Follow Slashdot blog updates by subscribing to our blog RSS feed


Forgot your password?
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×

Comment Vivaldi is Blink too (Score 2) 160

The summary is wrong that Vivaldi is a fork of old Opera (the Presto engine), it is in fact the same Blink engine that powers Chrome and new Opera, but with brand new chrome (non-capital, aka the interface around the engine) which is recreating the power-user features of old Opera rather than the cut-down interfaces that other browsers are working towards:

Comment Re:FastMail (Score 1) 158

Well, yes. Obviously. If "they" compromise at a level below what we are capable of seeing - for example baseband controllers on every brand of motherboard that we own, then there's nothing we can do about it. There's nothing anyone can do about that, including the theoretical "run my own email server from home".

So I don't waste much sleep worrying about that case, because there's nothing I could about it. We do everything we can to ensure security - for example airgapped internal networks with physically separate switching hardware rather than VLANs to avoid the risk of compromised switch firmware.

If that's still too much risk for you, the choice is to get offline entirely. We're not in that business, we're in the business of providing a really usable email service with the best security protections that we can provide without compromising the usability to the point that people won't use it.

Comment Re:FastMail (Score 4, Informative) 158

Thanks for the plug. We definitely recommend that users who are concerned about security use GPG with our servers via the standard IMAP/SMTP protocols. We have very good standards support, and as others have pointed out in this thread - if we ran GPG server-side, you'd be delegating the security to us anyway, because we would see plaintext versions of your communication.

For the best security, you should definitely be running the encryption on equipment under your control (and not 0wned under you... which is your own lookout in that scenario)

Submission + - Child fatally electrocuted by health club fingerprint scanner (

An anonymous reader writes: In what may be the first death caused by a biometric device, an eight year old child was fatally electrocuted by a fingerprint scanner in a New Delhi health club. "Police said initial investigations suggest that rain had caused a snag in the earthing mechanism which led to the shock." If the device manufacturer was careless with the wiring, have they also been careless with the security?

Comment Re:What guarantees of longevity? (Score 2) 48

Honestly, I use FB's messaging interchangably with SMS. I don't expect to keep history of either of them. Anything I want to keep gets sent as email.

IRC is great for work. I don't use it for random people though. All my choir and gym friends are on Facebook, and coordinate things through there. I'm not going to cut myself off from that.

Comment What guarantees of longevity? (Score 5, Interesting) 48

The core question with running on anybody else's platform, unless they are a regulated carrier somewhere which is required by a law to carry your traffic, is what happens when they change the rules?

Would you be comfortable building your entire business on top of it? What if Facebook imposes new limits or rules that mean you can't use it any more.

I had a conversation with a friend back in 2008-2009 some time over Facebook Messanger. We tried to find it last year. It rembered a chat we had in 2007, then nothing until 2010. It's not your own immutable copy the way that email is. Every new messaging platform claims it will kill email, but funnily enough they never do, because they don't offer what email offers - your own immutable copy and interoperability with everyone else. Email actually is the real distributed social network.

Comment Re:Downtime [Offtopic] (Score 1) 85

The coward might laugh at your storage cluster, but I'm laughing too, because I've heard this song before.

And every time I see another one of these, I am reminded why I run standalone replicas with the replication right up at the application level with integrity checks to ensure that a failure in one place doesn't wipe other things.

People are right to laugh that a single bad disk can take your site offline for hours because the storage cluster software screwed up. I don't use heartbeat any more, because we found it was LESS reliable than our servers, and we had more downtime because heartbeat screwed up. Clusters and SPOF SANs fall right into the same basket in my mind - a single place where everything breaks.

I feel for your ops team, but like the others - I hope they learn the points-of-failure lesson from this.

Slashdot Top Deals

It is difficult to soar with the eagles when you work with turkeys.