Forgot your password?

Comment: Re:Well then the SOLUTION is obvious (Score 1) 154

Pffft. Kids have been "hacking" signs for years. I remember when I was a kid, there was a place called Fairy Falls Creek. A couple of my university friends went and made a professional quality sign, in the same colour, and font as the existing sign, and renamed the area to Hairy Balls Creek. The fact that there were round rocks covered in hairy moss made the sign very plausible. So plausible, that after a few years, even the local tourism guides quoted Hairy Balls Creek.

Epic! I salute the miscreants who pulled that off.

Comment: Re:Nope. (Score 1) 355

by NF6X (#47062443) Attached to: Google Foresees Ads On Your Refrigerator, Thermostat, and Glasses

So you wouldn't like to know that the temperature inside your freezer went too high and your food defrosted because your flatmate left the door open while you were away for the weekend?

I don't need my freezer to have a network connection for that. An old water bottle and a little bit of water will do the trick just fine. I can't think of any reason that I'd want my refrigerator, thermostat, laundry machines, etc. to have network connectivity. The real winners in the "Internet Of Things" game are the makers of networking hardware.

Comment: Security Token? (Score 1) 193

by NF6X (#47056641) Attached to: eBay Compromised

eBay and PayPal used to offer security tokens to provide one-time PINs to be used at login. They were offered as either physical tokens or as smartphone apps. I just tried to look for them on the eBay and PayPal sites, but I no longer see any mention of them. Have they stopped supporting the tokens?

PayPal now just appears to offer something called PayPal Security Key in which they send OTPs via SMS, and I don't see anything like that on the eBay site.

Comment: Re: This isn't new... (Score 4, Insightful) 138

by NF6X (#46923225) Attached to: Researchers See a Post-Snowden Chilling Effect In Our Search Data
I recall seeing many Usenet posts ending with "NSA Line Eater Food" followed by lists of naughty keywords back in 1986 when I started college. The only differences are that now we have confirmation of what we took for granted back then (and probably before), and the scope is beyond what even the tinfoil hat guys believed.

Comment: Re:for occulus it's the better deal (Score 1) 300

Indeed. Now I'm glad that I didn't act on my brief curiosity about applying for work at Oculus VR when I heard about some interesting engineering job openings that they posted a while back. I wouldn't want to work for Zuckerberg. Now that FB owns them, I have lost all interest in ever buying their products. Oculus VR is dead to me now.

Comment: Re:The chain of trust is broken. (Score 1) 110

by NF6X (#46553541) Attached to: Fake PGP Keys For Crypto Developers Found

And in this case, the fake key has zero signatures whatsoever. If it had any, they would either be a blob of also-fake unconnected keys, or someone proving his guilt this way.

Just to be pedantic, a fake key may also be signed by a real, correctly-identified individual who had no intention of subterfuge, but who isn't careful about whose keys he or she signs. Of course, once discovered, that person should from then on be distrusted to validate other keys just as much as somebody who deliberately tried to deceive others.

A scarier but less likely possibility would be a malicious actor who creates a forged key for some other person, and then attends key-signing parties where they present forged identification in order to receive legitimate signings of their forged key. It'd be hard to get away with this if the target is an individual with a well-known appearance, like a Schneier or a Wozniak. But if the target is somebody who is just known online by name and not by their physical appearance, then it might not be hard to get legitimate signatures on the forged key by real, well-trusted individuals who simply had no prior knowledge of the target's real appearance. I wouldn't know "the" Gavin Andresen who maintains Bitcoin code from "a" random person named Gavin Andresen, or even an impostor with a good forgery of a government-issued ID card. I've never seen a picture of Gavin that I can recall, so I have no idea of what he looks like.

One of the most overlooked advantages to computers is... If they do foul up, there's no law against whacking them around a little. -- Joe Martin