Catch up on stories from the past week (and beyond) at the Slashdot story archive


Forgot your password?
Note: You can take 10% off all Slashdot Deals with coupon code "slashdot10off." ×

Comment Re:Healthy to question authority (Score 2) 600

But the problem is that people _aren't_ questioning authority. They're told vaccines aren't safe, and they believe it. Questioning authority means, "I don't know if it's safe or not, but I intend to find out." What's happening here is, "Somebody told me it wasn't safe, so it probably isn't."

Comment Re:We have those in South Carolina too (Score 1) 325

That's the impression I get when I see CHP 11-99 and KMA 367 license plate frames: that the people who sell them actually have little to no relation to the actual cops on duty, and as a result they're like to get you pulled over more due to cops getting pissed that people think they can so easily get out of a ticket. I want to see some actual statistics about this kind of license plate frame usage.

Comment Re:So They're Always listenening? (Score 1) 54

Actually, that's not true at all. A while back, François Beaufort noted that the extension had been preemptively whitelisted so that it alone doesn't repeatedly need explicit permission to use the microphone. Usually, any website or extension that wants to use the microphone must ask the user for it at least once, repeatedly if the site doesn't use HTTPS. See here:

(The ilnk is messed up; the actual diff of interest is here:

Comment Re:Pay by phone apps require outrageous permission (Score 1) 153

* Camera -- Allows the app to take pictures and videos with this camera. This permission allows the app to use the camera at any time without your confirmation.

It's so you can use the app's barcode scanning capabilities to scan the barcodes of your rewards cards, or the number on your regular credit/debit card.

* Read your contacts -- Allows the app to read data about your contacts stored on your phone, including the frequency with which you've called, emailed, or communicated in other ways with specific individuals. This permission allows apps to save your contact data, and malicious apps may share contact data without your knowledge.

It's so you can send money to your friends, presumably sorted by who you talk to most frequently.

Frankly, for anyone who has used these apps, it should be pretty obvious what these permissions are for. Heck, the second permission should be obvious from just reading the description of the app, and the first permission is heavily implied by the fact that you can, in fact, add such cards from within the app.

Not having used the other 2 apps you mentioned, I can't really say why they need the permissions they need (my guess is the Starbucks app lets you call HQ if you have an issue or something). But they're in control of your money, and all you're concerned about is whether they _might_ make some phone calls you don't want them to make? They _might_ see that you're also running some other apps at the same time? Give me a break. There's nothing particularly nefarious about these permissions, and that Citeworld article is overblowing things as well. "I also wonder if Wallet's slow adoption rate has something to do with these intrusive permissions."? How about, "It's blocked by several major carriers to promote their own payment scheme, which somehow is accepted in even fewer places than the already rarely-accepted Google Wallet"?

Comment Re:If Google cares about security... (Score 1) 248

They do not. They do not "insist" on synchronizing passwords at all, and if you do, there's also SHA-1 (still unsalted, though). Synchronizing passwords is 100% up to whoever's managing the domain. If you don't want to, you don't have to. Just use SAML SSO instead.

"Pok pok pok, P'kok!" -- Superchicken