Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
Polls on the front page of Slashdot? Is the world coming to an end?! Nope; read more about it. ×

Comment: Re:Hardly surprising (Score 1) 49

by sodul (#49362995) Attached to: Startups Increasingly Targeted With Hacks

On port 80 it could be that they want to avoid issues with privilege ports. A good chunk of people will just run everything as root because it fixes the privilege port issue. I simply have our Ops team to configure authbind through Salt so that whatever user need to run the services can have access to the privilege ports required.

In all honesty if your application is not listening to the outside world directly, avoid using the privilege ports indeed. Your firewall/load balancer will get the port 80/443 requests and forward them to 8080 or 8443 (or whatever) for you. You can always configure nginx to listen on the privileged ports and do local forwarding.

I've had to deal with some pretty stupid secure configuration decisions such as:
  - switch ssh to port 22222 so it is harder to find in case of attacks ... on the internal network ... ugh.
  - remove the telnet client from the linux machines because "telnet is insecure" ... the client needs to be removed??? It's one of my go to tools to check connectivity with services, right after ping.

Cloud services are here to stay, and if you try to block them you will end up with your users going around your walls: block Box for file sharing and they will share with something shady you never heard of ... aka Shadow IT. So it is actually much better for you to embrace the 'grown up' cloud services that have proper security. There is a whole market for Cloud Security now and companies such as Skyhigh Networks that will help you Discover what services your company is actually using then help add a layer to enforce Data Loss Prevention policies for you. Now you become the guy that enabled them to get things done without risking the company intellectual property and not the grumpy old guy that gets in the way.

Disclaimer, I work for Skyhigh Networks.

Comment: Re:cutting corners (Score 5, Interesting) 384

by sodul (#49187011) Attached to: French Nuclear Industry In Turmoil As Manufacturer Buckles

The contract includes fines for delays, and the Finns (no pun intended) have now charged Billions worth of 'late fees' to Areva. Areva promised the moon and can't deliver. It would be great if public projects in the US would include the same sort of strong rules as what the Finns did here. No more overtime and over budget as the norm when building roads and bridges. A project being late would mean that tax payer money would increase instead of dwindling.

Comment: Re:Overly broad? (Score 3, Informative) 422

by sodul (#48184429) Attached to: Soda Pop Damages Your Cells' Telomeres

You have it wrong... there's no recommended daily dose of Refined sugar for sure.
You definitely need to eat products that contain sugars, or you will die.

I know that not eating fats and proteins will kill you, but not eating sugars (or at least extremely low quantities) will not kill you (I might be wrong, I'm not a doctor). For example Ketogenic diets have been studied for almost a 100 years by modern medicine, and is used very effectively to control epilepsy. A general public version is known as the Atkins Diet.

There are even some studies that suggest that such diets can protect against Alzheimers:
http://www.ncbi.nlm.nih.gov/pm...
http://www.ncbi.nlm.nih.gov/pm...

The ketogenic diet is a high-fat content diet in which carbohydrates are nearly eliminated so that the body has minimal dietary sources of glucose. Fatty acids are thus an obligatory source of cellular energy production by peripheral tissues and also the brain.

In the absence of glucose, the preferred source of energy (particularly of the brain), the ketone bodies are used as fuel in extrahepatic tissues.

there is evidence from uncontrolled clinical trials and studies in animal models that the ketogenic diet can provide symptomatic and disease-modifying activity in a broad range of neurodegenerative disorders including Alzheimer’s disease and Parkinson’s disease, and may also be protective in traumatic brain injury and stroke

I don't have any specific citations but some believe that Alzheimers is like a form of brains diabetes, where the brain cells are no longer able to absorb sugars, which might be caused by modern high sugar diets. Switching to a Ketogenic diet, bypass the brain inability to feed on sugars and is fed ketone bodies instead, potentially reversing the symptoms.

Comment: Re:more direct connection to producers (Score 1) 191

by sodul (#47952265) Attached to: Why a Chinese Company Is the Biggest IPO Ever In the US

If i can buy a part directly from the manufacturer in China for $3.99, I'm not going to pay $11.99 for Amazon to deliver it to me or even $5.99 for an Ebay reseller.

The problem is, last time I wanted to get something through Alibaba, I had to order at least 10 times the amount I needed, or get a sample for 10 times the shipping costs through FedEx (or similar). I checked the shipping costs from china myself and they were correct. This made the transaction not worth it so I just waited 2-3 months for someone to buy in bulk to dilute the shipping cost and to resell in small quantities on eBay ... the middle man saved me money.
That was 2-3 years ago, but nowadays I see small items with low shipping costs on eBay. I also get daily spam in chinese now about similar items that I inquired 3 years ago, definitely through me trying to do business through Alibaba. For as much as I dislike having to use eBay, it is a much much better experience than Alibaba for the average person.

Comment: Re: Two sides to every issue (Score 1) 401

by sodul (#47397689) Attached to: No Shortage In Tech Workers, Advocacy Groups Say

I used to be on H1-B and transferred twice before I got my green card. I never heard that my previous employer had to release the H1-B. Are you talking about the H1-B that are over their initial 6 years and stuck in the decade long green card process? I know this is a different status and sucks big time to be stuck. My recommendation to H1-B holders with long waiting lists: do not wait for you initial 6 years to run out and find a good stable company that respect their employees more than the average, and where you think you can wait for the green card to go through.

Comment: Re:Why does how much money the company's have matt (Score 3, Insightful) 215

by sodul (#46979743) Attached to: Plaintiff In Tech Hiring Suit Asks Judge To Reject Settlement

You seem to forget that Google officially raised their employees salary by 10% after Facebook refused to be part of the illegal agreement. In practice because how the bonus was restructured for some people it was probably an effective increase of up to 25% on the final w2. Considering that most 'tech' at google makes more than $100k per year (staff level engineers make more than $250k per year). multiply that by the number of years this has been going on, and the claimed damage does not seem inflated anymore.

Comment: Re:Yes, yes it is. (Score 1) 408

by sodul (#46691463) Attached to: Apple: Dumb As a Patent Trolling Fox On iPhone Prior Art?

"I need to disable this because I'm constantly moving the cursor with my palms while I try to type and now I need to go buy a USB mouse for this poorly designed piece of shit." terrible.

It used to happened to me, maybe 10 years ago during the PowerBook era. I don't remember the MacBook Pros ever giving me this problem. Now, I have yet to use a non Apple laptop that comes with a trackpad that is nearly as nice to use.

Comment: Re:the moral of the story (Score 2) 448

by sodul (#46101013) Attached to: Developer Loses Single-Letter Twitter Handle Through Extortion

You can use gmail with your own domain name. It used to be free (and still free if you got grandfathered in). There are good reasons to use your own domain name with out without gmail. Most notably it looks more professional and you can actually have a very nice looking email instead of @gmail.com I have @.com, and my last name is 4 letters. It can also be more secure if you provide smtp access over ssl for your organization and so email within your own domain is usually fully encrypted while going over the public internet.

Gmail has been shown on a napkin to be pretty much fully readable while being transferred from one Google DC to an other one.

Comment: Re:Fedora community effort (Score 0) 83

by sodul (#44931707) Attached to: Fedora Project Turns 10

I commend the Fedora project for sustaining and growing the popularity... of Arch Linux, Linux Mint, and Debian. Good community spirit, people!

I second that. I started using linux on PPC (Suse on a PowerMac G4) back in 2000. Then used RedHat at work, started using Fedora at home. Dependency hell was a nightmare, especially the upgrades from Fedora 1 to 2 then 3 !!!! Everything including X and drivers had to be reconfigured all over again. Switched to Debian just after Fedora 3, then to Ubuntu around 2007. Still use Ubuntu server every day.

I had to use RedHat at work in recent years and every time it is dependency hell all over again. Even with paid support we still had major pains with it.
With Ubuntu I get 99%+ of the packages I need without having to recompile the world. I don't care for Unity since I use Ubuntu as a solid server system that has a large set of supported packages that all work together and are not many years obsolete (yes I look at you RedHat). For the little Linux UI needs I have I'm very happy with Lubuntu (runs very nicely on a 256MB RAM VM).

Comment: Re:It's about the money, stupid (Score 1) 384

by sodul (#44351553) Attached to: The Book That Is Making All Movies the Same

Unless you have a collection of older films and encourage the younger generation to watch them. Obviously only works within your own family, but it's a start.

That's called Netflix. They have lots of older films and even have Classics and Cult categories. There movies in the Classics start in 1914 all the way to 1993. I'm sure they have a lot more that are not in theses categories but they are making it harder to 'browse' in list mode these days.

Any sufficiently advanced technology is indistinguishable from a rigged demo. - Andy Finkel, computer guy

Working...