Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?

Comment Re:Hurr durr (Score 1) 209 209

Here in San Francisco, almost all the public toilets not inside a building with security are immediately infested with homeless, drug addicts etc using them for whatever. I've never gone into one that wasn't absolutely flooded and disgusting -- in the rare instance they're available. Many homeless just decide to live in them and break off the door/close it etc. In public transit, they have signs that say "Restroom closed due to terrorism concerns." -- Yes, blame terrorism, not the homeless!
Basically, any area of privacy you leave open to the public ends up going this route in SF (as well as other cities). It has the awful side effect of making it very, very difficult to urinate if you're going around the city without going into a business and perhaps buying something, or finding a building with public restrooms.
Thus the tech bros and bums join each other in urinating everywhere.

Comment Re:LOL (Score 1) 184 184

Actually the average rent for a 2 bedroom within 10 miles of SF (not even within SF) is $4,385 a month! SF has laws restricting campers now because so many people tried that -- most places good to park a camper have signs that say "No vehicles over 8" tall or 20" long." I owned a converted shuttle bus. :)

Comment Re:LOL (Score 5, Insightful) 184 184

As someone who lives in San Francisco and is around these type of people, yes, they are doing far better financially. Many of them even lose touch with folks earning average amounts. They ask me why I still live in a one bedroom apartment, and then I inform them the average of $50k/year in rent is well more than half most engineers' post-tax income; and they still don't seem to understand.

The culture of Silicon Valley and California in general is to sound positive all the time and avoid the negative -- people would much rather say nothing or offer platitudes than say "no". This forms part of the problem leading to depression -- everyone is "fake" and say things for political reasons, constantly on social networking talking up their accomplishments and that of their company. Of course, most of it is smoke and mirrors. Also the tech scene can be very pretentious and it takes a lot to "keep up with the Joneses" and stay in the social circles they prize. It becomes too much for many and they become depressed and fade away, replaced at their companies by the VC board. And some willing 20-something then comes and tries to fill their shoes and the cycle repeats.

No one wants to hire a depressed person. No one wants to go on dates with a depressed person (well, at least not many people -- negative/depressed dating site profiles don't get many replies). So, they conceal it until they break with full knowledge that when they break, they'll simply be replaced or their company will simply fail.

Comment White vs Grey hat cont'd (Score 1) 33 33

Thank you Brian for taking the time to reply to my question. Perhaps including the "social engineering" language was a bit strong for the work you do, but "doxxing" is still very much something you do; and I didn't get much of a response on the ethics of doxxing. Let's use your Rescator doxx for example -- what makes these people OK to dox? Is it different when you dox them as opposed to a witch-hunt on Reddit, etc? Does having poor operational security make it OK to dox someone?

Comment White vs Grey Hat (Score 2) 53 53

Hey Brian,
I'm wondering what side of the fence you think you are on. Your readership and affilitations seem to be the mainstream "white-hat" security community; but many of your tactics can be described as grey-hat at best -- e.g. doxxing hackers/malware authors/spammers, using social engineering to obtain information, etc. It seems as though this is justified because it is used against targets you perceive as being immoral, unethical, and/or worthy of such intrusion. My question is: do you feel you are a white-hat hacker, or do you think your use of black-hat tactics against black hats makes you something different?

Comment Re:People are claiming a victory where there is no (Score 2) 176 176

It's kind of silly to call the two major parties in the United States either left-wing or right-wing. Political Scientists have studied the "party cleavages" of the Republicans and Democrats in great detail. In comparison to other states' party cleavages, an ordinal scale is created: 1 being a statist, far-far-right government (Nazis), and 10 being a communist, totalitarian state (far left, Stalin).

Due to the nature of the two party system, in order to gain the most votes the parties in the United States gravitate towards the center. How much so? The democrats are rated at a 4.8 (just slightly below centrist, hardly enough to describe as left-leaning), and Republicans at a 5.5 (just slightly above centrist) -- meaning both parties are quite similar and have only minor differences. In the end, they are both centrist parties.

In the United States, there are authentic left-leaning parties like the Green Party, and right leaning ones like the Conservative Party; but these never get enough votes to pass thresholds for campaign financing nor seats in a federal body like Congress.

In conclusion, the major parties of the United States are both centrist, and while their rhetoric might illustrate contrasts between them, in reality they are very close to each other in the political spectrum.

Comment Full Disclosure is the only way... (Score 2) 94 94

I've reported serious vulnerabilities to a number of companies in the past. Generally, they acknowledge receipt of the information but do nothing to fix the problem -- e.g. a race condition, a SQL injection vulnerability, etc etc. However, when I've posted information on reddit or other internet forums, the bugs tend to get fixed rather quickly.

Full disclosure may well be a necessary evil -- sure, it allows anyone for some period of time to exploit the vulnerability; but it sure ends up getting fixed. Companies will wait months and years to fix security bugs if there is no clear and present danger.

Any time I disclose a bug to a vendor, I now tell them in the e-mail they have five days to fix it; after that it will be publicly disclosed. And I always make good on the disclosure.

Comment Re:Cause of Death (Score 2) 176 176

Taking some time to google this, many others have the same question. The internet's working theory: It was suicide.

While this is pure speculation, it makes a lot of sense in the context of how shady the revelation of his death has been. Had it really been suicide, it completely discredits Sheryl Sandberg's "Lean In" book and much of her preaching. In addition, it shows a lot of the propaganda about him being such a nice guy and caring for the kids wasn't on point...no loving father offs himself for selfish reasons before his children are of age.

There's also a deleted tweet that seems to indicate the couple was in DC, not in some undisclosed location "abroad," at the time of death. It makes sense to lie about this so people don't go getting records from DC about cause of death, autopsy, etc.

Comment Re:Cause of Death (Score 2) 176 176

I've been asking this question since seeing his death announcement -- coverage in the NYTimes and elsewhere has been nothing short of propaganda for him with zero mention of the reason for his death. Honestly, SurveyMonkey needs to go away..consumers are over-surveyed already; and it is the poster child for annoying, spammy messages for surveys that require a lot of time; I don't think this guy needs a state funeral.

So what happened? Extremely mega-rich (we're talking top percentile of the 1% here) people don't tend to just die suddenly in their mid-40s for no reason. Drugs? Murder? No one is saying anything; and I find this quite strange.

Comment Why does the summary read like a PR article? (Score 1) 12 12

They repeatedly mention "Conde Nast" more often than the VR technology the article is ostensibly about; give shout outs to corporate partners and even include their stock ticker (CNE) immediately -- does anyone on slashdot write Microsoft (MSFT)? This summary should be rewritten!

Comment Clickbait-ish Headline (Score 5, Insightful) 121 121

When I read this, I immediately thought "Has Google Indexed the Contents of your Google Drive?", in the context of those automatic backups you might have enabled for photos, etc on your Android device. In fact, you're only at risk here if you have configured some type of FTP server or WebDAV (like a QNAP, etc) to have a public IP and have no security whatsoever. So that means having enough technical prowess to accomplish that much, only to leave all your stuff open on the internet for "ease"?!?

I think much of Slashdot might agree with me that if you're silly enough to deploy a public-facing server with no or default authentication, yeah, you'll probably deserved get indexed by Google.

Comment Re:Waiting for Republicans to come in and defend t (Score 1) 316 316

Can you support your claims about the French "6th Republic" with any sources citing movements for creating a new constitution or dissolving the French state in favor of a new republic? Really, the DeGaulle Constitution is a staple of comparative politics and is the foundation of much of what Samuel Huntington terms the "Third Wave of Democratization."

There are running jobs. Why don't you go chase them?