Become a fan of Slashdot on Facebook


Forgot your password?

Comment Re:Well of course not... (Score 5, Insightful) 206

Taking your analogy a bit further..... While you may have a more secure door without the lock, you also have what is commonly referred to as a wall. Without a way to use the door it is no longer serving it's intended purpose. The most secure computer is one that is not on a network and cannot be physically accessed. Once you actually need to access it you are now weighing the tradeoff between usability and security. The picture password is intended to provide a way for users who wouldn't otherwise protect their device with a low impact way of doing so.

Comment Re:Blackberry + BES Express (Score 1) 198

The question was asked as "should the BES be in the U.S. or the foreign country." Given those two options the better place would be the U.S. since the OP was concerned about the foreign country to begin with. Your point about the physical access is correct, however if you have encrypted mail stores and you encrypt the handheld you could conceivably create quite a headache for anyone who even has access the physical box or the handheld (assuming you didn't remote wipe it anyway).

Comment Re:Blech (Score 1) 126

First of all, there's a common misconception amongst a lot of people that BlackBerries require BES, they do not, BlackBerries can hook directly into ActiveSync just like other smartphones without a BES.

I believe the Blackberry BIS service only supports Outlook Web Access (Not true ActiveSync), there are third party apps for ActiveSync but from my research they are a bit cumbersome to use.

Comment Re:Blech (Score 1) 126

Why people want to continue going down the BES route is a mystery

Well I know one reason I moved to a Blackberry and BES was that ActiveSync didn't handle notes. Additionally the iPhone didn't handle tasks. I don't know if any Andoid based devices do but none did when I was looking in January of this year.


Anti-Speed Camera Activist Buys Police Department's Web Domain 680

Brian McCrary just bought a website to complain about a $90 speeding ticket he received from the Bluff City PD — the Bluff City Police Department site. The department let its domain expire and McCrary was quick to pick it up. From the article: "Brian McCrary found the perfect venue to gripe about a $90 speeding ticket when he went to the Bluff City Police Department's website, saw that its domain name was about to expire, and bought it right out from under the city's nose. Now that McCrary is the proud owner of the site,, the Gray, Tenn., computer network designer has been using it to post links about speed cameras — like the one on US Highway 11E that caught him — and how people don't like them."

Comment Exchange ActiveSync SSL issues (Score 3, Interesting) 283

There seems to be many people having issues with s self signed SSL certificates on Exchange. The phone requires you to load the certificate and "trust" it before you can connect. It doesn't allow for you to "trust" it inline with the EAS setup (ala Windows Mobile and iPhone). If you get past that, and you are running a standard SBS sever which by default creates a self signed cert with CNs for the private AD host name, the public dns host name and some SBS specific websites (companyweb and others). The pre supports multiple CN certificates, but it seems from some early research I did with a friend who just picked one up, that it uses the 1st CN to create the SSL connection (or verify the root ca) instead of the server url the user entered in the setup. Since many small shops don't use their public domain name as their AD domain name there seem to be many people having an issue.

Also, the error message it provides is not very helpful and is generic "SSL certificate error. Is the date and time correct"

Thankfully my friend's company happened to own the domain they used for the internal AD as well and since he is the admin he just added in the DNS records for it. It then worked as designed.

Comment Any way to block this at the border? (Score 2, Interesting) 285

I was looking for information on this last night and wasn't able to find much.

Is there a way (on a ASA/PIX specifically) to block the outbound connections made by this worm so that you can contain the traffic to the local network and also log the hosts that are infected?

The only thing I found was someone making reference to blocking http://ipaddr/search?q= requests but I couldn't find any backup for that claim. TIA

Submission + - AACS broken for all HD and Blu-ray disks

An anonymous reader writes: Two months after Muslix64 initially publicized his method for getting AACS keys, a user on Doom9 has found the processing key, which is able to decrypt all disks for both formats released thus far. The exploit can even be reused for future keys. This will allow the creation of a one-click backup utility and is a major blow against DRM.

Submission + - Big Pharma's Open Source Biology

An anonymous reader writes: Big pharmaceutical companies used to hoard genetic information to themselves. But this Forbes story says that Novartis and Pfizer are now giving genetic info they found away for free, because it is worth more to them to have lots of researchers working on it than to keep it away from competitors. ml

This represents a big change from a decade ago, when companies bought up genetic databases for hundreds of millions of dollars — then found out that they couldn't really use these to invent new medicines.

Submission + - Earth will turn to Venus because of computer bug

amigoro writes: "The story so far: NOAA reports that 2006 growth rate of CO2 concentration is 2.64 ppm/year. This is an increase from 2.42ppm/year in 2005 and 1.65ppm/year 2004, and The Guardian, using this data, reports that Earth will soon turn to Venus because of runaway greenhouse effect. Then NOAA tells the Guardian it ain't so, that the figures are only preliminary and pulls the December data, bringing the value down to 2.05ppm/year. But they tell others that the wrong value was published because of a computer bug.

The way I see it, three things could be happening here
  1. It was a genuine computer bug
  2. They are trying to stop people getting alarmed about Earth atmosphere becoming inhabitable
  3. They are trying to cover up because someone from the top ordered them to do so

If in any problem you find yourself doing an immense amount of work, the answer can be obtained by simple inspection.