Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Comment Re:A single domain was silenced. (Score 2) 203

Well, since the figures I've seen bandied around are that protection from this level of attack would be about USD100-200K per annum, this effectively means that unless you have a lot of money or a company willing and able to pay what amounts to protection money, you potentially won't be permitted to speak - doing so with an uncomfortable topic for someone gets you knocked offline. Pay the wrong mob and you get to pay again, and again, and again.

One potential outcome may be that truly personal sites will become impossible to support and host; especially if you have any content that could be seen as controversial. You will have to pay someone to host it for you. If they agree, and it doesn't cost THEM too much, and it's not controversial - fine. Want to promote a social cause? Sorry, you can't afford to. Get back into the bit mines, peon. And this fits nicely into the whole cloud thing too, where you don't need anything in your own datacentre, host it on someone else's computer.

I'm waiting for the first wave of destruction to hit the major cloud providers - if this network supposedly of DVRs can deliver 1-1.5Tbps, and you factor in another dozen of similar size, you're talking 15-20Tbps directed at a target. I doubt even Google and the CDNs can withstand that for very long without service impacts, and that's not even factoring in attacks that actually have a little brainpower behind them.

Comment So basically ... the attack wins? (Score 5, Informative) 203

Seems to me the attackers win, at least in the short term, because the caching and CDN provider (who I expect was probably contracted and paid, although it's entirely up to Brian how he handles his business affairs, it does seem likely) takes the site off the air anyway. That being the case ... what's the point of having that contracted relationship, if they dump you anyway?

Comment Re:Stop whining! Httpv2 is good (Score 1) 86

Honestly,

- If you run a webserver, go get yourself letsencrypt, use cloudflare or namecheap has cheap ssl.
- Enable http2 on nginx (if you are using it, use it well)
- Enjoy faster loading time.

Your welcome.

- The argument against https is pointless.

Let me rephrase that:

Honestly,

- If you run a webserver, install this software, just trust us it's fine; redelegate your DNS to this company with-whom-I'm-totally-not-involved so they proxy all your connections and know who's visiting your site (and can sell or hand it over to whatever TLA you like); or pay money to another organisation for a set of we-promise-they're-unique-and-secure-numbers and we would totally never be compromised or behave unethically [cough] Symantec [cough] DigiNotar [cough] Verisign [hack] [cough];
- Do it my way because spinach and everything supports enforced HTTPS, and the peons can do without
- Don't worry that your data usage just doubled for HTTPS, it's only $50 a month extra for the upgraded plan and everyone can get gigabit fiber anyway.

You'rE unwelcome here.

- The argument against https is my-way-or-the-highway so screw you.

There, I think I covered it all.

Comment Check out Vivaldi (Score 1) 141

Hi,

Check out Vivaldi: https://vivaldi.com/

I've been VERY pleased with it so far, under Windows, OS X and Linux..

It has the one thing that I missed most from the old Opera: Sane/useful tab stacking/grouping built in, with the ability to save and restore such.

Sure, many of you don't care about that, but I do.

At work with the old Opera, I'd create sets of tabs, stacked as I saw fit, for each client and would then save them as profiles named for my clients.

When I got a support call all I had to do was open the saved tab profile for them, and then I'd have EVERYTHING related to them available to me immediately, organized in the way I found most useful to me.

Yes, it took time to set that all up. Yes, it took time to maintain it, but all that time paid for itself, every time I fielded a service call for my customers.

It was an amazingly powerful tool for me, and when Opera dropped it I stayed with the old version until it didn't work anymore.

I looked for similar functionality under Chrome, et al, Firefox and IE but nothing came close.

Vivaldi gave that back to me, and I've switched and will never go back.

It's still very "young", and they are working hard on it. But, they appear to be very motivated and committed.

The current stable release is great, does everything I need, and even better? Since it's multi-platform I get the same basic experience and usability regardless of OS.

While I still use mostly Windows at home, I support Windows, OS X and Linux at work now, and having a web browser that works under all three with the functionality that I want/need allows me to support our users, regardless of OS, without having to switch back and forth between computers

And to bring this back on-topic? Vivaldi is built upon Chromium and still supports the backspace key for going back a page.

The only thing I wish they'd add? Native proxy support, such as Firefox does. I've used Privoxy: http://www.privoxy.org/ under Windows for years, and, while the old Opera had its own proxy support, just as Firefox does? Vivaldi doesn't yet, so I have to resort to an add-on for that, since some of the games that I play at home don't support proxies.

Take all of the above for whatever it's worth to you, but I think that Vivaldi is at least worth checking out.

Regards,

dj

Comment Re:Horrible Music (Score 4, Insightful) 196

You can say many things about Prince, but "talentless hack" isn't among them.

I think that his fame came more from singing and songwriting, but Prince was greatly underappreciated as a guitarist.

Proof: https://www.youtube.com/watch?v=6SFNW5F8K9Y

His solo starts at about 3:26. I recommend watching it from the beginning, because it's a wonderful tribute.

His solo is exquisite, in my opinion, at times at the forefront, extending, expanding upon the lyrics and melody while never overwhelming either, and at times also complementing them, moving back and forth until the end.

No showboating, I think, but verve, gusto, pure enjoyment and musicianship. He was asked there to play, and to solo, and he did both masterfully.

Watch/listen it in its entirety, once. Then just listen to it.

As you watch it, note that Prince is not only soloing GREAT, playing well, he's also engaged with the other musicians. He knows the song, knows that he's playing with some of the best musicians in the rock world and is aware of all of that as he plays.

And you can TELL that he's having a blast being there. He's playing his best, and I think that the others in the band recognize it.

As you just listen, note how well what he plays fits, both solo and together with the rest of the band. Clean, complex, precise, not a missed note, nor a note played that doesn't fit the song overall in some way.

At one point he just vanishes, merges back into the song with the band and then emerges again.

Wonderful!

All that being said, I was never a huge Prince fan over the years, but that video gave me a new appreciation of him, when I first watched it, years ago.

As to whether or not his death deserves to be of note on Slashdot? The most relevant justification would be Prince's stance on digital copyright, and I don't care to discuss that.

I made the mistake of doing that in general here, years ago, and I shan't revisit that here ever again.

All that being said: Say what you will of Prince, but don't ever say he was a "talentless hack".

Regards,

dj

Comment Re:Rant: REBOOT the WEB (Score 2) 243

Because everyone has perfect sight, wants the same size browser window as the developer, browses at 100% zoom level, with the same fonts, on the same screen resolution, with the same sub-pixel rendering, right? Sure, we're all machines.

Those silly users with their 4K screens should just set them all to 1366x768 like the crappiest notebook LCDs! Jaggies forever! Screw mobile users, damn hipsters can get stuffed.

You're right. Fuck screen readers, accessibility, personalization and anyone with even the slightest disability (colourblind? Sure, we've got burnt umber on light green for you!). Because the designer's view of perfection is what everyone should see, dammit, even if they can't read a word. Design over function.

Of course, if you're being sarcastic, then sure. But you might want to make it more obvious.

Comment Re:As with so many "is it time" questions... no. (Score 2) 566

They're not that non-standard. Lots of them are USB3 nowadays, and the prices aren't THAT insane (e.g. $100-$300 depending what you need).

I've had a comparable one for my notebook and work notebook, it's two cables to be up and working with the high-res screen, mouse, keyboard, anything else USB and a GbE. It's almost easier than a model-specific dock because you don't have to work out where the locating pins go (but you do need to deal with the 4-dimensional USB connector). It's a short step from that to USB 3.1 single cable, with the dock delivering power and connectivity, and I fully expect Targus or their ilk to produce a "one size for all" - an adapter for the notebook power into the dock, and a single USB to the notebook.

Comment Re:Why conceal it? (Score 1) 740

Then where, exactly, should the information be provided? Does each product need to come with a paper leaflet? Do you assume all consumers have ubiquitous Internet access such that they can hit the company website to see what's in a product? Or should they all register all product recipes with a central government agency? In my experience if a company isn't forced to toe the line like this, the ingredients will be listed on the back of a tomato sauce sachet in 1pt yellow on white type, which can be found "on display in the the cellar, in the bottom of a locked filing cabinet, stuck in a disused lavatory with a sign on the door saying ‘Beware of the Leopard." [Douglas Adams, paraphrased].

Comment Re:When is it going to be free (Score 2) 84

It's called LetsEncrypt. You only have to turn over appropriate access to your server to client software (even though to trust it you'd have to review the code or write it yourself). And your web server has to be able to access the LE servers, so you (currently at least) have to permit outbound access from a device providing the website (there are larger configs where you could mitigate that somewhat but this is the simple case).

The client hits the LE servers, gets a string to write to a server-specified location (/.well-known/acme-challenge/URI). Oh, and that retrieval by LE is done over HTTP, so there's NO chance that could ever be subverted.

Comment Re:Google knocks Apple, Bing and Microsoft (Score 4, Insightful) 84

And because we need to ~double the amount of data used by all the hamster forums, cat videos and aircraft curation guides, especially when a lot of the world's users are on slow or data-limited connections?

Look. I get that it's good to ensure that there's no injected content, and that you know you're connected to the site you want - but that's only true for 1% of the population. The rest of the world wouldn't know the difference between https://www.example.com/member... and https://www.example.com.member.... Both "secure" because they're HTTPS, right?

Factor in all the browsers deciding that privately-signed sites are worse than plain http, that no-one needs to actually SEE the protocol, or the URL, that all the certs are issued by a cabal of companies who just see the benefit of charging for a NUMBER, but barely doing validation ... but sure. "Adding security". Right.

Comment Re:A solution in search of a problem.. (Score 2) 111

That's a ~95% solved problem and has been for decades. Room key on thick plastic block, block goes in a cradle inside the door, activating power to the room. Pull the key to leave and everything goes off.

Worked in the 90's at least when I started traveling for work, and it wasn't just in big city hotels then. Perspex blocks don't have to be smudge-free, don't need extra power of their own, won't break down, are significantly cheaper, can't be trivially hacked to screw with every other room in the hotel - no this is a solution looking for a problem.

Slashdot Top Deals

"Irrigation of the land with sewater desalinated by fusion power is ancient. It's called 'rain'." -- Michael McClary, in alt.fusion

Working...