Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Submission + - New app turns smartphones into worldwide seismic network

Saeed al-Sahaf writes: UC Berkeley wants your phone to help detect earthquakes. The school has released an Android app, MyShake, that uses your phone's motion sensors to detect the telltale signs of tremors and combine that with the data from every other user. Essentially you become part of a crowdsourced seismic station network. Once enough people are using it and the bugs are worked out, however, UC Berkeley seismologists plan to use the data to warn people miles from ground zero that shaking is rumbling their way. An iPhone app is also planned.

Comment Re:The eventual redefinition of "privacy" and the (Score 1) 89

All of this is boiling over to what exactly is considered "YOUR" information in the digital age? Nobody seems to be asking this question.

As a minimum if you don't encrypt it before tossing it out onto unknown public and private networks you don't control, you've already said you don't care who sees / reads / hears / metabolizes your data.

Submission + - CIA rendition jet was waiting in Europe to kidnap Snowden 5

Frosty Piss writes: As Edward Snowden made his dramatic escape to Russia a year ago, a secret US government jet previously employed in CIA 'rendition' flights on which terror suspects disappeared into 'black' imprisonment flew into Europe in a bid to spirit him back to the United States. On the evening of 24 June 2013, an unmarked Gulfstream V business jet took off from a quiet commercial airport 30 miles from a Washington DC. regional airport discreetly offers its clients 'the personal accommodations and amenities you can't find at commercial airports'. On its best-known mission, the jet flew a U.S. marshals into the UK on to collect radical cleric Abu Hamza after the United States won an extradition order against him. Only Vladimir Putin's intransigence saved Snowden from a similar travel package. The jet's activities can be followed on many flight tracking websites such as FlightAware

Comment Re:Sigh - what the heck ... (Score 1) 264

They're wrong.

Misfeatures of UPnP: A) only for IPv4/NAT gateways; B) proprietary specification; C) defined as profile of SOAP over UDP (so very wide attack surface); D) allows every client to make 3rd-party port maps by default (so very insecure by design).

Corrections in PCP A) works for IPv4/NAT and IPv6 gateways (NAT and w/o NAT); B) open IETF specification; C) defined as simple binary protocol (so very narrow attack surface); D) disallows 3rd-party port maps unless optional extension implemented (so less insecure by design).

You need something that does this if you have a firewall (whether there is NAT or not). If you have an IPv6 gateway, then see RFC 6092 section 3.4 Passive Listeners for an explanation. That RFC is referenced by CableLabs and BBF specs, so it is what you should expect to see in most provider-provisioned home gateways in the near future.

Seriously, PCP is what you need to use for this. Does this suck? Maybe. Depends on whether you think having firewalls everywhere denying all inbound traffic to passive listeners by default is a good idea. If you think that's a good idea, then PCP doesn't suck. Deal with it.

Comment Re:Why I buy apple airports (Score 1) 264

Another feature of the AirPort home gateway product line is that it doesn't have any UPnP support, which is the attack surface that has been proven to be so difficult to secure. It also doesn't have an embedded web server for administration and configuration, using instead a proprietary Apple protocol between the firmware and the AirPort Utility rich client program that runs on OS X, iOS and Windows. The attack surface on the AirPort home gateway is really small compared to other products.

Too bad Apple will probably never make another one.

Slashdot Top Deals

Software production is assumed to be a line function, but it is run like a staff function. -- Paul Licker

Working...