Amsterdam Vallon - Slashdot User

Comment WHOSE technical problems? (Score 5, Informative) 71

by Thud457 on Monday April 14, 2014 @11:28AM (#46747815) Attached to: NASA To Send SpaceX Resupply Capsule To ISS Despite Technical Problems

please note, the technical problems are on the ISS and have noting to do with any Space X equipment.

Comment Re:Drop Dropbox (Score 1) 448

by grub on Sunday April 13, 2014 @11:55PM (#46744231) Attached to: Commenters To Dropbox CEO: Houston, We Have a Problem

Dedupes client side.

Comment not fast (Score 3, Insightful) 117

by lgalindo on Saturday April 12, 2014 @05:19PM (#46735813) Attached to: Linux 3.15 Will Suspend & Resume Much Faster

will be happy if it does it right ...

Comment Re:Drop Dropbox (Score 2) 448

by grub on Saturday April 12, 2014 @10:18AM (#46733241) Attached to: Commenters To Dropbox CEO: Houston, We Have a Problem

I have my own domains and do this with tunnelled rsync to a NAS4Free box, though for long term storage I like SpiderOak (and TarSnap). SpiderOak keeps historical versions and dedupes the data.

Comment Drop Dropbox (Score 1) 448

by grub on Saturday April 12, 2014 @08:56AM (#46732879) Attached to: Commenters To Dropbox CEO: Houston, We Have a Problem

Try SpiderOak. Free 2 GB, zero-knowledge, secure. Works on a load of OSs and devices.

I'm a completely satisfied customer.

Comment Fork it. (Score 4, Funny) 149

by grub on Friday April 11, 2014 @05:53PM (#46729711) Attached to: NSA Allegedly Exploited Heartbleed

Theo de Raadt should fork OpenSSL. He could call it OpenOpenSSL.

.

Comment WHO's the REAL threat? hmmmmmm?! (Score 1) 111

by Thud457 on Friday April 11, 2014 @05:40PM (#46729615) Attached to: $250K Reward Offered In California Power Grid Attack

I think he's saying a lazy, greedy, corporation is more dangerous than 1000 imaginary terrerists.

Submission + - NSA said to have used Heartbleed bug for years (bloomberg.com)

Submitted by grub on Friday April 11, 2014 @05:11PM

grub writes: The U.S. National Security Agency knew for at least two years about a flaw in the way that many websites send sensitive information, now dubbed the Heartbleed bug, and regularly used it to gather critical intelligence, two people familiar with the matter said.

The NSA’s decision to keep the bug secret in pursuit of national security interests threatens to renew the rancorous debate over the role of the government’s top computer experts.

Comment So... (Score 1) 53

by grub on Friday April 11, 2014 @04:12PM (#46728883) Attached to: Chinese Man On Trial For Spreading False Rumors Online

... it's kind of like a Chinese Snopes, except you go to jail rather than being unfriended.

Comment moderns EDUCATED STUPID on equality (Score 3, Interesting) 581

by Thud457 on Friday April 11, 2014 @12:17PM (#46726321) Attached to: Michael Bloomberg: You Can't Teach a Coal Miner To Code

It seems like some of the less deep thinkers these days get confused by our societal value of equality.
When the founding fathers said said "all men are created equal", they meant that the government should treat everybody the same out of general fairness.
They didn't mean that Dr J and Albert Einstein have the same attributes.

Anyhow, you most likely won't be successful retraining most coal miners to write code.
But it's not much of a stretch for most coders, particularly brogrammers like Marky Z, to learn to shovel shit.

Comment what's cable, grandpa? (Score 0) 133

by Thud457 on Friday April 11, 2014 @09:50AM (#46724571) Attached to: Comcast PAC Gave Money To Every Senator Examining Time Warner Cable Merger

who the hell still pays for cable? cavemen?!
All the smart kids just stream games of throne on their smartphones. HA! You thought you had me there, but see, I didn't say on their itermanets!

The ONLY thing cable has to offer is live events (S P O R T S), and face it, this is slashdot.

Comment Re:Whatever you may think ... (Score 5, Informative) 447

by grub on Thursday April 10, 2014 @10:58PM (#46721719) Attached to: Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake

From the proof-of-concept page I mentioned above.

Conclusion It is quite obvious in light of the recent revelations from Snowden that this weakness was introduced by purpose by the NSA. It is very elegant and leaks its complete internal state in only 32 bytes of output, which is very impressive knowing it takes 32 bytes of input as a seed.

Here is the Github repo for the PoC code.

This PRNG is not the NSA making a crypto system stronger ala DES, it's a backdoor.

Comment Re:Whatever you may think ... (Score 3, Interesting) 447

by grub on Thursday April 10, 2014 @09:32PM (#46721227) Attached to: Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake

[sorry, link screwed up in my reply, should have checked more closely.]

There is also a nice proof-of-concept backdoor with a link to the github repo.

Comment Re:Whatever you may think ... (Score 4, Informative) 447

by grub on Thursday April 10, 2014 @09:30PM (#46721219) Attached to: Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake

RSA has denied having knowledge of the backdoor, says NSA tricked them, and has never denied the $10M payout. Some of Snowden's leaks mention it.
Reuters has a summary

proof-of-concept backdoor with a link to the github repo.

None of that is a smoking gun, but there is enough smoke to tell me there is a fire.

Comment Re:Whatever you may think ... (Score 5, Insightful) 447

by grub on Thursday April 10, 2014 @09:10PM (#46721009) Attached to: Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake

Boy, if there's one thing that could ever kill Open Source it would be being held legally liable for a commit with a bug in it.

It burns me that RSA is not held liable for their $10M NSA backdoor in Dual_EC_DRBG PRNG. Customers should be flocking in droves but RSA gives enough swag at conferences that the suits don't care.

Your privacy sold off for $10M and some mouse pads.

Slashdot Top Deals