Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).

×

Comment: Re:Redacting things is hard, I guess. (Score 1) 142

by jbmartin6 (#49492339) Attached to: Wikileaks Publishes Hacked Sony Emails, Documents
There is nothing in here about "loads of information" leaked to Chinese press (only one mention of a set of IP addresses), nor is there anything to establish he still had viable copies of these documents when he went to Russia. A few vague mentions of something he might do in the future doesn't prove anything except he thought about it.

Comment: Benefits? (Score 1) 99

Education is probably one of the areas that will benefit the most from 3D printers in the long run.

I don't see the reasoning for this conclusion, it seems to me this program is a colossal waste of money. I did a little searching and these benefits don't seem that great except in the cases of engineering classes. I am sure there are some students who will have their interest piqued, but there's a false assumption in that argument that the students would not have gone on to be engineers without that early exposure to some toy in the classroom.

Comment: Re:More of the same (Score 2) 116

by jbmartin6 (#49447131) Attached to: 'Let's Encrypt' Project Strives To Make Encryption Simple
A CA isn't required at all to encrypt, just accept any self-signed certificate. If we want to introduce CAs or other method of identity verification, that may be fine but it is a different problem from encryption. We are seeing bits of this with the various opportunistic encryption extensions to SMTP and HTTP.

Comment: Re:No kidding ... (Score 2) 88

by jbmartin6 (#49423281) Attached to: Research Finds Shoddy Security On Connected Home Gateways

"if you can open it from your phone who else can?"

And who else can walk up and simply kick the door in? Is the risk of a break-in significantly changed by using the phone app? Why wouldn't anyone who wanted in simply kick in the door or just break a window? Some guy in a different country has no interest in unlocking my front door. My point is, does an app like that REALLY change your risk at all given how easy it already is to get in? Now if you are running a gold repository or something the equation is different, but for the typical wooden house owner I don't see it is any different.

But I generally agree with you, I don't want Internet connected appliances of any sort. Even my 'smart' TV is disconnected.

Comment: Re:No kidding ... (Score 2) 88

by jbmartin6 (#49423135) Attached to: Research Finds Shoddy Security On Connected Home Gateways
A better way to say this might be: the effort the manufacturer puts into security will be equal to the perceived risk. Since my garage door is already easy to open with a crowbar, the manufacturer might perceive that the risk of some wireless vulnerability is no worse than the risk I am already accepting by having a garage door in the first place. The same with vulnerabilities in my thermostat. What is the risk of someone hacking it and goofing with my temperature settings? They might feel this is not a real threat since there is no money involved for the theoretical attacker. And of course, as you point out, the risk to the manufacturer of lawsuits, etc. enters into the picture. As it stands now, they might plan to go into court and argue that since it was already easy to open the standard garage door there is no reason to make the wireless opener any more secure than that.

Comment: Re:Rejecting assured it sooner (Score 2) 383

You'll see in a year or so.

Israeli prime ministers have been making this claim for decades. The year keeps passing and still it hasn't happened. US intelligence agencies keep reaffirming their conclusion that Iran has no nuclear weapons program, please provide us a clarification of how you know better than them.

Comment: Re:Didn't have to be a war (Score 1) 383

Does anyone think that's because now they won't be building a nuke?

Yeah, all the US intelligence agencies and the Mossad think so. The 2003 (?) National Intelligence Estimate has been affirmed every year since then, Iran has no nuclear weapons program and no real intention to build any. By all means, tell us how you know better than them.

Comment: Re:This one's for the general population (Score 1) 155

by jbmartin6 (#49378407) Attached to: Ask Slashdot: Who's Going To Win the Malware Arms Race?

Whatever has to be done will be done

Whatever HAS to be done is already being done. Users are en masse accepting the level of risk as it exists today, so there is no reason to do anything more on the security side. We accept a certain amount of fraud and other crimes in the rest of the world, we will continue to accept this in the Internet world as well. Diminishing returns mean we will never pay the price to pursue eliminating the last 1% of online crime.

Real programmers don't write in BASIC. Actually, no programmers write in BASIC after reaching puberty.

Working...