Become a fan of Slashdot on Facebook


Forgot your password?

Online Retailers Cruising Tor To Hunt For Fraudsters 188

Daniel_Stuckey writes "This week, the verification company Service Objects announced a new tool to help websites detect 'suspicious' visitors using Tor and other anonymous proxies. Its updated DOTS IP Address Validation product identifies 'suspicious' discrepancies between the user's home location and the location of the IP address the order's coming from. It joins a handful of other tools on the market promising Tor-detection for retailers. It's a logical strategy: If you're trying to buy something with a stolen credit card, you're obviously going to want to block your real identity and location while doing it. But it also raises the question of whether targeting anonymity services to hunt out fraudsters could have chilling effects for harmless Tor users trying to protect their privacy online—particularly this year in light of the NSA-spying scandal."

Comment Re:Are you really that clueless? (Score 1) 214

Why do you assume you know more than I do on that score?

Because of your comments above that demonstrate a very poor awareness of current events. That makes it a very safe bet that the average reader of this site knows more than you say you do on this score - however I very much suspect that you are deliberately pretending to be stupid and ignorant just so you can have something to argue about. Please stop playing this petty mass debate game.

Comment Re:Generic problem to solve? (Score 1) 250

The real question is, when will Debian/Ubuntu/Redhat/Suse be verified?

Redhat has been verified by the CentOS team. If you read the -devel mailing list from back when it was done, it was a real pain in the ass. "Compile this SRPM on this version of Fedora with this version of this library installed", etc.

But they did it, after a long effort, and got binary matches.

Comment Re:Obvious, and products are always like this. (Score 1) 55

They are always like this - especially if the vendors can keep the source secret. I've taken to running VLAN's at home - mostly WNDR3800 refurbs ($50 w/ Prime) running OpenWRT and GS-108T switches (poor GUI, but linux inside), feeding to a pfSense instance. Anything that's not all open source goes on an isolated VLAN that can't get traffic to or from anywhere without an explicit rule. pfSense makes it pretty easy to set up a VPN to get to data on the inside, so outside ports don't need to be open.

I set it up as best-practices, but with Bull Run, D-Link, this, and other similar stories, it seems like an even better idea in retrospect. If I were the NSA, I'd want a backdoor in Roku.

Comment Re:that's not even wrong... (Score 1) 250

The whole point of the Thompson hack is that it would survive a source code audit. If you compiled the clean source for the compiler with a dirty compiler, it would insert the backdoor into the new executable, making it self-replicating in an virtually undetectable fashion. The code you compiled yourself would be byte-for-byte identical with the bootstrap compiler.


Microsoft Makes It Harder To Avoid Azure 164

itwbennett writes "Earlier this week, Microsoft rolled out a handful of hybrid cloud services that make it easy for businesses to start using Azure in a small way. What struck blogger Nancy Gohring about the announcement was 'how deeply Microsoft is integrating Azure into other products,' with the intention of moving long-time customers onto Azure in ways that are hardly perceptible to them."

Comment Re:Stallman ain't gonna be happy (Score 1) 304

The vast majority of developers, including those who work on free software, are compensated for their work using a model that's unrelated to software sales.

Yes, it sucks to be Microsoft or EA in a post-Stallmanized world, but most programmers don't work for software houses, and copies of the software they make isn't sold.

Comment Re:compensation (Score 1) 192

The schools teach that if you vote in an election, then your interests will be represented by your elected officials. Informed adults know that's such a steaming crock, but do we really expect government schools to teach that? Meanwhile, most voters don't bother to get informed (they did that in school, right?).

Heck, my kids' school teaches that Columbus thought the Earth was flat and that Lincoln started the Civil War to end slavery - it's mostly all folklore with the varnish of history.

Comment Re: Help us Google Fiber! You're our only hope. (Score 1) 568

Someone who doesn't drive nevertheless benefits from, say, a supermarket whose goods got there by road; and there are countless other examples of how someone who never sets foot out of the house benefits from roads.

Yeah, but in decent jurisdictions, they pay a penny more for a bunch of carrots, to help offset the fuel tax which pays for the road maintenance. The non-drivers don't need to be more connected to the roads than that.

Slashdot Top Deals

Wherever you go...There you are. - Buckaroo Banzai