Become a fan of Slashdot on Facebook


Forgot your password?

Comment Re:Tolls? (Score 1) 837

I'd like to see flat fuel taxes indexed to inflation. A ten-cent per gallon tax that might have been sufficient in 1990 is falling woefully short of that mark in 2015 (it should be about 18 cents per gallon now) and while it wouldn't necessarily obviate the need for per-mile taxes, they might not be seen as so important to consider, at least not yet.

Coincidentally, I read an article this morning about a lab at a Texas university where they can simulate years of road wear in a few weeks. They have an axle capable of replicating the weight of a tractor-trailer (and up to double it) that can do 100,000 passes a week, including variance of up to 18 inches each way to simulate vehicles traveling in different parts of the lane. They use it to test different road structures, and experiments are due to wrap up this summer with papers to follow. Clever contraption, but what caught my eye was the claim that a mere 5% increase in average duration for a road material translates to about $50 million in annual savings for the roadways maintained by the state of Texas. Given the massive shortfall in roadway funding in the state, it would be nice to see something that gets a 25% or greater increase. There are plenty of highways (let alone streets) that are nightmares to drive on in the winter after the ice.

Comment NetUSB=proprietary. Is there an open replacement? (Score 2) 70

It happens I could use remote USB port functionality.

(Right now I want to run, on my laptop, a device that requires a Windows driver and Windows-only software. I have remote access to a Windows platform with the software and driver installed. If I could export a laptop USB port to the Windows machine, it would solve my problem.)

So NetUSB is vulnerable. Is there an open source replacement for it? (Doesn't need to be interworking if there are both a Linux port server and a Windows client-pseudodriver available.)

Comment Opportunity to detect MITM attacks? (Score 4, Interesting) 71

I skimmed the start of the paper. If I have this right:

  - Essentially all the currently-deployed web servers and modern browsers have the new, much better, encryption.
  - Many current web servers and modern browsers support talking to legacy counterparts that only have the older, "export-grade", crypto, which this attack breaks handily.
  - Such a server/browser pair can be convinced, by a man-in-the-middle who can modify traffic (or perhaps an eavesdropper-in-the-middle who can also inject forged packets) to agree to use the broken crypto - each being fooled into thinking the broken legacy method is the best that's available.
  - When this happens, the browser doesn't mention it - and indicates the connection is secure.

Then they go on to comment that the characteristics of the NSA programs leaked by Snowden look like the NSA already had the paper's crack, or an equivalent, and have been using it regularly for years.

But, with a browser and a web server capable of better encryption technologies, forcing them down to export-grade LEAKS INFORMATION TO THEM that they're being monitored.

So IMHO, rather than JUST disabling the weak crypto, a nice browser feature would be the option for it to pretend it is unpatched and fooled, but put up a BIG, OBVIOUS, indication (like a watermark overlay) that the attack is happening (or it connected to an ancient, vulnerable, server):
  - If only a handful of web sites trip the alarm, either they're using obsolete servers that need upgrading, or their traffic is being monitored by NSA or other spooks.
  - If essentially ALL web sites trip the alarm, the browser user is being monitored by the NSA or other spooks.

The "tap detector" of fictional spy adventures becomes real, at least against this attack.

With this feature, a user under surveillance - by his country's spooks or internal security apparatus, other countries' spooks, identity thieves, corporate espionage operations, or what-have-you, could know he's being monitored, keep quiet about it, lie low for a while and/or find other channels for communication, appear to be squeaky-clean, and waste the tapper's time and resources for months.

Meanwhile, the NSA, or any other spy operation with this capability, would risk exposure to the surveilled time it uses it. A "silent alarm" when this capability is used could do more to rein in improper general surveillance than any amount of legislation and court decisions.

With open source browsers it should be possible to write a plugin to do this. So we need not wait for the browser maintainers to "fix the problem", and government interference with browser providers will fail. This can be done by ANYBODY with the tech savvy to build such a plugin. (Then, if they distribute it, we get into another spy-vs-spy game of "is this plugin really that function, or a sucker trap that does tapping while it purports to detect tapping?" Oops! The source is open...)

Comment Re:Tolls? (Score 4, Insightful) 837

Well, with electronic toll-paying that could work, but it would still shift the burden from low MPG to high MPG cars.

The great thing about a gas tax is that it's a simple way to kill two birds with one stone: encouraging higher mileage and paying for infrastructure. The problem is that not everyone agrees that both birds are important. Two-birders think that high mileage vehicles should be discouraged because of externalized costs -- pollution mainly, but also space required in parking lots, greater risk to other road users etc. One-birders don't care about externalities but understand that the roads and bridges need to be repaired. Zero-birders are just idiots.

I'm a two-birder myself, so raising the gas tax is a no-brainer. I'd also issue everyone a flat rebate per driver, because in fact I'm a three-birder: I'm concerned about the effect of a regressive tax on the working poor who have no options but to drive to their jobs.

But I'm also a realist. There are a lot of one-birders out there and the roads need repair. It's also politically easier in one-birder territory to sell something as a fee rather than as a tax, even though from my perspective that's an irrelevant difference if you're raising the same revenue either way.

Comment Re:I wonder how long... (Score 3, Insightful) 50

Well, they're already opting to have damaged natural joints like hips and knees replaced. That's a case of upgrading from natural to artificial to gain function. As the performance of artificial limbs increase, it might become an increasingly commonplace treatment for older people, just like knee or hip replacement.

If we project that trend forward for twenty or thirty years I wouldn't be surprised at all to see artificial legs that outperform natural legs for the purposes of walking or even running. But I don't think people with normal abilities will be trading in their limbs just to be able walk a little longer, run a little faster, or carry more weight. That won't happen until the replacement is subjectively indistinguishable from the real thing; until you can feel the grass under your toes.

I'm comfortable predicting locomotion parity in the next fifty years, but I wouldn't care to speculate on when we'll see sensory parity.

Comment Once more into the breech, dear friends. (Score 3, Insightful) 100

I have no problem with going after people who steal trade secrets, anything more than I have a problem with going after people who steal nuclear secrets. The only thing is that the FBI has a long history of racist paranoia about Chinese scientists, from Quan Xuesen in the early 50s to Wen Ho Lee in the 90s.

Rhwew may well of a legitimate case against these guys and if they do I hope they nail the bastards. But I'm not jumping to any conclusions based on FBI say-so.

Comment Re:beat that straw man, beat it hard (Score 1) 150

You're the one worried about passwords that can be broken in 25 years; that's a non-issue. The issue is security that works well enough for long enough and is workable for the users. Impressive sounding, inflated requirements means something else has to give: price, performance, or usability.

Comment Re:Password updating (Score 1) 150

Well, once you've cracked the VPN traffic the password is almost a secondary concern, isn't it?

This is the wrong way to think about security, e.g. for a hypothetical world where users adhere to anything you demand of them no matter how intrusive or onerous that is. In reality if you decide that usability and convenience aren't factors in your planning then that's actually an oversight which will come back to bite you on the ass someday. The only thing you can say for that approach of wishing usability away is that when disaster comes you'll be able to point the finger of blame at the users -- even though their non-adherence is a predictable result of your poor understanding of system requirements.

Submission + - Cox HSI ends unlimited internet, introduces cap system

Junior J. Junior III writes: Today, Cox High Speed Internet customers received the following communication:

Dear [Cox HSI Customer],

We spend more time online today than ever before, streaming movies and TV shows, downloading music, sharing photographs and staying connected to friends and family. As Internet and data consumption grows, Cox continues to improve our network to ensure a quality experience for all our customers.

To better support our customers' expanding online activity, we recently increased the amount of data included in all of our Cox High Speed Internet packages. About 95% of customers are now on a data plan that is well-suited for their household. In the event you use more data than is included in your plan, beginning with bill cycles that start on June 15th, we will automatically provide additional data for $10 per 50 Gigabyte (GB) block for that usage period. Based on your last 3 months of data usage and our increased data plans, it is unlikely you will need additional data blocks unless your usage increases.

What this means for you

To help our customers get accustomed to this change, we are providing a grace period for 3 consecutive billing cycles. During this period, customers will not pay for additional data blocks for data used above their data plan. Customers who exceed their data plan will see charges and a matching credit on their bill statement. Beginning with bills dated October 15th and later, grace period credits will no longer be applied, and customers will be charged for usage above their data plan.

Understanding and managing your data usage

You are currently subscribed to the Preferred package which includes a data plan of 350 GB (Gigabytes) per month. To help you stay informed about data usage, Cox will begin to notify you via email and browser alert if you use 85% of your monthly data plan and again if you use 100% of your monthly data plan. Additional blocks of data will only be provided if you exceed your data plan. This will not change your Internet package and there will be NO change to the speed or quality of your service for data usage above your plan. To better understand your household's historical and current data usage, you will find your household's data usage meter and other helpful tools and information here.

Thank you for choosing Cox.


Cox High Speed Internet Team

In the wake of FCC's ruling reaffirming Network Neutrality, is this what ISPs will be doing to squeeze more money out of its customers?

Comment Re:Bottom Rising (Score 1, Insightful) 228

Originally Susan Richards' powers were turning invisible and creating a force shield around herself. This wasn't for doing cool things, it was for staying safely out of the way while the boys did the fighting. By the mid 70s when I was buying comic books her purely defensive powers were upgraded to being able to produce a shower of spherical force bubbles, which on the offensive force scale was about one step up the awesomeness scale from telekinetically throwing couch pillows.

I don't think the reason for this change was to throw a sop to feminists, or because fans were demanding strong female characters. In either case she'd have got a more impressive upgrade. I think it was simply upgraded storytelling. A character that can basically hide and shield herself is not as versatile as a character than can do useful things. So this kind of incremental upgrading naturally gave her more of a swiss-army knife skillset.

As for modern superheroines having multiple, I have not much to add, other than an observation. This multiple super-power thing kind of mirrors what we expect women to be like today. We expect them to be able to multitask, to juggle several very different roles on our teams. Versatility has become a cultural expectation for women, so it might not be coincidental that female superheroes get more of toolkit rather than one very big hammer.

Comment Re:One Assumption (Score 1) 609

A second assumption is that parties don't reinvent themselves. Of course they do; if they're to last they have to reinvent themselves every generation or two. Go back through the history of both parties since the 1850s; ideological continuity in both cases is a fiction that papers over a series of opportunistic shifts in focus.

An empty shell of a party in a two-party system is like the shell of an abandoned building in Manhattan; the real estate is too valuable to remain unoccupied. So some time in the next twenty years as its demographics becomes untenable the Republican party will radically shift focus, with some kind of face-saving formulation that presents the fiction of continuity, or even a return to longstanding principles. This is just like the post-Reagan rightward shift in the Democratic party as the DLC became dominant in national Democratic politics. The old style social democratic (using European terminology) FDR Democrats remained with the party because they had no place else to go in a two party system.

Likewise the rump of the current social conservative and Evangelical Republican party will be made a welcome but impotent minority in the new Republican party. They'll get occasional lip service at in-party functions but they won't be allowed near the mic lest they spout what sounds like grandpa's crazy talk -- pretty much like the FDR style Democrats were treated by their party in the 90s and 00s.

Comment Re:Schizo (Score 2) 328

Then Uber comes along and creates a way to share a ride and the driver benefits a little bit as well.

Uber drivers aren't sharing a damned thing. They're charging for a service. That's called doing business, and if you want to do business, you need to follow certain rules, just like anything else in life. You can't just jump up and say "nuh-uh, this is sharing!" when you're really requiring people to pay you before you "share" anything.

If I open a gas station and call it a "fuel sharing service", does that mean that I get to bypass all those pesky rules and regulations for making sure my tanks don't leak into the ground? Or that I don't need to spend all that extraneous money to install safety cutoff switches (like anyone ever -uses- those, amirite?)

Comment "Ridesharing" (Score 4, Insightful) 328

If y'all are still telling yourselves that services like Uber and Lyft are "rideshares", you're not paying attention, and haven't been for a long time.

Ridesharing suggests that people are sharing a ride from point A to point B--that is, they're both going that way, and thus are going to slug together to save gas/cost.

Uber and Lyft are effectively taxi services that uses an app instead of a dispatcher. The driver seeks out a fare, starts the timer, drives the fare to their destination, and then seeks out another fare.

The driver is not "sharing" anything, nor is the passenger. This is a taxi service.

Slashdot Top Deals

Doubt isn't the opposite of faith; it is an element of faith. - Paul Tillich, German theologian and historian
