Forgot your password?
typodupeerror

Comment: Grandparent had it right. (Score 1) 26

by Ungrounded Lightning (#46797973) Attached to: Preventative Treatment For Heartbleed On Healthcare.gov

The word you are looking for is "preventive".

No, it's not. The usage you're complaining about is perfectly valid.

"Preventative" has been in use since 1666 as an alternate pronunciation and spelling for "preventive".

In some regions (including where I grew up - almost in the center of the region natively speaking the "radio accent", which has been the de facto standard speech for the U.S. since the advent of commercial broadcasting) it is the preferred form.

If you want to be a spelling NAZI, you should avoid being provincial about it. Check the online dictionaries before correcting others, to distinguish between being helpful and imposing your local speech on others.

Unlike French ("a dead language spoken by millions"), American English does not have a regulatory body prescribing an official standard (though some educators have tried, since at least Daniel Webster). It grows and changes by usage. Dictionaries play a game of catch up and try to document how it's realy used.

(Yes, I know how it grates on your nerves when someone uses a different spelling or pronunciation than you're used to. I feel the same way when my wife pronounces "legacy" as if she was talking about a ledge. But apparently that's actually the first pronunciation listed in The Oxford.)

Comment: Re:Kansas City Hyatt Regency Skywalk (Score 1) 153

by Ungrounded Lightning (#46797897) Attached to: The Design Flaw That Almost Wiped Out an NYC Skyscraper

(Slashdot timed out on me and I lost the start of my post.)

As built the skywalk was so overloaded that eventual collapse was possible even without any load. Naturally when it did fail it would be at a time when both the upper and lower skywalks were heavily loaded with people, and the floor crowded below. 114 died, 216 were injured - many seriously.

Of course loads on things like bridges and skyways vary a lot. You can expect them to go in times of high load, which happens to be when there are a lot of people around to be injured or killed.

Comment: Re:Kansas City Hyatt Regency Skywalk (Score 0) 153

by Ungrounded Lightning (#46797549) Attached to: The Design Flaw That Almost Wiped Out an NYC Skyscraper

n this case it failed when there was a celebration in progress. The ground floor level was crammed with dancing people and the crowd had overflowed onto the skywalks. Pogo dancing was current at the time, and apparently the failure occurred when people on the bridges, synchronized by the live music, were jumping up and down in unison. (It's the inverse of the way soldiers are required NOT to march in step when crossing a bridge.)

Thus you can expect such structures to go when there are a lot of people around to get hurt.

(Interestingly, a crowd of people is MUCH more of a load, even without synchronized jumping, than vehicular traffic. San Francisco's Golden Gate Bridge was reported to have had its greatest load ever during its anneversary, a few years back. The bridge was closed to vehicular traffic and the public invited to hike over it. Normally the bridge span has a substantial arc. This stretched the springy cables and broght the span down until it was flat.

During the planning the load on the bridge had been anticipated and computed to be safe. But there were plenty of boats standing by to try to save people if the deck DID collapse, and the people had been warned of the possibility and asked not to dance or walk in step.

Comment: Re:What poetry is this? (Score 1) 153

by Alsee (#46795773) Attached to: The Design Flaw That Almost Wiped Out an NYC Skyscraper

Or flip the view:
A towering bank undercut by a small church.

----------------------

In the intersection between religion and the modern world
Religion razes grandeur to the ground for 20 pieces of silver.
In the intersection between religion and the modern world
Religion refuses to budge from barren historical ground.
In the intersection between religion and the modern world
A towering bank undercut by a small church nearly kills us.

-

Security

Heartbleed Used To Bypass 2-Factor Authentication, Hijack User Sessions 56

Posted by timothy
from the bleeding-from-the-ears dept.
wiredmikey (1824622) writes "Security nightmares sparked by the Heartbleed OpenSSL vulnerability continue. According to Mandiant, now a unit of FireEye, an attacker was able to leverage the Heartbleed vulnerability against the VPN appliance of a customer and hijack multiple active user sessions. The attack bypassed both the organization's multifactor authentication and the VPN client software used to validate that systems connecting to the VPN were owned by the organization and running specific security software.

"Specifically, the attacker repeatedly sent malformed heartbeat requests to the HTTPS web server running on the VPN device, which was compiled with a vulnerable version of OpenSSL, to obtain active session tokens for currently authenticated users," Mandiant's Christopher Glyer explained. "With an active session token, the attacker successfully hijacked multiple active user sessions and convinced the VPN concentrator that he/she was legitimately authenticated."

After connecting to the VPN, the attacker attempted to move laterally and escalate his/her privileges within the victim organization, Mandiant said."

Comment: Re:Not the same, but tangentially related... (Score 1) 91

by Lumpy (#46792529) Attached to: How Nest and FitBit Might Spy On You For Cash

It needs a gps so it can rat on them if they are speeders. People who speed in residential areas need to have Progressive send someone out to punch them in the taint over and over until they understand that only scumbags speed in residential areas.

It's just one of the perks of Progressive.

Comment: IMPOSSIBLE (Score 4, Insightful) 206

by Billly Gates (#46791599) Attached to: California Utility May Replace IT Workers with H-1B Workers

H1B1 Visa's are only because there are not enough applicants to fill a position. Just ask any republican and they will tell you and set the facts straight in interest of protecting the workers.

It is illegal not to pay an H1B1 Visa worker less than a qualified worker. It is stated so it must be true!

Shortest distance between two jokes = A straight line

Working...