Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror
For the out-of-band Slashdot experience (mostly headlines), follow us on Twitter, or Facebook. ×

+ - Linode hacked, CCs and passwords leaked 6 6

An anonymous reader writes: On Friday Linode announced a precautionary password reset due to an attack despite claiming that they were not compromised. The attacker has claimed otherwise, claiming to have obtained card numbers and password hashes. Password hashes, source code fragments and directory listings have been released as proof. Linode has yet to comment on or deny these claims.

Comment: Re:Topeka's renaming stunt didn't work. (Score 1) 162 162

I don't think you'd get a COOP working, but you may be able to get the municipality to do so. You can do that in Kansas, but not Missouri, it's illegal. Same with Nebraska, Texas and Arkansas. The telecoms are actively lobbying to get laws passed in other states as well.

http://arstechnica.com/tech-policy/news/2010/07/who-supports-city-owned-fiber-networks-the-us-government.ars

The proper thing to do is sit back and wait, the telcos are sitting on a huge pile of money we gave them in the 90s to build these fiber networks, they'll get to your town soon....

Comment: Re:Well lets see... (Score 1) 665 665

Self signed certs DO NOT make traffic encrypted. If you think they do, you're a complete idiot.

The point of SSL is to protect against man in the middle attacks. If you're in the middle and able to control somebody's session, all you have to do is re-sign the session with a CA you control. The end user has NO WAY OF KNOWING YOU DID THAT since they don't have a trusted CA on their computer to validate the session against. Self signed certs are a completely pointless waste of time and CPU.

Repeat after me

SSL without a certificate authority is a pointless waste.
SSL without a certificate authority is a pointless waste.
SSL without a certificate authority is a pointless waste.

Get it?

Comment: Re:Two reasons for SSL (Score 1) 269 269

Wow, calm down. You have to work the system sometimes, it's the nature of the beast. A little sugar goes a long way. Failing that, you can also report the up your chain that this Sergeant Major isn't letting you accomplish your mission.

Also, like I said, some IT is run better than others. In those cases, not to far past the IT and Security managers there's somebody with a bird or a star that needs to fix their organization.

Comment: Re:Two reasons for SSL (Score 2, Insightful) 269 269

'the army' isn't one big magical network, it's actually hundreds of separate AD domains, and there is more than one branch of the military, some fly planes, some sail ships, some get shot at, they all have different ways of finding people to manage those AD domains. Some suck, some don't. I can tell you those that don't suck do indeed install the correct certificate authorities.

Comment: Re:multitool key mod (Score 1) 763 763

I've accidentally flown with my micra (on my key chain of course) through security before, but I do try to avoid it since I'd rather not throw it away if they find it.

This is a really good idea though, unfortunately I mainly need 2 car keys and a house key and I think the car keys are too long. :(

Comment: Re:Nothingtoseeheremovealong (Score 1) 853 853

Umm, the person who found the phone did contact the owner. The owner then ignored him.

So the car analogy would be: "Well, I was at this bar and found these car keys, I knew exactly who they belonged to and tried to give them to him. He laughed and said there's no way you have my cars keys. Then he slammed the door in my face, so I sold the car."

Comment: Re:Hmm... (Score 1) 454 454

The solution to broadband is ridiculously easy -

- Congress should mandate with a simple law that the telephone company must provide DSL to any customer requests it (within six months). The twisted-pair lines are already there, except for the need to add a neighborhood DSLAM. If Verizon/ATT/whoever balk about expense, simply point to the billions they received circa 1996 and say "use that". Actually the expense should be quite low to upgrade existing phone lines to DSL lines.

So you're proposing that instead of the taxpayer paying for it via taxes, the customers will pay for it via price increases handed down by the providers to cover the extra costs?

So it's OK for everyone to pay for it as long as it's not called taxes? Brilliant.

Did you even read what he said? We ALREADY paid for it with our taxes in the 90s, instead of building out broadband THEY STOLE THE MONEY.

Mozilla

Mozilla Thunderbird 3 Released 272 272

supersloshy writes Today Mozilla released Thunderbird 3. Many new features are available, including Tabs and enhanced search features, a message archive for emails you don't want to delete but still want to keep, Firefox 3's improved Add-ons Manager, Personas support, and many other improvements. Download here."
Image

Kids Score 40 Percent Higher When They Get Paid For Grades 716 716

A large number of schools participating in a pay-for-grades program have seen test scores in reading and math go up by almost 40 percentage points. The Sparks program will pay seventh-graders up to $500 and fourth-graders as much as $250 for good performance on 10 assessment tests. About two-thirds of the 59 schools in the program improved their scores by margins above the citywide average. "It's an ego booster in terms of self-worth. When they get the checks, there's that competitiveness -- 'Oh, I'm going to get more money than you next time' -- so it's something that excites them," said Rose Marie Mills, principal at MS 343 in Mott Haven. Critics, who are unaware that most college students don't become liberal arts majors, argue that paying kids corrupts the notion of learning for education's sake alone.

A fail-safe circuit will destroy others. -- Klipstein

Working...