Please create an account to participate in the Slashdot moderation system


Forgot your password?
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×

Submission + - SPAM: 80% of Monero Transactions De-Anonymized

An anonymous reader writes: Monero claims to be a "secure, private, untraceable cryptocurrency" and is the preffered payment method of the AlphaBay darkweb market. However, researchers found have found that 80% of the transactions can be trivially linked due to weaknesses in the protocol. The researchers suggest changes, but note that "there remain many possible analysis avenues, including network analysis, side channels, and more sophisticated statistical methods." If that wasn't bad enough, Monero's research team claims to have known about the issue for some time.

Monero users can conveniently track the linkability of individual transactions on

Link to Original Source

Submission + - For DNSSEC (

fsterman writes: DNSSEC deployment will dramatically improvement to the security and privacy of the internet. Unfortunately, the popular notion of DNSSEC is that is somehow degrades the security of the internet. It's time to debunk DNSSEC FUD and recognize how it will improve the security and privacy of the internet.

Submission + - The Problem with End-to-End Web Crypto (

fsterman writes: Since the Snowden revelations, E2E web crypto has become trendy. There are browser add-ons that bolt a PGP client onto webmail and both Yahoo and Google are planning to support PGP directly. They attempt to prevent UI spoofing with icons similar to the site-authentication banks use to combat phishing.

The problem is that a decade of research shows that users habituate to these icons and come to ignore them. An attacker can pull off UI spoofing with a 90%+ success rate.

Submission + - A for Domain Names (

fsterman writes: Domain name seizures used to be a rare occurrence, but US law enforcement has become adept at exploiting a quirk in the Internet's governance structure that allows them to seize a wide range of domains without due process. The rate has been increasing exponentially, with a total of 87 in 2010 to 1,700 in mid-2013. A month ago, nearly 5,000 domains were seized by a corporation using civil proceedings. The types of attacks targeting DNS have been increasing as well, such as when a US embassy had GoDaddy shut down a political protest site.

Submission + - Research Shows RISC vs CISC Doesn't Matter 1

fsterman writes: The power advantages brought by the RISC instruction sets used in Power and ARM chips is often pitted against the X86's efficiencies of scale. It's difficult to asses how much the difference between instruction sets matter because teasing out the theoretical efficiency of an ISA from the proficiency of a chip's design team, technical expertise of its manufacturer, and support for architecture-specific optimizations in compilers is nearly impossible . However, new research examining the performance of a variety of ARM, MIPS, and X86 processors gives weight to Intel's conclusion: the benefits of a given ISA to the power envelope of a chip are minute.

Submission + - interop for Nameoin censorship resistant DNS (

fsterman writes: Growing up on Slashdot, I've been watched ICANN and the slow decline of the DNS system with great dismay. A year ago, I set out to create a scalable interoperability layer for Namecoin that doesn't involve proxies or mirroring content. reimplements DNS lookups within the browser itself. When coupled with emerging WebRTC P2P networks we are able to push all processing to the client side, shielding us from legal liability.

What's *really* amazing is that I was able to backport some of the censorship resistant properties of the Namecoin .bit TLD to regular websites. Governments will be unable to selectively censor websites and it will be *very* difficult for politicians and judges to rationalize their way into blacklisting the entire domain.

The website has the full nitty-gritty details. However, remember that this is a developer preview!

Submission + - ReactOS (

fsterman writes: Imagine a world in which we could use a Windows clone to cross-compile our applications in a continuous integration environment or run that one Windows program that a single customer needs for backwards compatibility. Think it's impossible? Well, the crazy talented ReactOS developers have an IndieGoGo campaign for a community edition and a donation gives you a vote on which apps the latest release should cover. They have make $20,000 of their $50,000 and they have a couple of few weeks left. Any other Slashdoter's want to help make Windows even MORE obsolete?

Submission + - Ideas for protesting Ballmer's graduation speech? 2

fsterman writes: Apparently Ballmer is speaking at my graduation upcoming graduation. As a proponent of direct-action, FLOSS fanatic, and software patent hater, I would like to inject something intelligent into whatever retrospective his speech delivers.

Any suggestions?

Submission + - Petition for metric in US halfway to requiring response from the White House (

fsterman writes: "Without any prompting from the US Metric Association, a We The People petition to standardize the US on the metric system has received 13,000 signatures in six days. That's half the number needed for an official response from the White House. It looks like ending the US's anti-metric alliance with Liberia and Burma (the only other countries NOT on the US metric system) might rank up there with building a death star."

Submission + - Are there any Open Source 2D printers?

fsterman writes: "After a few years of service, my Epson printer is dead. The part that really gets me upset is that I bought an entire pack of ink trying to fix the problem. Given the abundance of open-source 3D printers, I thought that an open source 2D printer would have been in production by now but Google didn't turn up anything. Do any Slashdot readers know of any projects I missed? Why haven't there been any open source 2D printers?"

Submission + - Finding Doctors with Electronic Records

fsterman writes: I bit into a cookie last night and a spike of pain shot through my jaw- I need to find a dentist! I just moved to town and I need a new one. I found a wonderful family doctor who uses electronic record keeping; it's amazing to have a doctor that can do a keyword search through your records or send electronic prescriptions to the pharmacy so they are ready for pickup. But finding him was a happy accident, doctors rarely advertise and I can't find any directory of techno-savvy doctors.

I was hoping some Slashdotters might have suggestions on how to find a doctor with electronic record keeping. Make it quick- my molars really hurt!

Submission + - Why don't printers just share their print driver?

fsterman writes: My day job is working at a printing company and the set-up for the $20,000 printer their and the $100 printer at my house is almost the exact same, except when I went browsing for the printer on my home network I needed to have the drivers installed on my laptop whereas the work printer shares the driver; no install needed. As a usability person, it's the single largest problem with printers. Why the hell don't the manufacturers just have the various drivers reside on the printer? It would only require a few megs of space, it would give a leg-up to smaller vendors, and it could be a great selling point "No driver install headaches!"

Submission + - Laws to Goad School Into Enforcing Privacy?

fsterman writes: I sit on a student government board which distributes funds for technology projects that benefit students. The head of security updated us about a swipe card system for the computer terminals that was approved and funded only to be blocked by the head of facilities because the man had a bad experience with swipe cards at a hotel. Potentially even more disturbing was how an faculty adviser had played off the presentation as one big "scare tactic" and that if identity theft had been happening we would "hear more about it." While I plan to make my opinion heard to both the head of facilities, the campus president, etc, the biggest problem is funding. Are there any laws (or lawyers) that /. readers can clue me in on to force them to protect my information?

Slashdot Top Deals

There are running jobs. Why don't you go chase them?