Catch up on stories from the past week (and beyond) at the Slashdot story archive


Forgot your password?

Comment Re:Brave polling, but in real life? (Score 1) 258

Thanks for the insight, however. I was curious as to why you'd work so hard to protect something that's really not a whole lot in the scope of things. As it appears you're still employed there's also that whole reputation thing. Somehow, I have a fine reputation and I'm generally a prick in some ways. Well, more of a hermit who doesn't really like a whole lot of drama. I imagine that my view is biased due to my history and how I am able to process things today. Again, thanks.

No problem. The only thing I'd add here is that I did in the past have a job that required security clearance. While I don't have any data relating to that job anywhere, I do keep certain security practices somewhat out of habit. It also doesn't hurt to keep up with some of the state-of-the-art and best practices.


Comment Re:Brave polling, but in real life? (Score 1) 258

After reading your comments down to this far, are you a kiddie porn collector or something? What do you have that you're so worried about?

I don't have any illegal (or even immoral) activity to be worried about, which is certainly why none of this has ever been an issue.

A big part of the way I run my passwords stems purely from workflow. I decided several years ago that I wanted to beef up my online password security for systems that don't accept 2048+-bit keys (so pretty much every website I use that has a login component), by ensuring that each one has a unique, nearly as long as possible random password. I wasn't going to be able to memorize these for the large number of systems I have access to, so I had to adopt a workflow for generating random website passwords, and store them in an encrypted keychain where they could be easily retrieved in a manner where I didn't even have to see them. I didn't do this because I have anything to hide, but because I do what I can to ensure security, and that if one password is somehow cracked or stolen, it won't affect any more than a single system.

Of course, you don't have to have anything you would think would need hiding to be denied access at the border. For example, this Canadian woman was denied at the US border because of prior clinical depression (how US border officials even knew caused quite the storm of controversy, as they had been given illegal access to medical records). Now I've never had depression, but if they can block you from entering for that, then maybe they could get wind of that bad hangnail I had the other week and decide not to let me in the next time I travel on business.

If I had a more specific reason for guarding my privacy, please be assured I wouldn't discuss it with you publicly here on /.


Comment Re:Brave polling, but in real life? (Score 1) 258

So you don't plan to use your e-mail while you're traveling?

Fair enough, but then why bring your computer at all, if you can't do anything with it?

If I was a border agent and you were telling me all this, I'd find it rather hard to believe that you brought your computer, that can't log into anything and you don't have the ability to do so. I think I'd hold you for awhile until my experts could have a crack at your machine and see if a week in detention might change your mind.

A fair question, which has a perfectly valid answer.

If I'm travelling on business, I'll ensure I have my work e-mail available. I have a separate laptop that I use purely for work purposes, and is setup against my workplaces Exchange server. That e-mail address is only used for work related purposes; it's not the e-mail registered against personal services like Facebook, or my banking, /., etc.

So if some border official wants to go through my work e-mails, they're going to have the lawyers of a multi-billion dollar American corporation to deal with. I'm perfectly fine with that. They won't have any access to any of my personal accounts or details, and I won't be able to give it to them.


Comment Re:Brave polling, but in real life? (Score 1) 258

They can make you reset your passwords.

Just because you don't know your Facebook password doesn't mean you can't login, it just means you need to reset it.

The keychain doesn't help you with that.

Except that my e-mail passwords are also long, random strings that I don't know, and password resets typically are sent to your e-mail. Those e-mail passwords are stored in my keychain, so it does indeed help with that. If I can't get to the password reset e-mail and link, I can't reset my password.


Comment Re:Brave polling, but in real life? (Score 1) 258

Well, they would the keychain then. Do you think they're stupid or what?

That's why (when I'm travelling at least) I keep the keychain out of their jurisdiction. Proper law enforcement agencies can go through proper channels, and can see if they can get a Canadian court to issue a warrant to get it. Best of luck to them.

As for everyone else, well, without physical access to the keychain, they're out of luck.


Comment Re:Brave polling, but in real life? (Score 4, Interesting) 258

It is interesting to see the current results with over 40% in "Sorry I can't help, but I just can't recall any ..." but I expect most of these people will not realize how much pressure you may get from legal authorities to release your password. Chances are most of you would crack after you have legal authorities pressing you. Why? because you don't need to be criminally prosecuted for your life to be made miserable. Especially if you don't have anything incriminating, it will be easier to give the password show that you don't have anything and just go on and change your password. Now this isn't fair and we should have legal protection against officials for even asking the question, but real life, if you are going to stand up for your rights, there will be consequences you will have to face. If you have the bravery to do this, good for you. But in reality most of us do not have the bravery that we think we do in such a poll.

That depends on how you assign passwords in the first place. Myself, I've hit a point now where nearly all of my passwords are uniquely auto-generated, and dumped into my keychain. I never even see them directly -- the process is pretty much automated. I didn't generate them, thus I don't know them.

Thus, if for example I were travelling and a government official or someone in a dark alley wanted to know my Facebook password, I can't help them. I don't know it. They interrogate me or hit me over the head all day and night long, and they aren't going to get anything. This is why, when I travel to the US, I don't take my keychain with me.

Now local authorities who can force me to sit down at one of my primary computers to unlock the keychain are a different story, and not one I could do a whole lot about. At a minimum, they could certainly compel the keychain password out of me and do it themselves. The key (no pun intended), however, is they need the keychain in the first place to do this.


Comment Only in the US then? (Score 1) 223

Amazon doesn't offer their Instant Video streaming service in Canada at all, so their reasoning doesn't stand up here in Canada. Will they also be preventing sales of Apple TVs and Chromecast units to Canadians?

Maybe someone just needs to point them to the Chromecast and (new) tvOS SDKs so they can whip up their own Amazon Instant Video apps instead?


Comment Re:In Canada... (Score 1) 263

We have three major political parties in Canada and I wonder if the volunteers represent each of the parties to ensure no cheating. I'll ask at our next election in October.

No. The volunteers are actually temporary paid employees of Elections Canada. The positions are described here, along with the criteria for application. During the count after the polls close, each candidate or a designated representative can act as a scrutineer (officially Candidates Representative), who watches the counting process (actually, they are usually expected to be at the polling station all day to verify that the polling is being run fairly).

Elections Canada has a guide for Candidate Representatives here. If you think you want to become a Candidate Representative, get in contact with one of your local candidates committees, volunteer to do some simple tasks during the campaign, and when the time comes close, offer to be a Candidates Representative. I'm not aware of a riding that has only one polling station, and scrutineers are needed for all of them. You can even be a scrutineer for the advanced polls, and even for polling in long term care facilities where you follow a polling clerk from bed to bed to verify that the process is being followed correctly.


Comment Re:10 Mbps (Score 2) 280

Amazing. You do realise you don't need more than 128Kbits/sec for that, don't you?

You do realize I listed of at least five OTHER things that I use on top of that?

VoIP can be sensitive to jitter, and it's not that hard to add transmission latency when you're also piling a whole lot of other, higher bandwidth streams through the pipe, like video, or putting large VMs into the cloud, the quality can easily suffer.

But please, go ahead and try to watch Netflix while a family member is on a VoIP call on your ISDN line. I look forward to hearing how well that works out for you.


Comment Re:10 Mbps (Score 4, Insightful) 280

Which means that the US is not a developed area. But 100Mbps is too high I think, that's standard ethernet speed and if you need more than that at home then you're probably running a pr0n server.

Spoken like someone who has never used a 100Mbps internet connection.

I'm fortunate to live somewhere where I do have 100Mbps (down)[0], and it is invaluable. I run two VoIP phone lines, digital video streaming from a variety of services, we play online games, and as I work from home, I can checkout large code trees from SCM in reasonable amounts of time, and sling around multi-gigabyte VMs between home and work (I tend to prefer to generate and validate the VMs locally, and then upload them to their destination server when the need arises). And best of all, I can do all of these at the same time -- I'd have to push things really hard to see any degradation when my wife is watching Netflix or someone is talking on the phone.

The only bad thing is how asymmetrical the upload speed is -- it's only 6Mbps. That I conceivably can saturate pretty easily. Fortunately, in our typical use cases our upload needs tend to be fairly asymmetric as well -- the only two major areas where our network gets impacted is when I'm moving those VMs around between home and internal deployment servers, or when we're watching video via Slingbox from outside the network. It impacts work much more than pleasure. Not much I can do about it unfortunately, without going for some crazy priced business class connection that my employer won't pay for.

Then again, I have over 20 devices on our network (via GigE and 802.11ac). We're pretty heavy users, but with nary a pr0n server in sight.



[0] - A strange thing seems to have happened recently. Earlier this year, my ISP cancelled offering 100Mbps service, but grandfathered in anyone who was already a customer. Their new highest tier offering at the time was only 60Mbps (for the same price as 100Mbps used to be, at that). Since then, however, they've introduced a new 120Mbps service. I've run multiple speed tests through a few different services, and I seem to be maxing out downloading at 120Mbps as of late. Still only 6Mbps up unfortunately.

Comment Re:The summary makes me quiver (Score 4, Informative) 265

I lost an arrow once, and you still spelled 'lose' incorrectly.

As an archer myself, the grandparent poster used the correct spelling of the word they were going for.

To loose an arrow means to release the string to fire an arrow. It was not intended to mean that an arrow went missing and was lost.


Comment Re:But the keyboard... (Score 1) 435

Except... we don't use a "French" (Azerty) keyboard either. We use a french Canada keyboard, and Apple doesn't sell that layout at all. It's the only PC maker with the stupid canadian multilingual keyboard.

Does anyone anywhere use the Canadian Multilingual keyboard layout on any OS, anywhere?

I've worked in industry and in government, in both English and French Canada, and I can't recall ever seeing anyone anywhere using the Canadian Multilingual layout. Ever. I've seen more Dvorak users than Canadian Multilingual.

Why does it even exist in the first place? (and FWIW, it's a terrible layout for coding IMO).


"Stupidity, like virtue, is its own reward" -- William E. Davidsen