Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?

Comment Re:No Compromises (Score 1) 150 150

My first smartphone was a Motorola OG Droid with a side-out keyboard. it was one of the reasons I got that phone.

And then I discovered Swype and found that I never actually used the physical keyboard. Once I figured out that I could switch between the Hacker Keyboard for ssh sessions and Swype for everything else, the virtual keyboard became much less of a pain to deal with than the physical keyboard. Even with the tiny, low-res screen on the old Droid, the virtual keyboard was better. With newer phones that have better screens, the amount of screen real estate that gets covered by the virtual keyboard is not much of a problem.

Comment Re:boohoo (Score 1) 202 202

Where did you hear that Lollipop was unaffected or that *any* non-stock AOSP ROMs are unaffected?

According to the article, there have been *some* mitigation features in all versions Jellybean and later, but that even the Nexus 6 with the latest firmware has only blocked *some* of the vulnerabilities.

Comment Re:Dictionary? (Score 2) 157 157

Denyhosts depends on login failures being logged to /var/log/auth (or similar) and it only checks those logs periodically (maybe once a minute?) The article indicates this bug allows a large number of attempts per *connection*. Does ssh even log the failure if the connection is not closed? I don't know the answer to that. In any case, it can make a lot of attempts in the interval between checks of the log.

Comment Re:Google Beta (Score 1) 142 142

At least with Android you get a pop-up asking if you want to perform the upgrade. And you can say "not now."

I've been refusing to "upgrade" my phone to KitKat for a year and a half now. You do have to face the annoyance of the pop-up every 24 hours, but at least you're not forced into a regression.

Comment Re:Exactly. NEVER change your email address. (Score 1) 269 269

Our Computer Science alumni get to keep their email account on the departmental server. (At least until we replace that server.) Students elsewhere on campus? Not so much.

As a matter of fact, for the last 5 years or so, non-CS students aren't provided with any university associated email address -- they have to provide their own. To be fair, this was largely because most of them already had an address of their own and weren't responding to emails sent to the campus address.

Comment Re:On Shopping Around (Score 1) 1032 1032

That's a good point, and it makes his argument even more unsupportable. My experience was between 35 and 40 years ago.

I did get scholarships -- a $1000 one-time scholarship and $1500 a year for 4 years. With that and working part time during the year and full time in the summers, I finished a bachelor in physics with no debt. I wasn't living high on the hog, but I wasn't slumming it either. This was at the University of Colorado, so I wasn't getting a bargain basement education, but I also wasn't being extravagant.

I checked a few years ago, and there's no way I would have been able to do that with current prices. But 35 or 40 years ago? If he couldn't get a *good* education without going seriously into debt, he wasn't trying.

Comment Re:Just ask to remove the project? (Score 1) 145 145

Since that's not an option, maybe the smart thing to do (now that we know the problem) would be to keep your Sourceforge account current and periodically upload a "special" version that pops up a warning, "This software has been downloaded from an untrusted site. Please go to...."

If you renew this version every six months or so they'll have to find a new excuse beyond, "Hey, it was abandoned."

That may not help projects that have already been hijacked.

Often statistics are used as a drunken man uses lampposts -- for support rather than illumination.