Olipro - Slashdot User

Submission + - Xtreme Coffee Action Set (youtube.com)

Submitted by

spicybackpain

on Tuesday March 22, 2011 @03:29AM

spicybackpain writes: "This cartoon is based off of a conversation I had with someone who was actually concerned that their 2 year old son preferred a pink tea set over a monster truck toy. Not fully understanding that grown men do drink tea, they lamented over the fact that he might become confused genderwise in the near future.

I suggested that Mattel come out with a manly coffee set instead of a tea set. Although I was joking, they insisted that I try to patent this 'amazing' idea.

I made this instead."

Comment Sorry guys (Score 1) 283

by Olipro on Monday March 21, 2011 @10:26AM (#35558972) Attached to: Motorola's Sholes Bootloader Unlocked

Since when did ElGamal private keys fit into a single tweet? I don't believe for a second that Motorola were using a 240bit key, I call bullshit.

Motorola's Sholes Bootloader Unlocked 283

Posted by timothy on Monday March 21, 2011 @05:30AM from the not-the-doctor-with-the-homophonic-name dept.

teh31337one writes "Motorola's locked bootloader for their Sholes-family devices (Droid OG, Milestone, DroidX, Droid 2 etc, not Atrix 4G) has finally been cracked. @nenolod explains on his website: The Motorola Sholes platform uses a trusted bootloader environment. Signatures are stored as part of the CDT stored on the NAND flash. mbmloader verifies the signature on mbm before passing control. mbm verifies all other signatures before allowing the device to boot. There is a vulnerability in the way that Motorola generated the signatures on the sections stored in the CDT. This vulnerability is very simple. Like on the PlayStation 3, Motorola forgot to add a random value to the signature in order to mask the private key. This allowed the private key and initialization vector to be cracked. This comes at the time when HTC are also stepping up their attempts at locking down their phones . The recently released LTE flagship — ThunderBolt is their most locked-down phone to date ... They made signed images, a signed kernel, and a signed recovery. They also locked the memory."

Comment Re:As a hungarian... (Score 1) 185

by Olipro on Sunday January 02, 2011 @02:56AM (#34735480) Attached to: Hungarian Officials Can Now Censor the Media

As a non-Hungarian who spends a rather large amount of time in Hungary.

This media law is going to get challenged at the first possible opportunity by someone like Magyar Hírlap and the case will end up being taken to the EU level and Fidesz will quite probably end up in a semi-embarassing climbdown that they will no doubt try to spin in order to save face.

Totalitarian laws are scary only when they have genuine teeth... Hungary as a country does not have these sort of teeth, and this Media law will only descend into debacle in the coming months and years.

Comment Re:Why the fuck does a PIN pad get the bank detail (Score 1) 162

by Olipro on Saturday December 25, 2010 @09:08PM (#34667912) Attached to: UK Banks Attempt To Censor Academic Publication

Depends if you're talking about the dumb ones that you just provision with something like Gemalto's Card Admin or the ones that you can actually program applications for and write to the card. In any case, EMV smartcards aren't mere "flash drives"

Comment Re:I designed ... (Score 1) 162

by Olipro on Saturday December 25, 2010 @08:58PM (#34667876) Attached to: UK Banks Attempt To Censor Academic Publication

I wrote a Windows software version of the CAP/DPA card readers; entering the PIN does make a difference; the ARQC generated by the smartcard differs if the PIN hasn't been submitted, the same will apply in a DDA transaction carried out at a terminal; the PIN bypass is only truly going to work if the terminal or card only supports SDA, otherwise, the bank's back end can check whether the PIN was issued or not.

Comment Re:Good. (Score 1) 162

by Olipro on Saturday December 25, 2010 @08:52PM (#34667846) Attached to: UK Banks Attempt To Censor Academic Publication

Actually that's only true for SDA (Static Data Authentication) smartcards (or terminals incapable of performing DDA) - if the auth process uses DDA then the ARQC generated by the EMV card will be different and the bank will thus know that the card was not issued a PIN. I doubt any of the UK banks are still issuing SDA cards, however, whether a merchant's terminal supports DDA is another issue. In any case, it's a heck of a lot of effort and risk to go to when fraudsters by-and-large can have a much easier time engaging in CNP transactions.

Comment Re:Theft, really? (Score 1) 151

by Olipro on Sunday September 05, 2010 @08:03AM (#33480872) Attached to: Nasty Data-Stealing Bug Haunts Internet Explorer 8

Um, when data is stolen, it's copied, you don't copy it and then delete it, that's going to alert the user that you're collecting information.

Comment Re:Oh wonderful (Score 1) 145

by Olipro on Friday September 03, 2010 @03:18AM (#33462070) Attached to: Facebook To Add Remote Logout

depends if the spammer wants control of the account over the long term or simply wants to do a hard and fast smash 'n' grab on the account. In any case, this could easily be mitigated with a captcha or similar.

Comment Oh wonderful (Score 1) 145

by Olipro on Friday September 03, 2010 @02:34AM (#33461902) Attached to: Facebook To Add Remote Logout

This essentially comes down to who can kick off the other logins first... the real user or the spam program. My money's on the program.

Comment Re:Technically correct (Score 1) 547

by Olipro on Wednesday August 18, 2010 @04:33AM (#33285524) Attached to: ISPs Lie About Broadband "Up To" Speeds

This is a terrible analogy; they're advertising a rate of download which you will probably not get, nonetheless, whilst whatever you want to download might well take longer than expected, you'll still get your download. So here's an analogy that works; the advertised weight of the chips/burger/whatever is exactly the same, what you're being told is that you can expect to spend 10 minutes consuming it when in reality the only people who are going to spend that long on it are small children; either way you still got your bag of chips, you're just polishing them off faster than you'd expect.

Comment Re:Curse you, System Idle Process! (Score 1) 382

by Olipro on Friday June 18, 2010 @10:35AM (#32612882) Attached to: How many processes are running on your desktop box?

You, too, can be a PCMac.com columnist.

Here are a few of my gripes - most of them a result of excessive patching. IDLE-TIME PROCESS. Once in a while the system will go into an idle mode, requiring from five minutes to half an hour to unwind. It's weird, and I almost always have to reboot. When I hit Ctrl-Alt-Delete, I see that the System Idle Process is hogging all the resources and chewing up 95 percent of the processor's cycles. Doing what? Doing nothing? Once in a while, after you've clicked all over the screen trying to get the system to do something other than idle, all your clicks suddenly ignite and the screen goes crazy with activity. This is not right.

—John C. Dvorak, 9/29/2003

Yeah, the problem he's describing is completely unrelated to the CPU. It occurs when you've got a very large IO operation going on with your system HDD from a single process, the longer the operation goes on the more likely it becomes for your system to start shitting up because the other processes would quite like to access the disk too thank-you-very-much.

Comment Malcom in the Middle (Score 1) 338

by Olipro on Tuesday March 09, 2010 @09:05AM (#31412306) Attached to: Are you working right now?

Options should have been: "Yes!" "No." "Maybe." "I don't know..." "Can you repeat the question?"

Comment Coming Soon (Score 1) 160

by Olipro on Sunday March 07, 2010 @09:41PM (#31396136) Attached to: Woman Live-Tweets Her Abortion

the new, improved RU-Pentium

Comment Re:Title (Score 1) 275

by Olipro on Saturday September 26, 2009 @01:38AM (#29546681) Attached to: Ballmer Admits, "We Screwed Up Windows Mobile"

the leaked builds you refer to are coming out almost daily my friend, it's like a live action stream of ROMs, the majority of which are, for the most part, usable. The thing is, the ones that see the light of day to the average punter are all cooked ROMs of course, adulterated with additional shit and the cook's branding thrown in, I hate the bloody things, and I say that as the person jointly responsible for the patched SPL that allows you to flash them.

Slashdot Top Deals