Slashdot is powered by your submissions, so send in your scoop


Forgot your password?
Compare cell phone plans using Wirefly's innovative plan comparison tool ×

Comment Re:From GRC who brought you ShieldsUp! and SpinRit (Score 1) 31

At the very least, any site using SQRL that cares about security should disallow logins where the SQRL client and browser IP addresses are different.

This actually breaks the original intended mode of operation for SQRL, using a smartphone to scan a QR code and log in on a PC in most cases (it would still work if the PC and the phone are both behind the same NAT device). While this may not necessarily be useful for all people, one of the uses cases for this mode was to allow a safer login on a potentially untrusted machine.

Comment Re:To boldly go where no One wants to go (Score 1) 106

Captain! Thar be spoilers ahead!

Beyond boils down to a story about a Captain going mad in space and abandoning Federation ideals and principles. It's not like Star Trek has never explored that before. In this case, he's a soldier unable to exist in the more peaceful world he helped to create. To quote Chancellor Gorkon: "If there is to be a brave new world, our generation is going to have the hardest time living in it."

Comment Re:Pegg's Star Trek is an abortion (Score 1) 106

So why is there so little gay crew?

Actually do we really know? We have the seven lead characters, one of which we know to be gay (Sulu) and and additional four have been depicted as being in heterosexual relationships in this timeline (Spock, Uhura, Kirk, McCoy). Though we can't rule any of them out as being bisexual.

So that's five people we know something about their sexuality, out of a crew of 1100 (remember, this Enterprise is much bigger than the one in TOS, which had a crew of around 400). Think about today's society. You probably know some gay people and some straight people. But you probably interact every day with lots of people you have no idea about; you've never seen them before and you'll never see them again. Some of them are probably gay. I think the same can be said for the Enterprise: Some of them are gay, some of them aren't, and most of them you'll never know.

Comment Re:But "dipping" solved everything? (Score 1) 134

So what happened in October 2015 was a liability shift. Prior to that, banks would reimburse merchants for fraudulent purchases. With the liability shift, banks stopped reimbursing merchants if the bank had issued a chip card but the merchant continued to swipe cards. There's been delays in merchants getting their chip solutions developed and certified, that's why you see places with chip readers that don't work.

So today chip cards can still be cloned and used at places that are still swiping. As more places enable chip readers, swiping will become rarer and cloned cards will become harder to use, and the fraudsters will have to look to other things.

Comment Re:Chip (Score 1) 134

The liability shift places liability on the merchant where the fraudulent purchase occurred.

Consider this scenario: Someone swipes a card at Wendy's and that data was captured and used to create a fake card and the fake card is used at Safeway, which hasn't enabled their chip card readers.

If the original card had a chip, Safeway is liable. If the original card didn't have a chip, then the bank that issued the card is liable.

Comment Re:Walmart (Score 1) 118

IMO the customer experience for Apple Pay is far superior to a QR code system like Walmart Pay. Presuming an iPhone 6, because that's what I have. On the iPhone 6, I hold the phone up over the NFC sensor, the phone wakes up and prompts me to authenticate via Touch ID, I do and it's done. For Walmart Pay or other QR code systems I'd have to wake up and unlock the phone, find and open the app, find the QR code scanner, hold the phone over the QR code. And my phone has to be online, so no good if I'm overseas in Airplane Mode (I've used Apple Pay in airplane mode).

And about those NFC pads... You know all those new Ingenico iSC 250 readers Walmart installed to accept EMV chip cards? They all have NFC built-in. Walmart simply disabled it.

Comment Re: Usage is consent (Score 1) 118

Originally the CurrentC scheme was going to promote direct debit from bank accounts using ACH, rather than using credit/debit cards. ACH means lower fees but also removes the consumer protections associated with credit and debit cards. Walmart was a backer of CurrentC, but they must have seen that CurrentC was going nowhere quickly and launched their own similar Walmart Pay system, which does allow credit/debit cards. I don't know if it also supports ACH.

Comment Re:Public Domain (Score 3, Insightful) 152

True, but the way I see it, the airlines and third party booking sites feel it's worthwhile to have their options appear on metasearch sites. The point I was trying to make is that there are examples for allowing "competitors" to use their API. Also there's a history in the travel industry of having shared booking channels in the form of the GDS systems (Sabre, Apollo, Shares, etc).

I suppose the difference is that there are a lot more competitors than in ridesharing, where Uber is clearly the dominant player. Since most people are aware of Uber, there is not much incentive for them to participate in third-party apps since if the choice is "use a third party app and always use the cheapest" or "just use Uber since the price is probably close enough not to matter", Uber prefers the latter.

And back to the airline industry, Southwest does the same thing. You may notice their fares don't show up in metasearch or third party booking sites. They have established a reputation as "the low fare airline" so it's not to their benefit to make it easy to see how their fares compare to others.

Comment Re:Public Domain (Score 2) 152

In principle, UrbanHail seems to be not significantly different than travel metasearch sites like Hipmunk and Kayak, which search several provider sites (both airline/hotel websites as well as third-party agency sites like Priceline, Expedia, Vayama, etc) and then refer people to another site for the booking.

Comment Re:Badly written article (Score 1) 460

I could certainly see wanting to let people do one-off emergency jerry cans while prohibiting the many safety/environmental issues that come up with a widescale deployment. Whether that's encoded in current laws is another question.

Emergency Fuel Delivery is one of the services offered by AAA.

Slashdot Top Deals

Our business is run on trust. We trust you will pay in advance.