hawguy - Slashdot User

Comment Re:stupidly weak (Score 1) 267

by hawguy on Thursday March 26, 2015 @05:43PM (#49349773) Attached to: Generate Memorizable Passphrases That Even the NSA Can't Guess

Yes, use 100% dictionary words. That's a great idea. The idea of a passphrase is to make it so many letters, brute forcing won't work. But dictionary attacks don't have to be individual words. They can easily be combinations of all known dictionary words without having a ridiculous result set to try compared to random letters. So what you need to do is come up with multiple words that you can remember then put a number or two between them. DO NOT replace e with 3 or a with @ or S with $, as those are known and common attack possibilities too. So if you choose "chickenisdelicious7nomnomnom" nobody will ever, ever, ever figure that out. If you choose "chickensandwichwaffles" it could get reverse via dictionary phrase attack in under a second.

It's only stupidly weak if you don't follow the stupidly simple instructions involving using a die roll to choose random words. Using the 7700 word dictionary they recommend and 5 words gives 64 bits of password entropy. Granted, that's much less than the 144 bits of entropy you provided in your 28 character alphanumeric password, but still no one is going to brute force 2^63 bits in a few seconds.

Comment Assuming fair dice (Score 3, Funny) 267

by hawguy on Thursday March 26, 2015 @05:36PM (#49349709) Attached to: Generate Memorizable Passphrases That Even the NSA Can't Guess

This procedure assumes fair, unbiased dice. For years, the NSA has required precise machining of dice to generate predictable rolls. Once someone cracks the code, Casinos will lose billions.

What, other than precision machining, would explain why plastic dice with a materials cost of pennies cost over $2/each?

Comment Re:Ugly women ruin everything. (Score 1) 326

by hawguy on Thursday March 26, 2015 @05:01PM (#49349373) Attached to: RSA Conference Bans "Booth Babes"

But, the intent is to get rid of women, in particular the most attraction ones.

It's a dress code, it says nothing about attractiveness or even gender (except where it says that it applies regardless of gender, so men can't wear mini skirts either).

Comment Re:Ugly women ruin everything. (Score 1) 326

by hawguy on Thursday March 26, 2015 @04:04PM (#49348805) Attached to: RSA Conference Bans "Booth Babes"

So.... you're OK with slut shaming. Sad. really.

I don't understand how that relates to what I just wrote?

Comment Re:Are booth babes worth it? (Score 1) 326

by hawguy on Thursday March 26, 2015 @03:58PM (#49348737) Attached to: RSA Conference Bans "Booth Babes"

Yes, the cliche says, "Sex sells", but do they actually generate significant sales? I mainly see them being made fun of and criticized.

The people who are attracted by the booth babes are likely not the same set of people that are making fun of them.

Comment Re:Ugly women ruin everything. (Score 4, Insightful) 326

by hawguy on Thursday March 26, 2015 @03:56PM (#49348711) Attached to: RSA Conference Bans "Booth Babes"

It's sad when ugly women are allowed to take jobs away from pretty women simply because they are pretty.

There's no ban against attractive women, just guidelines on appropriate dress. Pretty women are still pretty even in business attire.

Comment What is appropriate action? (Score 0) 262

by hawguy on Wednesday March 25, 2015 @04:38PM (#49339007) Attached to: RadioShack Puts Customer Data Up For Sale In Bankruptcy Auction

New York's Attorney General says his office will take 'appropriate action' if the data is handed over.

Why do I have a feeling that "appropriate action" means a "privacy violation fee" that's paid to the government?

Comment Re:As a recent buyer of a mid-2014 MBP (Score 1) 204

by hawguy on Monday March 23, 2015 @08:23PM (#49324335) Attached to: Apple Doubles MacBook Pro R/W Performance

I am pretty miffed to read this. Nothing like paying a load of cash for a shiny new laptop only to find out a couple months later that you'd have been way better off waiting.

How do you ever buy anything if you're upset that technology keeps improving and you want to wait until the next leap in performance? If you're looking for the best performance, you're *always* better off waiting, but if you need a computer in the meantime, you have to draw a line in the sand and declare that the price/performance is good enough where it is now.

Though for most uses, you won't see a significant difference between a 650MB/sec SSD and a 1300MB/sec SSD.

Comment Re:Too Big to Nail (Score 1) 121

by hawguy on Sunday March 22, 2015 @02:44PM (#49314267) Attached to: FTC's Internal Memo On Google Teaches Companies a Terrible Lesson

The efficient use of limited funding. How big a tax increase would you be willing to support to fully fund their operation?

If they really believe they will prevail in the end, at a minimum, the resulting punishment should include a fine large enough to cover the agency's costs of pursuing the case, then no tax dollars would be needed.

Comment Re:Waste of time (Score 3, Funny) 253

by hawguy on Thursday March 19, 2015 @12:11AM (#49289335) Attached to: Ask Slashdot: Building a Home Media Center/Small Server In a Crawlspace?

Subtract a couple of 3's?

What are you talking about? 11 *is* 3.

Comment Re:Way too much credit (Score 4, Informative) 188

by hawguy on Monday March 16, 2015 @02:47PM (#49269095) Attached to: Hertz Puts Cameras In Its Rental Cars, Says It Has No Plans To Use Them

Even if someone higher up at Hertz had a devious plan to install these cameras into every vehicle and covertly film all their customers, there is no way in hell that any rental car company I know of could implement such a system. Most of the time they can barely get you the car you supposedly booked for the price you were quoted.

I've never had a problem getting the rate I was quoted. It's common that they are out of the particular car class I ordered, but that's to be expected, they don't have unlimited room to store each of a dozen car classes. They've always either upgraded me for "free" (except that the upgraded car often uses more gas, so it's not really "free", but I've had good luck talking them into giving me a Hybrid when that happens if they have one available), or gave me a discount for a downgraded car.

I once got stuck in a huge mismanaged queue at Avis for an hour and when I finally got to the front they told me a car was not available. When I said I had booked one so how could this be, the customer service person informed me that I was half an hour late so if I wanted to ensure I got a car I should turn up on time.

Rental agencies overbook just like the airlines, but it's harder for them to ensure supply when people don't return cars on time, at least an airline knows that they can seat 300 people on a 300 person aircraft, the rental agency isn't sure if they'l have 0 or 50 cars on the lot by the time you get there because some people may be late, or they may have sent a lot of cars on one-way trips. It's a tough logistical problem.

I also have no idea why my collecting a car I have booked requires so much typing on their behalf. It is like they are writing a short dissertation on me, every time I rent a car. Surely if I rent another car the same month the amount of typing can be reduced. I have caught a glimpse of their green character based IT terminals and I am pretty certain there is no secret skunk works at Hertz HQ working on anything other than more confusing ways to charge collision damage waivers.

If you rent a car regularly, sign up for the rental agency's premier club. When I used to travel a lot, my company rented from Avis and Hertz almost exclusively, I was in both of their permier rental programs, and when I got to the car lot I could just find the car with my name on it, and drive away, showing my ID to the guy at the gate. The other advantage is that my premier reserved car is *always* there, even if they have to turn away other customers to make sure the car is there.

Comment Re:That's great if you have a mobile phone (Score -1, Flamebait) 213

by hawguy on Monday March 16, 2015 @05:38AM (#49265581) Attached to: Yahoo Debuts End-To-End Encryption Email Plugin, Password-Free Logins

I don't. I tried to sign up with Yahoo a few weeks ago and got cockblocked by this. They required a mobile number.

Yeah, you think that's bad, I don't even have a computer or internet access and they wouldn't let me sign up.I must have sent them a dozen faxes and letters, and I'm still waiting for my so called "free" email account. Is it really "free" if it requires an expensive computer to use it!?

Comment Re:What's wrong with GLS (Score 3, Insightful) 328

by hawguy on Thursday March 12, 2015 @09:32PM (#49246803) Attached to: New Crop of LED Filament Bulbs Look Almost Exactly Like Incandescents

I actually agree - it's useless legislation. LEDs are so much more efficient, and so much longer lasting that they are quite capable of phasing out incandescent lamps without regulatory help. With the economy of scale and decreasing manufacturing costs, it won't be long until LED lamps are almost at price parity with incandescent lamps, which means the latter won't be manufactured except for a few decorative purposes. It's one of the rare times where the invisible hand is actually working as advertised.

I'd be surprised if LED's are ever as cheap as incandescents, a few year back I bought a bulk pack of bulbs - I paid around 35 cents/bulb, and the 100W bulbs were the same price as the 60W bulbs.

LED's have many more components than a light bulb, and are more difficult to assemble.

There's still a large number of people who just don't like LED's or CFL's... and some even claim that the high efficiency halogens just aren't the same, it could take decades for those people to make the switch to LED's without legislation that makes it more difficult and more expensive to purchase incandescents. If even 1 out of 100 people want to stick with incandescents, that's over a million households in the USA alone, still plenty of room for economies of scale to keep prices reasonable.

Comment Re:How do you answer this? (Score 1) 169

by hawguy on Tuesday March 10, 2015 @05:41PM (#49228545) Attached to: Ask Slashdot: Video Storage For Time Capsule?

Actually, IBM 80-column punched cards have lasted almost this long (since 1928) as a readable format, although it would take a HUGE number of cards to do color motion video.

If you're going to use punch cards, you'd be better off printing each video frame on a card and building a flip-book as someone suggested earlier. Much better data density.

Comment Re:Put everything needed in the capsule (Score 1) 169

by hawguy on Tuesday March 10, 2015 @04:19PM (#49227831) Attached to: Ask Slashdot: Video Storage For Time Capsule?

I was going to suggest something like this, but maybe with an iPad or other simple tablet. But the issue becomes supplying power to it. I have no idea if USB will even be around when this time capsule is opened, so you'd possibly want to include a schematic showing how to power the device.

It'd be awfully surprising if the knowledge of Volt as a unit of measurement will be lost to the world in 100 years (assuming that society hasn't collapsed), so supplying power shouldn't be a problem. I'd be surprised if the data lasts on on the flash drive that long. Maybe an old school burnt ROM chip (not EEPROM) would be safer. And make sure to leave instructions for replacing other components that might degrade, like capacitors.

Slashdot Top Deals