Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Comment I love being online (Score 1) 150

Being online has enriched my life in countless ways. I don't find it stressful. I have plenty of time with my family, some spent online, and a lot spent in person. We are all happy, healthy, well-adjusted, and most of us get lots of benefits from being online. I met my wife online!

I don't see what the problem is.

Comment The fastest, most bang-for-buck fixes (Score 1) 188

Go through your text, and everywhere where it says "password" change it to say "passphrase."

The password-setting step, where you have the user initialize their password, should also say "don't re-use the same passphrase that you use somewhere else." Just say it. (If users want to ignore it, fine. You can't help people who don't want to be helped.)

This doesn't fix all the problems, but it fixes the most, in the smallest amount of time/effort. One of your interns can do all this in a single morning.

...

After that, make sure you're hashing, but use something already invented for this job rather than trying to figure it out yourself. (This might not be a job for an intern, though I bet it could, at some places.)

Congratulations, your site is now better than the other 99.9%. We'll revisit and update these decisions in a century or two, when you're considered to be better than only about 90%.

Comment Re:The author has a certain level of understanding (Score 1) 188

the majority of respondents understanding that passwords should contain uppercase and lowercase letters, numbers and symbols

Yup. A password under 8-12 characters in length, consisting of a simple dictionary word (with simple digit substitution of a = 4, e = 3, i = !, random capitalization, etc) can be solved by a GPU in less than a second or two. Combine several non-related words together and you might have a fighting chance. Don't even get me started about how many friends and relatives don't use 2-factor auth.

Submission + - Security analyst says Yahoo!, Dropbox, LinkedIn, Tumblr all popped by same gang (theregister.co.uk)

mask.of.sanity writes: Five hackers are said to be behind breaches totalling up to a staggering three billion credentials from some of the world's biggest tech companies including the 2014 breach of Yahoo! that led to the loss of 500 million credentials .

The hacks are attributed to the so-called Group E, a small Eastern European hacking outfit that makes cash breaching companies and selling to buyers including nation states.

Comment Re:GAO is right (Score 1) 280

How exactly then will this work when one DNS server has a record for one Ip address and another points to another such as an anti Putin site?

Also the DNS is replicated off the core servers and trusted so your solution does not work unless you use your own DNS server but really who does this outside of IT geeks?

Submission + - Windows Server 2016 goes RTM. Evaluation is available for download (zdnet.com)

Billly Gates writes: The next version of Windows Server has arrived. This new version is more cloud and virtual machine oriented with more features such as Docker container support, a new tiny headless version designed to run as a docker VM in Hyper-v called Nano Server, 3d graphics support in remoteFX for OpenGL and Open CL for Hyper-V vms, nested virtualization, Powershell Direct, Shielded VM support, stable REFS file system, Hyper-V Linux secure boot support, Storage Spaced Direct which now are clustered and ADFS v4 which supports multifactor authentication with OpenID support. You can find the features listed here as well as here.

Nano Server has a 92% less footprint requiring significantly less rebooting, patching, and security updates than a traditional Windows Server virtual machine.

Submission + - Multiple Linux Distributions Affected by Crippling Bug in systemd (agwa.name) 1

An anonymous reader writes: System administrator Andrew Ayer has discovered a potentially critical bug in systemd which can bring a vulnerable Linux server to its knees with one command. "After running this command, PID 1 is hung in the pause system call. You can no longer start and stop daemons. inetd-style services no longer accept connections. You cannot cleanly reboot the system." According to the bug report, Debian, Ubuntu, and CentOS are among the distros susceptible to various levels of resource exhaustion. The bug, which has existed for more than two years, does not require root access to exploit.

Comment It's a bad idea anyway (Score 4, Insightful) 39

Let's all hope that this ends up not happening. It'd be an extremely minor improvement which only prevents any serious improvement from ever happening.

If the government is going to use force here, then it should be that any interstate commerce in TV must use standards. Why demand a free-as-in-beer app when you can just demand free-as-in-speech specs? That would get us all plenty of free-as-in-beer apps anyway, except that you get as many are needed, until everyone agrees it's competitive enough. Don't like Company X's TV player? Try Company Y's, or this one on githib, or write your own. A week after specs are published, you're going to have way better stuff available than any app Comcast is ever going to make for your Roku, which will be the next thing for you to be constantly bitching about (assuming you're still using the Roku when the app comes out).

If you're not going to force the use of standards, then don't bother using force at all. Why go to so much trouble just to do it wrong? You're setting us up so that when we tire of this next failure, the cable companies will be able to say "but we did what you want! It's not fair to make us change again!"

Protocols and interoperability are what have value. Stop stressing implementations so much. Doing things is fucking trivial, compared to figuring out what to do and being allowed to do it. Freedom gets you diversity, which gets you performance. Does anyone really still pretend to not know this?

Comment Re:USPS (Score 1) 237

What's UPS going to charge you for a letter? $10?

Let's suppose we lived in that world. It's 2036, and sending a letter costs $10. Are you better off than you were in 1996 (when it cost 32 cents), or worse off?

We might be better off. Sure, it costs thirty times as much, but you might be having to do it less than a thirtieth as often. I'll admit my memory is foggy, but I'm pretty sure that every damn month I was having to mail multiple bill payments. That crap is over, and we're all happier for it, aren't we? Nowdays, I'm snailmailing infrequently enough that I don't even know if it's something I do twice a year, or once every two years, or what. It's getting hard to measure, but one thing's for sure: it ain't much.

$10 for a letter would be ok, if you almost never had to use it. And aren't we heading that way? Isn't nearly every instance (I'm trying to be open to there being some exceptions, though I'm actually drawing a blank right now) where you can't use email, a situation where you view the requirement as being a consequence of someone else's fuckup, incompetence, anachronism, etc? (e.g. this AC's idea that "my financial records where I need physical copies for tax audit purposes" is a feature of snailmail, rather than a defect in government's information-provenance-verification procedures.)

I'm not even necessarily advocating the death of USPS. Maybe they'll "rightsize" to fit the country's communications needs, such that they are the ones charging $10 to deliver a letter. It wouldn't be so bad, if overall, we still end up spending less.

Comment Re:No difference (Score 1) 286

CNN just showed today that Gary Johnson couldn't even name a single foreign leader!

Here is the source?

Sorry, but just because he shares your libertarians beliefs and he has a honest personality doesn't make one qualified to be president. I know more than Johnson for crying out loud and it shows he does not watch the news. I was hoping for him but will certainly support Clinton now. One wrong word or choice has devastating consequences like a war.

I am becoming more and more convinced the founding fore fathers using only an electoral college and not direct voting was put in place for reasons such as these.

Comment Re:Questions to Hillary's fans (Score 1) 286

Truth needs context. Even the undeniable, scientific truth of Newton's Laws, are only true within the context of non-relativistic, non-quantum environments. "The pure and simple truth is rarely pure and never simple."

I know, it's mind-blowing. Better retreat back to the catchy, comforting soundbites spewed by your favorite candidate (whichever it may be), that fits your simplistic worldview.

No I want freaking competence!

This man will have nuclear codes to all the atomic weapons and stated he would shoot an opposing boat if they tried an act of bullying. This what is called an act of war.

All the other stuff with voting for folks like a football team is scary. This is not entertainment and serious business.

Slashdot Top Deals

Dynamically binding, you realize the magic. Statically binding, you see only the hierarchy.

Working...