Hacker Newsnew | past | comments | ask | show | jobs | submit | markgamache1's commentslogin

DO NOT DO THIS. Having worked in customer care security, I can gaurantee that the note will be missed or ignored.


It's called the internet. That's what it does. Do you ask why bacon is delicious?


Sounds like an opportunity for someone to make consulting money. I have found their docs lacking, but never tried support. Once I muddled through and figured out what I needed, I have been very happy.

That said, I have looked for alternatives and found none.

I am most disappointed in the mediocre coverage of their RDP drivers. I need to use all the features over RDP. Some work and some don't.


Perhaps?

* Do not allow smart card redirection Group Policy object


Lol! Free isn't free. Your desires are a commodity up for sale. The how doesn't matter. When you discover and block one way, another is created. This happened because you use Google and Facebook.


Why is asking a forum and not just googling still a thing???


Because when you ask a forum you're likely to spark a conversation and gain insight you may not have otherwise. Also, when others are curious in the future, when they search Google the discussion will be in the results, allowing readers in the future to get a decent understanding of the answer and some related concepts.


YOU ARE DESTROYING THE INTERNET

Training users, who have no way to properly asses this risk, to click OK to the SSL error, is like Jim Jones's practice runs drinking the Koolaide.

Firefox had it right when the briefly made it impossible to OK the use of misconfigured SSL.

Most IT people don't understand the risk of self-signed certs. We can't expect users to make good choices here.


Except for the fact that the CA system is centralized and easily corruptable, giving everyone a false sense of security. Yes, signing your cert gives you some protection, however let's not kid ourselves that any CA could be susceptible to payoffs or gag orders. It comes down to trusting some slimy security company. We need decentralized CA systems before we can kick back and think we're actually secure.


In re: Jim Jones. That isn't cute.


It's still more secure than plain-text http tho.


Since there's no way to distinguish MITM and an unverified certificate, it can make people think they are secure when they are not. That's not "more secure".


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: