Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror

Comment Re:Scripts that interact with passwords fields aws (Score 1) 364 364

" I've been in the software business for almost 40 years,"

Software, not security.

"I suggest you study texts on encryption, and maybe read the technical details of how a good cloud-based password manager like LastPass actually works"

https://blog.lastpass.com/2015...

That's all I fucking need to know. A piece of paper holding my passwords is more secure in my wallet than my passwords are with LastPass or KeepPass. I also have the ability to actually defend my stuff if someone tries to take it, whereas someone hacks your shit and it's gone, you're fucked. By the time you realize it, it's too late, they've made off with your stuff.

"Your super-whiz-bang method still requires a password, it seems"

Good authentication requires everything, including a password. We could switch to biometrics, you're fucked because there are any number of ways to get around that, including taking your head off. With a password added for second verification (or third verification, in this case) taking your head does me no good unless I was able to get the password from you before hand.

"How do you hash the passwords for your sites? Still using MD5?"

You silly noobs using hashes and salts. Nowdays smart people embed that information in an image file, good old steganography. You think you got a password database? Enjoy the cluster of hentai you just downloaded. Get past the fact that there's information inside the image? Good luck decrypting the white noise format used to encode it. Unless you have used my server software, you aren't going to be able to do much with it.

Comment Temple Grandin is a tool of the meat industry. (Score 0) 36 36

She thinks she knows more than she does about how animals communicate. She thinks animals think in pictures because she does. She's ignorant. Birds for example have clear panic cries and calls for themselves, their own names. Cows communicate with their ears, and it's not about pictures. Temple Grandin is a self-aggrandizing attention whore. "Look at me! I'm autistiic!"

Comment Re:Qi (Score 1) 86 86

" within 5 to 10 ft of the charger."

My god the amount of power you'd waste just to get a usable bit of power several feet out is staggering.

Not to mention - you'll kill your devices faster because wireless charging makes more heat - which kills batteries.

Stick with a wire.

Comment Re:Or let us keep our hard-earned money (Score 1) 564 564

Taxes (all of them) are regressive. Tax subsidies only make it more so.

And the bigger issue is that the people who own oil companies are typically everyone that has a mutual fund (most Americans). There are very few people that hold substantial positions in most oil companies. So, while the left cries about "Big Oil" as if it is completely detached from everything else, the reality is, those very same people often benefit from "Big Oil" in their portfolios.

I would love to see a "Left Wing Mutual Fund" that is fully divested of all the "bad" things that left wing protests about, and follows all the left wing bullshit they want others to follow. My guess is, that without substantial government "investments" it would simply be a big fail, which is why you don't actually ever see one.

Comment Re: Or let us keep our hard-earned money (Score 2) 564 564

You wish that in your fellow man?

I don't wish that on anyone. Nobody does. And yet, we all still buy the stuff that is made in those factories. And instead of Americans working, we have Chinese working. We just moved the problem to another place. That is how economics solves problems (routing around them)

Comment Re: A plea to fuck off. (Score 2) 364 364

horse battery staple

As a hacker this is all you know
1) You have a password that is eighteen characters long,

As a hacker you can make assumptions
1) Word length
2) Number of words
3) Spaces or Not
4) Fancy Characters or not
5) Numbers or not

OR you can target passwords that are eight characters in length.

I would suggest to you, that if you have a whole database of passwords, encrypted and salted properly, you pick low hanging fruit first.

If you're a hacker, which password is easier to brute force ? "onetwothreefourabeeceedeeexclamationpound" or "1234abcd!#" (basically the same password) all other things being equal?

Do not underestimate the value of print statements for debugging.

Working...