Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror

+ - Linode hacked, CCs and passwords leaked 6

Submitted by Anonymous Coward
An anonymous reader writes "On Friday Linode announced a precautionary password reset due to an attack despite claiming that they were not compromised. The attacker has claimed otherwise, claiming to have obtained card numbers and password hashes. Password hashes, source code fragments and directory listings have been released as proof. Linode has yet to comment on or deny these claims."

Comment: Re:Topeka's renaming stunt didn't work. (Score 1) 162

by Klaruz (#35669880) Attached to: Google Fiber Comes To Kansas City

I don't think you'd get a COOP working, but you may be able to get the municipality to do so. You can do that in Kansas, but not Missouri, it's illegal. Same with Nebraska, Texas and Arkansas. The telecoms are actively lobbying to get laws passed in other states as well.

http://arstechnica.com/tech-policy/news/2010/07/who-supports-city-owned-fiber-networks-the-us-government.ars

The proper thing to do is sit back and wait, the telcos are sitting on a huge pile of money we gave them in the 90s to build these fiber networks, they'll get to your town soon....

Comment: Re:Well lets see... (Score 1) 665

by Klaruz (#35560462) Attached to: Why Doesn't Every Website Use HTTPS?

Self signed certs DO NOT make traffic encrypted. If you think they do, you're a complete idiot.

The point of SSL is to protect against man in the middle attacks. If you're in the middle and able to control somebody's session, all you have to do is re-sign the session with a CA you control. The end user has NO WAY OF KNOWING YOU DID THAT since they don't have a trusted CA on their computer to validate the session against. Self signed certs are a completely pointless waste of time and CPU.

Repeat after me

SSL without a certificate authority is a pointless waste.
SSL without a certificate authority is a pointless waste.
SSL without a certificate authority is a pointless waste.

Get it?

Comment: Re:Two reasons for SSL (Score 1) 269

by Klaruz (#32736052) Attached to: 22 Million SSL Certificates In Use Are Invalid

Wow, calm down. You have to work the system sometimes, it's the nature of the beast. A little sugar goes a long way. Failing that, you can also report the up your chain that this Sergeant Major isn't letting you accomplish your mission.

Also, like I said, some IT is run better than others. In those cases, not to far past the IT and Security managers there's somebody with a bird or a star that needs to fix their organization.

Comment: Re:Two reasons for SSL (Score 2, Insightful) 269

by Klaruz (#32729432) Attached to: 22 Million SSL Certificates In Use Are Invalid

'the army' isn't one big magical network, it's actually hundreds of separate AD domains, and there is more than one branch of the military, some fly planes, some sail ships, some get shot at, they all have different ways of finding people to manage those AD domains. Some suck, some don't. I can tell you those that don't suck do indeed install the correct certificate authorities.

Comment: Re:Nothingtoseeheremovealong (Score 1) 853

by Klaruz (#31912436) Attached to: Gizmodo Blows Whistle On 4G iPhone Loser

Umm, the person who found the phone did contact the owner. The owner then ignored him.

So the car analogy would be: "Well, I was at this bar and found these car keys, I knew exactly who they belonged to and tried to give them to him. He laughed and said there's no way you have my cars keys. Then he slammed the door in my face, so I sold the car."

Comment: Re:Hmm... (Score 1) 454

by Klaruz (#31451626) Attached to: FCC Asks You To Test Your Broadband Speeds

The solution to broadband is ridiculously easy -

- Congress should mandate with a simple law that the telephone company must provide DSL to any customer requests it (within six months). The twisted-pair lines are already there, except for the need to add a neighborhood DSLAM. If Verizon/ATT/whoever balk about expense, simply point to the billions they received circa 1996 and say "use that". Actually the expense should be quite low to upgrade existing phone lines to DSL lines.

So you're proposing that instead of the taxpayer paying for it via taxes, the customers will pay for it via price increases handed down by the providers to cover the extra costs?

So it's OK for everyone to pay for it as long as it's not called taxes? Brilliant.

Did you even read what he said? We ALREADY paid for it with our taxes in the 90s, instead of building out broadband THEY STOLE THE MONEY.

Image

Kids Score 40 Percent Higher When They Get Paid For Grades 716

Posted by samzenpus
from the show-them-the-money dept.
A large number of schools participating in a pay-for-grades program have seen test scores in reading and math go up by almost 40 percentage points. The Sparks program will pay seventh-graders up to $500 and fourth-graders as much as $250 for good performance on 10 assessment tests. About two-thirds of the 59 schools in the program improved their scores by margins above the citywide average. "It's an ego booster in terms of self-worth. When they get the checks, there's that competitiveness -- 'Oh, I'm going to get more money than you next time' -- so it's something that excites them," said Rose Marie Mills, principal at MS 343 in Mott Haven. Critics, who are unaware that most college students don't become liberal arts majors, argue that paying kids corrupts the notion of learning for education's sake alone.

If you're not careful, you're going to catch something.

Working...