Follow Slashdot blog updates by subscribing to our blog RSS feed


Forgot your password?

Submission What Congress' new email-privacy bill means for your inbox

erier2003 writes: The Electronic Communications Privacy Act Amendments Act has a simple and vital purpose: making it harder for the government to get your email, instant messages, and Facebook chats. It amends a decades-old law to require government agencies to get a warrant to access the contents of any email or other electronic record—no matter how old those communications are. Sen. Mike Lee, one of the bill's cosponsors, told the Daily Dot why it matters.

Submission 5-year worth of security report released-> 1

Taco Cowboy writes: A FIVE-YEAR RETROSPECTIVE STUDY into the security landscape has found that incidents and attacks are growing in number and sophistication

The document, McAfee Labs Report Reviews Five Years of Hardware and Software Threat Evolution (PDF) is a wide-ranging look at the threat network out there, and a look back over some of the more infamous assaults on industry. The hack on T.J. Maxx gets a very early mention

there were 9.4 million security incidents in 2010, and 42.8 million in 2014, and that a "perfect storm" is coming because of a combination of human beings, greed, malware, espionage, wearables, the cloud and the internet
Connected devices, for example, have shot up in use over the period, from five billion in 2010 to 16.3 billion now. The use of wearables has tripled in just two years to 146 million, while the Internet of Things has gone from 800 million devices in 2010 to 1.5 billion today

At first, these threats were a concern mostly for governments, financial institutions and security vendors, but they are now a major concern for enterprises and consumers, as they can significantly impact the value of businesses and can cause major headaches in our personal lives

The report also takes in the past three months, which is what these quarterly reports usually do. McAfee found that ransomware is growing at a rapid pace, increasing by 50 percent against the previous quarter and 127 percent against the same quarter last year

Mobile malware attacks have increased by 17 percent against Q1, but infections have fallen by one percent. Spam is also falling, but other flavours of attack are not. McAfee found that there are 6.7 million attempts made to lure people to bad URLs, and 19.2 million infected files slung around, every single bloody hour

Link to Original Source

Submission DNA from Neandertal relative may shake up human family tree->

sciencehabit writes: In a remarkable technical feat, researchers have sequenced DNA from fossils in Spain that are about 300,000 to 400,000 years old and have found an ancestor—or close relative—of Neandertals. The nuclear DNA, which is the oldest ever sequenced from a member of the human family, may push back may the date for the origins of the distinct ancestors of Neandertals and modern humans.
Link to Original Source

Submission First Library to Support Anonymous Internet Browsing Stops After DHS Email->

An anonymous reader writes: First Library to Support Anonymous Internet Browsing Effort (Tor) Stops After DHS Email

"A library in a small New Hampshire town started to help Internet users around the world surf anonymously using Tor. Until the Department of Homeland Security raised a red flag."

Link to Original Source

Comment What about market adoption aspects (Score 1) 119

I wanted to run my own social networking site just for me and my friends using a FOSS project, so I was excited about Diaspora, then I saw that it requires Node.js. I have no interest in setting my server up for that. I imagine this selection was made because developers think Ruby is cool and PHP is boring and lame. Unfortunately, whatever the justification was, to make Diaspora work you need to have, you know, Diasporas, but if the only people using the project are those that manage their own Node.js server, then the already puny market size of available Diasporas has just shrunk by several orders of magnitude. It really needed to be a project that could be installed on any generic LAMP server, but the developers are so rarely interested in this boring aspect (this is actually the case across many engineering fields, it's why companies hire marketers) that left to manage their own projects they fail to achieve their stated goals.

So I took a look at GNU Social, which is written in PHP. Unfortunately, they also fail the marketing test. The project seemed to revolve around making a 'federated' social networking system. However, the actual features of the social networking seemed to be trumped by trying to make the federated system work. From a marketing perspective, they put the cart before the horse. How many users want a circa 2009 facebook clone? I bet a fairly high number, but GNU Social doesn't even offer that level of functionality. The 'federation' of the system should be viewed more as a distribution element, so, you know, before going to distribution, you should have a product that people want to distribute, and GNU Social is not that.

Comment Re:Boolean filters are wrong (Score 1) 136

As a follow-up, I just found a message refused by Gmail (sent via Mailgun through public list alias):

"message": "552 5.7.0 This message was blocked because its content presents a potential\n5.7.0 security issue. Please visit\n5.7.0 to review our message\n5.7.0 content and attachment content guidelines. k3si2092734igx.18 - gsmtp",

Comment Re:Boolean filters are wrong (Score 1) 136

If the sender's server does not conform to IETF standards, then there can pretty much never be a justification to force a server to accept email. Greylisting is a powerful tool that prevents enormous volumes of spam from ever being received by a server, and uses IETF standards to enforce this policy. Yahoo! strictly follows DMARC p=reject policies and also has sort-of greylist feature that verifies ports are open for inbound traffic on sending servers (I don't fully understand this, but they are one of the few ISPs I have come across that require mail ports be open on sending server - try setting a server's firewall to only allow outbound email traffic and you'll see most servers accept the mail without issue, though I'm sure it violates some standard, and Yahoo! will deposit a message in your mail logs on why they aren't accepting mail from your server).

Comment Re:Works for me - whatever that is worth (Score 1) 136

I observed this same problem on the day that Google announced their new Postmaster service. The servers I manage are all small, but nothing has changed, not even an IP address, in years, yet suddenly everything started going to spam folders for all Gmail addresses. I changed nothing in my DNS records and the auth headers all stated pass for SPF, DKIM, and DMARC. I signed up for the service, but the domains are too small for Google to bother reporting anything, so my conclusion is they tweaked their algorithm somewheres.

Comment Re:Proxy ownership (Score 1) 202

The problem is well beyond that. The criminals will just provide useless whois info, because that is what criminals already do, and ICANN and all of the authorities will not have the time to investigate claims of false information, plus lots of people suffering from other issues, such as poor local postal service, registrar database errors, false claims of fraud by competitors, etc., will have their domains seized unjustly. The vast majority of people actually impacted by this will be legitimate, law-abiding persons and organizations. and it will be for the worse.

You are in the hall of the mountain king.