Become a fan of Slashdot on Facebook


Forgot your password?
Slashdot Deals: Deal of the Day - Pay What You Want for the Learn to Code Bundle, includes AngularJS, Python, HTML5, Ruby, and more. ×

Comment Re:This is stupid ... (Score 2) 143

A second used to be 1/86,400 of a mean solar day (e.g. high noon to high noon). A slowing day would mean a lengthening second, which would screw up measurements of basic physical constants, e.g. the speed of light.

The current definition of a second is

> The second is the duration of 9 192 631 770 periods of the
> radiation corresponding to the transition between the two
> hyperfine levels of the ground state of the cesium 133 atom.

In theory, any sufficiently advanced research lab on the planet can duplicate this measurement.

Comment Al Qaeda is probably drooling over this... (Score 1) 96

The year is 2020. A massive arctic high sits over North America on a very cold January day. An Al Quaeda operative sends a command from his PC to a botnet which activates multiple zero-day "sleeper" trojans that have been waiting for the command. PC's, printers, and various other machinery in offices and electric power plants and water pumping stations and telephone offices fail.

A second command is sent that hijacks satellite downlinks for GM Onstar and similar systems. They can shut down the car via satellite if it's reported stolen. In the middle of rush hour, traffic grinds to a halt, as the shutdown code is activated en masse. You have millions of motorists stuck on the roads in bitterly freezing weather. +1 if the system can be programmed to lock all car doors, and trap the motorists inside.

Another command is sent out that cranks "internet of things" furnaces and stoves to max power and locks them there. Fires break out all over. Fire departments are unable to respond. Even if their trucks don't have Onstar tech, the roads are so clogged with stalled cars that they can't get to any fires.

Civilization breaks down as distribution chains collapse due to non-functioning equipment. Millions die of cold and starvation in the following weeks. Martial law is declared. Somewhere, in the middle-East, a bunch of Mullahs are laughing their butts off.

Comment Really reduce air-conditioning bills in summer (Score 1) 89

> Remember that light energy can't be converted to electricity and also
> transmitted through the window; whatever percentage gets converted
> to electricity must be subtracted from the percentage that is transmitted.

A hot summer day...
* incoming sunlight reduced; check
* some electrical power provided for air conditioning; check

Now that's what I call win-win.

Submission + - Shifu Banking Trojan Has an Antivirus Feature to Keep Other Malware at Bay

An anonymous reader writes: Shifu, a banking trojan that's currently attacking 14 Japanese banks, once it has infected a victim's machine, it will install a special module that keeps other banking trojans at bay. If this module sees suspicious malware-looking content (unsigned executables) from unsecure HTTP connections, it tries to stop them. If it fails, it renames them to "infected.exx" and sends them to its C&C server. If the file is designed to autorun, Shifu will spoof an operating system "Out of memory" message.

Comment Re:Also, who does not separate drive control? (Score 5, Insightful) 192

> You should read the articles. Because CAN is a multi-master communications
> bus any device on the bus has write access at the hardware level - it's only
> software controls that limit whether a device can write to the bus or not. Which
> is why the government-mandated ODBC-II interface is such a bad idea,
> because anyone can plug in to the CAN bus with a standardized connector
> and get complete control of a vehicle.

Why is so much unnecessary, security-risky, stuff connected to that device? In a worst case, have separate buses...
* the "entertainment" bus for wifi for "teh interweb", streaming audio, etc.
* the "critical" bus that controls car operation. Have it only *PHYSICALLY* accessable, i.e. only via physically plugging a probe into a jack. And none of the devices connected to the "critical" bus are radio/wifi/bluetooth/whatever-else externally accessable.

Comment Re:wft ever dude! (Score 1) 215

> You're right of course... And the intent of the IPv6 space is not to use all
> the numbers, but rather to give every device its own number, do away
> with NAT and DHCP, and to make routing of traffic faster and easier.

There are tons of hacks available.

If things get bad, an ISP could use CIDR on IPV6 for all their customers in a given city. A million customers in a big city could fit into a /64 with 2^44 addresses for each customer. If they're all in one city, routing would not be an issue for routers outside of the ISP's system. And, yes, I'm aware there's no provision for such stuff in IPV6... but then again, CIDR wasn't in the original IPV4 spec.

There's always the UUID bits to play around with.

And to really mess with IPV6 fanbois' minds, we could try NAT on IPV6.

Comment Mark Zuckerberg couldn't get an ordinary job today (Score 1) 318

> My boss was pissed that I don't have one... He asked,
> why in the hell don't you use Facebook?

You're in HR, interviewing a job applicant. Would you hire somebody who once offered his company's personal client information to a friend? And called his customers dumb? What if he said it was "a youthful indiscretion"? Like the following?

Zuck: Yeah so if you ever need info about anyone at Harvard

Zuck: Just ask.

Zuck: I have over 4,000 emails, pictures, addresses, SNS

[Redacted Friend's Name]: What? How'd you manage that one?

Zuck: People just submitted it.

Zuck: I don't know why.

Zuck: They "trust me"

Zuck: Dumb fucks.

Comment Re:What's Cash? (Score 1) 294

> There is no service charge to use it and this way I
> don't have to have a pile of change in my pocket.

I Live in Canada (Toronto area) and some shops do charge 10 cents or so per transaction for debit cards. The fact that Canada has done away with pennies makes lugging around cash a bit easier.

Comment To quote Elliot Spitzer (Score 4, Interesting) 86

> "Some people delete their emails on an almost daily basis,
> others just try to avoid putting anything potentially interesting
> in an email in the first place."

Reminds me of an Elliot Spitzer quote...

"Never write when you can talk. Never talk when you can nod.
And never put anything in an e-mail."

He should also have mentioned never using prostitutes so expensive, that paying them triggers "money-laundering-detection" and gets the feds to investigate you. But that's another story.

Comment Re:SFLC's brief explains parts of this well (Score 1) 210

> You mean instructions like JMP which AMD blatantly stole the opcodes from Intel?
> Why can't Intel demand protection for the use of 0xEB 0xbb to instruct the
> computer to jump by signed bb bytes, but Sun/Oracle can claim protection for
> System.out.println() to instruct the computer to output an end-of-line
> character to the standard output?

Old fart here... AMD was cross-licenced by Intel to produce 80x86 cpus This was done because many businesses, especially government, insisted that the components NOT be single-sourced. Ironically, this cross-licencing agreement is what allowed Intel to legally use AMD64 cpu architecture, which Intel named "EMT64".

Comment So ya wanna be an ISP? (Score 1) 390

> Are they just unaware of what advantages running a home server can offer? Or have
> the benefits of a server been explained to them after which they still decline?

Linux nerd here... sorry, but I have better things to do with my time than worry about constantly patching and running smtp/web/ftp servers, and constantly monitoring logs, etc, etc, etc. Having a life gets in the way of an internet.

I have a reasonable idea of how vulnerable linux servers are on the open internet. It's mind-boggling how easily the average Joe/Jane Lunchbucket gets pwnd/social-engineered even with a client machine behind a stateful firewall. Give every one of them a server, and if you think today's botnets are something, you ain't seen nothing yet.

Marvelous! The super-user's going to boot me! What a finely tuned response to the situation!