Catch up on stories from the past week (and beyond) at the Slashdot story archive


Forgot your password?

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).


Comment: Re:Put in a separate table (Score 2) 62

by Capslock118 (#47622901) Attached to: Oracle Database Redaction Trivial To Bypass, Says David Litchfield

No, passwords, SSNs, PINs and Credit Card numbers should be hashed before inserting into any table. There is NO reason for anyone to save that data unhashed.

To compare data, just hash what the customer enters and compare the hashes. Why is this so hard for 99.9% of companies to understand?

ACH processing requires sending bank account information to the ACH along with how much to bill the individual. Many other forms of automated payment processing formats also require credit card numbers sent - this is all happening with flat files. If you expect credit card numbers to be hashed in your database, then you need to convince the receiving end of that data that they do not need the source to send that data.

Comment: Re:No point encrypting if you're the only one... (Score 4, Insightful) 108

I agree 100%. I'd say 50% of my communication is with my family, and there is not a single person in that group that would be able to handle GPG. And anyway, we are at the point of "every message on every device", and again most of my family communicates on their smartphones, not on a desktop or laptop. Even if they did use a desktop/laptop the message would still have to be easily read on all of their devices (including default apps). There is just no point in wasting my time with email encryption since I am not any kind of political advocate and no one I communicate with would be able to use encryption. Heck, I have S/MIME on all of my devices for email and that works great and it's automatic......but I am the only person in my circle who uses that even though it's arguable easier to use than GPG (because it's supported by most of the default email applications out there). Why even bother with trying to ram encryption into email when there are other secure communication protocols out there?

Comment: Re:I love kill-a-watt (Score 1, Interesting) 211

by Capslock118 (#23938697) Attached to: Power Consumption of a Typical PC While Gaming
I have a kill-a-watt as well. I have been increasingly obsessed with the amount of energy my house uses and I am proud to say we are staying under 440 kWh per month. While I have not tested out my machine thouroughly (I do not have it on much anymore) on Idle i was spending 450 watts. Now, this was between the power supply and the wall, so maybe the machine was using less power, but ultimately thats what it was drawing (the power supply is 450 watts so this makes sense to me). I can hardly believe that the router mentioned was using 8 watts, what is the time period there? I know the power supply on my linksys router is in the milliamps so, basic conversion would indicate to me that is not possible. I am probably thinking of something backwards though. But regardless, wouldnt the power supply dictate the amount of power used regardless of what the computer actually uses?

The universe seems neither benign nor hostile, merely indifferent. -- Sagan