Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?

One-in-five Developers Now Works On IoT Projects 144

Posted by samzenpus
from the that's-a-whole-lot-of-things dept.
dcblogs writes Evans Data Corp., which provides research and intelligence for the software development industry, said that of the estimated 19 million developers worldwide, 19% are now doing IoT-related work. A year ago, the first year IoT-specific data was collected, that figure was 17%. But when developers were asked whether they plan to work in IoT development over the next year, 44% of the respondents said they are planning to do so, said Michael Rasalan, director of research at Evans.

Why Screen Lockers On X11 Cannot Be Secure 319

Posted by Soulskill
from the targeted-for-improvement dept.
jones_supa writes: One thing we all remember from Windows NT is the security feature requiring the user to press CTRL-ALT-DEL to unlock the workstation (this can still be enabled with a policy setting). The motivation was to make it impossible for other programs to mimic a lock screen, as they couldn't react to the special key combination. Martin Gräßlin from the KDE team takes a look at the lock screen security on X11. On a protocol level, X11 doesn't know anything of screen lockers. Also the X server doesn't know that the screen is locked as it doesn't understand the concept. This means the screen locker can only use the core functionality available to emulate screen locking. That in turn also means that any other client can do the same and prevent the screen locker from working (for example opening a context menu on any window prevents the screen locker from activating). That's quite a bummer: any process connected to the X server can block the screen locker, and even more it could fake your screen locker.

Justice Department: Default Encryption Has Created a 'Zone of Lawlessness' 382

Posted by Soulskill
from the what-would-you-call-this-zone-that's-allegedly-associated-with-danger? dept.
Jason Koebler writes: Leslie Caldwell, an assistant attorney general at the Justice Department, said Tuesday that the department is "very concerned" by the Google's and Apple's decision to automatically encrypt all data on Android and iOS devices.

"We understand the value of encryption and the importance of security," she said. "But we're very concerned they not lead to the creation of what I would call a 'zone of lawlessness,' where there's evidence that we could have lawful access through a court order that we're prohibited from getting because of a company's technological choices.

Comment: Re:Open source code is open for everyone (Score 1) 205

by gweihir (#48924023) Attached to: Serious Network Function Vulnerability Found In Glibc

That is because all these people mocking FOSS have absolutely no clue, but try to elevate themselves by pretending to be smart. If they know how abysmally bad many/most commercial closed software products are (I have seen a few samples), they would think differently.

Comment: Re:Yeah, and all hacked (Score 1) 82

by gweihir (#48921225) Attached to: Modular Smartphones Could Be Reused As Computer Clusters

From my experience, that is a rather simplistic point of view. Sure, there will be some programmers that are actually only lacking the time to learn about security, but I have seen security being messed up time and again when it was an explicit requirement and the people doing it had "secure" in their job title.

Comment: Re:What's the problem? (Score 1) 146

by gweihir (#48909189) Attached to: Secret Service Investigating Small Drone On White House Grounds

Clearly I was voicing _opinions_! You know, things people think may be right but do not claim as truth. Apparently you have problems with the concept. Attributes like "bullshit" or "nonsense" clearly mark opinions, not statements of fact.

You seem to have some rather serious problem interpreting what people say. I mean that not in the sense that I am trying to insult you, but in the sense that I detect an actual perception problem on your side. Maybe get that looked at, it could help you avoid serious misinterpretations of what people say on the future.

Comment: Re:Still sounds like early flight... (Score 1) 90

by gweihir (#48909129) Attached to: Germany Plans Highway Test Track For Self-Driving Cars

Indeed. Safe individual transportation would be a great boon. And it could revolutionize parts of public transportation in general. Example: Need to transport something heavier? Order a self-driving car of any size desired. Of course, the Taxi-industry will likely be a casualty of this, but no historical job-setting lasts forever.

Comment: Re:Oh Boy! (Score 2) 82

by gweihir (#48907793) Attached to: Modular Smartphones Could Be Reused As Computer Clusters

That is not a PC. That is an embedded ARM system. And really, there is no problem with the PC industry. The days of growth are over, but that is _not_ a problem and everybody sane did expect it. A far smaller PC industry 20 years back managed to have several manufacturers for each component and several models for each and prices where comparably lower than today.

Comment: Re:Yeah, and all hacked (Score 1) 82

by gweihir (#48907775) Attached to: Modular Smartphones Could Be Reused As Computer Clusters

The security problem is mostly solved. Or at least it is possibly and economically feasible to make breaking in prohibitively hard. The "cheapest bidder" and "Microsoft"/"Adobe"/etc. and "cheapest possible programmer" problems are not. For software to improve to acceptable levels of security, my guess would be that you would need to sack 95% of programmers and 95% of their bosses.

Do not use the blue keys on this terminal.