zaajats - Slashdot User

Comment Re:Only as secure as the gate-keeper. (Score 1) 280

by zaajats on Thursday July 30, 2009 @03:36PM (#28886653) Attached to: Null Character Hack Allows SSL Spoofing

This isn't really a browser issue.

The browser is going "Show me that this cert is valid for paypal.com" and the CA is going "Here it is, for paypay.com" , at least as far as the browser is concerned.
This is no more a flaw then if the CA just started letting anyone buy certs for paypal.com.

Having multiple CAs (and cheap CAs) is a good thing, but we're only ever secure with ssl as the least secure CA.

As far as I understand, it's more like:

* Browser gets cert for Paypal.com\0.badguy.com from the server

* Browser reads domain from cert, but does so invalidly, and only gets Paypal.com

* etc

Comment Re:Well that's just fantastic (Score 2, Insightful) 150

by zaajats on Friday June 19, 2009 @04:42AM (#28386781) Attached to: iPhone 3.0 Update Delivers Prodigious Patch Batch

Now I'm looking at keeping my Sanza Fuze and Nokia E51. Apple can get fucked.

Your Fuze gets feature-rich updates often?

Point being — I find it somewhat strange that when Apple charges for an update, it's somehow worse than the competitors who don't offer any of the features, free or otherwise.

Comment Re:Well that's just fantastic (Score 3, Informative) 150

by zaajats on Thursday June 18, 2009 @07:19PM (#28382467) Attached to: iPhone 3.0 Update Delivers Prodigious Patch Batch

The upgrade to 3.0 is free.

not for iPod touches.

Comment Re:Well that's just fantastic (Score 1) 150

by zaajats on Thursday June 18, 2009 @05:17PM (#28380817) Attached to: iPhone 3.0 Update Delivers Prodigious Patch Batch

But when are they going to patch these security flaws on my 2.1 ipod? Paying for an update is ridiculous, especially when it fixes critical security flaws. I sure hope apple does the right thing.

Sure, paying for a security update alone is a bit strange, but really — it's only $10 and gives you so much more. Besides, it's not like your iPod has been taken over by viruses due to the bugs.

Comment Re:That would be a new feature (Score 1) 361

by zaajats on Monday June 15, 2009 @10:57AM (#28335299) Attached to: Apple Removes Nearly All Reference To ZFS

What I meant is that for 99% of the people a *new* file system doesn't create any new value.

e.g. - Time Machine is already an existing feature, improving the back-end by using ZFS is an unimportant change.

Comment Re:That would be a new feature (Score 1) 361

by zaajats on Wednesday June 10, 2009 @04:44AM (#28276763) Attached to: Apple Removes Nearly All Reference To ZFS

Snow Leopard is about performance and optimization. A new file system would fall under new features.

There are other new features as well. Also, a new file system would be an update to the existing one, no?

(That doesn't mean ZFS will be there)

Comcast Blocks Web Browsing 502

Posted by CmdrTaco on Monday April 07, 2008 @11:16AM from the because-they-can dept.

An anonymous reader writes "A team of researchers have found that Comcast has quietly rolled out a new traffic-shaping method, which is interfering with web browsers in addition to p2p traffic. The smoking gun that documents this behavior are network traces collected from Comcast subscribers Internet connections. This evidence shows Comcast is forging packets and blocking connection attempts from web browsers. One has to hope this isn't the congestion management system they are touting as no longer targeting BitTorrent, which they are deploying in reaction to the recent FCC investigations."

Submission + - Windows 7 - What we know so far... (apcmag.com)

Submitted by

Anonymous Anti-Coward

on Friday December 14, 2007 @03:37PM

Anonymous Anti-Coward writes: "We're still in the long dark before 7's dawn, but the earliest signs are encouraging: a new streamlined kernel, an inbuilt VM for running old software, a revised and simplified UI... there's every chance that Microsoft intends Windows 7 to rise from the ashes of Vista and be what Mac OS X was for Apple.'

Vista was released on January 30 2007 at which time it became available to one and all.
Unfortunately for Microsoft, the number of people who bought Vista was much closer to 'one' than 'all'."

Submission + - Owner of Rizon to serve time for DDOS attacks. (spamfighter.com)

Submitted by Anonymous Coward on Saturday July 07, 2007 @06:41AM

An anonymous reader writes: A man from Kentucky is sentenced for prison after being convicted in Detroit of charges that he carried out attacks on computers numbering in thousands and cutting them off from the Internet, as per the news published by Crime-research on June 22, 2007.

Jason Michael Downey, 24 and belonging to Dry Ridge, Kentucky admitted having committed computer fraud in order to operate a botnet. When Downey was pleading guilty in the court, the information presented there served as evidence of Downey's ownership of the Rizon.net Internet Relay Chat (IRC) network from June 18, 2004 to September 5, 2004.

Downey infected large number of computers with various kinds of bot viruses after which the computers responded to Downey's commands. He built a network with about 6,000 computers he had infected.

Through the Internet Relay Chat network, Downey controlled and issued commands to the botnet to hurl a series of 'Denial of Service' (DoS) attacks on different kinds of computer systems connected to the Internet. The attacks overloaded the systems with network data and therefore could not operate properly.

Rizon themselves have not issued any statements regarding the charges, they can be found at http://www.rizon.net/

More of the story can be read at http://www.spamfighter.com/News-8671-Man-Pleads-Gu ilty-To-Cyber-Crime.htm

The full U.S. Department of Justice briefing and sentencing guidelines can be found at the following address.
http://www.usdoj.gov/usao/mie/press/2007/2007-6-20 _mdowney.pdf

Submission + - Hack-a-Thon Challenge (thembid.com)

Submitted by

thinkingserious

on Saturday July 07, 2007 @06:08AM

thinkingserious writes: "All you need to do is submit a feature request, then watch the hackers implement them live non-stop via streaming video. If your feature request is the top you will the gift certificate. There are other prizes as well."

Submission + - 35 Different Ways of Looking at Social Networks (socialcomputingmagazine.com)

Submitted by jg21 on Saturday July 07, 2007 @05:04AM

jg21 writes: Social Computing Magazine has just published a list of thirty-five perspectives on online social networking reflecting how protean and difficult to pin down the phenomenon is. It was compiled by Malene Charlotte Larsen, a PhD student at Aalborg University in Denmark, who has been doing research on Danish youngsters and online social networking. She ends with an open request for further perspectives.

[From the article "I must say that I certainly do not agree with all of the mentioned perspectives, but some of them do represent the opinions (or prejudices) I hear when I am out giving lectures to adults."]

Slashdot Top Deals