More

TwoNineFive · 2026-02-18T06:17:12 1771395432

You didn't read it or understand it.

TwoNineFive · 2026-02-18T06:16:14 1771395374

Your license to website has been revoked.

jacquesm · 2026-02-18T10:33:51 1771410831

You're joking, but still: that's one very possible outcome of both requiring centrally issued certificates for security reasons and browsers refusing to display websites without.

Effectively certificates are now a license to publish.

devsda · 2026-02-18T10:52:12 1771411932

On a PC we atleast have an out.

On mobile, user certs are pretty much ignored unless opted in by apps. Even firefox allows user certs (for now) but only via an obscure hidden config.

This means we cannot use self-hosted services even using a VPN with official apps without getting a signed cert.

dns_snek · 2026-02-18T13:14:15 1771420455

> This means we cannot use self-hosted services even using a VPN with official apps without getting a signed cert.

What do you mean by this? Any service that is designed to be self-hosted will have an app that accepts user-installed CAs. HomeAssistant, for example.

TwoNineFive · 2026-02-15T00:42:08 1771116128

It's regrettable that you would spread misinformation, and easily explained/debunked information at that. This is a reasonably well-known issue and even with the extremely bad and limited information you provided (no model numbers or other info), I already know exactly what your problem is.

TwoNineFive · 2026-02-08T09:03:28 1770541408

COVID saved Trump. His policies, such as the section 174 tax change, were tanking the economy in 2019, and we would have likely seen a recession in 2020-2021 instead of 2022.

His solution to COVID was to tell the public to inject themselves with bleach. Or just go get infected and let natural selection figure it out.

It was no more a joke than the racist cartoon he posted the other day.

You need consequences.

TwoNineFive · 2026-02-03T07:00:48 1770102048

Binisoft WFC for Windows is a free outbound firewall. It was acquired by MalwareBytes awhile back, but they have not interfered with development so far.

https://www.binisoft.org/wfc.php

It has some areas where improvement is needed, but the fundamentals work and the user interface design is decent.

I am surprised it's not more popular for Windows users. All of the alternatives I've tried have critical issues which made me dismiss them as unserious.

TwoNineFive · 2026-01-18T08:34:55 1768725295

> IPSec is terrible, huge, and messy standard that company that made it took 20 years to stop getting CVE every year

This is fact, not FUD.

Microsoft has had multiple RCE vulns in their ipsec stack in the last two years.

The big vendors like Cisco had ipsec vulns for decades.

These days the issues are pretty well known and documented, but it really is a bad standard.

TwoNineFive · 2026-01-17T17:13:33 1768670013

Teens gets Thinkpads as hand-me-downs from parents and as used devices in the aftermarket. Lenovo has also spent some considerable efforts in this advertising space. That's why I just call them Teenpads now.

TwoNineFive · 2026-01-17T16:09:03 1768666143

This is abusive toxic positivity, no different than "it's just a joke bro."

idiotsecant · 2026-01-18T02:50:12 1768704612

You have a terminal case of taking yourself too seriously, I'm afraid. 0-80 years, tops.

hackable_sand · 2026-01-17T17:58:59 1768672739

It's not

TwoNineFive · 2025-12-26T03:46:53 1766720813

Webdevs still security ignorant. Actually just ignorant. Not sorry to say that because it's beyond true.

TwoNineFive · 2025-12-20T09:13:44 1766222024

The word "advert" is nowhere on that page, so I know it's worthless.

At least half of all HN content on any day is self-serving blogs and plausibly deniable adverts.