Forgot your password?
typodupeerror

Comment: Re:Insecure ads (Score 2) 199

by FireballX301 (#47144895) Attached to: To distress my enemies, I'd force on them ...
Third party certification, mostly. There are a number of ad mediation networks (the middle-men who accept ads to distribute to end-sites, and sign contracts with both), and some of them are dirty, others are squeaky clean, because the clean ones will lose all of their high-end clients if they run a malware ad as well as get dropped from most of the high end sites. The only way to even try to fix this is a broadly distributed whitelist backed up by certs, but experience shows certifications are generally not even close to providing enough reassurance.

The person with the real answer to that problem is sitting on multiple millions of dollars. The stopgap (closed garden mobile environments) is unpleasant for everyone involved because of how crazy limited it is.

Comment: Re:Insecure ads (Score 1) 199

by FireballX301 (#47143683) Attached to: To distress my enemies, I'd force on them ...
My firm actually specializes in ads that use javascript calls to webgl to render 3d content. But no, high end brands (i.e. not unscrupulous fly by night credit rating vendors or mugshot extortionists) like luxury cars or fashion control very carefully how their brands are placed in advertising, and everyone realizes by now that pop-unders and similar serve only to destroy brand value, not add to it.

Comment: Insecure ads (Score 5, Insightful) 199

by FireballX301 (#47141903) Attached to: To distress my enemies, I'd force on them ...
Unfortunately, I work in the ad industry, though my firm's clients are premium brands that specifically avoid the undesirable ad types (banners only, no pop unders or bullshit. Those types of ads actually hurt brand value more than anything else). That being said, by far the worst ads are the ones that have been compromised to deliver malware. That really blows the other options out of the water.

Comment: "there's not much to indicate difficulty" (Score 5, Insightful) 278

by FireballX301 (#46875849) Attached to: The Ways Programming Is Hard
Only complete idiots/tools think this way about any profession. Brick laying looks easy, but I wouldn't trust someone who's never picked up a trowel in their life before to put up a brick wall. Anyone 'outside the profession' should only be concerned that the code works, is maintainable, and is to spec, along with passing a security audit.

Comment: What's the problem? (Score 3, Interesting) 188

by FireballX301 (#45231257) Attached to: Online Retailers Cruising Tor To Hunt For Fraudsters
If you use your card online, you're telling the retailer who you are and where you generally are, and having them do their homework is nothing but a good thing. Making people go through more verification steps if red flags are thrown is nothing but a good thing. If you use Tor and then buy something with a personal credit card or debit card, you're doing it wrong.

If you want to stay anonymous, load a pre-paid debit card and jump through the anti fraud hoops. Nobody said staying off the grid was going to be easy.

Comment: Re:How are they identified? (Score 1) 510

I'm sure they have cameras recording plates of people who enter and exit the airport, and they'll flag people for suspicious activity (going to the airport more than 2 or 3 times a day, for example) and ask them what they're doing. If they admit ridesharing it's off to the pen

Comment: Won't work. (Score 2, Interesting) 119

I was at a 'technology literate' middle school when Lego Mindstorms came out, and the school bought a few of them for the school computer club so people could 'program' and 'debug' the RCX robots. It was good fun, but all it taught to kids was a very rudimentary concept of program flow.

If you want to make kids tech literate, you deconstruct something they use in their every day lives, when they're old enough to be capable of it. A good example would be a high school course focusing on high level full-stack design - here's twitter, here's how their servers look like in a very simple way, here's their API, let's do a 2 month project to make a frontend. Or let's make our own mini twitter just for our class, here's a sql server and we can write the backend together over a month or so. That sort of thing would both engage kids and give them useful experience.

Comment: Nope (Score 4, Informative) 217

by FireballX301 (#44172661) Attached to: AOC's 21:9 Format, 29" IPS Display Put To the Test At 2560x1080
Having two discrete monitors that you can easily lock windows to is what I want. I consider the dividing line between the monitors a good organizational assist.

That being said, I miss 5:4 and 4:3 monitors and want them back, because having to set up widescreens vertically defeats the point. two 4:3 monitors give me the horizontal area I want without consuming my entire desk, but it's difficult to find good ones at a reasonable price.

Comment: Don't bother. (Score 5, Insightful) 272

by FireballX301 (#42926203) Attached to: Ask Slashdot: Inexpensive SOHO Crime Deterrence and Monitoring?
Buy business insurance, do what the insurance adjuster wants you to do, and don't do anything more.

If you don't have or can't afford business insurance, then you should question whether your business is viable or not, especially if a poorly timed robbery can put you under.

Comment: Just ship with a low-draw driver (Score 5, Interesting) 303

by FireballX301 (#41666855) Attached to: Will EU Regulations Effectively Ban High-End Video Cards?
Have the driver that ships with the card be designed to stay under the draw cap so the card is still in regulation, and the manufacturer can just offer the normal drivers on the site for people to download.

Naturally anyone who cares will install the real driver, so the law-breaking is on the part of the consumer, not AMD or Nvidia. Seems like a simple workaround as long as you can say 'it's the consumer breaking the law, not us'

Comment: "Reliably better" (Score 4, Interesting) 287

How many standard deviations above 'random guessing' are we talking about? Over how many trials? And 2 weeks is fine, but what about 6 months to a year?

I still prefer 80+ character passphrases lifted from song lyrics whenever possible. If you know the song well enough it's impossible to crack, and the search space is still large among people who know you like that particular song

Comment: Load balancing and an experienced sysadmin (Score 4, Insightful) 197

The load balancer to take the brunt of the attack and distribute traffic to multiple mirrors, and the sysadmin to watch the attack and start blacklisting IP ranges. Your service provider should have some kind of service in place unless you got the cheapest of cheap hosting solutions.

With that being said, hiring a third party ddos mitigator is entirely a cost benefit analysis that should be done on your end. Can whoever's providing your hosting now provision some extra servers and some harried sysadmins to keep you floating? See if you can ask for additional service support from your current provider.

Comment: I pay my Math Tax all the time. (Score 5, Informative) 301

by FireballX301 (#39531035) Attached to: To me, lotteries represent ...
If I stop by a convenience store or gas station and happen to see a lottery booth, I'll usually pick up a $1 quick pick.

I fully understand that I have no chance of winning. I don't really care. A good portion of the cash goes towards the woefully underfunded public school system in my state, I consider it a fun idle activity to occasionally check winning numbers and to complain about never winning, and the $1 every so often is utterly inconsequential to me.

Some people have problems buying huge numbers of tickets, and that's a gambling problem, but it's absurd to seriously call it a math tax. Nobody buys tickets expecting to win.

"An organization dries up if you don't challenge it with growth." -- Mark Shepherd, former President and CEO of Texas Instruments

Working...