Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 internet speed test! ×
Chrome

Google Reducing Trust In Symantec Certificates Following Numerous Slip-Ups (bleepingcomputer.com) 54

An anonymous Slashdot reader writes from a report via BleepingComputer: Google Chrome engineers announced plans to gradually remove trust in old Symantec SSL certificates and intent to reduce the accepted validity period of newly issued Symantec certificates, following repeated slip-ups on the part of Symantec. Google's decision comes after the conclusion of an investigation that started on January 19, which unearthed several problems with Symantec's certificate issuance process, such as 30,000 misused certificates. In September 2015, Google also discovered that Symantec issued SSL certificates for Google.com without authorization. Symantec blamed the incident on three rogue employees, whom it later fired. This move from Google will force all owners of older Symantec certificates to request a new one. Google hopes that by that point, Symantec would have revamped its infrastructure and will be following the rules agreed upon by all the other CAs and browser makers.

Submission + - SPAM: Quicken Bill Pay is No Longer Safe to Use 1

Bruce Perens writes: I don't usually make security calls, but when a company makes egregious and really clueless security mistakes, it's often the case that the only way to attract their attention and get the issue fixed is to publicize it. This one is with Quicken Bill Pay, a product of Metavante (not Intuit). It's from personal observation rather than an expert witness case, and the company has been unresponsive through their customer support channel.
Link to Original Source

Comment Re:So? (Score 1) 113

It definitely is. Gedit has been cited already, but what pissed me off more is gnome-terminal: the double click selection behaviour cannot be configured in the GUI any more. You need a CLI command reminiscent of registry manipulations on Windows. Insanity for a terminal. The definition of a tool used by power users...

Comment Re:I guess /. still approves this crap (Score 1) 269

If every bank involved agrees the invalid signature is valid, what happens to the money?

Stealing a coin here or there from a wallet that hasn't been touched in a while would be more "practical", and for all we know, is being done now.

Anyone can audit the blockchain, not just miners.

It'd be possible to find every bitcoin not traded in the past 3 years, assert it "lost" then the attacker fraudulently claim them with the attack given, and it's possible he could liquidate after the theft without anyone noticing until he's cashed out.

It's not just miners checking the transactions.

Comment Abandoning Time-Worn Processes Leads to Atrophy (Score 5, Insightful) 156

Scientists determined that those people who made use of machine washing rather than hand washing had diminished hand strength and neurological motor communication necessary for fine motor control. Seamstresses who bought thread rather than using the spinning jenny were similarly impaired. But worst off were teamsters who used the internal combustion trucks rather than teams of horses and used forklifts and other mechanical devices rather than loading their vehicles by hand. Their overall body strength was much reduced.

Comment Re:I guess /. still approves this crap (Score 1) 269

I do understand Bitcoin, and what you are describing is impossible. Bitcoins cannot be transferred from one account to another unless you have the private keys to the account that currently holds them. It's like a signed check - it can't be transferred to another account without a valid signature.

Comment Re:Microsoft disables Windows on AMD Ryzen process (Score 1) 173

Task Manager -> Right click on the offending "svchost.exe" -> Select "Show Services"

(This is from memory, so, might vary a bit)

It now switches to the processes tab, and all services associated with that svchost.exe will be highlighted. You can bet that "wuasrv.exe" (Windows Update Service) will be amongst the ones selected.

Another way to see whether it's Windows Update, is go to the services control panel and stop the Windows Update service. If the CPU usage goes to normal, your Windows Update is messed up. I have given up trying to fix it, and just set the Windows Update service to "disabled" now.

My main OS is Linux any way, so for the really occasional use of Windows, I can live with an unpatched version. This is -of course- unacceptable for people who use it as a main OS.

Comment Re:Microsoft disables Windows on AMD Ryzen process (Score 1) 173

Interestingly, I have two virtual machines where I did exactly that (This is documented on a few Windows fora, but Windows fora are so low in quality compared to Linux fora that they are very frustrating). Still ended up with a wuaserv.exe hogging a CPU. A Win7 without update is fine, in most use-cases for virtual machines.

Comment Re:Ryzen = A Flop. Not Megaflops. (Score 1) 173

as long as the motherboard manufacturer has Win 7 drivers

Often the generic stuff works just fine. In the case of Ryzen on 7 (or XP), I'd just expect to see a few warnings in the device manager. Sure, some stuff might not work (integrated USB 3.x controllers, and stuff like that)... Obviously I'd need to try, but I doubt it won't "work at all".

Comment Re:Microsoft disables Windows on AMD Ryzen process (Score 1) 173

On the other hand, Windows 7 automatic update has become a clusterfuck any way. So many machines aren't getting updates any more, because one core is pegged by wuauserv.exe. Granted, it's much less likely on bare metal installations, but I have seen it. On single or dual core Virtual Machines, it's neigh impossible to get them fully updated. Especially, when they are low usage VMs just spinned up occasionally for small tasks. I just turned Windows Update off on those.

... but I doubt Microsoft is going to change that anytime soon... or ever.

Comment Re:Ryzen = A Flop. Not Megaflops. (Score 2, Insightful) 173

Do you really think they are in a position to be picky? You can bet that Microsoft is behind this, in some way. Probably like "how would you like your Windows 10 drivers be delayed in certification if you produce Windows 7 drivers?". AMD needs the Windows 10 for the OEMs to even consider the chips, because -like it or not- Windows 10 is here to stay. The OEMs might want to produce Windows 7 machines, but Microsoft is going to bully them as much as they can. Look at Vista or Windows 8. Even if sales were bad with those operating systems, OEMs had to deliver them. Downgrading was just for select business machines.

Regardless... It is not clear whether those chips won't work at all or just will not deliver all functionality (power management, automatic overclocking, etc...). Newer Intel chips also are only supported on Windows 10, but they're still x86-64 chips, so it should run x86-64 code. I doubt Windows 7 will plainly refuse to run on any of these chips.

Windows 7 is EOL in three years. While I personally think it's one of the best systems made by Microsoft (and I'm a full time Linux user), it's doomed, just like XP was doomed. (Oh, and Vista is EOL next month.... Nobody is sad to see that bastard die, except of course for those people who will now be forced to buy a new machine. Like my neighbours: their machine did what it needed to do, but I expect them to come ring at my door somewhere during April.)

Slashdot Top Deals

The best things in life go on sale sooner or later.

Working...