Forgot your password?
typodupeerror

Comment: Compared to badbios this is a piece of cake (Score 1) 698

by Browzer (#45715461) Attached to: NSA Says It Foiled Plot To Destroy US Economy Through Malware

http://it.slashdot.org/story/13/11/01/0120220/airgap-jumping-malware-may-use-ultrasonic-networking-to-communicate

Airgap-Jumping Malware May Use Ultrasonic Networking To Communicate

"Dan Goodwin writes at Ars Technica about a rootkit that seems straight out of a science-fiction thriller. According to security consultant Dragos Ruiu one day his MacBook Air, on which he had just installed a fresh copy of OS X, spontaneously updated the firmware that helps it boot. Stranger still, when Ruiu then tried to boot the machine off a CD ROM, it refused and he also found that the machine could delete data and undo configuration changes with no prompting. Next a computer running the Open BSD operating system also began to modify its settings and delete its data without explanation or prompting and further investigation showed that multiple variants of Windows and Linux were also affected. But the story gets stranger still. Ruiu began observing encrypted data packets being sent to and from an infected laptop that had no obvious network connection with—but was in close proximity to—another badBIOS-infected computer. The packets were transmitted even when the laptop had its Wi-Fi and Bluetooth cards removed. Ruiu also disconnected the machine's power cord so it ran only on battery to rule out the possibility it was receiving signals over the electrical connection. Even then, forensic tools showed the packets continued to flow over the airgapped machine. Then, when Ruiu removed internal speaker and microphone connected to the airgapped machine, the packets suddenly stopped. With the speakers and mic intact, Ruiu said, the isolated computer seemed to be using the high-frequency connection to maintain the integrity of the badBIOS infection as he worked to dismantle software components the malware relied on. It's too early to say with confidence that what Ruiu has been observing is a USB-transmitted rootkit that can burrow into a computer's lowest levels and use it as a jumping off point to infect a variety of operating systems with malware that can't be detected. It's even harder to know for sure that infected systems are using high-frequency sounds to communicate with isolated machines. But after almost two weeks of online discussion, no one has been able to rule out these troubling scenarios, either. 'It looks like the state of the art in intrusion stuff is a lot more advanced than we assumed it was,' says Ruiu. 'The take-away from this is a lot of our forensic procedures are weak when faced with challenges like this. A lot of companies have to take a lot more care when they use forensic data if they're faced with sophisticated attackers.'"

Firefox

Emscripten and New Javascript Engine Bring Unreal Engine To Firefox 124

Posted by Unknown Lamer
from the cycle-is-nearly-complete dept.
MojoKid writes "There's no doubt that gaming on the Web has improved dramatically in recent years, but Mozilla believes it has developed new technology that will deliver a big leap in what browser-based gaming can become. The company developed a highly-optimized version of Javascript that's designed to 'supercharge' a game's code to deliver near-native performance. And now that innovation has enabled Mozilla to bring Epic's Unreal Engine 3 to the browser. As a sort of proof of concept, Mozilla debuted this BananaBread game demo that was built using WebGL, Emscripten, and the new JavaScript version called 'asm.js.' Mozilla says that it's working with the likes of EA, Disney, and ZeptoLab to optimize games for the mobile Web, as well." Emscripten was previously used to port Doom to the browser.

Comment: PROPOSERS’ DAY CONFERENCE FOR 100 Gb/s RF BA (Score 3, Insightful) 83

by Browzer (#42315689) Attached to: DARPA Begins Work On 100Gbps Wireless Tech With 120-mile Range

This is actually a DARPA help wanted ad. And from description of the project sounds like a good job opportunity for some slashdoters.

here is the ad:
http://www.darpa.mil/NewsEvents/Releases/2012/12/14.aspx

and here is the proposers' day conference:
https://www.fbo.gov/index?s=opportunity&mode=form&id=e21984e31d49c3780966a53983daa4f6&tab=core&tabmode=list&=

Comment: Re:Time domain reflectometer. (Score 2) 416

by Browzer (#42130841) Attached to: Ask Slashdot: Server Room Toolbox?

in my case, poor/bad cables, especially the ones you buy, rather than ones you make, rank very low on things that actually happen. before I check the actual cable I do other things:

1. see if nic led is on, both on router and computer
2. ping the gateway
3. see if there was traffic on the nic
4. re-seat the cable, especially if plastic clip is missing - if that is the case I change the cable.
5. if distance is short, replace cable

had an interesting experience with a bad "connection". One summer the well pump, which is drilled inside the old stone well, 80 ft below ground, stopped working. The plumber comes, he climbs half way down the stone well in order to reach the well-cap, takes the entire pump+hose+wire (80ft) out, tests the pump, concludes that the pump is dead, replaces the pump, the wire (80ft), and makes a new water-tight connection. A year later the pump stops working again and I call the same plumber. My instinct was that the water-tight connection, 80 ft below ground, leaked, and made a short. The plumber comes, and rather than pulling out 80ft of pump to test the water-tight connection, the first thing he does is disconnect the pump from the mechanical fuse. And guess what... the mechanical fuse was bad. The fuse would trip even when there was nothing connected to it.

Comment: touch screen vs keyboard & mouse interface (Score 3, Interesting) 319

by Browzer (#42095457) Attached to: Ask Mark Shuttleworth Anything

two parter:

1. Do you think the touch screen interface already the standard on phones and tablets will replace the traditional standard of keyboard & mouse interface on desktops/laptops in the next 5 years, 10 years, 20 years?

2. On a desktop/laptop, do you think a touch screen interface would be as functional/productive/efficient as keyboard & mouse?

thanks

Comment: "infiltrated and perpetrators persecuted.[37]" (Score 1) 388

by Browzer (#36310790) Attached to: NATO Report Threatens To 'Persecute' Anonymous

from the NATO document: http://www.nato-pa.int/default.asp?SHORTCUT=2443

[37] Reducing Systemic Cybersecurity Risk, OECD/IFP Project on “Future Global Shocks”. ”. By Peter Sommer and Ian Brown. January 2011.

“Reducing Systemic Cybersecurity Risk”

http://www.oecd.org/dataoecd/57/44/46889922.pdf

I think the NATO paragraph is supposed to paraphrase this quote on p32:

"The main practical limitations to hacktivism are that the longer the attack persists the more likely it is that counter-measures are developed and put in place, perpetrators identified, and groups penetrated by law enforcement investigators."

Comment: if you REALLY want CS emulate an HS that offers CS (Score 1) 364

by Browzer (#36303086) Attached to: Ask Slashdot: Good Homeschool Curriculum For CS??

Comment: Speaking of RHEL clone... (Score 1) 201

by Browzer (#35607354) Attached to: Red Hat Nears $1 Billion In Revenues, Closing Door On Clones

just found out a new RHEL clone (thanks to distrowatch.com News 03.21.2011) - PUIAS http://puias.math.ias.edu/ is an RHEL clone "... started long before CentOS or other projects were available."

The question is: if CentOS fizzles for whatever reasons, how many will switch to one of the less than 5, one-man-show RHEL clone, how many will dig in and pay for RHEL, and how many will switch to non-RHEL?

If you have to ask how much it is, you can't afford it.

Working...