Myself - Slashdot User

Submission + - Laptop hibernation a security risk?

Submitted by

wally

on Tuesday February 27, 2007 @08:46PM

wally writes: "I was having a long think today when it popped into my mind, is hibernation on laptops a security risk?

My flow of thought went like this: if I stole a laptop knowing that it had encrypted home and root partitions (assuming a Unix-like OS), presumably if it has a separate swap partition, that'd contain an unencrypted snapshot of the system prior to hibernation.

Therefore, this RAM image is presumably exploitable. Booting a USB stick would allow closer examination, presumably I could do anything from reading an open sensitive OpenOffice document to inserting some exploitable code into the frozen kernel to do something nasty when the laptop is next booted.

Even if the system keeps a checksum somewhere hidden to ensure the integrity of the RAM image before loading, you could at the least extract some potentially sensitive details that would otherwise be safe?

What do other slashdotters think? Is this an easily exploitable threat that should see suspended RAM images encrypted?"

Submission + - VMware cries foul over Microsoft virtualisation

Submitted by daria42 on Tuesday February 27, 2007 @07:18PM

daria42 writes: The battle to control the virtualisation market has heated up with the launch of a white paper from VMware, which accuses Microsoft of anti-competitive practices. In language reminiscent of Microsoft's anti-trust battles in the US and its ongoing struggle with the European Union, VMware claimed that the software giant is "forcing [its] specifications and APIs on the industry", and "trying to restrict customers' flexibility and freedom to choose virtualisation software".

Submission + - Comcast challenges FCC over subscriber limits

Submitted by illeism on Tuesday February 27, 2007 @06:21PM

illeism writes: Ars Technica is reporting that Comcast is challenging the FCC over subscriber limits.
FTA — Comcast has decided to challenge the Federal Communications Commission's "unofficial" cap on cable system ownership. In a filing earlier this month, Comcast criticized the FCC's 30 percent horizontal ownership cap, saying that limits on how many subscribers a given cable operator can service are no longer necessary.

Submission + - GameStop Employees: "Automatic calls are payba

Submitted by Samuel Fine on Tuesday February 27, 2007 @05:20PM

Samuel Fine writes: This is getting to be a problem with GameStop after all their mergers and take-overs. Bad management is leading to surly and bitter employees, who seem to almost derive joy in taking their frustrations out on customers. He goes as far to call their automated sales calls "payback." This could be dismissed as the ravings of one bad employee were it not for the other employees cheering him on in the comments of his blog post.

Submission + - 5 Myths About Black Hats

Submitted by ancientribe on Tuesday February 27, 2007 @03:34PM

ancientribe writes: Ever wondered who's behind that black hat? Dark Reading got up close and personal with hackers in a survey that dispels some widely held beliefs, such as many rank-and-file black hats don't necessarily target a specific company — everyone, even the smallest companies, are game as victims.

http://www.darkreading.com/document.asp?doc_id=118 169&WT.svl=news1_4

Submission + - Lenovo disables virtualization on consumer laptops

Submitted by

Anders1

on Tuesday February 27, 2007 @02:08PM

Anders1 writes: "Last month, I bought a new Lenovo 3000 N100 notebook with a Core 2 Duo processor, which is supposed to support Intel Virtualization Technology. It turns out, however, that my notebook's BIOS unconditionally disables VT extensions, and even goes so far as to set the lock bit of the feature-control MSR such that it is impossible to re-enable them. Lenovo support has been unresponsive. Are they too clueless to flip a single bit in the BIOS, or are they selling intentionally crippled products?"

Submission + - Why it's hard to do non-graphics coding on a GPU

Submitted by Boursin on Tuesday February 27, 2007 @02:01PM

Boursin writes: NVIDIA's CUDA and ATI's CTM are both intended to let coders use GPU hardware for non-graphics-related tasks. This article talks about why these are even harder to program than another new architecture that also tries to bridge the gap between graphics-specific and general-purpose computation: IBM's Cell. In short, don't expect to see these GPUs catch on in anything other than normal graphics cards outside of the high-performance computing niche.

Submission + - Virtualisation VMWare vs Parallels vs KVM

Submitted by on Tuesday February 27, 2007 @01:35PM

An anonymous reader writes: Hey, I am a developer and am about to move to a Linux (Ubuntu for now) Machine, even though I develop in Windows XP. So I would like to get everyone's opinion or thoughts on which is better and why out of Parallels for Linux and VMWare and KVM. My main concerns are speed and data integrity... I would like to have share virtual hard drives so multiple machines can use the same data. I would like Speed as I will be developing inside of these virutal machines... Any help would be appreciated. Regards C

Submission + - Vista Deactivated by Installing / Running Programs

Submitted by

growse

on Tuesday February 27, 2007 @12:31PM

growse writes: "It seems that even the most every day tasks can cause Vista to deactivate itself and require reactivation. Ed Bott has written about his experiences with such issues and includes a screenshot gallery of what the user experiences when Vista decides to deactivate itself. Microsoft has a support document about the issues here.

Is this an indication of more anti-piracy screwups to come? It seems that we're past the point of anti-piracy measures being only inconvenient for pirates, so now that legitimate users are being affected will they start to look for other OS options?"

Submission + - Study: Congressional Web Sites stink

Submitted by

coondoggie

on Tuesday February 27, 2007 @11:50AM

coondoggie writes: "Well if you were looking for a bastion of clear political communications I would think you look anywhere BUT here: congressional Web sites. The Congressional Management Foundation (CMF) watchdog group today announced its "Golden Mouse" report card for congressional Web sites and found them mostly 'disappointing." Among the report's major criticisms: Almost half (49.1% ) do not give sufficient information on contacting the office regarding a problem with a federal agency Only 26.4% offered guidance on the best ways to communicate with their offices. Only 11.4% of House and 5% of Senate Web sites posted their office hours. 32% do not have links to sponsored or co-sponsored legislation. Of the ones that do, 13.7% did not reference the most current session of Congress. Overall quality is "disappointing" with over a third of the congressional Web sites earning a substandard or failing grade. http://www.networkworld.com/community/?q=node/1186 3"

Submission + - Underwater Rocketry Goes to New Heights

Submitted by killabrew on Tuesday February 27, 2007 @11:36AM

killabrew writes: If you're into model rocketry, here's your next challenge. Check out this cool video on how to build an underwater model rocket launcher, instructions and a parts list are included! Read More: http://www.designnews.com/article/CA6409229.html

Submission + - Diamond Thermal Compound finally available

Submitted by dampeal on Tuesday February 27, 2007 @08:33AM

dampeal writes: Here's a review of the first available Diamond based thermal compound... Snip: They say Diamonds are a girls best friend, well that might be true but I think they may be a geeks or enthusiasts best friend as well... I'm talking of course of the thermal properties of diamonds, diamonds are the best thermally conductive substance out there, so of course having a diamond based thermal compound would be probably the best choice for a thermal compound.

Slashdot Top Deals