Tuesday, April 29, 2014
Chrome said not to be detecting revoked security certificates for Heartbleed; Microsoft seems close on fixing IE
Dan Goodin reports in Ars Technica that the Google Chrome browser so far catches only about 3% of the security certificates revoked since the Heartbleed bug was exposed. The link is here.
That observation could give a false sense of security. If this is right and Google fixes it, browsing might start to get much slower.
Also, tonight, I got a big Windows 7 update from Microsoft on one machine, marked as “recommended”, requiring restart to take effect, but not requiring system reconfiguration. This fix might be related to or preparatory to fixing the recently discovered Internet Explorer bug. I have yet to receive a Windows 8 fix.