Slashdot stories can be listened to in audio form via an RSS feed, as read by our own robotic overlord.


Forgot your password?

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).


Comment: httptunnel (Score 1) 251

by cdp0 (#44662733) Attached to: Ask Slashdot: How To Diagnose Traffic Throttling and Work Around It?

I had a similar problem with O2 Telefonica, over 3G, in Czech Republic. Their FUP is quite bad. After you reach the imposed limit, they will throttle *all* connections individually to something like 4-5KB/s. Using OpenVPN, or even just HTTPS was impossible.

However, I noticed that HTTP connections were allowed a throughput 4-5 times higher. It's still very low, but usable. My guess is that they separate HTTP connections from everything else. Note that using OpenVPN over TCP port 80 did not help. So, I've started using OpenVPN over httptunnel. While it has some problems, it did offer me an overall better throughput. The downside is that you need it server-side too.

Bottom line, try httptunnel

Comment: Re:How Can We Be Supportive? (Score 1) 176

by cdp0 (#43136025) Attached to: Iran Blocks 'Illegal' VPNs, Google, and Yahoo

Those governments can only block so many IP addresses and they have the big VPN providers in their crosshairs.

You obviously haven't considered DPI. I have been to Iran in the past and OpenVPN to my own server in Europe was entirely blocked, no matter what protocol/port combination I used. I could see the initial packet exchange (tcpdump), and after a short while the connection was identified as illegal and dropped, and the protocol/port combination entirely blocked from there on.

However, they did allow PPTP (possibly because it's so insecure), and SSH. As a side note, I haven't seen any try to do MITM on SSH.

Comment: Re:Answered in reverse order (Score 1) 464

by cdp0 (#42232149) Attached to: Ask Slashdot: Current State of Linux Email Clients?

Alternatively one can right-click a message and select "Open Message in Conversation". If I recall this isn't even new.

People should stop waiting for reviews and actually test the applications themselves. Make your own damn opinion instead of waiting for someone else to make it for you.


Ask Slashdot: What To Do When Finding a Security Breach On Shared Hosting? 168

Posted by Soulskill
from the responsible-disclosure-irresponsible-support dept.
An anonymous reader writes "A few months ago I stumbled across an interesting security hole with my webhost. I was able to access any file on the server, including those of other users. When I called the company, they immediately contacted the server team and said they would fix the problem that day. Since all you need when calling them is your username, and I was able to list out all 500 usernames on the server, this was rather a large security breach. To their credit, they did patch the server. It wasn't a perfect fix, but close enough that moving to a new web host was moved down on my list of priorities. Jump a head to this week: they experienced server issues, and I asked to be moved to a different server. Once it was done, the first thing I did was run my test script, and I was able to list out everyone's files again. The hosting company only applied the patch to old server. I'm now moving off this web host all together. However, I do fear for the thousands of customers that have no clue about this security issue. With about 10 minutes of coding, someone could search for the SQL connection string and grab the username/password required to access their hosting account. What's the best way to handle this type of situation?"

GoDaddy Goes Down, Anonymous Claims Responsibility 483

Posted by samzenpus
from the protect-ya-neck dept.
An anonymous reader writes "A member of the Anonymous hacktivist group appears to have taken down GoDaddy with a massive Distributed Denial of Service (DDoS). The widespread issue seems to be affecting countless websites and services around the world, although not for everyone. is down, but so are some of the site's DNS servers, which means GoDaddy hosted e-mail accounts are down as well, and lots more. It's currently unclear if the servers are being unresponsive or if they are completely offline. Either way, the result is that if your DNS is hosted on GoDaddy, your site may also look as if it is down, because it cannot resolve."

Comment: Re:N9 or N900 -- full *nix (Score 2) 197

by cdp0 (#40734327) Attached to: Ask Slashdot: Scripting-Friendly Smartphones?

You can use FingerTerm on Nokia N9, like I do. It isn't as good as a HW full keyboard, but it's the next best thing. Even more, it is also opensource.

Aegis security system is a bit more limiting than I would like it to be, but you can easily bypass the limitations with inception (for the moment the site seems to be down, so just use your favorite search engine to get some info). With inception you don't even need a computer, everything is done on the phone afaik. Haven't yet tried it myself, because so far I am fully satisfied with the official "developer mode" which can be easily activated from settings menu.

One extra feature for N9 is the community backing it up. You can join IRC freenode network and join #harmattan channel for instance and get help in matters related to SW development.

An alternative would be to try to find a Nokia N950, but as I recall although it has a full hw keyboard, it has some drawbacks compared to N9.

Finally I must also add that as far as I can tell you can't get a better user experience than with N9 UI. It's simply amazing. I hope Jolla will be able to provide it in their future phones.

Comment: Re:I've had mine for about 3 weeks. (Score 1) 107

by cdp0 (#40383931) Attached to: Samsung Galaxy S III Launched, Hands-On Testing

I specifically like the motion based silence mode, if I see a call I don't like, just upturn the phone face down, put it on the desk - silenced, love that.

My Nokia N9 has that. It works for calls and alarms of any kind (clock, calendar).

Only "con" I know of is that there's some issues installing swype to it but that can be gotten around.

Nokia N9 has Swype by default and it works extremely well. Although I thought I would never use it, now I use it for everything.

The number of UNIX installations has grown to 10, with more expected. -- The Unix Programmer's Manual, 2nd Edition, June 1972