From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id ABD75138247 for ; Tue, 5 Nov 2013 17:02:34 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id BBA37E0AD9; Tue, 5 Nov 2013 17:02:21 +0000 (UTC) Received: from mout.perfora.net (mout.perfora.net [74.208.4.194]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id D04B1E0ABF for ; Tue, 5 Nov 2013 17:02:20 +0000 (UTC) Received: from localhost (66-208-231-133.ubr01a.rte20201.pa.hfc.comcastbusiness.net [66.208.231.133]) by mrelay.perfora.net (node=mrus2) with ESMTP (Nemesis) id 0LjIzX-1WCG5V0k3T-00dMli; Tue, 05 Nov 2013 12:02:19 -0500 Date: Tue, 5 Nov 2013 11:02:17 -0600 From: mingdao To: gentoo-dev@lists.gentoo.org Subject: Re: [gentoo-dev] friendly reminder wrt net virtual in init scripts Message-ID: <20131105170217.GR22282@server> References: <20131105033007.GA23263@linux1> <20131105144915.GM22282@server> <52791F2E.2020704@orlitzky.com> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <52791F2E.2020704@orlitzky.com> User-Agent: Mutt/1.5.21 (2010-09-15) X-Provags-ID: V02:K0:7lliaM6701OWlm1wO5lwxu1MvYMoVosg4es4zI6EmSL MNaBf2gvX39z+zuh5kJYbw76f4pgC8RAi01xHIjW11okSfFBIo Kl1N50behki12CvRbN+rUug3dad9zvdCTO7eSRWjnWru215JUA 1hLXV2ukQl0BasILX/kZelKVrfyi6PuspvNY0cJJwfbS/e+ayj CHy+RhhbN7n3wK+IgUbX7jfc1C8WEd0307bkKgo4NsYGrMYg+W A9Dc1B7AAiEpnrTkvYLxeBDLdhUygf4syZxDaDfDJR2Lw0Cslq 2h1rmlc1Yjo6bgP5GUz17B2CoxvZVtPDG7hUqq+uaL1UjbTpXs dh+MMfi8VE9Md7B9npRbqaIgy2MeyajL6a4Dbpi+o X-Archives-Salt: 99145c03-e926-4931-81fa-1fa3e31eab59 X-Archives-Hash: 0102e24304b191ba3291b8a025c4943c On Tue, Nov 05, 2013 at 11:39:10AM -0500, Michael Orlitzky wrote: > > You should disable OCSP anyway. In Firefox, it's under, > > Edit -> Preferences -> Advanced -> Encryption -> Validation > > The OCSP protocol is itself is vulnerable to MITM attacks, which is cute > when you consider its purpose. > > Moreover, it sends the address of every website you visit to a third > party, which is the real reason to disable it IMO. Thanks for the information, Michael. My Firefox had a slightly different $PATH as shown in the attached screenshot. Edit -> Preferences -> Advanced -> Certificates -> Validation www-client/firefox-24.1.0-r1 (didn't do the upgrade to www-client/firefox-25.0-r1 today due to unstable libpng-1.6.6 being pulled with the new subslot philosophy) -- Happy Penguin Computers >') 126 Fenco Drive ( \ Tupelo, MS 38801 ^^ support@happypenguincomputers.com 662-269-2706 662-205-6424 http://happypenguincomputers.com/ A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in e-mail? Don't top-post: http://en.wikipedia.org/wiki/Top_post#Top-posting