shift or die

security. photography. foobar.

Slow News Day

Must have been a slow news day over at heise security — there is no other explanation on why they would post an article (german / english) about my recent OpenCA XSRF advisory. Granted, it is a case of XSRF that has quite an effect — arbitrary certificate issuance being the worst, but how many OpenCA users are actually reading the Heise ticker? You can even notice this by the extremely low comment count :-) But what the hell, who am I to complain, every day my name gets mentioned on Heise is a good day :-)