Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 


Forgot your password?
Close
typodupeerror
×

Comment Apple's Podcast Publisher and Podcast Library (Score 2) 126

by plsuh (#38551300) Attached to: Best Software For Putting Lectures Online?

This is exactly the design scenario for Podcast Publisher and Podcast Library.

http://www.apple.com/macosx/server/features/all.html#podcasting

While it can take advantage of a whole cluster of servers, it can also run (albeit more slowly) on a single Core i7 Mini Server. For more detailed docs, see:

https://help.apple.com/advancedserveradmin/mac/10.7/#apdEDF248EC-ED8E-473E-8166-E7D0B2A854D7

It's in use at lots of universities and some K-12 schools.

Hope this helps.

--Paul

Comment Already dead (Score 4, Interesting) 128

by plsuh (#37415076) Attached to: Certificate Blunders May Mean the End For DigiNotar

This is just going through the motions. DigiNotar has been dead since August 30, when Google, Mozilla, and Microsoft all revoked trust in their certificates. Anyone with at least two brain cells (which seems to exclude a large number of managers, unfortunately) could see the writing on the wall. No one would ever buy a new DigiNotar certificate, since it would always pop up a scary warning to the user in a web browser. Why bother with buying a certificate from DigiNotar and dealing with the resulting end-user support issues, when you can buy from someone else and not have to deal with the problem?

More interesting to me is what will happen to DigiNotar's corporate parent, Vasco Data Security? The purchase of DigiNotar is relatively recent (January 10, 2011), so it's not clear how much influence Vasco's management had over DigiNotar's operations. At the very least, Vasco is going to need to pay for an audit of its own systems to reassure its direct customers.

--Paul

Comment Cheap, but what about ongoing costs? (Score 1, Interesting) 140

by plsuh (#36920002) Attached to: TN BlueCross Encrypts All Data After 57 Disks Stolen

$6 million is pocket change to a company that has $5.2 billion in annual revenue. However, the true cost is really higher, as encrypting everything means that things like disk corruption are no longer repairable, lost passwords can't be reset without losing data, and the like. It'd be interesting to see just what the ongoing costs are.

That said, I would like to compliment Tennessee BC/BS for doing the right thing, in spite of it costing money.

--Paul

Comment Subject to race conditions -- lame (Score 4, Insightful) 153

by plsuh (#36510556) Attached to: PlanetLab Creates a More Advanced Sudo

Folks,

Does no one remember 2007? Bob Watson presented a paper on exploiting concurrency to break all kinds of things like systrace back then, complete with example code. Vsys is the same kind of thing -- it has processes executing in an outside space where you can have a race condition and force the parameters to change after the clearance check but before it actually does the work. See:

http://www.watson.org/~robert/2007woot/

--Paul

Comment Re:Ha Ha, mine goes to 11 (Score 1) 615

by plsuh (#36348722) Attached to: Cheap GPUs Rendering Strong Passwords Useless

consistently (a) remember a long password and (b) type it without a failure at least 50% of the time, is in the single digits.

This myth needs to end. Most people can memorize phrases hundreds of words long:

You missed the second part -- TYPE them consistently enough that they can get in without getting frustrated. I have no doubt that a large percentage of the general population can memorize long, complex passages at the word level. The number that can get them consistently right at the character level is much lower. The number that can get them consistently right at the character level when they are required to change the phrase every six months drops to near zero.


--Paul

Comment Re:Ha Ha, mine goes to 11 (Score 5, Insightful) 615

by plsuh (#36345224) Attached to: Cheap GPUs Rendering Strong Passwords Useless

What you're missing is that the percentage of the general population that can consistently (a) remember a long password and (b) type it without a failure at least 50% of the time, is in the single digits. Remember, general population, not geeks.

I've expressed the opinion for several years now that password authentication is broken, and that we need to move to two-factor authentication schemes ASAP.

--Paul
News

Bin Laden's Death Being Used To Spread Malware 94

Posted by CmdrTaco from the that-didn't-take-long dept.
wiredmikey writes "Following the successful operation by US forces to kill Osama bin Laden, Internet users are searching in the masses for any details about the incident they can find. Cyber-criminals know this and have already been at work to 'poison' common search results hoping to gain access to people's computers and infect them with malware."

Comment Add Disney to the list (Score 1) 115

by plsuh (#35699048) Attached to: Epsilon Data Breach Bigger Than Just Kroger Customers' Data

Text of e-mail from Disney this morning:

Dear Guest,

We have been informed by one of our email service providers, Epsilon,
that your email address was exposed by an unauthorized entry into that
provider's computer system. We use our email service providers to
help us manage the large number of email communications with our
guests. Our email service providers send emails on our behalf to
guests who have chosen to receive email communications from us.

We regret that this incident has occurred and any inconvenience this
incident may cause you. We take your privacy very seriously, and we
will continue to work diligently to protect your personal information.

We want to assure you that your email address was the only personal
information we have regarding you that was compromised in this
incident.

As a result of this incident, it is possible that you may receive spam
email messages, emails that contain links containing computer viruses
or other types of computer malware, or emails that seek to deceive you
into providing personal or credit card information. As a result, you
should be extremely cautious before opening links or attachments from
unknown third parties or providing a credit card number or other
sensitive information in response to any email.

If you have any questions regarding this incident, please contact us
at (407) 560-2547 during the hours of 9:00 am to 7:00 pm (Eastern Time)
Monday through Friday, and 9:00 am through 5:00 pm (Eastern Time)
Saturday and Sunday.

Sincerely,

Disney Destinations

Comment Old problem (Score 5, Interesting) 200

by plsuh (#34615500) Attached to: Database of Private SSL Keys Published

Apple ran into something similar a long time ago for Mac OS X Server. The servermgrd daemon uses a self-signed SSL cert by default to secure communications with remote management tools. About four or five versions back the certificate was identical across all installations because it was contained in the installer package. Someone had to go down and show them that you could read all of the traffic by using sslsniff and the private key from your own copy of the installer. They changed to an individual, automatically generated certificate shortly thereafter.

--Paul

Submission + - Alleged FBI backdoors in OpenBSD IPSEC stack? (marc.info)

Submitted by Aggrajag
Aggrajag writes: According to Theo de Raadt: "It is alleged that some ex-developers (and the company
they worked for) accepted US government money to put backdoors into
our network stack, in particular the IPSEC stack. Around 2000-2001."

Comment Re:Good vs. Great (Score 1) 504

by plsuh (#34392536) Attached to: How Apple Had a Spectacular Year

HEY YOU DISGUSTING PIECE OF *(&^*^&%&!!!!$#$#!! I CAN'T BELIEVE YOU WOULD HOLD THAT KIND OF RIDICULOUSLY IGNORANT AND BIASED OPINION IN THE FACE OF MY OWN MORAL RECTITUDE AND OBVIOUS SUPERIOR KNOWLEDGE. YOU SHOULD BOW DOWN BEFORE ME THAT I AM DEIGNING TO RESPOND TO YOUR POST!!!!

Happy now? ;-D;-D;-D;-D;-D;-D;-D;-D;-D;-D;-D;-D;-D;-D

--Paul

random text to get by the lameness filter.

9. Religious conditions were similar in Java but politically there was
this difference, that there was no one continuous and paramount kingdom.
A considerable number of Hindus must have settled in the island to
produce such an effect on its language and architecture but the rulers
of the states known to us were hinduized Javanese rather than true
Hindus and the language of literature and of most inscriptions was Old
Javanese, not Sanskrit, though most of the works written in it were
translations or adaptations of Sanskrit originals. As in Camboja,
ivaism and Buddhism both flourished without mutual hostility and there
was less difference in the status of the two creeds.

In all these countries religion seems to have been connected with
politics more closely than in India. The chief shrine was a national
cathedral, the living king was semi-divine and dead kings were
represented by statues bearing the attributes of their favourite gods.

6. _New Forms of Buddhism_

In the three or four centuries following Asoka a surprising change came
over Indian Buddhism, but though the facts are clear it is hard to
connect them with dates and persons. But the change was clearly
posterior to Asoka for though his edicts show a spirit of wide charity
it is not crystallized in the form of certain doctrines which
subsequently became prominent.

The first of these holds up as the moral ideal not personal perfection
or individual salvation but the happiness of all living creatures. The
good man who strives for this should boldly aspire to become a Buddha in
some future birth and such aspirants are called Bodhisattvas. Secondly
Buddhas and some Bodhisattvas come to be considered as supernatural
beings and practically deities. The human life of Gotama, though not
denied, is regarded as the manifestation of a cosmic force which also
reveals itself in countless other Buddhas who are not merely his
predecessors or destined successors but the rulers of paradises in other
worlds. Faith in a Buddha, especially in Amitâbha, can secure rebirth in
his paradise. The great Bodhisattvas, such as Avalokita and Mañjurî,
are splendid angels of mercy and knowledge who are theoretically
distinguished from Buddhas because they have indefinitely postponed
their entry into nirvana in order to alleviate the sufferings of the
world. These new tenets are accompanied by a remarkable development of
art and of idealist metaphysics.

Slashdot Top Deals

Beware of Programmers who carry screwdrivers. -- Leonard Brandwein

Close