Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×

Comment Re:Japanese solution! (Score 1) 378

Many banks in Germany have changed this now because many of these card readers had been modified for skimming purposes in the past. So our banks have now upgraded most ATM with antiskimming devices and they either leave the door open or have replaced the card reader with a simple "open doorf" push button.

Also it brings no security (any criminal who wants to enter will be able to present a working card and be it a prepaid credit card just bought at the gas station). I also believe the main reasoning for the requirement of a card to enter the lobby was to keep out homeless people.

Comment Re:Crime (Score 1) 318

Maybe something like this?

As the Wikipedia also has that article in swedish, I would assume that this is a concept used in your country as well. I don't really know about details, but for example the german version states (for germany) that the prisoner under this program normally will be released to family on weekends.

Comment Re:HOW?? (Score 2) 620

This is what they claim. You might remember from the NSA documents that it appears standard procedure to cover the source of information by creating a plausible lie.

Of course they would never tell if they have enough metadata and surveillance to identify Tor users and hidden sites. It would be in their interest to keep us using a network they can penetrate.

Comment What do you mean by "can"? (Score 4, Insightful) 259

can the government force you to lie and state that you haven't been contacted when you actually have

As we should have learned, the government by large does not care if they "can" (in a legally sense), they just do it. But if necessary: Those rubber stamp courts will surely find a way to make it happen in a way which is legal on paper.

Comment So learn German (Score 5, Informative) 94

I believe that most of the stuff on H Online is also available through the newsticker of Heise (http://www.heise.de/newsticker) in German. Which should not be such a surprise considering that H Online is/was operated by Heise (their UK part in this case) as well.

Heise is the publisher who publishes for example the well respected computer magazine c't in Germany.

Comment TOTP would solve the parallel access problem (Score 4, Informative) 58

Instead of using some custom two-factor authentication which is bound to a specific phone, they should use TOTP (http://en.wikipedia.org/wiki/Time-based_One-time_Password_Algorithm). Then the same shared secret could be configured into several token generators (e.g. Google Authenticator on Android).

TOTP seems to become the standard for two-factor authentication, given that both Facebook and Google use this (Facebook provides its own limited code generator with their App) and also quite a few other significant services (e.g. Dropbox, Amazon AWS).

Google also provides a pam module for TOTP which allows one to setup TOTP for own services. I tried that yesterday: Installed the PAM module and added a key into Google Authenticator. Result: TOTP secured SSH login (by using normal account password with the token appended). TOTP support can also be added to non-PAM capable applications, for example a TOTP extension for Mediawiki exists. I tried that one as well and it is working great.

Google Authenticator App allows one to configure more than one account, so you can secure different services with TOTP and still have one central token generator App.

Slashdot Top Deals

"There is no statute of limitations on stupidity." -- Randomly produced by a computer program called Markov3.