Slashdot is powered by your submissions, so send in your scoop


Forgot your password?
For the out-of-band Slashdot experience (mostly headlines), follow us on Twitter, or Facebook. ×

Comment: Re:I've already got that... (Score 1) 441 441

by nospmiS remoH (#38599704) Attached to: Windows 8 To Include Built-in Reset, Refresh

... and then spend hours waiting for Windows Update to update ... reboot ... update ... reboot ... while hoping that there isn't some horrible worm that will take over your machine while your waiting to get the critical patch that was published 20 "Patch Tuesdays" after your zip archive.

Comment: Re:No (First Post?) (Score 1) 601 601

by nospmiS remoH (#38434804) Attached to: Do Slashdotters Encrypt Their Email?

I did this once (only I sent it via snail mail packet) but then the bank happily sent me the fully filled out application for my signature ... in a pdf ... via email.

I was horrified. My name, my wife's name, our address (past and present), ssn, all my account balances and numbers for every financial thing I own -- every single piece of the most sensitive personal information I have in one convenient package in an unencrypted email.

I sent a very terse message conveying how upset I was that they did this but they literally just said, "We've never had a problem doing it this way."

Needless to say I stopped doing business with that mortgage company.

I think it is sad but without a law I don't see financial institutions changing. Even then just look at how they interpreted the "multi-factor authentication" law ... site key, really?


+ - All iOS devices ripe for man-in-the-middle attacks->

Submitted by nospmiS remoH
nospmiS remoH writes: While at the mall the other day I discovered that my iPhone will auto-join any wifi network with an ssid of "attwifi" without any other authentication. I did some searching and found that there were several news stories about this back in April of 2010 but not much since. This is an enormous security flaw that leaves any iOS device wide open for a trivial man-in-the-middle attack. Combine that with they very vague invalid certificate warnings on iOS and this is a recipe for disaster. Was there ever any uproar about this back in April of 2010? If so how on earth did I miss that?
Link to Original Source

"Even if you're on the right track, you'll get run over if you just sit there." -- Will Rogers