Become a fan of Slashdot on Facebook


Forgot your password?
Take advantage of Black Friday with 15% off sitewide with coupon code "BLACKFRIDAY" on Slashdot Deals (some exclusions apply)". ×

Comment "...Um, International standards" (Score 1) 698

I once (many years ago) found myself in the same room with the manager responsible for Apple's peripherals, including keyboards. I asked (actually, begged) him to get rid of the stupid Caps Lock key. All he did was mumble something about "international standards" required for big corporate/government sales. So maybe the solution is to get corporations & governments to change their keyboard requirements. (Yeah, good luck with that...). In the mean time, every major OS has a tool or setting to make Caps lock control. Once you set that up, you don't even notice it any more.

Submission + - Are Bug Bounties the Right Solution for Improving Security? ( writes: Coding Horror's Jeff Atwood is questioning if the current practice of paying researchers bounties for the software vulnerabilities they find is really improving over-all security. He notes how the Heartbleed bug serves as a counter example to "Linus's Law" that "Given enough eyeballs, all bugs are shallow".

...If you want to find bugs in your code, in your website, in your app, you do it the old fashioned way: by paying for them. You buy the eyeballs.

While I applaud any effort to make things more secure, and I completely agree that security is a battle we should be fighting on multiple fronts, both commercial and non-commercial, I am uneasy about some aspects of paying for bugs becoming the new normal. What are we incentivizing, exactly?

Comment NSF Young Investigator Awards (Score 1) 153

Back when I was in school (1980's), the NSF recognized this problem and had a special grant ("NSF Young Investigator Award") that would issue small to medium sized grants to faculty under a certain age. I took a quick spin on Google, couldn't tell if the program (or something similar) still exists. Even though the grants weren't large, it enabled junior faculty to get a "Principle Investigator" line on their CV, hopefully enabling future funding.

Numeric stability is probably not all that important when you're guessing.