Follow Slashdot blog updates by subscribing to our blog RSS feed


Forgot your password?
Slashdot Deals: Cyber Monday Sale Extended! Courses ranging from coding to project management - all eLearning deals 20% off with coupon code "CYBERMONDAY20". ×

Submission + - Dreamhost tells customers to expose themselved to MitM attack (

rstory writes: It appears that there was some sort of security breach at Dreamhost, and on Friday they decided to generate new SSH host keys for all their servers. This was done without any notification to their customers. The only mention is on their status blog page, which I'd venture to guess that most customers don't even know about, and there they tell all their customers to delete their old keys and accept the new ones. They seem to lack a basic understanding of public key cryptography: public keys are meant to be PUBLIC. Can anyone think of a good reason why a) they wouldn't send out an email in advance (or immediately afterwards) to notify their customers, and b) they wouldn't post a page of all the new keys for customers to be able to verify? This seems to be highly irresponsible.

Submission + - Ask Slashdot: What to do when finding a Security Breach on Shared Hosting 1

An anonymous reader writes: A few months ago i stumbled across an interesting security hole with my webhost, where I was able access any file on the server, including other users. When I called the company they immediately contacted the server team and stated that they will fix the problem that day. Since all you need when calling them is your username, and I was able to list out all 500 usernames of the server, this was rather a large security breach. Which to there credit they did patch the server, not 100% of the way but close enough where moving to a new web host was moved down the 'list' a little.

Jump a head to this week, they experienced server issue, and we requested being moved to a different server. First thing I did was run my test script, and I was able to list out everyone's files again. They only applied the patch to old server. We are now moving off from this web host all together. However I do fear for the thousands of customers that have no clue about this security issue, along with about 10 mins of coding someone could search for the sql connection string and grab the username/password required to access their hosting account.

Whats the best way to handle this type of situation?

Submission + - KDE Performs Better Than Unity On Nexus 7 (

sfcrazy writes: This guy installed both Ubuntu and Kubuntu on his Google Nexus 7 and there is a clear comparison between Unity and KDE. While Unity was developed as touch-centric it fails miserably. It was slow and buggy where as unlike it's mythical reputation KDE was snappier, faster, more customizable and usable on this tablet. I also installed Kubuntu on this tablet and I was actually surprised to find that KDE was more responsive, fast usable compared to Ubuntu Unity. Since you can customize the size of panel, fonts and application buttons and borders you can use KDE on this tablet just with your finger. No mouse or keyboard is needed. So, I found the desktop KDE to be more usable than Unity.

Submission + - Physicists Do What Einstein Thought Impossible (

An anonymous reader writes: Einstein worked on Brownian motion (the movement of small particles in a fluid as they collide with water molecules) in 1905, but said it would be "impossible" to determine the speed and direction of a single particle during this dance. Now researchers have gone and done it, by suspending a dust-sized glass sphere in air (which slowed down its dance moves, since it had fewer collisions with spaced-out air molecules than it would have with water molecules). The researchers held the sphere in place with "laser chopsticks," and then watched how the glass bead bounced around to determine its direction and speed.

Submission + - SPAM: Morphine shows promise against post-traumatic stre 1

Suki I writes: The LA Times Reports — Early administration of morphine to military personnel wounded on the front lines during Operation Iraqi Freedom appears to have done more than relieve excruciating pain. Scientists believe it also prevented hundreds of cases of post-traumatic stress disorder, the debilitating condition that plagues 15% of those who have served in Iraq and Afghanistan.

That conclusion is based on findings published today in the New England Journal of Medicine. They suggest that a simple treatment can stop a single horrifying event from escalating into a chronic, incapacitating illness.

Link to Original Source

Submission + - Record-Breaking Black Friday for eBay's PayPal (

adeelarshad82 writes: EBay's PayPal division reported that PayPal processed 20 percent more transactions on Black Friday compared to 2008. PayPal didn't release the total payment volume, but claimed that its Payflow Gateway system processes nearly a quarter of e-commerce, while its direct sales numbers reflect 12 percent of all e-commerce. In general, reports from a number of e-tailers and retailers indicated that consumers spent more on Black Friday than in 2008, when the United States was in the midst of a recession. However, it's still unclear whether shoppers bought more on "Black Friday," when they could expect a discount on what usually is one of the busiest days in the holiday season, or whether the pattern will continue. In 2008, shoppers stopped buying in early December, a shock that the U.S. economy felt well into 2009.

Submission + - Inventor's terminal cancer courtesy of Verichip? (

An anonymous reader writes: Bob Boyce, who has invented a super-efficient electrolysis method, as well as a self-looping electrical circuit capable of charging batteries, discovered a microchip implant in his shoulder when having a tumor removed from that spot, which metastasized. It turns out the chip was made by VeriChip.

Submission + - Do you hate being called an "IT Guy"?

An anonymous reader writes: The phrase "I.T." is so overused, I'm not sure what it means any more. Ok maybe it's an ego thing, but I spent a lot of years in grad school, lots of years getting good at creating software, and lots of years getting good at creating technical products and I don't want the same label as the intern who fixes windoze. I'm looking at a tech management job at a content company that is trying to become a software company, and they refer to everything about software development, data center operations, and desktop support as "I.T.". I'd like to tell the CEO before I take the job that we have to stop referring to all these people as "IT people" or I'm not going to be able to attract and retain the top tier talent that is required. Am I just being petty? just forget it? change it slowly over time? These folks are really developing products, but we don't normally call software creators "product developers". Just call them the "Tech dept" ?, "Engineering Dept"? I like labeling what is normally sys admins, the "service delivery" group because ultimately it's not about just admin'ing the servers up, it's about delivering a SaaS product to our customers.

Submission + - German president refuses to sign censorship law

thetinytoon writes: German federal president Horst Köhler has refused to sign the censorship treaty that passed parlament earlier this year, stating that he 'needs more information'. In germany, the federal president has the right to reject a law only by reasons of an unlawful realisation in the legislative process, but not for reasons of being unconstitutional (as long as it's not obviously against the constitution).

Political observers guess, that the political parties would like to get rid of the law without loosing face, but since it already passed the parlament, they can't simply abandon it. Politics — everyone knows what needs to be done, but no one wants to admit he was wrong in the first place.

Source (google translation):
Original story (german):
The Internet

Submission + - Yearly malware explosion will break records (

SwiftyNifty writes: According to security software firm McAfee, yearly malware levels have risen threefold in the last year and could break records. Researchers from McAfee said that over the first six months of 2009, the company observed more than 1.2 million new malware samples online. The figure breaks down to roughly 6,000 new pieces of malware per day. By comparison, the company logged just over 400,000 pieces of malware in the first half of 2008, and less than 300,000 pieces of malware in all of 2007.

Submission + - Can you build a PC that out Macs a Mac? (

mr_sifter writes: "Apple is winning; the iPhone is the sexiest gadget going, Apple's computers are gobbling market share like Pacman eats pills and Apple stores are filled with eager customers. PC manufacturers, meanwhile, had raced each other to the bottom to make the cheapest computers possible. In this feature, the writers of bit-tech decided to see if it's possible to beat the latest and greatest 24in iMac at its own game, and set themselves the challenge of beating it, hands down, on as many fronts as possible, for the same price or less. The aim was to build a PC that looked and performed better, and was quieter and more desirable, and all for less cash. To win, we couldn't build any old performance system; we needed to craft a beauty from hardware that directly competes with the iMac's strengths."

Submission + - From sand to silicon, the making of a CPU (

Slatterz writes: If you've ever seen those big silicon wafers held up by Intel executives at industry gatherings and wondered how CPUs are made, this photo gallery is fascinating viewing. Intel has posted a high resolution images showing in detail how the most complex manufactured product on earth is built from sand. While computer chips look extremely flat, they may actually have over 20 layers to form complex circuitry. The gallery includes an interesting picture showing how one big crystal is grown from the purified silicon melt, resulting in a mono crystal called the Ingot.

The solution of this problem is trivial and is left as an exercise for the reader.