Forgot your password?
typodupeerror

Comment: Re:huh (Score 1) 80

by Jose (#46806153) Attached to: Heartbleed Pricetag To Top $500 Million?

yea, is difficult to see how it could cost *that* much. although, I would argue that it could be a little more complicated than you mention, if you don't have a perfect inventory of all of your software and devices.

it was/is a serious enough bug that it was drop everything and start patching/mitigating the problem...since it can take time to determine if your software/devices are vulnerable, it is likely that people had to work overtime (does anyone actually get paid overtime anymore?).

it also probably meant running scans across your public IP space to see if you have anything listening that is vulnerable that you somehow missed, then tracking down exactly what that device is.

I've heard that some CA's were charging for either the revoke, or re-issue on certs as well. although I never actually confirmed that.

you then had to roll all passwords used on those devices, and any passwords that were used on external sites.

after the initial rush to patch/scan your network...it came out that all heartbleed scanners are not accurate. so lots of people probably re-scanned with better tools.

if you work with a lot of external partners, people probably spent time scanning them as well, to see if they were still vulnerable, and reached out to them to get them to patch.

in a perfect world, a lot of the above is fairly automated...but I'd imagine most of us don't live in that perfect world...so the above tasks take a fair amount of time, which detracts from other work..so shows up as the cost of heartbleed. multiply that times X companies....and add in costs for consultants/contractors for some companies...and it gets to be big number.

Comment: Re:Why? (Score 4, Informative) 527

by Jose (#45024149) Attached to: Lavabit Case Unsealed: FBI Demands Companies Secretly Turn Over Crypto Keys

Why would they want to intercept the traffic when they could just read it off the server?

from TFA: ....But Lavabit offered paying customers a secure email service that stores incoming messages encrypted to a key known only to that user. Lavabit itself did not have access.

Comment: Re:They come back the next day (Score 1) 196

by Jose (#44622633) Attached to: Canadian City Uses Drone To Chase Off Geese

feel free to hunt away.
Ontario MNR:
"Hunting is an effective way to manage goose populations and prevent conflicts. Regulations, seasons and municipal bylaws must be followed. You may hunt geese in the open season with a valid hunting licence for migratory birds. You can also encourage hunting on your property. "

Comment: Re:Perspectives (Score 1) 782

by Jose (#40347165) Attached to: Ask Slashdot: What's Your Take On HTTPS Snooping?

SSH can't be proxied like SSL traffic

yep, it can. there are a few commercial fw's that do it...check out page 191 of McAfee's (.pdf) userguide
here

if you don't wanna read the .pdf...check here

"Put the network firewall in charge of security again with integrated comprehensive network gateway protection technology, including:

        Encrypted traffic inspection (SSH/SSL)
"

+ - Short Term Loans For Bad Credit->

Submitted by Anonymous Coward
An anonymous reader writes "First short term personal loans are very simple. Just do a quick search online and find all the different instant cash loans that are available. Make sure that you apply to different companies, so you can use the best available rates. Once you have your instant cash loan you can be approved within 24 hours of your request, gelten."
Link to Original Source

Comment: Re:There is no Microsoft Tax (Score 1) 475

by Jose (#38962607) Attached to: Lenovo Ordered To Refund 'Microsoft Tax'

heh. I did come back to check to see if you responded.

HP tends to do the tall enter key...so the pipe key is to the left of that.

watch out for the consumer level laptops from HP...they are fairly cheaply made (pavilion line).

the probooks are much better quality....but you do pay for it.

other than that...great machines.

(non ac this time :))

Comment: Re:Strangely inspirational (Score 1) 373

by Jose (#37870222) Attached to: The RMS Tour Rider

refusing to interviews if the interviewer isn't willing to "properly" refer to GNU/Linux or conflates Free and Open Source Software... Arguably such people are the ones who might most benefit from his message. Appearing on stage next to a banner might produce the opportunity to talk about why he disagrees with such things... talking to a reporter who conflates "Free" and "Open Source" might provide an opportunity to talk about the difference. Both could be done in a non-confrontational way that none the less shows what he believes and why.

did you see the part where rms asks that the journalists actually attend his talk? and the references he gives to the GNU website talking about the difference between Free Software and Open Source software?
by the time he finishes his speech, he has spoken at length on the differences. why repeat it to a journalist?

Computers are not intelligent. They only think they are.

Working...