Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 internet speed test! ×

Comment Yes (Score 1) 498

Length is good but complexity doesn't really help if you have a good lockout policy and good monitoring.

Complexity rules just mean that a) people write it on a sticky note and stick it to their monitor or b) constant password resets / helpdesk calls.

Comment Re:Good, then we can scrap that stupid f-35 (Score 1) 325

The F-35 is useful! It was supposed to be a pork barrel project and it fulfills this role absolutely perfectly, what the hell is your problem?

This is funny but absolutely true. The US military is the biggest make-work project in the history of mankind and a great proving ground for socialist policies. :)

Shame they don't make useful stuff, though.

Comment This is the obvious way for Microsoft to try (Score 1) 245

and get back in the game.

They are unifying all their platforms on a common kernel with universal app frameworks.

Next, for the 90% of people that don't need tons of computing power, they replace your PC / Laptop / Phone with one device in a phone form factor.

When you are at a desk and need a keyboard and mouse you dock and voila you are good to go. Heck, using a mechanism similar to the Surface Book, the base / dock could contain a discrete GPU etc. to even enable people to do CAD / Video work.

The bonus for people using this type of setup is that there is no more having to sync multiple profiles, data, preferences, etc. across multiple devices. You carry it with you in your pocket and back up to Azure and you're done.

As someone else mentioned in the thread, the big stumbling block is the availability of apps for the mobile portion of this end run. They need to develop stuff in house or pay the popular 3rd party app developers to get it done. I liked Windows phone but the lack of support by developers killed it for me.

Comment Re:Externalities (Score 1) 184

The $200k figure is internalized costs; the cost of providing free credit protection to those affected (which almost noone takes them up on), and investigators to figure out what was breached, how, by whom, and to maybe patch the hole they got in through.

This is a good point about the PR stunt of credit protection. What a joke.

The externalized amount, the burden on those whose data was stolen, is far greater.

Also a really good point. Until someone class actions up on a few of these companies we're going to see IT security continue to race to the bottom just like everything else in this industry.

Comment Re:It's not just a cost issue. (Score 1) 184

Having tried the preventive approach on computer security for years, I came to the reluctant conclusion that it's a losing game. In every business scenario I've dealt with, it is simply impossible to protect against every threat and every zero-day exploit that comes down the pipe. Software patching, firewalls, antivirus, specialized appliances, you name it - they all have their limitations. You can protect against any number of possible exploits, but if only one gets through, you lose. So businesses must weight the costs spending more and more on preventive security solutions versus the cost of a security breach.

Obviously the implications of a breach are more severe for some businesses than others, but in many cases I deal with it makes more sense to focus on a good recovery solution rather than focussing mainly on prevention.

You're exactly right. The first thing that I tell people about computer system security is that there is no such thing.

As you said, in computer security when you're on the defense -- you lose. All you can do is raise the bar as high as you can with the budget and resources given to you, and then you plan for recovery with the expectation you'll need to at some time. Security is risk mitigation and nothing more.

I think the issue here is that when people are having their information compromised in a widely publicized manner every few months it becomes accepted. So the "cost" to these companies is going down as far as reputation and possibly lawsuits as well. They shouldn't be getting off this easily but really.. no one seems to care. Until they go to take out that new car loan and find out their identity has been jacked and they are going to spend the next few years trying to clear up their credit score, that is..

Comment Re:central planning at work (Score 2) 275

Once you take the profit motive out and allow centrally planned offices to remove the research redundancy and the creativity of committees to combine in these controlled ways ... there is no limit to the disasters you can accomplish.

Don't forget the importance of having everyone on the engineering team educated in public institutions.

What a load of shit.

There can be bad management in private organizations just like there is bad management in public organizations.

And if we're talking about research and development, the public always does the bulk of pure research anyways..

Comment Re:People, this is how the system works. (Score 1) 527

Please, let me know when you are aware of a "Capitalist" system?
Because what we have ISN'T CAPITALISM.

Think about it:
- the subprime crisis happened for a number of reasons, but one of the primary ones was that 3 rating agencies have had the blessing in federal law since what, the 1920s(?) to be the "official" rating companies. Without that benediction, investors would have to actually scour the marketplace for reliable sources of information which would THEMSELVES be proven by market-testing over time.
- rather than have an FDA telling us all what to eat and what not to eat (which is apparently entirely bought and paid for by corporate interests) people would have to actually figure it.

The question is, which is better: a central "authority" that is corruptible and can be co-opted, or NO authority, forcing people to figure shit out for themselves?

There are obviously terrible ideas.

Agencies like the FDA were created in the first place because when these things were not regulated and vetted products were being sold that lied in their claims / ingredients / safety.

Not everyone has the time, education and/or equipment to test all the things that they use in day to day life themselves.. don't be absurd.

Comment Re:People, this is how the system works. (Score 1) 527

I've been wondering if Capitalism is fatally flawed. We've seen reckless, foolish greed destroy lives time and time again. It seems capitalism elevates psychopathic individuals to positions of great power and responsibility. Of course people of that sort abuse their power. Strip resources from everything within reach, leaving behind waste and destruction.

Unregulated capitalism is the wild west. That is why you need a government and regulatory oversight to correct problems that arise.

The really big problem is regulatory capture and the money in politics that removes these checks.. which is what we have right now. A run-away train.

Slashdot Top Deals

Every little picofarad has a nanohenry all its own. -- Don Vonada

Working...