Comments for Michael N. Dundas http://michaeldundas.com Precision, Integrity, Communication Fri, 30 Mar 2012 09:51:26 +0000 hourly 1 http://wordpress.org/?v=3.3.2 Comment on Imeem vs. Last.fm by Complicated imeem | Seelane http://michaeldundas.com/2009/05/01/imeem-vs-lastfm/comment-page-1/#comment-42812 Complicated imeem | Seelane Fri, 30 Mar 2012 09:51:26 +0000 http://kaizen.michaeldundas.com/?p=302#comment-42812 [...] Imeem vs. Last.fm | Michael N. DundasMay 1, 2009 … I have been trying Imeem out over the last week. … The user interface is quite complicated, and I think it should be simplified more — some … [...] [...] Imeem vs. Last.fm | Michael N. DundasMay 1, 2009 … I have been trying Imeem out over the last week. … The user interface is quite complicated, and I think it should be simplified more — some … [...]

]]> Comment on You will make a difference. Don’t worry about that. by Fernando Montenegro http://michaeldundas.com/2011/11/13/you-will-make-a-difference-dont-worry-about-that/comment-page-1/#comment-42628 Fernando Montenegro Wed, 25 Jan 2012 16:50:00 +0000 http://michaeldundas.com/?p=2600#comment-42628 Just came across your site and this entry. Thank you. It is indeed an amazing lesson.  Just came across your site and this entry. Thank you. It is indeed an amazing lesson. 

]]> Comment on You can still be detected if using a proxy by Kaskus http://michaeldundas.com/2009/11/02/you-can-still-be-detected-if-using-a-proxy/comment-page-1/#comment-42595 Kaskus Mon, 09 Jan 2012 23:49:00 +0000 http://michaeldundas.com/?p=1052#comment-42595 SO HOW TO BECOME UNDETECTABLE???? SO HOW TO BECOME UNDETECTABLE????

]]> Comment on You will make a difference. Don’t worry about that. by Anonymous http://michaeldundas.com/2011/11/13/you-will-make-a-difference-dont-worry-about-that/comment-page-1/#comment-42549 Anonymous Sun, 25 Dec 2011 18:50:00 +0000 http://michaeldundas.com/?p=2600#comment-42549 Hi Chris, Yes I own Clear2Go.com.  It is my consulting business. -mike Hi Chris,
Yes I own Clear2Go.com.  It is my consulting business.
-mike

]]> Comment on You will make a difference. Don’t worry about that. by Chris Gibson http://michaeldundas.com/2011/11/13/you-will-make-a-difference-dont-worry-about-that/comment-page-1/#comment-42504 Chris Gibson Fri, 09 Dec 2011 09:39:00 +0000 http://michaeldundas.com/?p=2600#comment-42504 Sorry to go off topic, I couldn't see another way to contact you. Do you know that www.clear2go.com is redirecting to your site? Sorry to go off topic, I couldn’t see another way to contact you. Do you know that http://www.clear2go.com is redirecting to your site?

]]> Comment on SSL Decryption is becoming the norm by Clear2Go http://michaeldundas.com/2010/06/22/ssl-decryption-is-becoming-the-norm/comment-page-1/#comment-42368 Clear2Go Wed, 09 Nov 2011 02:49:00 +0000 http://michaeldundas.com/?p=1838#comment-42368 Hi Becker.  Yes I agree with what you are saying.  Good points!  Of course, most users going to public sites (banking, Paypal etc.), don't deploy client certificates, so while the communication is encrypted, a simple 'proxy' is usually sufficient to MITM.  Studies show certificate mis-matches are typically just overridden by the end user and as you indicated there are ways to control the root certificates in the store.  Many products now actively do this and are being deployed by businesses so they can control what the users does inside SSL.  Thanks for commenting -- appreciated. Hi Becker.  Yes I agree with what you are saying.  Good points!  Of course, most users going to public sites (banking, Paypal etc.), don’t deploy client certificates, so while the communication is encrypted, a simple ‘proxy’ is usually sufficient to MITM.  Studies show certificate mis-matches are typically just overridden by the end user and as you indicated there are ways to control the root certificates in the store.  Many products now actively do this and are being deployed by businesses so they can control what the users does inside SSL. 

Thanks for commenting — appreciated.

]]> Comment on SSL Decryption is becoming the norm by Becker Williams http://michaeldundas.com/2010/06/22/ssl-decryption-is-becoming-the-norm/comment-page-1/#comment-42366 Becker Williams Tue, 08 Nov 2011 17:34:00 +0000 http://michaeldundas.com/?p=1838#comment-42366 Hi Michael - as you of course know - only single side SSL can be decrypted by MITM. Mutually authenticated SSL, where both the server and the client have both public and private keys, cannot, today, be decrypted. There are a whole set of other issues in the single side case that have to be addressed by a decryptor, including cert mismatch, and signing keys at the intermediary either signed by a well known root, or the signing key cert has to be installed in the client (victims) root certificate store. These can be overcome (and are) by various mechanisms - but he real key (no pun intended) is that were client keys and certs more widely deployed, the current techniques for SSL decryption would be rendered useless. Cheers! ~r Hi Michael – as you of course know – only single side SSL can be decrypted by MITM. Mutually authenticated SSL, where both the server and the client have both public and private keys, cannot, today, be decrypted. There are a whole set of other issues in the single side case that have to be addressed by a decryptor, including cert mismatch, and signing keys at the intermediary either signed by a well known root, or the signing key cert has to be installed in the client (victims) root certificate store. These can be overcome (and are) by various mechanisms – but he real key (no pun intended) is that were client keys and certs more widely deployed, the current techniques for SSL decryption would be rendered useless.

Cheers!

~r

]]> Comment on How I now manage my email and meeting requests by Clear2Go http://michaeldundas.com/2011/09/26/how-i-now-manage-my-email-and-meeting-requests/comment-page-1/#comment-39245 Clear2Go Sat, 01 Oct 2011 14:43:37 +0000 http://michaeldundas.com/?p=2523#comment-39245 Simon, no worries ... you fall into a couple of categories on my search folders :) Simon, no worries … you fall into a couple of categories on my search folders :)

]]> Comment on How I now manage my email and meeting requests by Simon Laurin http://michaeldundas.com/2011/09/26/how-i-now-manage-my-email-and-meeting-requests/comment-page-1/#comment-39206 Simon Laurin Fri, 30 Sep 2011 19:45:42 +0000 http://michaeldundas.com/?p=2523#comment-39206 ...and here is how I managed to get your attention without showing up in your search folders. :P …and here is how I managed to get your attention without showing up in your search folders. :P

]]> Comment on Tracking with Local Shared Objects (LSO) by phil http://michaeldundas.com/2009/09/15/tracking-with-local-shared-objects-lso/comment-page-1/#comment-39153 phil Mon, 26 Sep 2011 13:30:10 +0000 http://michaeldundas.com/?p=926#comment-39153 Hi. I've been using Better Privacy to delete them as they are put on, but is there a way to prevent them? Tracking is no different to stalking no matter hwat excuses they give for using them Hi. I’ve been using Better Privacy to delete them as they are put on, but is there a way to prevent them? Tracking is no different to stalking no matter hwat excuses they give for using them

]]>