millwoodtwo - Slashdot User

Comment Marketing to cover weakness (Score 1) 153

by millwoodtwo on Thursday December 13, 2012 @04:55PM (#42279387) Attached to: Google Loses Santa To Bing

The story prompted me to look at bing maps. Very first direction request produced a poor route. When dragging the route to change it gives less time and distance, you know it's not the source to use! There is no way to reset a drag! etc. etc. I'll stick with google.

But one wonders how this government agency was co-opted.

Comment ext4 unless there's a good reason not to. (Score 3, Insightful) 210

by millwoodtwo on Thursday November 29, 2012 @07:37PM (#42136179) Attached to: Ask Slashdot: Best File System For Web Hosting?

The obvious argument for ext4, the current ext version, is that it's been around a long time and is very solid. I'd only use something else if I knew the performance of ext4 would be an issue.

Submission + - LinkedIn Confirms Account Passwords Hacked (pcworld.com)

Submitted by MarcAuslander on Wednesday June 06, 2012 @06:09PM

MarcAuslander writes: LinkedIn Wednesday confirmed that at least some passwords compromised in a major security breach correspond to LinkedIn accounts.

Comment Security Questions deemed dangerous (Score 1) 87

by millwoodtwo on Tuesday May 22, 2012 @03:19PM (#40079515) Attached to: WHMCS Data Compromised By Good Old Social Engineering

It has been pointed out many times that the security question system is dangerous if the user does what he's told. It is in general easier to find out what someone's high school mascot was than to guess his password! My approach it to provide nonsense answers I can retrieve for all such question. No one's going to guess that my mother's maiden name was bottleofbitsofstuff for example. You can use the same answer for all questions if they let you, or use obvious variants otherwise.

Submission + - When backups and redundancy fail (dslreports.com)

Submitted by MarcAuslander on Wednesday April 25, 2012 @11:39AM

MarcAuslander writes: dslreports, a forum site covering ISP's and Cable, has lost its web site. A summary of how this happened is at http://www.dslreports.com/shutdown.html. All the backups and raid in the world don't help if you are not set up to recover from failures. And after a failure happens it's too late to start practicing.

Submission + - What do WiFi signal looks like? (openculture.com)

Submitted by MarcAuslander on Monday April 16, 2012 @08:33AM

MarcAuslander writes: Have you ever wondered what the WiFi signal looks like around your office, school, or local café? In this video, Timo Arnall, Jørn Knutsen, and Einar Sneve Martinussen show you the invisible. And they pulled this off by building a WiFi measuring rod, measuring four meters in length, that can visualize WiFi signals around Oslo, Norway with the help of long exposure photography.

Comment Assigning new values to constants can be useful! (Score 2) 305

by millwoodtwo on Friday February 24, 2012 @05:36PM (#39153077) Attached to: Stroustrup Reveals What's New In C++ 11

I was amused by the comment "If that incr(0) were allowed either some temporary that nobody ever saw would be incremented or - far worse - the value of 0 would become 1. The latter sounds silly, but there was actually a bug like that in early Fortran compilers that set aside a memory location to hold the value 0. "

Back then, I wrote Fortran subroutines which took computed dimension arrays by declaring the arrays with crazy bounds, numbers I hoped would never be used as constants, and then "assigning" the real bounds to the "constants".

Those were the good old days.

Submission + - Why Phishing stays alive and well.

Submitted by MarcAuslander on Friday February 24, 2012 @11:10AM

MarcAuslander writes: I just got an email from paypal. Yes, it's really from paypal. And it tells me to click on an embedded link and log in! The link is legitimate. What are they trying to teach me?

"PayPal recently posted a new Policy Update. You can view this Policy Update by logging in to your PayPal account. To log in to your account, go to https://www.paypal.com/ and enter your member log in information. Once you are logged in, look at the Notifications section on the top right side of the page for the latest Policy Updates."

Comment Chase Letter a perfect phishing template! (Score 1) 180

by millwoodtwo on Monday April 04, 2011 @05:53PM (#35714234) Attached to: Epsilon Breach Affects JPMorgan Chase, Capital One

Got my Chase letter. It warns about not sending information by email. Nothing about not clicking on links. In fact, it contains the lines:

The security of your information is a critical priority to us and we strive to handle it carefully at all times. Please visit our Security Center at chase.com and click on "Fraud Information" under the "How to Report Fraud." It provides additional information on exercising caution when reading e-mails that appear to be sent by us.

chase.com is a link!

All a phisher needs to do is send this exact email, pointing to a dummy Chase page, and encourage the victim to log in when he reaches it.

Clearly they are either very stupid or really just don't care. I'll go for the latter.

Comment WIndows 7 Only (Score 1) 535

by millwoodtwo on Wednesday February 02, 2011 @11:11PM (#35087114) Attached to: Microsoft Makes Chrome Play H.264 Video

As with the firefox extension, this only works on Windows 7. So it in no way makes H.264 universally available.

Comment William Feller taught this almost 50 years ago. (Score 1) 464

by millwoodtwo on Thursday December 23, 2010 @09:08PM (#34656688) Attached to: Scientifically, You Are Likely In the Slowest Line

In An Introduction to Probability Theory and Its Applications by William Feller, published before 1968, Feller describes this effect, pointing out that we mentally average over time, not occurrences, and spend most of our time in the slow line.

Salad Spinner Made Into Life-Saving Centrifuge 87

Posted by samzenpus on Tuesday May 04, 2010 @10:49AM from the kitchen-and-lab-equipment dept.

lucidkoan writes "Two Rice University students have transformed a simple salad spinner into an electricity-free centrifuge that can be used to diagnose diseases on the cheap. Created by Lauren Theis and Lila Kerr, the ingenious DIY centrifuge is cobbled together using a salad spinner, some plastic lids, combs, yogurt containers, and a hot glue gun. The simple and easily-replicated design could be an invaluable tool for clinics in the developing world, enabling them to separate blood to detect diseases like anemia without electricity."

Comment Isn't that how we make cold joints (Score 2, Interesting) 103

by millwoodtwo on Friday March 05, 2010 @05:17PM (#31375686) Attached to: New Heat-Reduced Magnetic Solder Could Revolutionize Chip Design

In soldering 101 I learned that if you put hot solder on cold metal, the solder doesn't really wet the joint, and you will get early or immediate failure of conductivity. You can even accidentally create a diode. So why will this work?

Second 3G GSM Cipher Cracked 57

Posted by Soulskill on Tuesday January 12, 2010 @09:48AM from the dropping-like-encrypted-flies dept.

Trailrunner7 writes "A group of cryptographers has developed a new attack that has broken Kasumi, the encryption algorithm used to secure traffic on 3G GSM wireless networks. The technique enables them to recover a full key by using a tactic known as a related-key attack, but experts say it is not the end of the world for Kasumi. Kasumi, also known as A5/3, is the standard cipher used to encrypt communications on 3G GSM networks, and it's a modified version of an older algorithm called Misty. In the abstract of their paper, the cryptographers say the attack can be implemented easily on one standard PC. 'In this paper we describe a new type of attack called a sandwich attack, and use it to construct a simple distinguisher for 7 of the 8 rounds of KASUMI with an amazingly high probability of 214. By using this distinguisher and analyzing the single remaining round, we can derive the complete 128 bit key of the full KASUMI by using only 4 related keys, 226 data, 230 bytes of memory, and 232 time. These complexities are so small that we have actually simulated the attack in less than two hours on a single PC, and experimentally verified its correctness and complexity.'"

Haskell 2010 Announced 173

Posted by kdawson on Tuesday November 24, 2009 @06:05PM from the eddie-and-the-beav dept.

paltemalte writes "Simon Marlow has posted an announcement of Haskell 2010, a new revision of the Haskell purely functional programming language. Good news for everyone interested in SMP and concurrency programming."

Slashdot Top Deals