If GhostMail was compromised, the attacker would be able to read messages as they are being sent. Sending messages as images does not stop them from being copied or held for an indefinite amount of time.
In the unlikely scenario that the app was compromised and stayed compromised, you would be correct. However, if it was compromised and the situation was quickly rectified, only sent but unread messages would be able to be read. If a service like WhatsApp was compromised, however, a much larger amount of messages would be able to be read.
How did you test for YAML injection? From my past experiences with Ruby (hardly any) YAML injection is difficult to test from a blackbox perspective as you need an understanding of the source code in order to be able to craft the appropriate serialized YAML object to yield code execution.
Couple of methods. For one thing, we test for status codes returned for particularly crafted YAML/XML parameters. Aside from that, we also carefully craft a YAML injection using a timing attack and test blind, that way.
Why should the government have a say on this at all? The person is doing a favor for the citizens of the whole world which happens to backfire for the government which has things to hide. Just the sole fact that government might be pissed about something transparency advocating like this should be enough of a reason to support it.
It's the government which should be afraid of the people and not the people who should be afraid of the government!
Maybe you're forgetting, but this is the real world. Ideally, the government should be afraid of its people, but the US is in a far from ideal situation right now.
Which is exactly the reason why people should realize that whatever was done by Snowden is good for them. Because what Snowden did is good for them and if the government opposes it in any way then government opposes what is good for the people. Government is the enemy of the people. People should go against their government.
Is this serious? This "news" website is making an outlandish claim, yet cites not a single source.
> "The White House can’t order all 20 million of its employees around. Someone will always talk to us, and help us understand the truth behind these troubling, but somewhat ambiguous conversations and other communications. All your PRISM are belong to us, and it’s going to be this way for as long as something like PRISM exists."
Where did this quote come from? Who are they quoting? There is just so much wrong with this article.
Edit: The more I browse, the more this site seems like a less funny version of The Onion. Here are some choice articles chronicle.su has published in the past:
Stephen Hawking joins Illuminati, snubs Israel
Amanda Bynes dead at 27, inventor of ‘lol’ signs off [she is still alive]
Margaret Thatcher, Illuminati leader, dead at 87
Fascist Zune Conspiracy Exposed
It's almost as if he's speaking to a cult. Might as well have said something along the lines of "Obama is the savior of the US. Let him into your heart and soul and you will know it to be true. Go forth and vote!"
Wait.. are you being sarcastic or you really don't realize that Obama was making a joke when he said that? I remember when he said it and certain media outlets sort of went crazy - but the audience just laughed.
I saw a comment last week on HN that mentioned how incompetent and generally stupid FBI agents are, and cited as evidence failure to prevent the Boston marathon bombing.
People are blame crazy these days, they have to find someone at fault. Every single thing that happens recently from a Tornado to a bombing has 24 hour media asking who to blame.
I always thought it was due to a comment being of less than a certain number of characters, as a way of diminishing throwaway comments that may generally not add much to a debate.
I guess not?
