Follow Slashdot blog updates by subscribing to our blog RSS feed

 


Forgot your password?
Close
typodupeerror
×

Comment Re:Hammer to kill a swarm of flies (Score 1) 226

by amiller2571 (#41992257) Attached to: NASA To Encrypt All of Its Laptops

It is not stupid by any means, the system stores information all over the place. It would be to hard to try and encrypt each one by itself. It is far easier to just encrypt the whole thing. You would be surprised how little of a hit you take in performance. I used TrueCrypt for a good while and I never notices any slow down at all. Encryption like AES are extremely fast.

System encryption provides the highest level of security and privacy, because all files, including any temporary files that Windows and applications create on the system partition (typically, without your knowledge or consent), hibernation files, swap files, etc., are always permanently encrypted (even when power supply is suddenly interrupted). Windows also records large amounts of potentially sensitive data, such as the names and locations of files you open, applications you run, etc. All such log files and registry entries are always permanently encrypted too.

http://www.truecrypt.org/docs/

Comment Re:if they used a hash...? (Score 5, Informative) 497

by amiller2571 (#41418467) Attached to: Hotmail No Longer Accepts Long Passwords, Shortens Them For You

We understand what he means, but if you did not read the update here you go

This doesn’t mean that your password has been shortened. Actually, Windows Live ID passwords were always limited to 16 characters—any additional password characters were ignored by the sign-in process. When we changed “Windows Live ID” to “Microsoft account,” we also updated the sign-in page to let you know that only the first 16 characters of your password are necessary. To avoid this error message in the future, you only need to enter the first 16 characters of your password.
Android

Submission + - Android is under attack: New malware threats tripled in Q2 (bgr.com)

Submitted by
amiller2571
amiller2571 writes: "According to security research firm Kaspersky Labs, the volume of new malware targeting Android devices nearly tripled in the second quarter of 2012. Over the three-month period, the company found more than 14,900 new malicious programs targeting the platform. Nearly half of the malicious files were classified as multi-functional Trojans that were programmed to steal data from smartphones and could also download and install programs from remote servers."
Security

Submission + - Using GitHub to host a business sensitive web application? 1

Submitted by Anonymous Coward
An anonymous reader writes: I'm working at a small company developing and maintaining a casino web site, which therefore handles a bit of money via payment providers and through the games themselves. Needless to say, if someone were to get their hands on the code base it may be a very bad situation if they can identify some security hole and gain access to accounts with real money, or just glance something else that's business critical.

Currently we use Subversion as our source control, but we are investigating a move to Git. A suggestion was recently brought up to use GitHub private repositories for hosting the code, instead of setting up our own server. We do use, love and try to contribute back to open source whenever we can, and for one thing it'd be nice to sponsor the fine people at GitHub by giving them some business. Other pros include not having to host and secure this ourselves, access from anywhere and a very good set of tools. We're also looking into share tools we have written in a public repository so it'd be nice to have it in the same place.

The question is if it's considered a secure alternative and if there are other potential problems? We can of course set up and maintain our own server, but it'd be nice to not have to, when there are others than can do it for us. :)

Are there people out there who has experience with using GitHub for something like this, and also are there anyone who has some insight into the security and policies that GitHub employs in practice, is it considered being on a good level? And of course, anything else you could think of that would affect such a decision, security-wise or otherwise.

I realize that if we think we are qualified to handle people's money (and we do!) we should be able to judge this for ourselves, but it'd be interesting to hear about other people's experiences and insights. We also know about GitHub Enterprise, but that's on another price level at about 20 times the cost, as well as moving the work back to us.

Thanks!
Apple

Submission + - Apple loses bid to exclude evidence in Samsung patent trial (bloomberg.com) 1

Submitted by __aaltlg1547
__aaltlg1547 writes: Apple loses bid to exclude evidence in Samsung patent trial Apple Inc. lost its bid to exclude evidence presented by Samsung Electronics Co. at the companies' patent trial in California about a tablet computer developed more than a decade before Apple's iPad was released in 2010. Judge Koh strikes for sanity again.
Games

Submission + - Electronic Arts Up For Sale (ibtimes.com)

Submitted by John Wagger
John Wagger writes: One of the world's largest gaming publishers and developers Electronic Arts has quietly put itself up for sale. While there have already been talks with private equity companies, the talks have not resulted in anything concrete. One of the sources is saying that EA would do the deal for $20 per share (currently at $14.02). Over the past year EA's stock price has fallen 37 percent. Like other major game publishers EA has been struggling against growing trend of social and mobile gaming.

Slashdot Top Deals

"I've seen it. It's rubbish." -- Marvin the Paranoid Android

Close