Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×

Submission + - Secret Libya Psyops, Caught by Online Sleuths (wired.com)

An anonymous reader writes: The U.S. military has dispatched one of its secret propaganda planes to the skies around Libya. And that “Commando Solo” aircraft is telling Libyan ships to remain in port – or risk NATO retaliation. We know this, not because some Pentagon official said so, but because one Dutch radio geek is monitoring the airwaves for information about Operation Odyssey Dawn — and tweeting the surprisingly-detailed results.

Submission + - RSA Hackers May Have Wanted Server Source Code (threatpost.com)

Trailrunner7 writes: The most important issues the RSA attack brings to the surface concern exactly what the attackers may have been after and what the successful compromise means for the integrity of the tens of millions of SecurID tokens deployed around the world.
As troublesome as these scenarios are for SecurID users, perhaps the more likely target of the attack on RSA is the source code for the software that's used to administer and run the token deployments at customer site.
"There's a lot of code needed for maintaining databases, adding and deleting users, making backups, synchronizing master and secondary copies of databases, and more. An attacker who could penetrate these administrative systems doesn't have to worry about key generation or cryptanalysis; they could simply steal existing keys or insert new ones of their own," Steve Bellovin said.

Submission + - A New Class of Nuclear Reactors (freakonomics.com) 1

prunedude writes: From Freakonomics: The folks over at IV Insights, the blog associated with Nathan Myhrvold's Intellectual Ventures, point out that it was the complete loss of power that disabled the cooling systems protecting the plant'(TM)s reactors. Which raises the question: Is there nuclear technology that could withstand such a catastrophe? Possibly. TerraPower, an Intellectual Ventures spin-off that also boasts Bill Gates as an investor, is working on a new reactor design called a traveling wave reactor that uses fast reactor technology, rather than the light water technology used at the Fukushima Daiichi plant.
The two biggest advantages of the fast reactor design is that it requires no spent fuel pools and uses cooling systems that require no power to function, meaning the loss of power from the tsunami might not have crippled a fast reactor plant so severely.


Submission + - Mozilla Releases Firefox 4 (techspot.com)

An anonymous reader writes: Mozilla has released Firefox 4. The final build comes less than two weeks after Release Candidate 1. The company originally found no major problems in the RC1 build, and decided to release RC1 as the final version, but then changed its mind. An RC2 build was quietly pushed out on March 18, 2011 with a few fixes, and today the final bits appeared on Mozilla's servers.

Submission + - Experts Weigh in on the RSA SecurID Breach (securityweek.com)

wiredmikey writes: After notifying customers on Thursday that it had been breached after hackers mounted a highly sophisticated cyber attack that put its SecurID product at risk, RSA has yet to expand on the details and potential impact of the attack, leaving customers concerned and with many questions unanswered.

In the meantime, reactions are pouring in from customers and the information security community in general, some saying to prepare for the worst, and some brushing it off as not-so-serious incident.

One expert commented that “If ‘the keys to the kingdom’—the public serial number to secret key mapping database—had NOT been compromised, there would be zero danger to users of RSA’s SecurIDs." At the same time another expert says doesn’t believe the incident is a game changer. “It's serious news that RSA's SecurID solution has been the target of an advanced persistent threat. But It's not a game-changer. Anybody who says it is, is an alarmist.”

So what are others saying and doing in the meantime while they wait for answers from RSA on the SecurID system being attacked?

Submission + - Microsoft Urges Office Users To Block Flash Player (computerworld.com)

Batblue writes: "Microsoft has urged users of older Office suites to install and run a complicated tool to protect themselves against ongoing attacks exploiting an unpatched bug in Adobe's Flash Player.

"For users of Office prior to 2010, the Enhanced Mitigation Experience Toolkit (EMET) can help," said Andrew Roths and Chengyun Chu, a manager and security engineer, respectively, with the Microsoft Security Response Center (MSRC). "Turning on EMET for the core Office applications will enable a number of security protections called 'security mitigations'," the pair wrote in a post to the company's Security Research & Defense blog.

EMET is a tool designed for advanced users, primarily enterprise IT pros, that manually enables ASLR (address space layout randomization) and DEP (data execution prevention) for specific applications. ASLR and DEP are two anti-exploit technologies included with Windows. Adobe confirmed that attackers were exploiting an unpatched bug in Flash Player by sending potential victims malicious Microsoft Excel documents."

Submission + - Piratebay mad with Paypal because of Wikileaks (thepiratebay.org)

An anonymous reader writes: Yes, the PirateBay want's to make Paypal "suffer" from taking down the WikiLeaks account. So they are asking everyone to withdraw the money from Paypal to teach them a lesson.. or at least teach them something. !!Do like Cantona — kick a bank in the nuts!!

Slashdot Top Deals

Any given program will expand to fill available memory.