Please create an account to participate in the Slashdot moderation system


Forgot your password?

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).


Comment: Re:So let's change the algorithm. (Score 3, Informative) 170

by broken_chaos (#30454578) Attached to: Gravatars Can Leak Users' Email Addresses

Not really, since the salt would need to be publicly known for Gravatar to work (and it would break any backwards compatibility to add it in now). This was a 'social engineering' attack, not a rainbow table lookup – it pieced the name together with common providers to find a matching MD5. Salt would just add a single extra step.

I believe it's exactly the same problem/attack as was brought up about MicroID in the past. The idea of Pavatar is a much better way to do this sort of avatar-finding (though the decentralisation comes with its own problems), since it relies on a public web address instead of a semi-private e-mail address.

Comment: Re:I'd much rather... (Score 0) 636

by ps2os2 (#30454306) Attached to: "Loud Commercial" Legislation Proposed In US Congress

re: "Personally, I think regulation has a place, but in moderation, where it makes sense. Unfortunately though, no regulation only works when people can regulate themselves, which doesn't appear to be reality."

Agreed but this only works when people are honest. Unfortunately there are quite a few lets say less than honest people around. You can mention almost any industry and you will have a fare share of people who are not honest.

Comment: Re:And the wings might not even fall off in flight (Score 1) 278

by chrisxcr1 (#30454200) Attached to: Boeing's 787 Dreamliner Takes Flight

Ok, that link does seem to have an air of truthiness to it so I guess I will have to stand corrected. At some point though I did read on one of the aviation sites (aviationweek or flightglobal or someplace like that) that the pilot in question had a habit of kicking the rudder around like crazy and was warned about it previously. If AA was actually training its pilots to do that on purpose then I'm glad they also have shitty service to go along with their poorly trained pilots and I had already given up flying with them.

Comment: Re:Childs should get twenty years (Score 1) 502

by hardwarefreak (#30454002) Attached to: The Trial of Terry Childs Begins

If Childs' boss WAS authorized for the information by policy, and Childs honestly felt the boss would misuse the information for something illegal and/or was gunning for Childs, then his actions may or may not be justifiable in this case - he's going to have to produce some proof that his boss had an illegitimate purpose. That could be tough.

Especially considering the City and his (former?) colleagues have had 18 months to doctor and erase the actual evidence that would vindicate Child's. I hope he had copious copies of relevant information tucked away off site.

Comment: Re:Indictment of cloud computing? (Score 1) 52

by lonecrow (#30453962) Attached to: Amazon Introduces Bidding For EC2 Compute Time
I guess you were using the "on-demand" pricing. If you use a reserved instance on a 3-year term you start at $4900 + $0.42/hour. I think this works out to only $15,937 over the three years which is less then half the $36k you quoted.

I am looking at a single smaller machine. My current dedicated server is ~$200/month. Thats about $7.5k over 3 years. The equivalent EC2 reserved instance is only $350+$0.03/hour. That's $788 total for 3 years or a tenth of the price! Sounds like a hot deal to me :)

Of course at this time you can only reserve Linux instances and I happen to need a windows one so I have to go with the on-demand prices :(

Comment: Re:Backing Bruce's Copyright (Score 1) 316

by bug1 (#30453934) Attached to: Busybox Developer Responds To Andersen-SFLC Lawsuits

Compilation copyright is a somewhat ridiculous concept that has gained popularity recently. It's akin to saying that you own the copyright to the particular selection of packages and programs on a particular Linux distro or install CD, for instance.

Its valid copyright law.

So if you have have a collective (or compilation if you want to call it that) copyright on a selection of separately licensed copyrighted works, someone can take your collection and add, remove, or modify something (say, add there logo) and it becomes a seperate collection not covered by the original collective copyright.

Derivative works doent effect collective copyright, its a different type of copyright to copyrighted "works".

The clearest way into the Universe is through a forest wilderness. -- John Muir