Become a fan of Slashdot on Facebook


Forgot your password?

Comment: Re:100 times this!!! (Score 1) 102

by JWSmythe (#48687817) Attached to: Ask Slashdot: Dealing With Companies With Poor SSL Practices?

    It looks like this is more of a competitor trying to sabotage them, rather than a legitimate complaint. Yes, Slashdot could have gotten in trouble for running it. Honestly, they should have seen it, did the difficult step of "Look at the site first" and realized it was a non-story.

    He's bitching about not being able to contact the company, yet

6320 Canoga Ave. Suite 640
Woodland Hills, CA 91367

Office: (818) 884-7000
Toll Free: (855) 585-7500
Fax: (818) 530-4249

Hours of Operation
9:00 a.m. - 9:00 p.m. Eastern Time
Monday â Friday

Customer Service:
General Inquiries:

and I found separately through the magic of g00gle...

Comment: Re:Ask yourself (Score 1) 102

by sjames (#48687609) Attached to: Ask Slashdot: Dealing With Companies With Poor SSL Practices?

If they're storing the passwords in clear text, that's not good. However, they could be assigning random passwords and only storing the hash after they send it via email to the user. There's just not enough information to say.

Agreed that security questions in addition to the usual click lost password and they send you a unique URL to navigate to is a good idea and considerably improves the security of password recovery as long as the answers to the security questions aren't easy to determine from looking through the users email box.

Comment: Re:Open source for the win (Score 1) 179

by Areyoukiddingme (#48687331) Attached to: Snowden Documents Show How Well NSA Codebreakers Can Pry

Except for those doors inserted by your hacked compiler

As long as there is more than one independent open source compiler, this can be eliminated as a threat vector by chains of compilers compiling compilers. Overt backdoor insertion routines can be easily detected and removed from a compromised open source compiler. That leaves only extremely subtle backdoors. Those can be defeated by having compilers compile themselves and each other, to break the subtlety.

If you can afford to perform detailed audits of gcc and clang, then follow the correct procedure, this isn't a concern, at least for the foreseeable future. If you trust the open source community to have found and removed or otherwise prevented all overt compiler comprises, you can pick a random selection of different versions of the various open source compilers and compile them from source yourself, with gratuitous extra or oddly variant flags. Cross compiling somewhere in that chain is also a helpful method of breaking some of the theorized mechanisms.

You can reduce the odds of being caught by a compromised compiler far enough that your odds of being struck by a meteor are higher. That should be good enough.

Comment: Re:Is this actually legal? (Score 1) 61

It looks like a judgment was actually entered for $80m, so saying that you got an $80m judgment is accurate. Now whether you can collect on that judgment is another story. It's possible that they should have informed shareholders of the low likelihood of the judgment being paid, via an SEC filing.

Comment: Re:how many songs? (Score 1) 61

A homeless bum can burn down a million dollar house, doesn't mean there's any point in trying to get a million bucks out of him. I'm assuming the settlement was for all Hotfile's actual money because otherwise they'd just spend more on lawyers with Sony getting less in the end, while the $80 million was some kind of imaginary "what we would like to have been paid" damages.

Joe Public can say "You settled with a commercial infringer for 4/800 = 1/200 = 0.5cents a file. As I am not a commercial operation lets start the negotiation at 1/10th of that or 0.05cents a file."

And they say "Say hello to statutory damages, that's $750 minimum per infringement. We don't need to offer you anything, no matter what settlements we've reached in the past. Now, do you want this to be expensive or very expensive?"

Comment: Re: Shut it down (Score 1) 193

By picking the shape and trajectory, we can have quite good accuracy on where to land the debris. Pick a piece of federal desert land and there you go.

Seriously, the scenario as I understand it is: we'd park an asteroid in a high orbit

Bad assumption right from the beginning. That's a terrible waste of energy. You mine an earth-crossing asteroid. Chunks mined off an earth-crossing asteroid can be put onto an earth-intersecting trajectory with only the tiniest of delta-V (you might have to wait a long time your payloads, but no problem there). The amount of delta-V is so low (dozens to hundreds of m/s) that you wouldn't even need to use a rocket, you could just kick it off with a railgun or similar. Then you don't brake it when it gets to earth - it brakes itself by crossing through Earth's atmosphere ("aerocapture"). There are various optional things one could do with the reentry chunks to assist, such as small rockets for trajectory adjustment en-route or small high-speed chutes to keep the asteroids from completely obliterating themselves on reentry / landing (no need for a soft landing, it's fine for them to hit moving at hundreds of meters per second). Both of these would be dwarfed orders of magnitude over by the mass of the return chunk.

All you, as a mining operation, need to do is get your operation up to the asteroid. You need to be able to mine off chunks, shaped appropriately for optimal reentry, and kick them off onto an ideal reentry trajectory toward your target impact zone - potentially with the various hardware systems described as above, but in the base case, not with anything at all. You need a source of power (solar, nuclear) for mining and to kick your chunks into their Earth-intercept trajectory. And of course you have to deal with a million and one details, starting with how to mine at all in microgravity and what targets would actually have commercially viable quantities of valuable minerals.

Comment: Re: Shut it down (Score 1) 193

Which is why you send as optimal of a size and shape as possible. Note that asteroids normally come in randomly and have random shapes. Humans can have a huge impact on the behavior by choosing an optimal shape and trajectory. And, as mentioned, drogue chutes could be used to further reduce the free fall velocity - not for a gentle impact, simply to keep the velocity down to a level that it won't completely obliterate itself in the atmosphere or on impact.

Comment: Re:I think its gonna be a long long time (Score 3, Interesting) 68

Yeah, but experience with gigantic hypersonic parachutes is also rather limited.

Again, it's really doubtful that there's any show stoppers here. But there's a lot that needs to be done before you can bet a whole mission on these sort of things. There's many thousands of little details that could kill the crew if they go wrong, so the odds of any one doing so must be kept to the tiniest fraction of a percent.

If you have a procedure with 10 parameters, you probably missed some.