Recent Comments
- Delicious 轉移到實體機器上... | Gea-Suan Lin's BLOG on Pinboard 收購 Delicious
- Peter Dave Hello on Tails 3.0 出了,然後又開始提供 BitTorrent 下載了...
- Tails 3.0 出了,然後又開始提供 BitTorrent 下載了... | Gea-Suan Lin's BLOG on BitTorrent 對 SHA-1 的改善計畫?
- CClark on CityBikes 的網站 (以及 API)
- Gea-Suan Lin on MySQL 5.6/5.7/5.8 在 single thread 時的效能比較
Archives
- June 2017 (28)
- May 2017 (59)
- April 2017 (55)
- March 2017 (55)
- February 2017 (35)
- January 2017 (42)
- December 2016 (48)
- November 2016 (32)
- October 2016 (35)
- September 2016 (78)
- August 2016 (69)
- July 2016 (19)
- June 2016 (42)
- May 2016 (61)
- April 2016 (51)
- March 2016 (74)
- February 2016 (87)
- January 2016 (31)
- December 2015 (36)
- November 2015 (61)
- October 2015 (72)
- September 2015 (53)
- August 2015 (42)
- July 2015 (38)
- June 2015 (30)
- May 2015 (18)
- April 2015 (57)
- March 2015 (41)
- February 2015 (50)
- January 2015 (35)
- December 2014 (50)
- November 2014 (56)
- October 2014 (41)
- September 2014 (37)
- August 2014 (37)
- July 2014 (28)
- June 2014 (50)
- May 2014 (32)
- April 2014 (46)
- March 2014 (38)
- February 2014 (29)
- January 2014 (52)
- December 2013 (50)
- November 2013 (45)
- October 2013 (40)
- September 2013 (48)
- August 2013 (22)
- July 2013 (25)
- June 2013 (13)
- May 2013 (16)
- April 2013 (28)
- March 2013 (37)
- February 2013 (36)
- January 2013 (57)
- December 2012 (44)
- November 2012 (10)
- October 2012 (12)
- September 2012 (21)
- August 2012 (21)
- July 2012 (25)
- June 2012 (8)
- May 2012 (10)
- April 2012 (11)
- March 2012 (10)
- February 2012 (11)
- January 2012 (5)
- December 2011 (13)
- November 2011 (12)
- October 2011 (10)
- September 2011 (7)
- August 2011 (5)
- July 2011 (11)
- June 2011 (21)
- May 2011 (22)
- April 2011 (36)
- March 2011 (43)
- February 2011 (23)
- January 2011 (24)
- December 2010 (34)
- November 2010 (19)
- October 2010 (16)
- September 2010 (15)
- August 2010 (10)
- July 2010 (12)
- June 2010 (3)
- May 2010 (3)
- April 2010 (4)
- March 2010 (8)
- February 2010 (14)
- January 2010 (13)
- December 2009 (16)
- November 2009 (28)
- October 2009 (24)
- September 2009 (12)
- August 2009 (7)
- July 2009 (10)
- June 2009 (11)
- May 2009 (22)
- April 2009 (21)
- March 2009 (18)
- February 2009 (7)
- January 2009 (32)
- December 2008 (19)
- November 2008 (12)
- October 2008 (15)
- September 2008 (14)
- August 2008 (15)
- July 2008 (18)
- June 2008 (20)
- May 2008 (19)
- April 2008 (27)
- March 2008 (22)
- February 2008 (21)
- January 2008 (15)
- December 2007 (22)
- November 2007 (17)
- October 2007 (29)
- September 2007 (31)
- August 2007 (34)
- July 2007 (31)
- June 2007 (36)
- May 2007 (23)
- April 2007 (22)
- March 2007 (30)
- February 2007 (50)
- January 2007 (75)
- December 2006 (48)
- November 2006 (59)
- October 2006 (89)
- September 2006 (29)
- August 2006 (48)
- July 2006 (14)
- June 2006 (35)
- May 2006 (62)
- April 2006 (63)
- March 2006 (72)
- February 2006 (83)
- January 2006 (56)
- December 2005 (46)
- November 2005 (60)
- October 2005 (27)
- September 2005 (54)
- August 2005 (83)
Tags
Categories
- Anime (29)
- AWS (408)
- BBS (22)
- Blog (248)
- Book (31)
- Bridge (1)
- Browser (520)
- Cassandra (2)
- CDN (180)
- Cloud (549)
- CMS (58)
- Comic (19)
- Computer (4,388)
- Computer and Network Center (33)
- CSS (67)
- Database (414)
- DNS (124)
- Editor (24)
- Financial (88)
- Firefox (229)
- Food (14)
- FreeBSD (139)
- FTP (3)
- Game (60)
- GCP (4)
- Go (1)
- GoogleChrome (162)
- Hardware (378)
- IE (96)
- Joke (159)
- Lab (4)
- Library (2)
- Linux (171)
- MacOS (30)
- Mail (118)
- MariaDB (19)
- Movie (34)
- Murmuring (4,525)
- Music (49)
- MySQL (292)
- NCTU (65)
- NetBSD (7)
- Network (3,204)
- OpenBSD (8)
- Opera (26)
- OS (387)
- P2P (131)
- Photo (72)
- Political (123)
- PostgreSQL (41)
- Privacy (2)
- Programming (753)
- Recreation (532)
- RSS (78)
- Safari (38)
- Science (95)
- Search Engine (180)
- Security (1,026)
- Service (22)
- SMS (10)
- Social (210)
- Software (2,322)
- Spam (107)
- Sport (10)
- Telephone (115)
- Television (61)
- Usenet (14)
- Vim (13)
- VPN (16)
- Wiki (48)
- Windows (74)
- WWW (1,606)
Blogroll
Meta
Tag Archives: mozilla
利用 Unicode Domain 釣魚,以及 Chrome 與 Firefox 的解法
一個多禮拜前引起蠻多討論的一篇文章,利用 Unicode Domain 釣魚的方法:「Phishing with Unicode Domains」。 由於這是幾乎完美的攻擊,所以被提出來後 (Security: Whole-script confusable domain label spoofing) 有不少討論: This bug was reported to Chrome and Firefox on January 20, 2017 and was fixed in the Chrome trunk on March 24. The fix is … Continue reading
在 Ubuntu 上跑 Selenium (Google Chrome 與 Firefox)
最近可能會用到,所以開了一台 EC2 instance 跑 Ubuntu 16.04 測試 Selenium。拿 Chrome 與 Firefox,Linux 平台上兩個主要的瀏覽器。 要讓他動還蠻簡單的,只是不知道真的用下去後,後面會遇到多少地雷 XDDD 基本上是按照「Installing Selenium and ChromeDriver on Ubuntu」這篇文章的方法安裝,有幾點可以注意一下: ChromeDriver 可以翻一下最新版,文件上寫的是 2.26,但現在最新的是 2.27 (寫這篇時)。 雖然寫「(Optional) Create and enter a virtual environment」表示可以不做,但不做其實不會動 (看錯誤訊息像是要建立目錄時權限不夠),所以乖乖的用 virtual environment 裝在自己目錄下吧 XDDD 同理,Firefox 用 APT … Continue reading
Firefox 下一個版本 (52) 將預設關閉 SHA-1 支援
順著 SHA-1 正式被打穿,Mozilla 也正式宣佈從下一個版本的 Firefox 將完全關閉 SHA-1 支援 (看敘述應該還是可以透過 about:config 開):「The end of SHA-1 on the Public Web」。 As announced last fall, we’ve been disabling SHA-1 for increasing numbers of Firefox users since the release of Firefox 51 using a … Continue reading
Facebook 與 Google Chrome 以及 Firefox 的人合作降低 Reload 使用的資源
Facebook 花了不少時間對付 reload 這件事情:「This browser tweak saved 60% of requests to Facebook」。 Facebook 的人發現有大量對靜態資源的 request 都是 304 (not modified) 回應: In 2014 we found that 60% of requests for static resources resulted in a 304. Since content addressed URLs never … Continue reading
下個版本 Firefox 的 Multi-Process 將預設全面開啟
Mozilla 說明了 Multi-Process 最近的一些進度:「Update on Multi-Process Firefox」。 就目前測試的資料看起來,速度大幅提昇: Those users have been enjoying the 400% increase in responsiveness and a 700% improvement when web pages are loading. 現在的 Firefox 是 50 版,目前的情況是當 extension 標成 multi-process compatible 就會啟用: With Firefox 49 … Continue reading
Mozilla 也在考慮對 Certificate Transparency 的掌握度
由於 Firefox 要支援 Certificate Transparency 的緣故,在「Mozilla CT Policy」這邊 Mozilla 在討論要建立自己的 CT policy 以及自己的架構: CT is coming to Firefox. As part of that, Mozilla needs to have a set of CT policies surrounding how that will work. Like our root inclusion … Continue reading
Mozilla 對 WoSign + StartCom 的正式處分
Mozilla 對 WoSign + StartCom 的不信任處分出爐了:「Distrusting New WoSign and StartCom Certificates」,最後處分的內容跟之前的討論差不多 (參考先前寫的「Mozilla 對於 WoSign + StartCom 根憑證的新發展:拔除」)。 Mozilla 台灣有放出中文版的說明 (差不多就是英文翻譯的版本):「取消對 WoSign 與 StartCom 新簽發憑證的信任」。 這次比較麻煩的地方在於要信任已經發出的 certificate,而且量太大無法窮舉。所以必須改增加程式碼處理,而這個方法無法對使用 Mozilla CA Certificate Store 的人生效 (因為這包套件只是一堆 pem 檔案,沒辦法放特殊的邏輯進去...) 另外現在 Firefox 是 49 版,要到 51 … Continue reading
Mozilla 對於 WoSign + StartCom 根憑證的新發展:拔除
Okay,在 Mozilla 的人跟 WoSign + StartCom + 360 的人談過後有了新的進展。 幾個小時前 Mozilla 提了新版的草案出來 (對,還是草案):「Remediation Plan for WoSign and StartCom」。但由於 Kathleen Wilson 跟 Gervase Markham 都沒有太多意見,我猜這應該會接近定案了。 這次的處分草案由 Kathleen Wilson 發出來,會包括這些 root certificate,可以看到包括了所有 WoSign 與 StartCom 的 CA: 1) Subject: CN=CA 沃通根证书, OU=null, … Continue reading
Comodo 取消對 WoSign CA 的 Cross-signed
剛剛看到 Comodo 的 Rob Stradling 在群組上說明了 Comodo 透過 CRL 與 OCSP 取消對 WoSign CA 的 cross-signed:「Incidents involving the CA WoSign」。 Today we have revoked (via CRL and OCSP) all 3 of the cross-certificates that we'd issued to WoSign: https://crt.sh/?id=3223853 https://crt.sh/?id=12716343 … Continue reading
iOS 阻擋 WoSign 憑證
在 mozilla.dev.security.policy 上看到有人行動了:「Apple's response to the WoSign incidents」。這使得 Apple 成為 WoSign 事件中第一個行動的單位。 Apple 這次先把 WoSign 放入 iOS 憑證清單的黑名單公告在這邊:「Blocking Trust for WoSign CA Free SSL Certificate G2」。 WoSign 在 iOS 產品線中是靠 StartCom 與 Comodo 的交叉簽章,所以如果 Apple 只想擋 WoSign 憑證的話,必須以阻擋 Intermediate CA … Continue reading