Comment: Re:Has anyone ever done an analysis.... (Score 1) 155
Wonder if this classic from Slant 6 and the Jumpstarts, which was played on the Dr. Demento show several times had something to do with it:
Comment: Author of the sequel (Score 1) 298
If there must be a sequel, can we at least get someone competent to write it? Is that Brandon Sanderson guy working on anything right now?
Comment: Re:Never passwords! (Score 1) 497
I don't recall stating that symmetric keys are related to authentication. May I suggest a careful reread?
Comment: Re:Never passwords! (Score 1) 497
Actually, 2048 bits on a symmetric key (which is what a password is) is insane overkill. You are making the classic mistake of comparing the number of bits in an asymmetric key to the number in a symmetric key. SSH, at best, uses 256 bit symmetric encryption for the session, so you would only need a (using your numbers for 6 bits per char) password that was 43 chars long. Anything longer is pointless, because your encryption/authentication scheme is only as good as the weakest link.
Coping With 1 Million SSH Authentication Failures? 497
Posted
by
kdawson
from the some-definitions-of-managed dept.
from the some-definitions-of-managed dept.
An anonymous reader writes "I own a small Web development studio that specializes in open source software, primarily Drupal, WordPress, and Joomla for small businesses. Our production servers, which host about 50 sites and generate ~20K hits/week, are managed by a 3rd party that I'm sure many on Slashdot would recognize. Earlier today I was researching some problems on one of our sites and found that there have been over 1 million SSH authentication failures from ~1200 IP addresses on one of our servers over the last year. I contacted the ISP, who had promised me that server security would be actively managed, and their recommendation was, 'change the SSH port!' Of course this makes sense and may help to an extent, but it still doesn't solve the problem I'm facing: how do you manage server security on a tight budget with literally no system admin (except for me and I know I'm a n00b)? User passwords are randomly generated, we use a non-standard SSH port, and do not use any unencrypted services such as FTP. Is there a server monitoring program you would recommend? Is there an ISP or Web-based service that specializes in this?"
Leonid Meteor Shower Peaks Early Tuesday Morning->
Submitted
by
GringoChapin
GringoChapin writes "Space.com reports that "One of the best annual meteor showers will peak in the pre-dawn hours Tuesday, and for some skywatchers the show could be quite impressive. The best seats are in Asia, but North American observers should be treated to an above average performance of the
Leonid meteor shower, weather permitting." Folks from the United States will want to start watching at 0100 Pacific, 0400 Eastern, and those in Europe from 0100 local time until dawn."
Link to Original Source
Leonid meteor shower, weather permitting." Folks from the United States will want to start watching at 0100 Pacific, 0400 Eastern, and those in Europe from 0100 local time until dawn."
Link to Original Source
Comment: Re:Bide your time (Score 1) 1006
Lawyer/Accountant - Hell no, I'm not getting disbarred/whatever for you guys, and furthermore there's not a lawyer/accountant in the country who will put
their name on %dodgy_thing%, unless of course you buy lunch.
Comment: Re:Opinion from a blind guy (Score 1) 550
I don't think we disagree that much. If it would require major modifications to the product, or put a major burden on the manufacturer/designer/whoever, then I don't think that making the product accessible should be required.
Still you might consider that in this instance it's easy to dismiss the request for accessibility, because it's just a video game, and regardless of what this guy claims, I doubt it's going to have that big of an impact if this game remains inaccessible. However, what about Second Life? Many would argue that that is just a game as well. Yet, a number of universities and businesses offer services in Second Life. (I haven't looked into Second Life, so I don't know how accessible it is, but that's beside the point.)
The question is at what point do we decide that a disabled person deserves the right of access?
Comment: Re:Opinion from a blind guy (Score 3, Informative) 550
Check YouTube for videos on "screen readers". You can see the couple I've done at
http://www.youtube.com/watch?v=AmUPhEVWu_E
In short the web page is linearized, and read one line at a time by my screen reader. If there is a link for replying, my screen reader will say "link reply". It also tells me about tables, headings, ETC.
Comment: Re:Opinion from a blind guy (Score 1) 550
Without going into too many details (half of which I don't remember because it's been years since I played) the answer to your question is simply that a lot of information is given away in the audio. Also, the timing of punches, especially with the early opponents, tends to be quite predictable.