Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?
Slashdot Deals: Cyber Monday Sale Extended! Courses ranging from coding to project management - all eLearning deals 20% off with coupon code "CYBERMONDAY20". ×

Comment Re: There's more to EU transport than cheapness (Score 1) 341

Uber's business model relies heavily on drivers using their own, standard insurance and not bothering to ask questions about whether they're actually covered. I think Uber have started offering their own insurance and raised prices to pay for it since someone got killed by an Uber driver in the US, but it's still inadequate (apparently less than they're legally required to have in Germany, and at least in the US all their drivers are driving uninsured whenever they're seeking riders).

Comment Re:Just stop already (Score 1) 68

Don't forget that by default, Chrome now sends all your passwords back to Google encrypted only with a password that Google have easy access to. (Only if you're signed in to Chrome, but they're incredibly aggressive about signing you in, so much so I don't dare log into Google accounts from Chrome anymore.)

Comment Re:Chrome? (Score 1) 436

By that standard Google Chrome itself has been malware for years - many pieces of software have bundled it in exchange for money from Google and made it hard not to accidentally install it, including I think Java, Flash, and various more shady products, and Google hasn't given a fuck.

Comment Re:passive scan isn't perfect (Score 1) 127

Barring another bug, it can - and probably does - scan for *all* ways to exploit it. The issue is that Android itself doesn't properly verify the certificate chain in packages before installing them, and Play Services can easily perform all of the missing checks itself and reject any package that fails them.

Comment Re:DEBUNKED (Score 2) 373

For values of "debunked" equal to "people clueless about how VAC works are loudly insisting that it's not true, and being believed because Valve fanbois". (Amongst other issues, you won't find the code of any VAC modules in Steam's or the game's DLLs because they're downloaded from the server at runtime in order to make them harder to reverse-engineer and block.) Someone later in the thread has apparently tested and found that stuffing the DNS cache with bogus entries increases the amount of SSL-encrypted data VAC sends back by almost exactly twice the size of the MD5 hashes of all those entries, and clearing the cache returns the amount of data sent back to what it was. (It may not necessarily be possible for others to replicate this, as I recall one of VAC's anti-reverse-engineering measures is that different people receive a different subset of the payload modules. So far no-one's tried though, they've just said it's not proof enough.)

Comment Re: Verilog (Score 1) 365

You've forgotten about fixed point, which isn't really any more complicated to implement than integer arithmetic and is a perfectly reasonable way of implementing integer division by a fixed divisor. (A lot of compilers actually use this trick, because even running on a CPU it's often more efficient than using hardware division.)

e-credibility: the non-guaranteeable likelihood that the electronic data you're seeing is genuine rather than somebody's made-up crap. - Karl Lehenbauer