Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×

Comment Re:Boiling frogs (Score 1) 143

You could also take the opposite spin on this: There is no secure internet access to begin with so why wouldn't you choose faster connection over more secure, but still compromised connection? Use SSL, TLS, SSH and the like where you need to be secure and assume that everything else is compromised. Why would one assume that their ISP is secure? Always assume that somebody is eavesdropping the connection, or running an active MITM against you, and consider if your mitigation actions are sufficient?

Would I consider TLS with SHA-1 to be sufficient for accessing Slashdot over potentially compromised network? Yes. In worst case my Slashdot account would be compromised, no big deal.

Would I consider the same to be sufficient for the company payment interface? No, I wouldn't.

The Almighty Buck

How Mark Zuckerberg's Altruism Helps Himself (nytimes.com) 240

HughPickens.com writes: Jesse Eisinger writes in the NYT that if you heard that Mark Zuckerberg donated $45 billion to charity, you are wrong. Here's what really happened: Zuckerberg did not set up a charitable foundation, which has nonprofit status. Instead Zuckerberg created an investment vehicle called a limited liability company (LLC) that can invest in for-profit companies, make political donations, and lobby for changes in the law. What's more an LLC can donate appreciated shares to charity, which will generate a deduction at fair market value of the stock without triggering any tax. "He remains completely free to do as he wishes with his money," writes Eisinger. "That's what America is all about. But as a society, we don't generally call these types of activities 'charity.'"

A charitable foundation is subject to rules and oversight. It has to allocate a certain percentage of its assets every year. The new Zuckerberg LLC won't be subject to those rules and won't have any transparency requirements. According to Eisinger what this means is that Zuckerberg has amassed one of the greatest fortunes in the world — and is likely never to pay any taxes on it. "Instead of lavishing praise on Mr. Zuckerberg for having issued a news release with a promise, this should be an occasion to mull what kind of society we want to live in," concludes Eisinger. "The point is that we are turning into a society of oligarchs. And I am not as excited as some to welcome the new Silicon Valley overlords."

United States

Feds Have a Plan For Catastrophic Solar Flares (digitaljournal.com) 188

New submitter Steve Sacco, referencing the newly released National Space Weather Strategy and the National Space Weather Action Plan, written in anticipation of large-scale disruptions from a solar flare or similar event, writes: Released on October 28, 2015, the White House plan involves the coordination of agencies from the federal level, state level, and including emergency managers, academia, the media, the insurance industry, nonprofit organizations and the private sector, all in preparation for the worst-case scenario possible, such as the Carrington Event that took place in 1859.

Comment Re:whine (Score 3, Insightful) 226

My experience on this is that you need 'DevOps' to run the development environments but you need production ops to run, eh, production.

DevOps people don't necessarily have good understanding of the underlying issues of the production environment. There are several issues revolving around this: Security, availability, scalability, etc. As an example is dev who can secure the application but not the platform (database, web servers and so on).

Good handovers between the two are the key for success. If 'DevOps' changes the development environment in a significant way this needs to be taken into account when moving the version to production. Oh, you upgraded the database in development environment? I guess that explains why RTP failed and we had to roll back.

Some changes may be very simple to do in development environment, while difficult in production environment. Need some extra disk and upgrade your database backend? Sure, just get it done in the development environment but there may some issues when doing that in production environment; you may need unacceptable amount of downtime, etc...

Comment Re: And the pilot? (Score 1) 249

I'm not sure about the currency you got there, but it doesn't really matter: 100 currency units is cheap for 3-5 hours of flying, no matter what currency! I'd have to pay almost 3-5 times more than that for flying.

On the other hand 100 EUR will get me 3-5 skydives in Europe or 100 USD will get me 3-5 skydives in US.

Submission + - Boeing Solid-State Laser Weapon System Outshines Expectations (gizmag.com)

Zothecula writes: The likelihood of lasers appearing on the battlefield was boosted last week when Boeing announced that its Thin Disk Laser system had achieved unexpected levels of power and efficiency. In a recent demonstration for the US Department of Defense, the laser’s output was 30 percent higher than project requirements and had greater beam quality, a result which paves the way toward a practical tactical laser weapon.

Submission + - "Jekyll" test attack sneaks through Apple App Store, wreaks havoc on iOS (networkworld.com)

An anonymous reader writes: Acting like a software version of a Transformer robot, a malware test app sneaked through Apple’s review process disguised as a harmless app, and then re-assembled itself into an aggressive attacker even while running inside the iOS “sandbox” designed to isolate apps and data from each other. The app, dubbed Jekyll, was helped by Apple’s review process. The malware designers, a research team from Georgia Institute of Technology’s Information Security Center, were able to monitor their app during the review: they discovered Apple ran the app for only a few seconds, before ultimately approving it. That wasn’t anywhere near long enough to discover Jekyll’s deceitful nature.

Submission + - Protests mounts against new surveillance laws (zdnet.com)

An anonymous reader writes: New revelations about Ministerial orders requiring backdoors into online services in New Zealand are fueling nationwide protests against new surveillance powers to be granted to the Government Communications Services Bureau. Speaking at one large protest meeting, Kim Dotcom described the "Five Eyes" X-Keyscore surveillance system as "Google for spies". He told protesters he first noticed he was being spied on when his internet speed slowed by "20 to 30 milliseconds". "As a gamer, I noticed," he said.

Submission + - RINGS propels satellites without propellants (gizmag.com)

cylonlover writes: Astronauts on the International Space Station (ISS) are testing a new propulsion system ... inside the station. While this might seem like the height of recklessness, this particular system doesn't use rockets or propellants. Developed in the University of Maryland's Space Power and Propulsion Laboratory, this new electromagnetic propulsion technology called the Resonant Inductive Near-field Generation System (RINGS) uses magnetic fields to move spacecraft as a way to increase service life and make satellite formation flying more practical.

Slashdot Top Deals

Like punning, programming is a play on words.