Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
Note: You can take 10% off all Slashdot Deals with coupon code "slashdot10off." ×

Comment Re:I'm not sure this is the right response (Score 1) 198

The company was dead the moment it came out that all the female accounts were fake and paid for account deletions never happened.

It should be dead. I'm not convinced yet it will actually die. Even with the leak.

Depends what you mean by die. As one of the top cheat-on-your-spouse sites they should be done. As a widely known name and a pre-existing website that could be run with a skeleton staff for cheap it could go on indefinitely.

Comment Re:inside job (Score 1) 198

This whole thing screams "inside job".

A lot of the information that has been released, most notably employee emails and internal company documents, couldn't possibly have also been on the servers that held the databases for the AM site. So either (1) the hackers thoroughly penetrated the company and got *everything*, or (2) the people running AM were stupider than I believe possible (actually you would have to *work* to put all of your eggs in one basket that way)

I think a combination of 1 & 2 is most likely. There's no real way for a user to tell if a site is secure or not, and an insecure site is easier to run than a secure one. No need to manage a bunch of different logins, sign out keys, create fake databases, etc. The easiest thing is to simply give devs the power to go anywhere and do anything and I wouldn't expect the management of a site like AM to spend money on something like security.

In that scenario all you need is to get a remote login to one machine, from there you sneak in a logger and grab the one admin password they use everywhere and then all you need is a bit of patience before you have everything on their network.

Comment Re:I'm not sure this is the right response (Score 1) 198

Are you suggesting that the hackers are some sort of vigilante activist group out to stomp out infidelity or immorality in general?

Huh? I felt the hackers made a stand against the fraud perpetrated by the company, not infidelity in general. Where did you infer infidelity from my post?

The company was dead the moment it came out that all the female accounts were fake and paid for account deletions never happened. It was unnecessary to release personal user information to punish the company.

Primarily to refute the claim made in the post I replied to that "because the hackers committed an illegal act that what they did was immoral, and it's immoral to 'celebrate' their hack."

I didn't raise the topic of infidelity or its morality at all in my post.

That wasn't the quote, the poster wasn't clear if he considered the hacks immoral just because they were illegal or because of the exposed user information coupled with the illegality:
Just because they used illegal techniques to attack a morally reprehensible company doesn't mean their techniques are magically vindicated. Celebrating the hack is immoral as well.

True the poster didn't mention the user information directly but I feel it's implied due to the volume of coverage and discussion about the user info.

I think the hackers would be morally justified if the simply hacked AM and demonstrated they were lying about the female users and the deleted accounts. They became immoral when they also released very sensitive and potentially devastating user information.

Comment Re:no surprise, what people use at home they use t (Score 2) 157

It's when paid businesses go to Ubuntu they have to worry, but the requirements of the customers willing to pay out big money for licenses and support are vastly different than those of desktop users

And here's the rub, they made the desktop platform pretty bleeding edge (major kernel changes are inflicted in routine updates, breaking things like nvidia driver if you choose to use it, not merely being mostly unhelpful about closed source realities but actively making it more painful). Even if drivers didn't break, updates can change things dramatically at a whim, and there's no blessed 'long term' servicing branch that so nearly matches their 6 month cycle releases like Ubuntu does. RedHat is making the free situation needlessly complicated and risky to push people to RHEL, but instead are giving ubuntu the free market. Like you say, the free market by itself is no huge threat, but it influences the commercial market in the long term.

So maybe not all people like the bleeding edge and new fancy stuff like I do though I suspect Fedora's primary trouble comes from RedHat seeming too corporate and people going to what looks like a more community oriented distro.

You could also say RedHat has very little to lose by having something more like Ubuntu in lifecycle out there for free. Those folks won't pay for anything, but their mindshare is valuable among the audience that will pay.

That matters for sure, but when you're looking at an IT system responsible for millions or even billions of dollars then things like enterprize support and a dedicated server OS designed with stability in mind become really important. Whether or not you enjoy using that particular Linux flavour at home becomes really a non-factor really quickly.

Comment Re:no surprise, what people use at home they use t (Score 3, Informative) 157

RedHat got into the datacenter by being a popular desktop distro, people setting things up in the datacenter used what they were familiar with.

People have been predicting that RedHat would run into this sort of problem ever since they abandoned the home/workstation market. It's taken a lot longer than I expected, but it's happening.

RedHat was able to hold this off for a while by getting the datacenter managers to mandate standardization, but in AWS such rules are far less enforced.

David Lang

I don't feel like RedHat abandoned the home/workstation market, both my home and work desktop run Fedora 22.

As for AWS who is using those machines? My gut is these are individuals or small shops willing to pay for cloud hosting but unwilling to pay the extra for support. For instance CentOS is beating RHEL 29% to 11%, granted I'm not sure what support you get for RHEL in AWS but I doubt there's any reason to use CentOS over RHEL in the cloud aside from cost. I tried switching to Ubuntu for my personal cloud server but went to CentOS instead.

My hunch is the vast majority of those Ubuntu VMs aren't paying any support and thus wouldn't really impact RedHat's bottom line anyway. It's when paid businesses go to Ubuntu they have to worry, but the requirements of the customers willing to pay out big money for licenses and support are vastly different than those of desktop users.

Comment Apparently you don't deal with auditors (Score 3, Interesting) 191

With 60 hosts and 1500 VMs I would certainly expect separate roles for enterprise architecture and system provision/admin..

This statement is quite right. Apparently the OP doesn't deal with auditors at all in his job. Lucky him. I do in mine and I have something like a Linux system admin job. For the product I work on, and I work for a Fortune 500 company that sells a lot of software products and services, I am the main contact person every year for auditors. Since the OP works for a publicly traded company, he should know that audits are required by US law. Every year I have to answer the same questions from the auditors about separation of responsibilities on the product I support. Honestly, I don't know how the OP doesn't know that getting that kind of access for an architect is going to raise all kinds of red flags in an audit that have to be explained. If I remember correctly, we have exactly 4 people who have root access to our servers who don't work on my team. They're software developers who've worked on the product for years and need that access in an emergency if we have a software related disaster that impacts customers. We have to jump through a lot of hoops to justify this on the audit. In fact, we've actually had our access restricted from some activities we used to do that fall outside of traditional system admin tasks just because it's easier for auditing purposes for us to not be able to do it anymore. In my job my group also doesn't have access to the storage, network or virtualization layers except as users/clients and all changes have to be done by others. Sometimes it's a pain, but at auditing time it makes my life easier as I can tell the auditors "We don't have the ability to change that, so you have to talk to group X on that one".

Comment Re:Holey Moley (Score 1) 122

Am I they only one that is completely freaked out by this ? These are some seriously scary numbers !

I think some context is important. From what I can tell is a criminal organization hacking the hospital so they can access patient records and blackmail the patients is going to be counted the same as the secretary opening an email attachment, getting a virus, and temporarily turning into part of a botnet. It might not even be clear from IT's perspective which is which but I'm guessing most of those breaches are fairly benign.

Comment No, you miss the point (Score 1) 166

Being able to reassemble it is not the point, it's that you can re-wind time and get the information back out. With the normal idea of a blackhole, even if you could rewind time, you couldn't get the information back out.

No, you miss the point. He said basically "Having the information 'available' isn't really helpful because we have no way to get it." You simply proposed a theoretical way to get it that can't be done either at this time, possibly ever, so his assertion that we can't get it is still right. Unless you are a Q, telling us to "rewind time" as about as helpful as suggesting we simply change the gravitational constant of the universe.

Comment Typo in the article? (Score 1) 173

The article says:

Backed by IBM, the P-TECH program aims to prepare mainly minority kids from low-income backgrounds for careers in technology,

I think they meant to say:

Backed by IBM, the P-TECH program aims to prepare mainly minority kids for low-income careers in technology,

Given IBM's lack of interest in hiring or retaining American workers, that must surely be what they meant.

Comment Re:Copyright? (Score 1) 178

I'm not sure either of those applies. I'm no lawyer, but I doubt a judge or jury would agree with your interpretation of "intentionally causes damage".

Agreed.

In the wire fraud definition you cited, I don't think AT&T is fulfilling the core of the definition: "defraud, or for obtaining money or property by means of false or fraudulent pretenses, representations, or promises". Advertising, by and large, is not considered fraud (as much as we might feel that way about most ads we see).

Here I'm not so certain. The fraud isn't the ad itself, but the fact that the ad being on the site claims a relationship between their client (the advertiser) and the site owner that does not exist. Stanford accepted that jewelry ad? They must be legit. My favourite webcomic is advertising X? Well I know the guy really vets his advertisers and I like to support the comic so I'll go through.

Of course AT&T is not the first to insert their own ads into web pages, any charges are likely thwarted by whatever click-through consent they obtained or by the precedent of adware companies getting away with the same thing for years.

Comment Re:Cry me a river (Score 1) 188

" Industry groups say this restriction will kill drone delivery services before they even begin. "

Sounds like a good use of state authority to me.

Imagine logging on to a grocery store website, choosing the items you want and clicking deliver. Drone is loaded up at the warehouse and flies the goods right to your door.

It's cheaper and more environmentally friendly since you're not driving, you can save time and reduce food waste by replacing single massive shopping trips with a bunch of small immediate need purchases, and you can replace the massive grocery store with its giant parking lot with something more interesting.

Sure there's a lot of potential problems to, but there could be some very nice benefits.

Comment Re:another vaccine (Score 1) 94

It's usually spread through the air. And it's not a big deal for a young healthy person to get it...

While that is generally true, specifically the 1918 flu pandemic killed a large number of people in the age range of 25-34. It's believed that they died due to the effects of a cytokine storm whereas middle aged people did much better at surviving that flu. You had to get up to about age 75 and above to start seeing the kind of mortality rates that hit the sweet spot of 25-34 for this flu. This doesn't invalidate the fact that your post is good as is your advice for people to get their flu shots.

Comment Re:Asians weren't ignored... (Score 1) 183

By your logic black people are "white" to non-racists.

No, black people are still black, it just that non-racists don't care. Jews might even be white to many racists, they're just a category of white they don't like.

I'm not sure I really get your insistence with the idea that Jews are non-white. If you want to argue Jews are discriminated against that's fine, it's also true that there are a lot of Jews who aren't white by any metric. But if you're going to consider the US context, namely people like Jerry Seinfeld, I'd say Jews are white.

Comment Re:How did these idiots catch anyone? (Score 1) 282

I really hope that the majority of the agents laughed at this stupidity.

This was before my time so I can't say so with any authority, but the impression I get is that most agents probably believed it. Keep in mind that this was a time when the greatest fear of many American parents was "juvenile delinquency" and they honestly blamed comic books for it. The Senate even had hearings about comic books and juvenile delinquency. William M. Gaines, who would go on to publish Mad Magazine, was forced to testify in front of a Senate panel on the subject. How seriously the US government took the "Communist threat" is why I can't accept that Lee Harvey Oswald was allowed to return to the USA after supposedly defecting and was never punished for defecting. Something was going on there and I will believe forever that Oswald had a CIA connection that the government still doesn't want to talk about.

Help! I'm trapped in a PDP 11/70!

Working...