• 0 Posts
  • 9 Comments
Joined 1 year ago
Cake day: July 11th, 2023
  • smeenz@lemmy.nztoSysadmin@lemmy.mlWindows feature that resets system clocks based on random data is wreaking havoc
    8·
    1 year ago

    The important bit:

    Simen said he believes the STS design is based on a fundamental misinterpretation of the TLS specification. Microsoft’s description of STS acknowledges that some SSL implementations don’t put the current system time of the server in the ServerUnixTime field at all. Instead, these implementations—most notably the widely used OpenSSL code library starting in 2014—populate the field with random values. Microsoft’s description goes on to say, “We have observed that most servers provide a fairly accurate value in this field and the rest provide random values.”

    “The false assumption is that most SSL implementations return the server time,” Simen said. “This was probably true in a Microsoft-only ecosystem back when they implemented it, but at that time [when STS was introduced], OpenSSL was already sending random data instead.”

  • smeenz@lemmy.nztoCanada@lemmy.caA new COVID-19 variant has emerged. Here's what we know about EG.5 so far
    141·
    1 year ago

    The problem is that the latest vaccines don’t contain the latest variant - they’re always going to be behind the curve because it takes time to develop them after a new variant emerges.

    For example, here in NZ, we’re still giving people the bivalent mix designed for the omicron BA.4/BA.5 variant (and the ones before it) which is now about 2 years old and hasn’t been seen here for about 9 months.

    There’s a non-zero level of protection from those vaccines, but they’re not keeping up with the virus in real time.