cavtroop - Slashdot User

Amazon Confirms EC2/S3 Not PCI Level 1 Compliant 157

Posted by timothy on Monday August 17, 2009 @02:31AM from the division-of-resources dept.

Jason writes "After months of digging though speculation and polar opposite opinions from PCI experts, I finally sent a direct request to Amazon's AWS sales team asking if they are in fact PCI compliant and will provide documentation attesting that they are as is required by PCI guidlines. I fully expecting them to dodge the question and refer me to a QSA, but to my relief, they replied with a refreshingly honest and absolute confirmation that it is currently impossible to meet PCI level 1 compliance using AWS services for card data storage. They also very strong suggest that cardnumbers never be stored on EC2 or S3 as those services are inherently noncompliant. For now at least, the official verdict is if you need to process credit cards, the Amazon cloud platform is off the table."

Comment someone post this to /b/ (Score 4, Interesting) 1164

by cavtroop on Monday August 10, 2009 @09:43AM (#29009977) Attached to: College Credits For Trolling the Web?

...and that'll blow the uni off the net for a while, i think :)

Open Source Textbook For Computer Literacy? 95

Posted by timothy on Saturday August 08, 2009 @04:11PM from the just-ask-russie-poo dept.

dcollins writes "The college where I work has decided to forego ordering a textbook for the computer class that I teach this fall. Does anyone know of a free, open-source textbook for basic computer literacy concepts (overview of hardware, software, operating systems, and file systems)?"

Feds At DefCon Alarmed After RFIDs Scanned 509

Posted by CmdrTaco on Thursday August 06, 2009 @09:40AM from the oh-sure-now-you're-alarmed dept.

FourthAge writes "Federal agents at the Defcon 17 conference were shocked to discover that they had been caught in the sights of an RFID reader connected to a web camera. The reader sniffed data from RFID-enabled ID cards and other documents carried by attendees in pockets and backpacks. The 'security enhancing' RFID chips are now found in passports, official documents and ID cards. 'For $30 to $50, the common, average person can put [a portable RFID-reading kit] together,' said security expert Brian Marcus, one of the people behind the RFID webcam project. 'This is why we're so adamant about making people aware this is very dangerous.'"

Expedition To Explore an Alaska-Sized Plastic "Island" 325

Posted by kdawson on Wednesday August 05, 2009 @08:09AM from the one-hundred-megatons dept.

Peace Corps Online writes "An expedition called Project Kaisei has departed bound for the Great Pacific Garbage Patch — a huge 'island' of plastic debris in the Pacific Ocean estimated to be the size of Alaska (some estimates place it at ten times that size). The expedition will study the impact of the waste on marine life, and research methods to clean up the vast human-created mess in the Pacific. The BBC quotes Ryan Yerkey, the project's chief of operations: 'Every piece of trash that is left on a beach or ends up in our rivers or estuaries and washes out to the sea is an addition to the problem, so we need people to be the solution.' The garbage patch occupies a large and relatively stationary region of the North Pacific Ocean bound by the North Pacific Gyre, a remote area commonly referred to as the horse latitudes. The rotational pattern created by the North Pacific Gyre draws in waste material from across the North Pacific Ocean, including the coastal waters off North America and Japan. As material is captured in the currents, wind-driven surface currents gradually move floating debris toward the center, trapping it in the region. 'You are talking about quite a bit of marine debris but it's not a solid mass,' says Yerkey. 'Twenty years from now we can't be harvesting the ocean for trash. We need to get it out but we need to also have people make those changes in their lives to stop the problem from growing and hopefully reverse the course.'"

Comment Re:100 miles with or without A/C? (Score 1) 586

by cavtroop on Monday August 03, 2009 @09:01AM (#28925825) Attached to: Nissan Unveils All-Electric LEAF

Yeah, cause sitting in a 2 hour traffic jam in 90 degree heat without AC is an option.

Maybe if you are a masochist :) Sure, I know SOME people do it, *I* just don't want to.

Google Latitude Arrives For the iPhone — As a Web App 195

Posted by Soulskill on Sunday July 26, 2009 @12:22PM from the on-again-off-again dept.

An anonymous reader writes "After months of waiting, the Google Latitude social maps service finally arrived for the iPhone ... but thanks to an Apple rejection of the natively developed app, it's a web app. Says Google on their blog, 'We worked closely with Apple to bring Latitude to the iPhone in a way Apple thought would be best for iPhone users. After we developed a Latitude application for the iPhone, Apple requested we release Latitude as a web application in order to avoid confusion with Maps on the iPhone.' But it gets worse for iPhone users: 'Unfortunately, since there is no mechanism for applications to run in the background on iPhone (which applies to browser-based web apps as well), we're not able to provide continuous background location updates in the same way that we can for Latitude users on Android, BlackBerry, Symbian and Windows Mobile.' Latitude has been sprouting new features lately and is an interesting take on social networking, but it looks like Apple is determined to ensure its users only get a seriously crippled implementation compared to the Android and WinMo versions. PC World put it less politely than Google did, saying, 'Google's new Latitude Web app for iPhone is so hamstrung that Apple customers may be wishing they had a BlackBerry or Android handset instead.'"

Most Companies Won't Deploy Windows 7 — Survey 429

Posted by kdawson on Tuesday July 14, 2009 @08:20AM from the holding-on-to-yesterday dept.

angry tapir writes "Nearly six in 10 companies have no current plans to deploy Windows 7 by the end of next year, according to a new survey. Of 1,100 IT administrators who responded to the survey, 59.3 percent said they didn't have a plan to deploy Windows 7. (Full results, PDF.)"

Comment Re:News at 11 (Score 1) 553

by cavtroop on Monday July 13, 2009 @11:13AM (#28676775) Attached to: Strong Passwords Not As Good As You Think

Um, hire intelligent users? We know that isn't going to happen though. So take your password, keep it in your wallet. You don't leave that laying around, do you?

Or, have one master password (use that for your machine password), and PasswordSafe to store all your other passwords. You can remember one password, right? Even if it's slightly complex?

Security requires all parties to work together, or it's useless and easy to circumvent.

iPhone Vulnerability Yields Root Access Via SMS 186

Posted by timothy on Friday July 03, 2009 @09:01AM from the tweet-hack dept.

snydeq writes "Pwn2Own winner Charlie Miller has revealed an SMS vulnerability that could provide hackers with root access to the iPhone. Malicious code sent by SMS to run on the phone could include commands to monitor location using GPS, turn on the phone's microphone to eavesdrop on conversations, or make the phone join a DDoS attack or botnet, Miller said. Miller did not provide detailed description of the SMS vulnerability, citing an agreement with Apple, which is working to fix the vulnerability in advance of Black Hat, where Miller plans to discuss the attack in greater detail. 'SMS is a great vector to attack the iPhone,' Miller said, as SMS can send binary code that the iPhone processes without user interaction. Sequences can be sent to the phone as multiple messages that are automatically reassembled, thereby surpassing individual SMS message limits of 140 bytes."

Comment Re:Confusing Comparison: RTS vs RPG (Score 0, Troll) 737

by cavtroop on Wednesday July 01, 2009 @02:21PM (#28546485) Attached to: Blizzard Confirms No LAN Support For <em>Starcraft 2</em>

what a pedantic, arsehole reply.

Screw my karma. You sir, are a dick.

Comment Re:Great (Score 1) 891

by cavtroop on Wednesday July 01, 2009 @12:37PM (#28544339) Attached to: GPS-Based System For Driving Tax Being Field Tested

which works great, until they audit the GPS results vs. your odometer reading.

Man Attacked In Ohio For Providing Iran Proxies 467

Posted by ScuttleMonkey on Friday June 19, 2009 @04:18PM from the never-underestimate-stupidity dept.

David Hume writes "electronicmaji is reporting on the Daily Kos that the individual known as ProtesterHelp (also to be found on twitter) was attacked in Ohio for providing network security for Twitterers in Iran, setting up private networks to provide secure proxies, calling for media networks to remove the Iranians Twitterers' information from their broadcast, and providing counter-intelligence services (including Basiji and Army Locations) within the Twitter community. ProtesterHelp was allegedly attacked by a group of men while walking to class in Ohio. The men, who appeared to ProtesterHelp to be either Iranian or Lebanese, drove up beside him and threw rocks at him while shouting, 'Mousavi Fraud.' ProtesterHelp further reported that his personal information has been leaked, and is currently being spread both online and inside of Iran amongst the government." Relatedly, Wired is also reporting that Google and Facebook have rushed out support for Persian. This move has allowed many pro-democracy groups to connect and translate their message to a broader audience.

Comment Re:Failed once, will fail again. (Score 5, Insightful) 439

by cavtroop on Friday June 19, 2009 @03:29PM (#28394123) Attached to: $1.9 Million Award In Thomas Case Raises Constitutional Questions

we got fat and lazy. Literally and figuratively.

Making a Child Locating System 1092

Posted by ScuttleMonkey on Monday June 01, 2009 @02:11PM from the just-contact-a-local-fish-and-wildlife-officer-for-radio-tagging dept.

celtic_hackr writes "Well, I never thought I'd be an advocate for placing GPS devices on people. However, since it took less than three days for my local school district to misplace my daughter, I have decided that something needs to be done. By the school district's own admission it has a recurring problem of placing children on the wrong buses. Fortunately, my daughter was located, with no thanks to the local school district. Therefore, I would like input on a way to be able to keep track of my child. I know there are personal tracking devices out there. I have nothing against these systems. But I want more than this. My specification are: 1) a small unobtrusive device I can place on my daughter, 2) an application to pull up on any computer, a map with a dot indicating the real-time position of my child, 3) a handheld device with the equivalent information, 4) [optional] a secure web application/plug-in I can install on my own domain allowing me to track her from anyplace in the world, 5) a means of turning it all off, 6) a Linux based solution of the above. I believe all the pieces for making such a system are out there. Has anyone built anything like this? Is there an open source solution? How would I go about building my own? Has anyone hacked any of these personal trackers before, to serve their own purposes? How does a tinfoil hat wearer engineer such a device to make sure Big-Brother isn't watching too? Can these devices be locked down so only certain devices can pick up the GPS location of an individual locator? What other recommendations do you have?"

Slashdot Top Deals