Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror

Comment Re:tip of the iceburg (Score 1) 157 157

The biggest problem I have run into (as a Security consultant for state local and federal agencies for the last 15 years), is that they won't spend the money on the "appropriate" personnel and equipment needed to secure anything. They do not see any return on investment, so budgets are shoestring. They only wake up when they themselves are compromised, no matter how many high profile ones appear in the news.

Comment Re:Shit cars marketed to fools (Score 1) 157 157

There is nothing wrong with the Wrangler, or Grand Cherokee, both of which use the same unconnect system, so they are potentially vulnerable as well. Same goes for any Dodge, say the Viper, Hellcat Chargers and Challengers. With the exception of the challenger, the rest are decent to great cars (I hate it for some reason).

Comment Re:Approach security the wrong way? No shit! (Score 1) 157 157

The problem today is that the entertainment unit is often tied into the ECU for control and metrics. Look at the Hellcat, most of the tunables (suspension, boost, breaks, even displaying key mode (red and black keys have difference performance profiles), as well as the track apps, all of that is on the uconnect system. They would need to add a completely different display and system to completely isolate the entertainment unit. While I agree this is better, the costs and complexity increase result in everything going to the one main screen. I can see within the uconnect system, isolating the entertainment functions from the apps/performance functions, then limit the cell/wireless comms to just the entertainment portion.

Comment OpenVPN (Score 1) 173 173

I have 3 VPS and 2 mixed networks. All of them can communicate with each other over different subnets

Make one of the VPS servers your master OpenVPN server
Connect all the other VPS, or network gateways to the Master as clients.

Make sure you advertise the routes using server side client config directives (usually in $path/openvpn/ccd/$name_of_certificate)

Problem solved.

Can even go a little more advanced, setup a vps in another country, and use static routes to make it appear like you are local when you hit certain websites (say BBC iplayer..)....

Submission + - Encryption Would Not Have Protected Secret Federal Data Says DHS

HughPickens.com writes: Sean Gallagher reports at Ars Technica that Dr. Andy Ozment, Assistant Secretary for Cybersecurity in the Department of Homeland Security, told members of the House Oversight and Government Reform Committee that in the case of the recent discovery of an intrusion that gave attackers access to sensitive data on millions of government employees and government contractors, encryption would "not have helped" because the attackers had gained valid user credentials to the systems that they attacked—likely through social engineering. Ozment added that because of the lack of multifactor authentication on these systems, the attackers would have been able to use those credentials at will to access systems from within and potentially even from outside the network. "If the adversary has the credentials of a user on the network, they can access data even if it's encrypted just as the users on the network have to access data," said Ozment. "That did occur in this case. Encryption in this instance would not have protected this data."

The fact that Social Security numbers of millions of current and former federal employees were not encrypted was one of few new details emerged about the data breach and House Oversight member Stephen Lynch (D-Mass.) was the one who pulled the SSN encryption answer from the teeth of the panel where others failed. "This is one of those hearings where I think that I will know less coming out of the hearing than I did when I walked in because of the obfuscation and the dancing around we are all doing here. As a matter of fact, I wish that you were as strenuous and hardworking at keeping information out of the hands of hackers as you are in keeping information out of the hands of Congress and federal employees. It's ironic. You are doing a great job stonewalling us, but hackers, not so much."

Submission + - U.S. lawmakers demand federal encryption requirements after OPM hack->

Patrick O'Neill writes: After suffering one of the biggest hacks in federal history at the Office of Personnel Managemen, the U.S. government is sprinting to require a wide range of cybersecurity improvements across agencies in order to better secure troves of sensitive government data against constant cyberattacks. The top priorities are basic but key: Encryption of sensitive data and two-factor authentication required for privileged users. Despite eight years of internal warnings, these measures were not implemented at OPM when hackers breached their systems beginning last year.

The calls for added security measures comes as high-level government officials, particularly FBI director James Comey and NSA director Adm. Mike Rogers, are pushing to require backdoors on encryption software that many experts, like UPenn professor Matt Blaze, say would fundamentally “weaken our infrastructure" because the backdoors would be open to hackers as well.

Link to Original Source

Comment Re:Is it unconstitutional? (Score 1) 82 82

No, it only prevents them from scooping up US communications, the NSA's actual mandate is to do whatever it wants outside the US, however a loophole in many of the rulings and laws allow them to practically scoop up all US communications. Close the loophole, and hopefully it would solve the problem, however I do not see that happening.

Comment Re:Niggers run the country and now they are marxis (Score 1) 82 82

This may have worked to, however when Mandela was replaced, it all went to shit pretty quick.

Go read this http://www.moneyweb.co.za/arch... to give you a pretty good idea of how things are. The current president is a moron. Thabo Mbeki, slightly less a moron, but still a moron.

Mandela had lofty goals, and I truly (as a white person no less, who grew up in South Africa) believe he had the best intentions, but his successors have done nothing but consolidate power and money, cronyism is rife in SA, they are the cause of many of the problems. Eskom used to be at the forefront of power generation and research, and now, they can barely keep the lights on. As of today, they are currently practicing load shedding (think planned.. or in many cases un rolling blackouts).

Until the current parties figure out how to replace the stupid people with those who have the best interests of the country at heart, instead of their own power and finances, nothing will change. In that respect, SA is very similar to the US, voting along party lines rather than voting for the best candidate.

Comment Re:Blah blah blah. (Score 1) 82 82

Obama has done his fair deal to repair things, like his healthcare plan, but the problems that Bush has created in eight years cannot be undone in eight years. That will take much longer.

The same can be said for any president. Government moves at a glacial pace at most times. What one president fixes during his term was caused by a president many years prior, and at the same time, any problems the current president causes will take many years for the next one to fix. This is the way it is, and is not specific to Republicans or Democrats, or any political entity in any country for the most part.

Comment Re:F(ck them. (Score 5, Informative) 214 214

Verizon has been trying to shed their wireline service for years. They have done a few here and there, using Reverse Morris Trust (basically a way to fuck the company buying VZ's assets, and the constituents... Frontiernet has screwed up everything they have touched)

The timing just coincides with the FCC ruling, and a great opportunity for VZ to talk out of it's collective ass

How can you do 'New Math' problems with an 'Old Math' mind? -- Charles Schulz

Working...