C18H27NO3 - Slashdot User

Submission + - Serious flaws in NTP (the application, not the protocol) need to be patched 3

Submitted by hawkinspeter on Monday December 22, 2014 @08:59AM

hawkinspeter writes: A new set of vulnerabilities with the most common NTP daemon have been discovered by Google security researchers. There exist public exploits that target these flaws, so it's recommended to patch to version 4.2.8 (or switch to openntp which doesn't have the same issues) immediately. This is especially problematic for those systems that run ntpd with root privileges as a single carefully crafted packet can allow access at the privilege level of the process. This was reported by ZDNet a few days ago and I have yet to see the Ubuntu patches for this, but it looks like Red Hat are on top of things.

Comment What? (Score 3, Insightful) 185

by C18H27NO3 on Sunday September 21, 2014 @05:53AM (#47957939) Attached to: NY Magistrate: Legal Papers Can Be Served Via Facebook

This is just so astoundingly absurd on so many levels I'm at a loss for words.

Comment Re:Do No Evil so why not delete the info? (Score 1) 138

by C18H27NO3 on Thursday June 05, 2014 @05:10AM (#47170163) Attached to: Google Has Received Over 41,000 Requests To "Forget" Personal Information

Delete the info but publish the requests?

Submission + - Do backups on Linux no longer matter? (sourceforge.net) 5

Submitted by cogcritter on Saturday April 12, 2014 @06:57PM

cogcritter writes: In June of 2009, the dump/restore utilities version 0.4b42 for Linux's ext3 filesystem were released. This was the last version where incremental dumps could actually be used. A bug introduced in 0.4b43, one year later, causes restore to fail when processing an incremental backup unless, basically, no directory deletions occurred since the level 0 part of the backup set was taken.

The bug is certainly present in Debian Wheezy, and comments in Debian's defect tracking system suggest that the bug has permeated out into other distros as well.

How can Linux's backup/restore tools for its popular ext2/ext3 filesystem be broken for 3+ years, and nobody seems to care? Does nobody take backups? Or do they not use incremental backups? How many people are going to find themselves scrambling when they next NEED to restore a filesystem, and find themselves in possession of long-broken tools?

Just in case this article is where some hapless sysadmin ends up, the workaround is to go to dump.sf.net, go to the files section, pull down the 0.4b42 version and build it for yourself. For me, I think going forward I'm going to switch to filesystem mirroring using rsync.

Comment Hardware gap (Score 2) 94

by C18H27NO3 on Wednesday March 19, 2014 @03:13PM (#46526573) Attached to: Security Industry Incapable of Finding Firmware Attackers

At least one of the systems I've owned in the past required a jumper to be set before BIOS could be written to/flashed/modified.
I thought that was a boon and would certainly defeat any nefarious flashing. Something like that should be standard.

Comment Re:Stupid (Score 1) 61

by C18H27NO3 on Tuesday February 25, 2014 @05:38AM (#46332329) Attached to: Meet the Developers Who Want To Build the Next Snapchat

The entire concept is stupid. Screenshots.

Exactly. The same could be said in regards to private Facebook profiles.
Nothing stops someone that is part of the private group to make available anything that they see to others not in the group. eg., Save the page, the text, pictures, screenshot it, etc.

Comment Re:Can confirm (Score 1) 289

by C18H27NO3 on Friday February 21, 2014 @08:58PM (#46308121) Attached to: ISP Fights Causing Netflix Packet Drops

I have Comcast myself.
What I find odd is that Netflix runs perfectly fine for me on both laptop and phone but Comcast's own xfinitytv streaming is a barrage of jitter and pauses.(Wired laptop, wireless phone)
It makes no sense.

Comment Re:I assume it's a typo... (Score 1) 173

by C18H27NO3 on Friday February 14, 2014 @04:46AM (#46243857) Attached to: Federal Smartphone Kill-Switch Legislation Proposed

Reading the summary I thought that was a seriously odd name for the bill, as well.
It's nonsensical. If the sole purpose of the bill were to flat out outlaw smartphones then it's an apt name, but that's not the spirit of the bill so it's a dumb name altogether.

Comment Cue the Stratofortress (Score 1) 473

by C18H27NO3 on Monday February 10, 2014 @09:33PM (#46214345) Attached to: Ugly Trends Threaten Aviation Industry

The B-52 completed fifty years of continuous service ... it is expected to serve into the 2040s.

At least they must be doing something right.

Comment Re:What are the questions? (Score 1) 313

by C18H27NO3 on Friday January 31, 2014 @12:38AM (#46117207) Attached to: Half of US Nuclear Missile Wing Implicated In Cheating

How To Turn A Key 101. In seriousness I was wondering the same thing.

Submission + - NSA and GCHQ target 'leaky' phone apps to scoop user data (theguardian.com)

Submitted by schwit1 on Monday January 27, 2014 @02:22PM

schwit1 writes: New leaked NSA documents shed a new light on the agency's assault on the data controls of smartphone apps. Using app data permissions as a jumping off point, the documents show agency staffers building huge quantities of data, including "intercepting Google Maps queries made on smartphones, and using them to collect large volumes of location information." One slide lists capabilities for "hot mic" recording, high precision geotracking, and file retrieval which would reach any content stored locally on the phone, including text messages, emails and calendar entries. As the slide notes in a parenthetical aside, "if it's on the phone, we can get it.

Comment Over a decade (Score 5, Insightful) 246

by C18H27NO3 on Friday January 17, 2014 @10:12PM (#45994805) Attached to: Microsoft Quietly Fixes Windows XP Resource Hog Problem

Windows XP has been out for 12 years and they just started to look into the problem last month?

Comment Re:Pure Oxygen? (Score 1) 375

by C18H27NO3 on Thursday January 16, 2014 @05:36AM (#45974189) Attached to: Revolutionary Scuba Mask Creates Breathable Oxygen Underwater On Its Own

I'm not a diver but don't they use Helium/mix of Helium(?) when diving for certain circumstances also?

Comment Re:Billions of Androids (Score 1) 511

by C18H27NO3 on Thursday January 16, 2014 @03:31AM (#45973749) Attached to: Apple Devices To Reach Parity With Windows PCs In 2014

My sentiments exactly.

Comment Re:character map (Score 1) 248

by C18H27NO3 on Monday December 23, 2013 @11:48PM (#45772437) Attached to: F-Secure's Mikko Hypponen Cancels RSA Talk In Protest

Or alternatively [Start], charmap in the run box, Enter key.

Slashdot Top Deals