Slashdot is powered by your submissions, so send in your scoop


Forgot your password?

Comment Re:Has anybody ever heard of a firewall? (Score 1) 78

I agree that the evolution/purpose of the internet (and all wide area networks) can be exploited for nefarious purposes.

But, to not have a firewall is STUPIDITY!

Tea Leaves show that people/businesses/government entities can and will be sued for cyber security breaches. I'm just asking our government to do the most basic of functions that "a government" is created for, wielding the collective power of it's people. If a government can't protect it's own its not really fulfilling its purpose.

Comment Has anybody ever heard of a firewall? (Score 1) 78

Just wondering.. we already monitor 100% of traffic leaving our shores, why can't we use that deep packet inspection to build a firewall?

Plus, we could whitelist packets from known addresses and charge a penny per packet for "trusted" delivery. That sucking sound you would hear is all of the call centers and offshore support organizations being sucked back to our shores....

Comment Why the reward and aggressive prosecution bluster? (Score 1) 372

What I notice about this security fail is the company response. A bounty for information leading to the hackers, interesting? I don't remember reading about any of the many other recent breaches this year offering a cash reward... Who did they believe hacked them? Prosecutors are saber rattling too...

So, why would a "Canadian" dating service warrant this level of response in terms of bounty and threats of prosecution... Just feels a little disproportionate to me.

My wife had her data stollen with the US OPM breach... other than a form letter offering identity theft protection we haven't heard anything since. No congressional investigation, no threats of prosecution, no holding the people (Employees or Contractors) at OPM accountable. The OPM breach was way more intimate than a dating site when you include the extensive personal data divulged when you apply for a security clearance.

Comment Re:Double Speak 101 (Score 1) 55

I am in 100% agreement.

I was just stirring the pot, because I see the human element as the point of failure in most scenarios. (had to laugh about Cardinals v. Astros in the news yesterday) If the human involved had changed his (default/typical) password after moving to a competing company, the unauthorized access wouldn't have been practical. --it's likely the same password on social media, email, banking, etc..

Most (I'm talking non-programmers) people don't realize that an unscrupulous web site or service can store your password in clear text. Just because it isn't displayed doesn't imply that it hasn't been saved someplace in the cloud with enough information to attempt similar credentials against other sites and services.

Comment Re:Double Speak 101 (Score 1) 55

I have to agree, and if they weren't expecting Cherry and tested against Tropical Punch (ok, too much Kool-Aid metaphor )

Unfortunately we get legal departments involved and everybody becomes "risk averse" so nobody will take ownership of the truth. (flashback to Cruise / Nicholson, and another Kool-Aid tie in) Truth, you can't handle the Truth!

Here is my shot at Truth: Strong biometric authentication is the only solid machine / human authentication available today.

Comment room full of rocking chairs (Score 1) 55

"I asked everyone to look at their systems from the perspective that they would need to detect, track, and limit a privileged access breach"

I didn't see how what I had said was unreasonable, but it was like I turned a long tailed cat loose in a rocking chair convention. What is wrong with assuming the worst and seeing what you can do about it? If you can't admit that your administration level accounts can be hacked, I don't believe you understand what you are up against.


Comment Re:Requiring encryption server-side (Score 1) 245

My white board at work has a permanent sketch of a generic internet/cloud services topology that my wife can refer to. All of the communications arrows between services have been centralized in the diagram and I've drawn a big red circle that encloses these connectors. The label on the circle is TRUST... if you can't TRUST the people that connect the services together you can't TRUST anything.

Comment It appears no user friendly protocol is safe. (Score 1) 245

If it's been identified one time, it's likely been happening on a larger scale but as yet undetected. It's becoming very easy to be either paranoid or self censoring. I don't have anything to hide, but being sliced/diced/dissected/analyzed by the big data cloud does get a little bit old. It's easy to see the results of this overreaching data collection, just research a medical condition (especially one that has a name brand pharmaceutical treatment), research a popular consumer appliance, research a new vehicle, etc... then pay attention to the advertisements that appear on websites over the next couple days... do you notice anything... like ads for what you researched?

I occasionally poison my search results by just doing random searches. I pick a person/place/thing that I have no real interest in, and watch the ad world turn. It must really throw off the "kevin by the beach" bucket when I search for Vespa parts, the latest gay romance novel, women named ISIS, and the 10 day weather for geopolitical sites of interest.

Comment So much for Social Workers.... (Score 1) 331

There are some college degrees that you don't make money at... The people that graduate in those fields don't do it for the money, but for the good they do for others. This is well intentioned, but it may hurt some of the neediest. Can you imagine if our social safety net was staffed exclusively with life coaches?

Comment Re:thank goodness that argument is settled. (Score 1) 669

I like applying some relativistic physics to the creation story.... Let's say you are along for the ride during the big bang...(play along please). From our spot, getting blown out into the cosmos at speeds that ignore our current universal constants... it could have felt like it took seven days to get here, and yes I would have sat back, took a look around, and said it was good.

The trouble with a lot of self-made men is that they worship their creator.