Follow Slashdot stories on Twitter


Forgot your password?

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).


Comment: Re:What about bitrot (Score 1) 193

by chew8bitsperbyte (#47741619) Attached to: Facebook Experimenting With Blu-ray As a Storage Medium
Firstly optical media doesn't suffer from bitrot to the same degree magnetic drives do. (There can still be damage/decay to the optical storage layer but it's much slower than magnetic disks.) Secondly, RAID doesn't protect against bitrot, that's the problem with it. Unaware filesystems have no idea the file has degraded (Ext3, HFS, NTFS, FAT32, exFat, etc.) The raid controller will then happily either A) happily copy the rotting data to the parity drive or, B) if it happens later, the array won't know which copy was the one affected by the bitrot. (No process touched the file so mod dates are worthless for comparison) The filesystem has to explicitly have file level checksumming built in (Btrfs, ZFS, etc.) That can then work across a raid array, but it's the FS, *not* the array providing the protection.

Comment: Re:Is anyone surprised? (Score 1) 116

by chew8bitsperbyte (#46333551) Attached to: Complete Microsoft EMET Bypass Developed
That's only true if you haven't disabled password authentication. If you've limited to public/private key authentication only, you get nothing.

Or more specifically you get: "Connection refused. Unable to connect to host" At that point, who cares what port number you're running on, unless someone's able to brute force your 4096-bit key, you're fine.

Comment: Re:Encrypt (Score 2) 478

by chew8bitsperbyte (#39755721) Attached to: Whistleblower: NSA Has All of Your Email
Every time an article like this comes up, the Slashdot masses are always there shouting, "Just encrypt everything!" But in reality, it's not that simple. Sure I could set up GNUPG for myself and close friends/family, but what about the hundreds of emails a month we receive from organizations we have no control over? Cell phone bill, electric bill, credential websites, offers from Amazon, emails from Craigslist/Ebay: there's no way for an individual to force encryption on all of those.

And that's the problem the solution may exist, but the infrastructure doesn't, rendering the solution near useless.

Comment: Re:There is some value in theater (Score 1) 328

by chew8bitsperbyte (#39460439) Attached to: Congress Wants Your TSA Stories
That may be true, but crimes can be broken into two categories: crimes of opportunity and crimes of intent. Security theater _may_ reduce crimes of opportunity, but if someone has the intent to 1) rob a bank, 2) blow up a plane, 3) murder someone, they will find a way. It becomes a game in which one side can play defense only while waiting for the offense to eventually score. Considering TSA was a direct response to 9/11 which was clearly a crime of intent, security theater _is_ worthless.

Comment: Re:There was a pretty insightful comment (Score 2) 92

by chew8bitsperbyte (#38256780) Attached to: What Silicon-Based Life Might Be Like
The difference is, religions typically believe their "creator was, and always has been". OP (I believe) realizes that humans evolved without a "divine touch" and is talking about a possible next step in evolution. Just because "nature" doesn't make it happen, doesn't make it any less significant. We are a product of nature and evolution after all.

Comment: Re:Isn't salting to avoid similarities in hashes? (Score 1) 409

by chew8bitsperbyte (#35150892) Attached to: Are You Sure SHA-1+Salt Is Enough For Passwords?
The salt also (helps) prevent the use of rainbow tables. Most organizations don't want to force their users to memorize 20+ character passwords. So they set the password limit to 8-16 characters. Normally, a rainbow table with computed values for 8 character passwords would work on _some_ users' passwords. Now add in the salt. If your salt is a 20 character string on its own, the attacker would need to have rainbow tables computed (for at least) 28 character passwords; a feat exponentially harder than 8. Or at least that's what my Sesame Street security has taught me.
PC Games (Games)

Activision Wants Consoles To Be Replaced By PCs 344

Posted by Soulskill
from the oppose-on-principle dept.
thsoundman writes with this excerpt from thegamersblog: "We live in a world where we have multiple platforms for gaming: PC, PS3, 360, Wii, etc. Each platform has varying amounts of power when it comes to playing games. Activision, one of the leading cross-platform publishers, wishes to move away from the 'walled gardens' set by Sony, Microsoft and Nintendo. ... [Activision CEO Bobby] Kotick’s solution is to turn to the PC, where it can set its own model for pricing — not unlike what Blizzard has done with World of Warcraft and Kotick stated that Activision would 'very aggressively' support the likes of HP and Dell in any attempt at making an easy 'plug-and-play' PC that would hook up directly to the TV."

Comment: Re:Not the best idea (Score 3, Informative) 572

by chew8bitsperbyte (#30459522) Attached to: Angry AT&T Customers May Disrupt Service

In addition, what if this actually interferes with an emergency call?

Data and voice operate independently of one another. While 3G/EDGE service may be disrupted it won't affect end-users' abilities to make calls over GPRS. And while it may further reinforce AT&T's point that their end-users gobble "too much" bandwidth, the publicity that it could generate would be a nice way of sticking it to yet another corporation that enjoys selling "limited-unlimited".

Comment: Re:Call me paranoid... (Score 2, Insightful) 257

It IS somehow special now.

While it's true anyone can walk by and see a house, thereby making the outside public, not all houses have the same expected "audience". For example, I live in Chicago. I have zero expectations of privacy on the outside of my unit, because I'm surrounded by 3 million other people.

However, if I move to a tiny town of 20,000 people, I expect the total number of "views" that my house gets will drop substantially. There's an expectation that on a given day, I might not have more than 5 people look at my home. With your home posted online, it becomes trivial for millions of people to see it almost instantly.

I think people concentrate too much on public vs. private, without taking into account the fact that privacy is not binary.

I'm not for censoring data on the web, but it certainly makes sense why some people are, I think justifiably, upset by this. The barrier to to home viewing has dropped from people driving over (for say a fair or special event) to simply clicking (because your house's address got published on Slashdot, Digg, Reddit, etc.).

Comment: Re:Sounds fine to me (Score 1) 1246

by chew8bitsperbyte (#26911851) Attached to: Student Arrested For Classroom Texting
I agree completely, but... Arresting her??? Suspension, detention, loss of "citizenship points" I can see. But really, calling in a police officer and arresting her? By your own example, you would have a student passing notes in class taken out in HANDCUFFS??? Even if she "refused" to stop, you wouldn't arrest her. That's what a principal's office is for. I don't know, maybe I'm just old fashioned...

If you can't understand it, it is intuitively obvious.