Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×

Comment Re:Sledgehammer approach. (Score 1) 163

Even freaking routers are cloud IOT based these days?!!

What the hell does that even mean? What does IOT even mean? Since when did routers (which have always had vulnerabilities and don't get patched often) get lumped in with light bulbs and security cameras? What about unpatched servers or workstations with direct connections to the internet (think cloud hosting providers)? Routers are the "things" that are responsible for traffic going anywhere. Servers are "things" that provide access to services on the internet. I guess the enter internet is an "internet of things."

OK, now I'm going you are talking about home NAT routers here, and not the Cisco ASR in your ISP's data center. Are you complaining that they are getting software updates automatically from the manufacturer? If so, for the average user, how is this a bad thing? Think about all the Linksys WRT54Gs from a decade ago there that never got an update because the user didn't know you could update it. Same with all the Netgear piles of crap that are chock full of vulnerabilities you read about in the news on a weekly basis. I understand that there may be some reservations as to the "features" pushed out by these updates (I'm specifically thinking of the Linksys incident about 5 years ago,) but for the average user, the router is an appliance. If it automatically "fixes" itself, that's a good thing.

OK, rant over. Patch your shit.

Comment Re:They really don't understand. (Score 1) 366

Actually, I'm of the opinion that basic programming can be taught along side of basic traditional math, science, and literacy. What makes the S(cience) and the M(ath) in STEM more important than the Technology and Engineering components? It's true that science relies heavily on math, and engineering on science, but only at more advanced levels. Coding at a 5-year-old level isn't going to be requiring any more math than a science class for 5-year-olds. Even in middle school, there is a lot of programming that can easily be taught without advanced math. You don't need to learn about functions in algebra before learning about them in programming. I've never understood this attitude. Having a handle on logic is much more important. Similarly, learning about simple machines and basic other engineering doesn't require any math right away.

Comment Re:Jayavel Murugan...Syed Nawaz (Score 1) 253

I don't disagree that the health care situation in the US is a complete shitshow, but your argument doesn't hold up.

people in need of healthcare should be cared for or discarded?

In the US, any hospital that accepts Medicare (so pretty much all of them) have to provide an exam to decide whether a patient's condition is considered an emergency medical condition (EMC). If it is, they are required to stabilize the patient regardless of ability to pay. This is part of the EMTALA and has been in effect since 1986. Prior to this, hospitals had a habit of dumping or transferring patients who couldn't pay regardless of condition.

We still have a long way to go, but at least patients aren't "discarded" outright anymore.

Comment Re:Trump is already a uniter (Score 1) 637

I will not note the unexpired Ohio driver's license is questionable; who cares if it is expired?

Theoretically, a resident of--say Indiana--who recently moved there from Ohio could potentially vote in both states using an expired or voided Ohio drivers license.

Comment Re:3 Billion Marks (Score 1) 79

For what it's worth they are spying on you anyway, even if you don't have an account. Every time you see a like button--whether you click it or not, you are being facebooked. Every time someone tags you in a picture (even though you don't have an account,) you are being facebooked.

At the end of the day you are better off having an account (even if you don't use it) so you can control your exposure. Also, use a script or ad blocker to prevent those stupid like buttons from running their script in the background.

Comment Re:How do you know? (Score 2) 279

Obviously there is no guarantee--there never is in these days of NSA-intercepted shipments, government-sponsored code changes, etc... There are plenty of steps you can take to minimize the risk of this happening though.

1. Use either Open Source software as your firewall platform (pfSense, m0n0wall, your own creation with pf or iptables, etc...), a firewall appliance based on open-source software that update frequently when vulnerabilities are disclosed (Mikrotik, Ubiquiti, etc...) or use enterprise-grade (even if it's used) hardware (Palo Alto, Cisco ASA, Fortinet, etc...) as long as you have access to software updates. Home and SOHO products aren't going to give you the kind of fine-grained controls you need to do this right. You minimally need VLAN support so you can have multiple WLANs to segregate your IoT devices.

2. Follow the vendor/developers best practices when configuring the above firewall. Don't expose any firewall management services to the internet or your IoT network. If your firewall supports any consumer-oriented crap like upnp, TURN IT OFF! Obviously, don't expose any real computers to the IoT network.

3. Subscribe to your vendors/developers mailing list. This way you can stay on top of any vulnerabilities as they are discovered, as workarounds are discovered, and as patches are released. Pretty much all the major vendors in item #1 have been on the front page of Slashdot within the last 2 years for some sort of vulnerability. It happens. Know about it when it does.

4. Patch your shit. Update your firewall often. Read the release notes so you know what you are fixing, then apply the patch.

Comment Re:Will be a huge victory for hams if signed into (Score 2) 195

A trucker with a CB can send critical information 40 or 50 miles on the 11m band on a good day. Legally they are limited to 5w output. Even with a yagi, this is going to be tough.

HAMs (Skilled QRPers) on the other hand regularly communicate to other continents with 5w of power. Your typical 100-150W HF rig is going to be able to communicate anywhere in the world--or worst case, anywhere in the continental US. Some HAMs are also trained in emergency communications and/or formal traffic handling (to verify the accuracy of messages.) HAMs can use modes like SSTV (Slow Scan TV) to send an image of a piece of damaged infrastructure or a damaged building so engineers or rescuers can come in properly prepared. APRS mode is designed to update a real-time map of mobile and stationary transmitters using GPS. Information like this can also be critical in a disaster information. Rescuers won't have to guess where to look to find an injured person, etc... HAM radio is much more than Morse Code (CW) and people talking to each other like on CBs.

Comment Re:Witch hunt (Score 3, Interesting) 227

Just because you can't think of a reason doesn't mean they don't exist.

Here's a list of people you forgot:
Farmers
Landscapers
People who regularly trailer cars or heavy equipment for whatever reason
People with non-European sized campers - see below
People with large boats - see below

When it comes to boats and campers, you are not taking wind resistance in to consideration. Many campers in the US are much taller than the tow vehicle causing massive amounts of wind resistance. This is a consideration along with weight. Same with any large boat. If it's sticking way above the roof of the towing vehicle, it probably shouldn't be towed by your sub-compact or little crossover.

Any trailer with brakes should be pulled by a full-size truck or SUV, especially if it's towed on a regular basis. Your little car may say it has a certain towing capacity, but that is assuming optimal conditions and new parts. If you are towing on a regular basis, you *will* put more strain on the drive train, suspension, and brakes than someone who doesn't. Most cars, minivans, and hatchbacks these days seem to be built as cheaply as possible so the extra wear and tear does make a difference. Vehicles that are purpose-built for this kind of work are generally heavy-duty enough to handle it.

It makes little to no financial sense, and is wasteful, to own a dedicated towing vehicle if towing is something you do even a handful to times a year. Most families can't afford more than 2 vehicles, so if towing is something needed and both adults are working, the tow vehicle needs to double as a commuter.

The only heavy haulage work involves moving concrete, sand, or building supplies, and if that's your gig then you need a light commercial vehicle.

At least in the US, full-size trucks are the light commercial vehicle of choice and are often driven to job sites by their owners. You can't really expect a construction worker--think of an independent contractor who for sure isn't making tons of money--to own a separate work vehicle.

Slashdot Top Deals

A university faculty is 500 egotists with a common parking problem.

Working...