Catch up on stories from the past week (and beyond) at the Slashdot story archive


Forgot your password?

Comment trust models of ad hoc (Score 1) 126 126

I've long believed that ad hoc networks like this are mostly a fantasy because the potential for mischief as they become popular (ie, in the large) overrides their ability to do interesting things in the small. if you're not looking from the outset out how something can be gamed if it gets popular, you're part of the problem not part of the solution.

Comment we've tried this (Score 1) 80 80

if plant photosynthesis were enough, we'd... just burn them. we know how that ends though: deforestation, desertification, and tapping into paleo-photosynthesis. clearly anything that is going to be relevant to modern society needs to have better conversion efficiencies.

Comment Native apps == insecure (Score 2) 86 86

I brought this up with the oauth working group and got snarled at by lots of people including Eran Hammer. It's nice to see that other people are noticing the same problems. When you have a native app, you can show the user anything to get their confidence, and with some work get their credentials, including apps with webview's. OAuth's security model was not designed with native apps in mind, it was designed for ~trustable web browsers. This isn't surprising because OAuth was designed before the current fad for native apps happened around 2006-2007 when the world was all browsers all the time.

Comment Do they still require a business plan? (Score 4, Interesting) 193 193

After going through hoop after hoop to try to release an app to their store including notarized this, and documented that... for a FREE FRIGGING APP, I gave up when they told me that I needed to submit a business plan to them. I couldn't believe it.

Comment Mother of all honey pots (Score 2) 346 346

I know of absolutely no one that uses facebook mail, and probably the vast majority have no idea it even exists. So anything that uses my or anybody else's facebook mail account is obviously a spammer who screen scraped it from my account. In a perverse way, this is a Good Thing because it attracts spammers and absolutely nobody else. It could actually be interesting to find out how quickly your facebook honey pot fills up which shows how much bad guys are paying attention to your facebook account.

There are running jobs. Why don't you go chase them?