Indeed, whereas in the start menu you could just search and press enter if the only result was a file to open it, with the start screen you will get a metro app showing results when you do do the same.

I hate the full screen switch, I have 2 monitors and at least 2 apps visible on both, I don't want something to go full screen and hide everything I'm working with. I'm using classicshell and I'll probably keep using it after this update.

Also sidenote: could they bring aero back as an option at least? I have a desktop with a mid-end graphics card, I really would like my desktop to not look worse than windows 95 did...

Me too, I just updated on Arch but activating SPDY isn't working so far:

  nginx[20116]: nginx: [emerg] the "spdy" parameter requires ngx_http_spdy_module in /etc/nginx/nginx.conf:26

Seems the Arch package was built without SPDY support?

Add --with-http_spdy_module to the configure flags in your PKGBUILD. But expect problems with parallel XHR file uploads in all major browsers.

Thanks but I'm not going to build it myself, I think it's better for me if I leave that up to the package maintainers ^^

The Arch package maintainers' job mostly boils down to managing the PKGBUILD. If you get comfortable using ABS your experience with Arch will improve dramatically.

Seems the package has been updated again with SPDY support this time (1.4.0-2)

You can get a free SSL certificate at https://www.startssl.com/ , so that should not be a reason to keep you from using it.

I do agree that the extreme mistrust of browsers towards self-signed certificates is an odd thing.

> I do agree that the extreme mistrust of browsers towards self-signed certificates is an odd thing.

No, not at all; it's the whole point of SSL. The guy MITMing an SSLed website can create a cert for that site himself, but he can't get it signed by a CA. So he has to sign it himself. Thus, from the browser's perspective, all self-signed certs are possible instances of "there used to be a CA-signed cert here, but now you're being MITMed."

Now, that's not to say something like self-signed certs wouldn't be nice--given some sort of distributed pin cache, we could have something closer to an SSH/PGP model where everyone's current self-signed cert "fingerprint" is on file, and alarm bells go off if you see a cert different from the one you're supposed to see. But without that, self-signing is literally no more secure than no SSL at all: anyone else can also self-sign to MITM you.

Well, like I said--it's the whole point of SSL. If he can (and the CA responsible isn't immediately shut down), it means SSL is fundamentally broken.

It's free but they charge you to revoke a certificate, which is quite unfortunate as it discourages people from revoking if they e.g. leak their private key.

Browsers mistrust self-signed certificates because that's what a MITM attack would look like.

Nginx can (and according to wikipedia Apache can too), I have been doing so until my old certificate expired. It's called SNI (https://en.wikipedia.org/wiki/Server_Name_Indication) and if your openSSL version has support compiled in, it works without any additional configuration (Beyond just normally specifying the correct certificate and key for the correct server)

Yes, that's why I mentioned SNI in my post.

"We say atoms are bound by weak attractors. Why not admit the truth: the Universe is held together by love."

It seems like it's up again, but it's now not applying the discount? (Trying to buy Resharper c# version). The discount is there until you add it to your cart.

Edit: it seems fixed now!