24295640
submission
rastos1 writes:
In a demonstration last Friday, it took less than two minutes for researchers Thai Duong and Juliano Rizzo to wield the exploit to recover an encrypted authentication cookie used to access a PayPal user account. The researchers settled on a Java applet as their means to bypass SOP, leading Firefox developers to discuss blocking the framework in a future version of the browser.
“I recommend that we blocklist all versions of the Java Plugin,” Firefox developer Brian Smith wrote on Tuesday in a discussion on Mozilla's online bug forum. “My understanding is that Oracle may or may not be aware of the details of the same-origin exploit. As of now, we have no ETA for a fix for the Java plugin.”
23717360
submission
rastos1 writes:
If you're the owner of a decent pair of binoculars train them on the handle of The Plough or Big Dipper a little after twilight tonight. The result of a massive explosion some 21 million light years away in the Pinwheel Galaxy M101, the nearest supernova of its type to be discovered for 40 years should be at its brightest tonight.
22808132
submission
rastos1 writes:
Inspired by http://hardware.slashdot.org/story/11/07/31/211251/Volunteer-Towns-Sought-For-Nuclear-Waste
What is the acceptable distance (in miles) of nearest nuclear waste storage site from your house?
0 — it could be in my mom's basement if I wasn't living there
1-20 — I have no problem with nuclear waste
20-100 — just keep it out of sight
101- 1000 didn't you hear this stuff DANGEROUS?
20914330
submission
rastos1 writes:
Holed up in his walled compound in northeast Pakistan with no phone or Internet capabilities, bin Laden would type a message on his computer without an Internet connection, then save it using a thumb-sized flash drive. He then passed the flash drive to a trusted courier, who would head for a distant Internet cafe.
At that location, the courier would plug the memory drive into a computer, copy bin Laden's message into an email and send it. Reversing the process, the courier would copy any incoming email to the flash drive and return to the compound, where bin Laden would read his messages offline.
19571340
submission
rastos1 writes:
For most of the past eight months, Manning has been required to sleep wearing only boxer shorts, because of his status as a detainee under "prevention of injury watch," said 1st Lt. Brian Villiard, a spokesman for the military detention facility, or "brig," in Quantico. Beginning Wednesday night, the facility commander ordered that Manning turn over his boxers, too.
17893632
submission
rastos1 writes:
BBC reports that Britain has received a European arrest warrant from Sweden for the Wikileaks' founder Julian Assange. The warrant is being processed by the Serious Organised Crime Agency and will be sent to the Metropolitan Police as he is thought to be in the London area.
16904954
submission
rastos1 writes:
The Deutsche Telekom will provide dual stack IPv4/IPv6 connectivity for all DSL users (google translation) as of end of 2011. The users will be in addition to their IPv4 address assigned IPv6 /56 prefix. Interesting is that this prefix will be dynamic. For permanently connected users, the prefix will change rarely. Customers that have purchased fixed IPv4 address, will get an offer for stable IPv6 prefix.
11632104
submission
rastos1 writes:
I run today across a forum message mentioning that one needs to register in order to download Java Development Kit. Indeed. Looking at the list of benefits I don't think they apply to me and the requirement makes me compelled to use the "Feedback" for the first time ever. All I ever wanted was the JDK archive and API docs in a zip. Now it looks like I will have to come up with one more fake identity when I will want to update my development environment because I got lost in the forest of privacy policy documents within a few minutes. All I could find is that cookies have expiration time less than a year. What is the slashdot crowd position on this?
8836336
submission
rastos1 writes:
Part of Munich airport in southern Germany was shut down for several hours after a traveler's laptop set off an explosives detector. ... Officials had wanted to check the computer again but the man had left. ... A police spokesman quoted by AFP news agency cautioned that the scanner could have been set off by chemicals such as perfumes, and that the man might simply have been in a hurry to catch his plane.
I'm so glad the security of air traffic is taken care of.
7051710
submission
rastos1 writes:
A Turkish grad student has devised a serious, real-world attack on Twitter that targeted a recently discovered vulnerability in the SSL protocol. The exploit by Anil Kurmus is significant because it successfully targeted the so-called SSL renegotiation bug to steal Twitter login credentials that passed through encrypted data streams. All in all, a man in the middle is able to steal the credentials of a user authenticating himself through HTTPS to a trusted website.
The attack description is available on securegoose.org
5500931
submission
rastos1 writes:
If the airlines really want talk Congress out of passing a passenger bill of rights, they're not doing themselves any favors. The latest air-travel horror story comes to us from Minnesota, where 47 passengers on a Continental Airlines regional flight spent nearly 14 hours in transit and were trapped in six-hour ground delay on a 50-seat regional jet ... the airline wouldn't let passengers off the plane because TSA screeners had gone home and passengers legally couldn't get back on the plane.
4270235
submission
rastos1 writes:
The copyright for music works in EU was extended by European Parliament today from 50 to 70 years. The legislation will be reviewed in 3 years. The European Commission will consider extending the scope to audiovisual works too.
3829633
submission
rastos1 writes:
While not exactly a film buff, Gordon Brown was touched when Barack Obama gave him a set of 25 classic American movies ... Alas, when the PM settled down to begin watching them the other night, he found there was a problem. The films only worked in DVD players made in North America and the words "wrong region" came up on his screen.
352571
submission
rastos1 writes:
Shahid Malik, the MP for Dewsbury and an international development minister, was returning to Heathrow after meetings and talks on tackling terrorism, when he was stopped an questioned at Dulles Airport near Washington yesterday morning.
"The abusive attitude I endured last November I forgot about and I forgave, but I really do believe that British ministers and parliamentarians should be afforded the same respect and dignity at U.S.A. airports that we would bestow upon our colleagues in the Senate and Congress." said Shahid Malik.
Yay! I love it when a plan comes together! (And anti-terrorism measures hit the right people)
341385
submission
rastos1 writes:
CNN Money informs:
"Microsoft Corp has complied with the EU executive's demands requiring the US software giant to divulge the software protocols, or 'interoperability information', underpinning Windows for makers of rival products" — according to European Commission. The commission also said: "As of today, the interoperability information appears to be substantially complete"
The article apparently talks about Exchange — but never directly mentions it. The links for said documentation (or place where it can be purchased) are, for some unknown reason, missing.