Some poking around indicates that it may get the active_languages from something like:22:46
nkinkadedomain = queryUtility(ITranslationDomain, i18n.I18N_DOMAIN)22:46
nathanynkinkade: did you rebuild the mo files?22:46
nathany(or remove the st mo files, more specifically)22:46
nkinkadenathany: No I didn't, but are the Deeds autogenerated on staging, or maybe that's beside the point.22:47
nkinkadenathany: Removing the dir from cc/engine/locales seemed to do it.  Does this mean that removing it from Pootle, commiting, and then updating the production cc.engine and reinstalling i18n should do it?22:58
nkinkadeOr something similar to that.22:59
nathanynkinkade: yes22:59
nathanyalthough i'm not sure installing i18n will remove the directory for you22:59
nathanyso you can probably just substitute "rm locales/st" for "buildout install i18n"22:59
nkinkadeI guess I'll do that, and manually remove the locale file, if necessary.22:59
nathanyjust manually remove it -- no point in asking buildout to do it (since i suspect -- hope -- it won't)23:00
*** [mharrison] has joined #cc23:03
nkinkadepaulproteus: nathany: Is there anything to discuss with regard to SSL certificates?  I think I know Asheesh's thoughts: the cheaper the better, as it won't matter anyway.23:28
paulproteus$15 is so cheap it almost undercuts CACert.23:35
paulproteusThis is why I love RapidSSL:23:38
paulproteus2. Your RapidSSL order may get flagged by GeoTrust for a manual security audit. Such orders may take longer than ten minutes. Contact support via Live Chat in such cases.23:38
paulproteusIf "more than ten minutes" is what they apologize for, I'm already sold.23:39
*** nathany has quit IRC23:42
*** BobChao_ has joined #cc23:47
isforinsectsoh my god...23:52
isforinsectsSo much writing23:52
« Tuesday, 2008-09-02 Index Thursday, 2008-09-04 »

Generated by irclog2html.py 2.6 by Marius Gedminas - find it at mg.pov.lt!