Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror

Comment Re:This is why (Score 4, Interesting) 67

Use an authenticator app, any of them, even Microsoft's would be worlds better than SMS.

Until your phone dies and then you find that you don't have a backup, or if you did backup the authenticator app, it requires the same login, gated by the authenticator app that you just lost access to in order to recover from the backup.

Yes, if you plan things carefully, you can work around these issues, but most people don't have the knowledge and skills to do this.

While SMS may not be the most secure method, unless you think you are likely to be specifically targeted, it's probably secure enough.

Comment Re:No surprise (Score 1) 139

All you demonstrated is that context determines whether "more" refers to a count or an uncountable quantity, unlike your claim that '"more" is a quantity word, not a weight word.'

There isn't even a disagreement here! If you say "but the mass of the oranges is greater"

You don't even have to use the word mass to change the meaning of "more" here, just make "oranges" and "grapes" singular and one can clearly interpret this as weight, not count:
"there is more orange than grape"

Context is everything

Comment Re:Yeah but... (Score 1) 221

Recently, I find that Firefox sometimes suddenly uses large amounts of memory, effectively locking up my Linux system. However, looking at "about:power", it's the tabs open on Microsoft pages that are taking more memory than any others.

If I hit quickly enough I can usually kill some tasks to recover.

Comment Re:And with it routing tables increase in size aga (Score 1) 93

Temporarily running it alongside the replacement was the best you were ever going to get.

I don't believe that that was the best that could be devised. The simple fact is that there are millions of networks using NAT and some better migration path should have been created for them.

NAT is _NOT_ a security mechanism and does not provide any protection to anything.

NAT may not be intended as a security mechanism, but it does provide some level of protection.

The vast majority of compromised IoT devices that form botnets today have been compromised via legacy ip

Did you ever hear of "defense in depth"?

Aside from the ease of scanning the address space both locally and remotely

Please explain how one would scan the address space behind a NAT router.

the small address space also makes XSRF attacks much easier

I'll admit to not being a security expert, but the descriptions of XSRF attacks all talk about tricking the user into going to the wrong site. Do IoT devices typically have users that can be tricked in this way?

Most of those IoT attacks rely on the IoT device being addressable from outside the local network. At the very least, finding a device behind a NAT router takes more time and more resources, hence increasing costs for the attacker.

But, fundamentally, NAT is widely used today and no real consideration was given to migration of such networks.

Just labeling them "bad" doesn't actually help with migration.

Slashdot Top Deals

Where there's a will, there's a relative.

Working...