sinij - Slashdot User

Comment Re:Seems to Be a Pattern of Behavior (Score 5, Funny) 384

by sinij on Monday June 01, 2015 @09:20AM (#49814033) Attached to: SourceForge and GIMP [Updated]

>>>Bennet Hasselton cannot be defeated. He's merely resting.

Bennet Hasselton article shows up only if someone mentions Bennet Hasselton three times in a single post.

Comment Re:Not ignoring the story is a good start! (Score 2) 384

by sinij on Monday June 01, 2015 @09:16AM (#49813999) Attached to: SourceForge and GIMP [Updated]

While I didn't find DICE response satisfactory (they should rend garments and ash their heads), I appreciated its inclusion. It would have been great follow-up story to original "This just in!" story. Keep in mind, /. is not stale news for nerds for the most part.

Comment Absolutely unacceptable behaviour (Score 5, Insightful) 384

by sinij on Monday June 01, 2015 @08:51AM (#49813865) Attached to: SourceForge and GIMP [Updated]

This behavior should get SourceForge blacklisted as both cyber-squatters and adware, possibly malware vendor.

Comment Those of you who are? (Score 4, Insightful) 156

by sinij on Saturday May 30, 2015 @12:42PM (#49805061) Attached to: Let's Take This Open Floor Plan To the Next Level

"Those of you who are?" You are implying that there are people out there that have to endure open office and do enjoy the experience.

Open Office is an aberration and is a direct result of management-by-trend-chasing practice.

Submission + - SourceForge MITM Projects (github.io) 2

Submitted by lister king of smeg on Friday May 29, 2015 @01:51PM

lister king of smeg writes: What happened?

SourceForge, once a trustworthy source code hosting site, started to place misleading ads (like fake download buttons) a few years ago. They are also bundling third-party adware/malware directly with their Windows installer.

Some project managers decided to leave SourceForge – partly because of this, partly just because there are better options today. SF staff hijacked some of these abandoned accounts, partly to bundle the crapware with their installers. It has become just another sleazy garbage site with downloads of fake antivirus programs and such.

How can I help?

If you agree that SourceForge is in fact distributing malicious software under the guise of open source projects, report them to google. Ideally this will help remove them from search results, prevent others from suffering their malware and provide them with incentive to change their behavior.

As this story has been submitted several times in the past several days, by various submitter and is going around various other tech forums( https://news.ycombinator.com/i... , https://soylentnews.org/articl... , https://www.reddit.com/r/progr... ,) this submitter wonders has our shared "glorious Dice Corporate overloads" been shooting this story down?

Submission + - SourceForge assumes ownership of GIMP For Win, wraps installer in adware (arstechnica.com)

Submitted by Anonymous Coward on Friday May 29, 2015 @12:35PM

An anonymous reader writes: It appears that SourceForge is assuming control of all projects that appear "abandoned." In a blog update on their site, they responded saying in part "There has recently been some report that the GIMP-Win project on SourceForge has been hijacked; this project was actually abandoned over 18 months ago, and SourceForge has stepped-in to keep this project current. "

SourceForge is now offering "to establish a program to enable users and developers to help us remove misleading and confusing ads."

Comment Sample mailing (Score 5, Funny) 144

by sinij on Friday May 29, 2015 @12:22PM (#49799715) Attached to: Uber Revises Privacy Policy, Wants More Data From Users

Dear Bob's Wife,

Based on Bob's Uber profile statistics we have determined that he took 7 after-hours rides to the red light district during recent months. Please find attached 10% discount coupon for a ride to lawyer's office.

Sincerely,
Uber's Customer Retention Team.

Comment Netcraft confirmed! (Score 2, Funny) 246

by sinij on Wednesday May 27, 2015 @10:58PM (#49787933) Attached to: In a 5-star rating scheme, the new Mad Max film ...

It is now official. Netcraft has confirmed: /. is dead

One more crippling bombshell hit the already beleaguered /. community when polls start showing as articles. /. market share has dropped yet again, now down to less than a fraction of 1 percent of all servers. Coming on the heels of a recent Netcraft survey which plainly states that /. has lost more market share, this news serves to reinforce what we've known all along. /. is collapsing in complete disarray, as fittingly exemplified by failing dead last in the recent comprehensive test.

Comment Signed update? No? (Score 1) 86

by sinij on Tuesday May 26, 2015 @01:17PM (#49775951) Attached to: Hyundai Now Offers an Android Car, Even For Current Owners

What about update authentication? Is this signed update? If not, get ready for malware, MitM and all other kinds of nastiness.

Submission + - Code Injection: A New Low for ISPs

Submitted by snydeq on Tuesday May 26, 2015 @01:14PM

snydeq writes: Beyond underhanded, Comcast and other carriers are inserting their own ads and notifications into their customers’ data streams, writes The Deep End's Paul Venezia. 'Comcast and other ISPs “experimenting” with data caps inject JavaScript code into their customers’ data streams in order to display overlays on Web pages that inform them of data cap thresholds. They’ll even display notices that your cable modem may be eligible for replacement. And you can't opt out,' Venezia writes. 'Think about it for a second: Your cable provider is monitoring your traffic and injecting its own code wherever it likes. This is not only obtrusive, but can cause significant problems with normal Web application function. It’s abhorrent on its face, but that hasn’t stopped companies from developing and deploying code to do it.'

Submission + - Insurer denies healthcare breach claim citing lack of minimum required practices (securityledger.com)

Submitted by chicksdaddy on Tuesday May 26, 2015 @01:11PM

chicksdaddy writes: In what may become a trend, an insurance company is denying a claim from a California healthcare provider following the leak of data on more than 32,000 patients. The insurer, Columbia Casualty, charges that Cottage Health System did an inadequate job of protecting patient data.

In a complaint filed in U.S. District Court in California, Columbia alleges that the breach occurred because Cottage and a third party vendor, INSYNC Computer Solution, Inc. failed to follow “minimum required practices,” as spelled out in the policy. Among other things, Cottage “stored medical records on a system that was fully accessible to the internet but failed to install encryption or take other security measures to protect patient information from becoming available to anyone who ‘surfed’ the Internet,” the complaint alleges.

Disputes like this may become more common, as insurers anxious to get into a cyber insurance market that's growing by about 40% annually use liberally written exclusions to hedge against 'known unknowns' like lax IT practices, pre-existing conditions (like compromises) and so on. (http://www.itworld.com/article/2839393/cyber-insurance-only-fools-rush-in.html)

Submission + - Ways to travel faster than light without violating relativity

Submitted by StartsWithABang on Tuesday May 26, 2015 @11:44AM

StartsWithABang writes: It’s one of the cardinal laws of physics and the underlying principle of Einstein’s relativity itself: the fact that there’s a universal speed limit to the motion of anything through space and time, the speed of light, or c. Light itself will always move at this speed (as well as certain other phenomena, like the force of gravity), while anything with mass — like all known particles of matter and antimatter — will always move slower than that. But if you want something to travel faster-than-light, you aren’t, as you might think, relegated to the realm of science fiction. There are real, physical phenomena that do exactly this, and yet are perfectly consistent with relativity.

Submission + - Can Bad Scientific Practice Be Fixed? 3

Submitted by HughPickens.com on Monday May 25, 2015 @04:57PM

HughPickens.com writes: Richard Horton writes in that a recent symposium on the reproducibility and reliability of biomedical research discussed one of the most sensitive issues in science today: the idea that something has gone fundamentally wrong with science (PDF), one of our greatest human creations. The case against science is straightforward: much of the scientific literature, perhaps half, may simply be untrue. Afflicted by studies with small sample sizes, tiny effects, invalid exploratory analyses, and flagrant conflicts of interest, together with an obsession for pursuing fashionable trends of dubious importance, science has taken a turn towards darkness. According to Horton, editor-in-chief of The Lancet, a United Kingdom-based medical journal, the apparent endemicity of bad research behaviour is alarming. In their quest for telling a compelling story, scientists too often sculpt data to fit their preferred theory of the world or retrofit hypotheses to fit their data.

Can bad scientific practices be fixed? Part of the problem is that no-one is incentivized to be right. Instead, scientists are incentivized to be productive and innovative. Tony Weidberg says that the particle physics community now invests great effort into intensive checking and rechecking of data prior to publication following several high-profile errors,. By filtering results through independent working groups, physicists are encouraged to criticize. Good criticism is rewarded. The goal is a reliable result, and the incentives for scientists are aligned around this goal. "The good news is that science is beginning to take some of its worst failings very seriously," says Horton. "The bad news is that nobody is ready to take the first step to clean up the system."

Comment InfoSec implications of AI (Score 1) 421

by sinij on Sunday May 24, 2015 @09:47PM (#49765849) Attached to: What AI Experts Think About the Existential Risk of AI

I am Information Security practitioner and not an expert in this field, because nobody is. My experiences is that nobody knows what they are doing, most information systems are not secure in mistaken belief that nobody would bother breaking them, others are just secure enough to deter low-knowledge attacks. Almost everyone practices what is known proportional value deterrent, but treat high-value systems as truly isolated when so many side-channels exist.

If malicious AI ever shows up, we are screwed. We have zero hope of securing any information system from it. The only hope is that it won't end us because there is a good chance that a lot of hardware that AI might need will go dark.

Comment Isowhat? (Score 4, Informative) 95

by sinij on Thursday May 21, 2015 @10:17PM (#49748103) Attached to: Gravitational Anomalies Beneath Mountains Point To Isostasy of Earth's Crust

I had to read TFA to figure out what isostatic is.

"Bizarrely enough, if we wanted to reach the Earth’s mantle, our best bet would be to dive down to the ocean floor and dig there; we’d “only” have to go through maybe 3 km of crust, as opposed to upwards of 25 km atop the Himalayas. This concept is known as isostatic compensation, and was actually uncovered by the famed British astronomer George Airy."

Slashdot Top Deals