Slashdot is powered by your submissions, so send in your scoop


Forgot your password?
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 internet speed test! ×

Comment Re:Obligatory XKCD (Score 4, Insightful) 498

You're missing part of the point of the XKCD. It's not just about choosing four random words, it's also about constructing a mnemonic to remember that password. That's what the image with the horse is all about.

And it works.

The day I read the XKCD, I changed my home domain password policy. I pulled out all the annoying requirements like must have upper case, special character, number, etc, and extended the length requirement one to 20 characters. That's it. I then showed my family the xkcd and made sure they understood what I was after. They grumbled. The excuse I heard from every one of them was 'I suck at choosing passwords'. I helped them through that, and after they got used to it, they didn't grumble anymore. Sadly, I've had quite a bit more difficulty getting them to use password managers, though I hope that my dire threats of doom and revoked network access have made it clear that they don't use their home domain password for anything else.

Professionally, I've tried to get my companies to see the light, but they remain stubborn and insist that the special character requirement is good enough, and about the only way I could disprove that would be to launch an attack to prove otherwise. Since that is likely to be a resume generating event, I have so far declined that option.

I think the most irritating work password experience I had was when I started using long passwords, routinely over 20 characters.... until I ran into an internal app that, despite using Active Directory for authentication, restricted the password field to 12 characters. Apparently web developers don't understand the logic of 'if you're going to use AD, and AD accepts longer passwords, your app should to'. That's when I wrote my own damn app to mimic the same functionality.

Comment Re:Immigration policy is not hate speech (Score 5, Insightful) 1058

I wish I had mod points to push this up to +5.

Alot of folks just don't understand the frustration that the liberalists create by basically saying we can't say anything bad about anything. We don't live in a happy utopia where everything is perfect.

The United States is a melting pot of cultures and religions. Some of those cultures and religions don't mix very well, so there's going to be friction.

By trying to pretend there isn't and trying to put a lid on it, is just going to cause it to boil over. If you can't talk about it, then there's never going to be resolution, just conflict and friction in perpetuity

Comment Re:Passing the buck? (Score 1) 140

Of course they're lying. Quote

he termination of CloudFlare's CDN services would have no impact on the existence and ability of these allegedly infringing websites to continue to operate

If it would make now impact, why are they in business? Kind of hard to get people to buy a service that doesn't do anything.

There is a difference between impacting ability to operate and impacting ability to operate at a given service level.

Cloudflare is absolutely correct. If they kick off sites that are being accused of copyright infringement, it doesn't make those sites go away. It's just more cost effective for the alleged criminal enterprise to use a CDN service, not necessarily cost prohibitive to not use one.

Cloudflare is being asked to chop off revenue streams based on a flawed premise. If it actually would make a difference, I'd say yeah, they should boot 'em, but since it doesn't, I kind of see their point and I'd probably say 'screw that' if I were in similar circumstances

Comment My system is simple.... (Score 1) 637

Everything has a unique login.

I adopt the xkcd method for passwords I might need to use frequently. This is for things like my google account, my NT login, and my password managers master password.

For anything else, yeah, it gets tossed into a password manager. I generate a unique password for every site. I don't need to remember the password for everything, I just need to remember the password for my password manager. The vast majority of my passwords, I've never actually seen them.

My password database is stored only on devices where data storage is fully encrypted. I keep it in sync by using a private cloud sync setup (not something public like Google Drive or Dropbox). If I need to update the password database while mobile, I just VPN into my home network to get access to the cloud sync.

I also enable 2 factor wherever I can. Lots of stuff supports the NTOP protocol now, so using something like Google Authenticator is quick and easy.

I do not let my browser save passwords. I do not store credit card information online anymore (with the exceptions of Apple and Amazon).

While it has made logging into some things a bit more of a pain in the ass, the data breaches that have occurred on sites I used (including one that led directly to an identity theft incident) have left me with the feeling that I should do everything I can on my side to protect my information. The irritation of having to pull a password out of a password manager to login is a trifle compared against limiting the extent of a data breach can have on me.

I've also made it a practice to stop frequenting sites which have let my data out in the open, especially if there's a monetary relationship.

Comment Re:A perfect example of why tech is cyclical.... (Score 1) 94

Now, we have so much data and fast bandwidth is so expensive, that transferring data to another site physically is actually a consideration.

Was there ever a time this wasn't true?

Sure there was. I remember a time when having physical media was a big deal. One, because storage was still an issue, Two because downloading crap took a long time. It you had physical media, it was faster to install from CD than to download and run an executable. Then storage caught up, and bandwidth increased. To the point where I haven't actually used physical media in quite a long time. Need to install an ISO? Flash a thumb drive and boot. I'm actually pretty happy I don't have stacks of game boxes I need to keep track of anymore for my PC games. The DVD and BluRay collection? Ripped to the NAS, served up to the Roku, the cases in storage in the basement, not taking up space in my living room.

However, with storage getting big and cheap, data tends to grow to accomodate available disk space. Consumer bandwidth, on the other hand, has not grown in kind.

Case in point - I have close to 12TB of used space on my NAS. It's a RAID6, so I can sustain some drive loss, but I've learned the hard way that RAID is not a back up. Now, given that Amazon has Unlimited Cloud storage for 60 bucks a year, I'd like to take them up on it and use it to backup my NAS. Problem is the fastest Internet I can get in my area without paying construction fees to get a fiber run and then paying a ridiculous amount of money each month for the bandwidth is 5mbps upstream. When I calculated that out, it would take ~300 days just to do the initial backup assuming I ran my upstream at full load 24/7. Right now, I'm relegating backup duties to a bunch of external drives instead, and seriously considering building out a second NAS just to backup the first one. Still doesn't solve my problem of having a secure offsite backup in case the house burns down, shit gets stolen, etc.

So in some regards, I've managed to nix physical media needs, but that unfortunately has created a situation where physical media is needed for other things, and it's solely because of the lack of bandwidth.

Comment Re:Theft waiting to happen (Score 3, Informative) 94

And yes, excerpted directly from the service web page found at

'Once it arrives, attach the appliance to your local network, download and run the Snowball client to establish a connection, and then use the client to select the file directories that you want to transfer to the appliance. The client will then encrypt and transfer the files to the appliance at high speed.'

So unless the client is absolute crap, it's a pretty good solution

Comment Re:Theft waiting to happen (Score 1) 94

The boxes in which these hard drives ship will be obvious that they're from Amazon. It's an invitation to thieves to steal the boxes and the data on the hard drives. I can't understand why ANYONE would ship data of any value in this manner.

It's not like their shipping you bare OEM drives with some air puffs. The box is a self contained appliance. I'd be very surprised if the copy to the drives in the box didn't leave the data encrypted, it'd be foolish of Amazon to do it any other way

Comment What a shitty headline (Score 1) 150

For starters, assuming you fall prey to this, all you lose is the configuration of a single switch. If losing a single fixed configuration 1U switch causes your entire datacenter to go down, your datacenter is badly designed.

Second, this requires a particular style of booted cable, not just any booted cable. Most datacenters I've worked in don't use booted cables in their switch ports. Their cables are cut to length and crimped by hand. Booted cables can be a bitch to get out of the port, especially on 1U 48 port switches. Fiddling with a boot in a cramped cage or rack is a great way to take collateral links down.

Third - no good network engineer leaves the mode button enabled on a production switch, whether it's one of the express setup ones, or just the regular old boot to rommon ones.

Fourth - yeah, this is a shitty design choice by Cisco, normally the mode button is off to the side.

Slashdot Top Deals

Make sure your code does nothing gracefully.