dj-nix - Slashdot User

Comment: Turkish "safe internet" is opt in (Score 1) 103

by dj-nix on Tuesday August 09 2011, @01:34AM (#37030192) Attached to: Ask Slashdot: How To Combat IP-Based Censorship?

While it doesn't change (or answer) the question on how to bypass the filtering, what the poster does not make clear is that the "safe internet" infrastructure that will be enabled by all operators (due to government regulation) will be opt-in. Unless subscribers specifically request that their internet be filtered, their traffic will not even pass through the filtering system, and the Turkish government has specifically stated (believable or otherwise) that they have no intention of making the system mandatory, and the ISPs have dimensioned their newly purchased parental control systems accordingly which means that the new systems are not designed or capable of handling the load of all subscribers...

Comment: Service-Aware Charging and Control (SACC) (Score 1) 77

by dj-nix on Monday May 16 2011, @02:17AM (#36138136) Attached to: Dutch Provider KPN Under Fire Over DPI

This is most Likely done with SACC. It's a built in function of the GGSN...

Comment: Keep personal stuff on personal computers.. (Score 1) 467

by dj-nix on Friday August 06 2010, @03:30PM (#33167766) Attached to: Web-Based Private File Storage?

Speaking as someone who works in IT, I would like to remond you that IT reports to business, and there are all sorts of (legal) reasons why business can order IT to inspect your company owned PC and company owned email account. If you have private information on a work PC, you shouldn't. If you send private mail through a work email account you shouldn't. If you use a work telephone for private calls, you shouldn't. It is unethical on your behalf to use work resources for private business and you should have no expectation of privacy.
To answer the second part of your question, you can easily use truecrypt, GPG or any other encryption program to store data on PC (that hopefully you own) and as long as you use a decent passphrase it would be very difficult for anyone to access should you die. Putting this on a $15 per month VPS is an excercise for the reader...

Two Unpatched Flaws Show Up In Apple iOS 171

Posted by samzenpus on Wednesday August 04 2010, @06:55PM
from the rotten-apple dept.

Trailrunner7 writes "The technique that the Jailbreakme.com Web site is using to bypass the iPhone's security mechanisms and enable users to run unapproved apps on their phones involves exploiting two separate vulnerabilities. One of the vulnerabilities is a memory-corruption flaw that affects the way that Apple's mobile devices, including the iPad and iPod Touch, display PDFs. The second weakness is a problem in the Apple iOS kernel that gives an attacker higher privileges once his code is on a targeted device, enabling him to break out of the iOS sandbox. The combination of the two vulnerabilities — both of which are unpatched at the moment — gives an attacker the ability to run remote code on the device and evade the security protections on the iPhone, iPad or iPod Touch. The technique became public earlier this week when the Jailbreakme.com site began hosting a set of specially crafted PDF files designed to help users jailbreak their Apple devices and load apps other than the ones approved by Apple and offered in its official App Store."

Comment: Re:Erm.... TR-069, anyone? (Score 1) 545

by dj-nix on Sunday August 01 2010, @04:06PM (#33103648) Attached to: Verizon Changing Users Router Passwords

Yes. They almost certainly changed the password with TR-069 (otherwise known as "CPE WAN Management Protocol"). TR-069 has been a required feature in all major CPE tenders for all major ISPs across the globe for several year now. You can read more about the TR standards on the
Broadband Forum's Technical Reports page