Follow Slashdot blog updates by subscribing to our blog RSS feed


Forgot your password?

Real-Time Keyloggers 205

The NY Times has a story and a blog backgrounder focusing on a weapon now being wielded by bad guys (most likely in Eastern Europe, according to the Times): Trojan horse keyloggers that report back in real-time. The capability came to light in a court filing (PDF) by Project Honey Pot against "John Doe" thieves. The case was filed in order to compel the banks — which are almost as secretive as the cyber-crooks — to reveal information such as IP addresses that could lead back to the miscreants. Or at least allow victims to be notified. Real-time keyloggers were first discovered in the wild last year, but the court filing and the Times article should bring new attention to the threat. The technique menaces the 2-factor authentication that some banks have instituted: "By going real time, hackers now can get around some of the roadblocks that companies have put in their way. Most significantly, they are now undeterred by systems that create temporary passwords, such as RSA's SecurID system, which involves a small gadget that displays a six-digit number that changes every minute based on a complex formula. If [your] computer is infected, the Trojan zaps your temporary password back to the waiting hacker who immediately uses it to log onto your account. Sometimes, the hacker logs on from his own computer, probably using tricks to hide its location. Other times, the Trojan allows the hacker to control your computer, opening a browser session that you can't see."

If You Live By Free, You Will Die By Free 251

Hugh Pickens writes "Internet entrepreneur Mark Cuban writes that the problem with companies who have built their business around Free is that the more success you have in delivering free, the more expensive it is to stay at the top. '"They will be Facebook to your Myspace, or Myspace to your Friendster or Google to your Yahoo," writes Cuban. "Someone out there with a better idea will raise a bunch of money, give it away for free, build scale and charge less to reach the audience."' Cuban says that even Google, who lives and dies by free, knows that 'at some point your Black Swan competitor will appear and they will kick your ass' and that is exactly why Google invests in everything and anything they possibly can that they believe can create another business they can depend on in the future searching for the 'next big Google thing.' Cuban says that for any company that lives by Free, their best choice is to run the company as profitably as possible, focusing only on those things that generate revenue and put cash in the bank. '"When you succeed with Free, you are going to die by Free. Your best bet is to recognize where you are in your company's lifecycle and maximize your profits rather than try to extend your stay at the top," writes Cuban. "Like every company in the free space, your lifecycle has come to its conclusion. Don't fight it. Admit it. Profit from it."'"

Comment Depends how many VMS your running. (Score 5, Informative) 272

I personally use qemu-kvm and im quite happy with it. Thats running on a dual core machine with 2G of ram (probably not enough ram though!).

For the KVM stuff you need have chips which support Intels VT or AMDS AMD-V so your processor is the most important aspect. A quad core would probably be suitable too if you can buy that.

For just experimentation usage its a fantastic alternative to VMWare (I personally got sick of having to recompile the module every time my Kernel got updated).

On my box myself i've had about 6 CentOS VMs running at once but frankly there were not doing much most of the time. Ultimately its going to boil down to how much load you inflict on VMS underneath, my experience with it has not been very load heavy so I could probably stretch to 9vms on my hardware which is probably on the lower end of the consumer range these days.

The most important bits are your CPU and RAM. If your after something low spec you can do dual core 2g ram but you could easily beef that up to quad core 8G RAM to give you something you can throw more at.

Oh and Qemu without KVM is painstakingly slow - I wouldn't suggest it at all.

The Internet

How To Keep a Web Site Local? 297

Cornwallis writes "The universal accessibility of the Internet is one of its attractions. But what do you do when you don't want your board to be Slashdotted? Back in the day it was great to run a local BBS where friends and neighbors could dial in using their 9600-baud modems to pick up mail or share games or stories. Now, my Web-based board gets slammed by people from all over the world who have no reason to access it, can't possibly take advantage of the locally focused services it offers, and generally take up my time because I have to block their accounts or explain to them why they can't have access. This despite the fact that the board explains quite clearly that it is for local use only and couldn't possibly be of interest to them. Other than putting thousands of entries in my hosts file to block IP ranges, what options do I have to restrict access to locals only? Or isn't that feasible?"

The Most Influential Games In History? 254

Kotaku reports on a list published recently by Guinness World Records which credits Super Mario Kart as the most influential console game in history. "Tetris ranks in at number two, according to the list, and the original Grand Theft Auto is in the number three spot. Where does Super Mario Bros. turn up? Way down at number 17, beneath Grand Theft Auto: San Andreas." Several other franchises have multiple entries on the list, such as Final Fantasy and Resident Evil. What console games have influenced you the most?

Comment ** globs (Score 1) 459

I hope to god nobodies got a ** typo in an old script because that could be troublesome.

Even worse it could be simple enough to ** in error on the prompt.

Data Storage

USB Flash Drive Comparison Part 2 — FAT32 Vs. NTFS 198

Dampeal writes "Ok, a little while back I ran a somewhat large USB Flash Drive Comparison with 21 drives compared, today I got part two of that comparison. I've taken the 8gig and 4 gig drives, nine in total, and formatted them FAT32, NTFS and ExFAT and ran all of the tests over again for a comparison of how the file systems work on the drives." Good news — after some exhaustively graphed testing scenarios, the author comes to a nice conclusion for lazy people, writing "[I]n my opinion the all around best choice is FAT32, or the default for most all USB drives out there today, it seems to give us the best average performance overall."

Windows Vista Service Pack 2 Expected Tomorrow 149

arcticstoat writes "After dishing out a few copies of the beta of Windows Vista Service Pack 2 to select customers in October, Microsoft has now decided to let the general public get their hands on the beta of the service pack, starting from tomorrow. The beta of the service pack will be made available via Microsoft's Customer Preview Program on 4 December, and it includes all the updates since Service Pack 1, as well as a few other bits and pieces. Most notably, Microsoft says that Service Pack 2 'improves performance for Wi-Fi connection after resuming from sleep mode,' and adds the Bluetooth 2.1 Feature Pack, ID strings for VIA's Nano CPU and support for the exFAT file system for large flash devices."

Dropped Shuttle Toolbag Filmed From Earth 389

cathector writes "An article at reports that the toolbag dropped during Heidemarie Stefanyshyn-Piper's spacewalk has been recorded on film from earth: 'When Endeavour astronaut Heidemarie Stefanyshyn-Piper dropped her toolbag during a spacewalk on Nov. 18th and it floated away, mission controllers probably figured they'd seen the last of it. Think again. Last night, Nov. 22nd, veteran satellite observer Kevin Fetter video-recorded the backpack-sized bag gliding over his backyard observatory in Brockville, Ontario. "It was easily 8th magnitude or brighter as it passed by the 4th magnitude star eta Pisces," he says. Spaceweather's satellite tracker is monitoring the toolbag.'" The actual loss of the bag was filmed, too; reader Kagura links in a comment on the original story to this YouTube clip of the bag's escape.

Kaminsky Bug Options Include "Do Nothing," Says IETF 134

netbuzz writes "Meeting in Minneapolis this week, the Internet engineering community is debating whether to aggressively fashion and apply fixes for the so-called Kaminsky bug in the DNS discovered this summer, or to simply let its threat stand as motivation for all to move with greater speed toward DNSSEC, which is considered the best long-term security solution. Problem with the latter approach is that DNSSEC has been in the works for a decade already, no one is confident it will be universally embraced, and the Kaminsky flaw is causing real problems today.

EFF Warns That Email Privacy Is In Jeopardy 152

MojoKid writes with this excerpt from HotHardware: "According to the Electronic Frontier Foundation (EFF), a dangerous legal precedent has just been set that can potentially unravel existing federal privacy protections for e-mail and Internet usage. The alert from the EFF is not just to sound a general warning, but it also takes the form of an Amicus curiae (friend of the court) brief, filed with the federal 9th US Circuit Court of Appeals, asking for the court's legal finding to be overturned... The findings of this case could become the foundation of a legal precedent upon which other similar cases can subsequently be based. If that were to be the case, then the unauthorized retrieving of e-mails from an e-mail server would not be considered a violation of the federal Wiretap Act, which will then open the door for government-sponsored snooping."

Slashdot Top Deals

I judge a religion as being good or bad based on whether its adherents become better people as a result of practicing it. - Joe Mullally, computer salesman