millwoodtwo - Slashdot User

Comment Chase Letter a perfect phishing template! (Score 1) 180

by millwoodtwo on Monday April 04, 2011 @05:53PM (#35714234) Attached to: Epsilon Breach Affects JPMorgan Chase, Capital One

Got my Chase letter. It warns about not sending information by email. Nothing about not clicking on links. In fact, it contains the lines:

The security of your information is a critical priority to us and we strive to handle it carefully at all times. Please visit our Security Center at chase.com and click on "Fraud Information" under the "How to Report Fraud." It provides additional information on exercising caution when reading e-mails that appear to be sent by us.

chase.com is a link!

All a phisher needs to do is send this exact email, pointing to a dummy Chase page, and encourage the victim to log in when he reaches it.

Clearly they are either very stupid or really just don't care. I'll go for the latter.

Comment WIndows 7 Only (Score 1) 535

by millwoodtwo on Wednesday February 02, 2011 @11:11PM (#35087114) Attached to: Microsoft Makes Chrome Play H.264 Video

As with the firefox extension, this only works on Windows 7. So it in no way makes H.264 universally available.

Comment William Feller taught this almost 50 years ago. (Score 1) 464

by millwoodtwo on Thursday December 23, 2010 @09:08PM (#34656688) Attached to: Scientifically, You Are Likely In the Slowest Line

In An Introduction to Probability Theory and Its Applications by William Feller, published before 1968, Feller describes this effect, pointing out that we mentally average over time, not occurrences, and spend most of our time in the slow line.

Salad Spinner Made Into Life-Saving Centrifuge 87

Posted by samzenpus on Tuesday May 04, 2010 @10:49AM from the kitchen-and-lab-equipment dept.

lucidkoan writes "Two Rice University students have transformed a simple salad spinner into an electricity-free centrifuge that can be used to diagnose diseases on the cheap. Created by Lauren Theis and Lila Kerr, the ingenious DIY centrifuge is cobbled together using a salad spinner, some plastic lids, combs, yogurt containers, and a hot glue gun. The simple and easily-replicated design could be an invaluable tool for clinics in the developing world, enabling them to separate blood to detect diseases like anemia without electricity."

Comment Isn't that how we make cold joints (Score 2, Interesting) 103

by millwoodtwo on Friday March 05, 2010 @05:17PM (#31375686) Attached to: New Heat-Reduced Magnetic Solder Could Revolutionize Chip Design

In soldering 101 I learned that if you put hot solder on cold metal, the solder doesn't really wet the joint, and you will get early or immediate failure of conductivity. You can even accidentally create a diode. So why will this work?

Second 3G GSM Cipher Cracked 57

Posted by Soulskill on Tuesday January 12, 2010 @09:48AM from the dropping-like-encrypted-flies dept.

Trailrunner7 writes "A group of cryptographers has developed a new attack that has broken Kasumi, the encryption algorithm used to secure traffic on 3G GSM wireless networks. The technique enables them to recover a full key by using a tactic known as a related-key attack, but experts say it is not the end of the world for Kasumi. Kasumi, also known as A5/3, is the standard cipher used to encrypt communications on 3G GSM networks, and it's a modified version of an older algorithm called Misty. In the abstract of their paper, the cryptographers say the attack can be implemented easily on one standard PC. 'In this paper we describe a new type of attack called a sandwich attack, and use it to construct a simple distinguisher for 7 of the 8 rounds of KASUMI with an amazingly high probability of 214. By using this distinguisher and analyzing the single remaining round, we can derive the complete 128 bit key of the full KASUMI by using only 4 related keys, 226 data, 230 bytes of memory, and 232 time. These complexities are so small that we have actually simulated the attack in less than two hours on a single PC, and experimentally verified its correctness and complexity.'"

Haskell 2010 Announced 173

Posted by kdawson on Tuesday November 24, 2009 @06:05PM from the eddie-and-the-beav dept.

paltemalte writes "Simon Marlow has posted an announcement of Haskell 2010, a new revision of the Haskell purely functional programming language. Good news for everyone interested in SMP and concurrency programming."

The State of Ruby VMs — Ruby Renaissance 89

Posted by Soulskill on Sunday November 22, 2009 @11:59AM from the take-your-pick dept.

igrigorik writes "In the short span of just a couple of years, the Ruby VM space has evolved to more than just a handful of choices: MRI, JRuby, IronRuby, MacRuby, Rubinius, MagLev, REE and BlueRuby. Four of these VMs will hit 1.0 status in the upcoming year and will open up entirely new possibilities for the language — Mac apps via MacRuby, Ruby in the browser via Silverlight, object persistence via Smalltalk VM, and so forth. This article takes a detailed look at the past year, the progress of each project, and where the community is heading. It's an exciting time to be a Rubyist."

Comment Seen in a google search (Score 1) 403

by millwoodtwo on Sunday September 13, 2009 @09:24PM (#29409317) Attached to: New York Times Site Pop-Up Says Your Computer Is Infected

A few days ago, my wife hit the same thing following a link in a perfectly benign google search result! she would have had no idea how to untangle this by herself, since I had failed to turn off firefox restore on error so killing and restarting firefox got right back to the problem.

Comment The discussion misses the point (maybe) (Score 2, Insightful) 251

by millwoodtwo on Friday June 12, 2009 @10:18AM (#28307733) Attached to: Microsoft's Free AV App May Be a Non-Starter

Infected windows machines are a plague on the internet. Many of these presumably have no useful anti-malware running. Microsoft takes lots of heat, as the comments above prove. So Microsoft decides that trying to sell anti-malware won't work, but maybe giving it away, and I assume bundling it, will get it widely deployed. And take some heat off Microsoft for shipping vulnerable stuff. If this happens, and it works at all, it will be a great improvement to the current mess. To put it differently - it's clearly impossible to make an OS bug proof - so an OS ought to contain defenses against malware out of the box.

Comment This is about DNS, not routing. (Score 1) 264

by millwoodtwo on Wednesday May 13, 2009 @10:55PM (#27947071) Attached to: Dealing With ISPs That Use NXDomain Redirection?

Lots of misunderstandings in the replies. First - the most common offender is the Hotel's local internet service. Second - this is about DNS, not routing. Windows tries all the DNS servers at once and believes the first positive answer. The DNS servers in the story are the onces the Hotel gave you on the real interface, and the ones VPN gave you on the VPN interface. You can often make this go away by using the advanced settings in the network folder to order the VPN adapter first as a service provider. Failing that, I know of no solution that doesn't require messing with the DNS server entries in the real adapter.

Comment Proofs and Refutations by Imre Lakatos (Score 1) 630

by millwoodtwo on Sunday February 08, 2009 @09:20PM (#26778317) Attached to: Mathematics Reading List For High School Students?

Proofs and Refutations by Imre Lakatos takes the reader through an apparently simple and obvious mathematical theorem, and by the end has you deeply aware of how subtle mathematics really is.

Slashdot Top Deals