Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
Security

Video Veteran IT Journalist Worries That Online Privacy May Not Exist (Video) 43 43

Tom Henderson is a long-time observer of the IT scene, complete with scowl and grey goatee. And cynicism. Tom is a world-class cynic, no doubt about it. Why? Cover enterprise IT security and other computing topics long enough for big-time industry publications like ITWorld and its IDG brethren, and you too may start to think that no matter what you do, your systems will always have (virtual) welcome mats in front of them, inviting crackers to come in and have a high old time with your data.

Note: Alert readers have probably noticed that we talked with Tom about cloud security back in March. Another good interview, worth seeing (or reading).

Comment Re:I AM AMAZED! (Score 1) 12 12

Re additive technology: You're right. This is why I don't care much about the people who "make guns" with their 3-D printers. Some of them make lower receiver units because that's the legal definition of a "gun" even though in my eye's it's kind of like making the driver's door frame on a car and claiming you made a car because that's where the VIN goes.

To make a gun or anything else that needs to contain strong forces, I'll join TWX and put my faith in old-fashioned, non-groovy tools like milling machines, lathes, and drill presses. Yay, subtractive technology!

(Not knocking the 3-D print people - Fun stuff, no question.)

Hardware Hacking

Video You3dit is Working to Help Crowdsource 3D Design and Printing (Video) 12 12

The example you3dit (You 3D It) person Chris McCoy uses in this video is a prosthetic hand they wanted to make because one of their people lost fingers in a construction accident. Instead of drawing up plans for a new hand, they searched online -- and found enablingthefuture.org, which is all about making 3-D printed prosthetic hands. Using a predesigned hand was obviously much simpler than starting from scratch, and was totally in line with the Open Source "Why reinvent the wheel?" philosophy.

So you3dit helps make 3-D printed items of one sort or another, and can either print them for you at their place or help you find someone local to help with the printing, assuming you can't do it yourself. As you might expect, they did a Kickstarter project. It was for a product called Raver Rings. Unlike many Kickstarter projects we mention on Slashdot, this one didn't fly. In fact, it only got $2,275 in pledges against a $10,000 goal. No matter. There are many other useful things the you3dit community can make -- or help you make -- without Kickstarter.

Comment Re:Morse Code (Score 1) 617 617

Oh, wait, you didn't need to pass a test for that.

I'm just trying to think how that would have been possible. I think back then there was a medical exception you could plead for. I didn't. I passed the 20 WPM test fair and square and got K6BP as a vanity call, long before there was any way to get that call without passing a 20 WPM test.

Unfortunately, ARRL did fight to keep those code speeds in place, and to keep code requirements, for the last several decades that I know of and probably continuously since 1936. Of course there was all of the regulation around incentive licensing, where code speeds were given a primary role. Just a few years ago, they sent Rod Stafford to the final IARU meeting on the code issue with one mission: preventing an international vote for removal of S25.5 . They lost.

I am not blaming this on ARRL staff and officers. Many of them have privately told me of their support, including some directors and their First VP, now SK. It's the membership that has been the problem.

I am having a lot of trouble believing the government agency and NGO thing, as well. I talked with some corporate emergency managers as part of my opposition to the encryption proceeding (we won that too, by the way, and I dragged an unwilling ARRL, who had said they would not comment, into the fight). Big hospitals, etc.

What I got from the corporate folks was that their management was resistant to using Radio Amateurs regardless of what the law was. Not that they were chomping at the bit waiting to be able to carry HIPAA-protected emergency information via encrypted Amateur radio. Indeed, if you read the encryption proceeding, public agencies and corporations hardly commented at all. That point was made very clearly in FCC's statement - the agencies that were theorized by Amateurs to want encryption didn't show any interest in the proceeding.

So, I am having trouble believing that the federal agency and NGO thing is real because of that.

Open Source

Video Meet OpenDaylight Project Executive Director Neela Jacques (Video) 14 14

The OpenDaylight Project works on Software Defined Networking. Their website says, "Software Defined Networking (SDN) separates the control plane from the data plane within the network, allowing the intelligence and state of the network to be managed centrally while abstracting the complexity of the underlying physical network." Another quote: it's the "largest software-defined networking Open Source project to date." The project started in 2013. It now has an impressive group of corporate networking heavyweights as sponsors and about 460 developers working on it. Their latest release, Lithium, came out earlier this month, and development efforts are accelerating, not slowing down, because as cloud use becomes more prevalent, so does SDN, which is an obvious "hand-in-glove" fit for virtualized computing.

Today's interview is with OpenDaylight Project Executive Director Nicolas "Neela" Jacques, who has held this position since the project was not much more than a gleam in (parent) Linux Foundation's eye. This is one of the more important Linux Foundation collaborative software projects, even if it's not as well known to the public as some of the foundation's other efforts, including -- of course -- GNU/Linux itself.

Comment Re:Morse Code (Score 1) 617 617

The Technican Element 3 test wasn't more difficult than the Novice Element 1 and 2 together, so Technican became the lowest license class when they stopped having to take Element 1.

The change to 13 WPM was in 1936, and was specifically to reduce the number of Amateur applicants. It was 10 WPM before that. ARRL asked for 12.5 WPM in their filing, FCC rounded the number because they felt it would be difficult to set 12.5 on the Instructograph and other equipment available for code practice at the time.

It was meant to keep otherwise-worthy hams out of the hobby. And then we let that requirement keep going for 60 years.

The Indianapolis cop episode was back in 2009. It wasn't the first time we've had intruders, and won't be the last, and if you have to reach back that long for an example, the situation can't be that bad. It had nothing to do with code rules or NGOs getting their operators licenses.

A satphone is less expensive than a trained HF operator. Iridium costs $30 per month and $0.89 per minute to call another Iridium phone. That's the over-the-counter rate. Government agencies get a better rate than that. And the phone costs $1100, again that's retail not the government rate, less than an HF rig with antenna and tower will cost any public agency to install.

You think it's a big deal to lobby against paid operators because there will be objections? How difficult do you think it was to reform the code regulations? Don't you think there were lots of opposing comments?

And you don't care about young people getting into Amateur Radio. That's non-survival thinking.

Fortunately, when the real hams go to get something done, folks like you aren't hard to fight, because you don't really do much other than whine and send in the occassional FCC comment. Do you know I even spoke in Iceland when I was lobbying against the code rules? Their IARU vote had the same power as that of the U.S., and half of the hams in the country came to see me. That's how you make real change.

Comment Re:GnuTLS (Score 1) 250 250

OpenSSL has first-to-market advantage, and anyone who hasn't evaluated the quality differences will choose the simpler license. Plus there are other alternatives, like Amazon's new SSL-in-5000-lines which is also gift-licensed.

The time for OpenSSL to dual-license was when it was the only available alternative to entirely proprietary implementations. That might indeed have funded a quality improvement.

I don't know a thing about the quality of GnuTLS or the Amazon thing. I've seen enough of the insides of OpenSSL to know it's not pretty, but am not a crypto guy and this don't work on it.

Comment Re:Few people understand the economics (Score 1) 250 250

Maintaining FIPS compliance did not make anything easier. It's essentially a prohibition on bug repair, as you have to recertify afterward. But the people who wanted FIPS were the only ones who were actually paying for someone to work on OpenSSL.

I don't think any of the other Free Software projects ever tried to be FIPS certified.

Comment Re:Lawsuits and licenses are not the problem (Score 1) 250 250

If you are one of the infringed parties, I'd be happy to talk with you about what your options are. bruce at perens dot com or +1 510-4PERENS (I'm not there today, but it will take a message). I am not a lawyer but I work with the good ones and can bring them into the conversation if necessary.

Comment Re:Few people understand the economics (Score 1) 250 250

As a community we've managed to almost completely ignore that because of their use of dual-licensing, MySQL made 1.1 Billion dollars after 9 years in business, and that for a database that was written by one person, and the code base remained available under the GPL.

IMO, 1.1 Billion dollars is pretty damn impressive. Especially if you get paid that to make Free Software. Heck, sign me up!

Oracle was a bad actor, and Monty is now leading further development of that same code base under the GPL. But it did not have to be that way.

If you think the system is working, ask someone who's waiting for a prompt.

Working...