thenendo - Slashdot User

Comment Expose SSH over VPN only (Score 1) 349

by thenendo on Sunday February 17, 2013 @01:31PM (#42928923) Attached to: SSH Password Gropers Are Now Trying High Ports

My solution is to not even expose SSH to the public internet. Instead I run OpenVPN on the server, and only expose SSH access to hosts who have joined the virtual network (which itself requires a client certificate). Even then, SSH access is pubkey/Kerberos only.

Now I get zero ssh gropes, and nobody even tries to get into the VPN. The OpenVPN port doesn't even show up in an out-of-the-box nmap -v -A scan.

Comment Re:remember! (Score 1) 47

by thenendo on Monday February 11, 2013 @08:03PM (#42866871) Attached to: Widespread Compromise Of Yahoo-Backed Email In New Zealand

Of course, decentralization has its own drawbacks. Remember when SMTP servers would happily forward mail on behalf of any connecting client?

Comment Re:Does not bode well (Score 1) 140

by thenendo on Tuesday January 01, 2013 @01:51PM (#42442567) Attached to: How Google Glass Is Evolving As It Heads For Release To Developers

They'd better be careful, or software-wise a competitor will come along with a focused, unified, well rounded software experience and blow them out of the water.

But fortunately all the hardware and software patents involved make this impossible!

Comment There are still accredited CAs that sign for free (Score 1) 299

by thenendo on Tuesday December 18, 2012 @12:10AM (#42321875) Attached to: Gmail Drops Support for Connecting To Pop3 Servers With Self -Signed Certs

Just have one of them sign your cert. All they ask is evidence that you own the relevant domain name. I've had good success with StartCom. Their public cert is trusted by most OSes and browsers. If anything, Google's action may be a boon to such CAs.

Comment The Forum Matrix (Score 5, Interesting) 259

by thenendo on Sunday November 11, 2012 @12:45PM (#41950065) Attached to: Ask Slashdot: What Is the Best Way To Add Forums To a Website?

I recently had to select a forums solution for my company, and this site proved extremely useful: http://www.forummatrix.org/

It catalogues tons of closed and open-source forum products coded by dozens of variables, and lets you compare them in a big matrix. Very useful if you have constraints/preferences like "works with SQL server" or "isn't PHP", etc.

My main complaint about it is that some of the data are out-of-date, but it is still a great starting point.

Comment "infinite-duration" (Score 1) 84

by thenendo on Tuesday November 06, 2012 @01:16AM (#41890481) Attached to: A Piezoelectric Pacemaker That Is Powered By Your Heartbeat

Sounds kinda optimistic to me.

Comment If it was encoded with a one-time pad... (Score 2) 287

by thenendo on Friday November 02, 2012 @02:26PM (#41855919) Attached to: WW2 Carrier Pigeon and Undecoded Message Found In Chimney

... it may never be decoded :(

Comment Re:NoScript (Score 0) 108

by thenendo on Friday October 12, 2012 @08:43PM (#41638291) Attached to: An Overview of the Do Not Track Debate

I fully agree, and furthermore... The thing that pisses me off the most about most (even supposedly reputable) programs these days, is the eye opener you get if you run ldd. The fact that the binaries of supposedly reputable programs are trying to pull in code from like a dozen or more unrelated libraries is just fucking inexcusable, and it seems to get worse every day.

Worse yet is that some of those simply don't work at all unless you resort to "echo -e '/usr/lib\n/usr/local/lib' >> /etc/ld.so.conf", in which case I tend to just bail and never go back. I mean seriously...WTF??? I can't tell you how that burns my ass.

Comment Requesting quotes != trading (Score 2) 617

by thenendo on Wednesday October 10, 2012 @08:37AM (#41606139) Attached to: Mysterious Algorithm Was 4% of Trading Activity Last Week

4% of quote traffic is not the same as "4% of trading activity"

Comment 256 pages long (Score 3, Funny) 98

by thenendo on Friday August 31, 2012 @08:33PM (#41196159) Attached to: Book Review: Think Like a Programmer

Coincidence?

Submission + - Thomas Jefferson: Scientist, Inventor, Gadgeteer 1

Submitted by

Hugh Pickens writes

on Tuesday July 03, 2012 @06:27PM

Hugh Pickens writes writes: "Thomas Jefferson, the author of the Declaration of Independence whose signing we celebrate today, was considered an expert in architecture, civil engineering, geography, mathematics, ethnology, anthropology, mechanics, and the sciences and although Jefferson never failed to acknowledge that in science he was "an amateur," Jefferson's home at Monticello was filled with examples of his scientific philosophy. An inventor and gadgeteer of great ingenuity, Jefferson's practical innovations or improvements on others inventions included: the swivel chair, the polygraph, letter press, hemp break. pedometer, mouldboard plow, sulky, folding chair, dumb-waiter, double acting doors, and a seven day clock. Throughout his life Jefferson experimented in agriculture with studies in crop rotation, soil cultivation, animal breeding, pest control, agricultural implements and improvement of seeds. Jefferson promoted science as President by recommending to Congress a coast survey to accurately chart the coast of America that later evolved into the United States Coast and Geodetic Survey. The Lewis and Clark and Pike expeditions were the precursors of the United States Geological Survey and stands as one of the outstanding feats of Jefferson's administration. Jefferson's expert testimony before Congress led to the establishment of the Naval Observatory and the Hydrographic Office and Jefferson's report to Congress on a plan of coinage and weights and measures based on the decimal system was expanded into the National Bureau of Standards. As Secretary of State Jefferson laid the cornerstone of our patent system and is considered to be the father of the Patent Office but the majority of patent applications during his tenure were rejected with only 67 patents granted, among them a patent to Eli Whitney for the cotton gin. Jefferson, an inventor himself never applied for a patent, which was consistent in his belief in the natural right of all mankind to share useful improvements without restraint."

Comment Re:EULAs, Terms of Use and the Like (Score 1) 114

by thenendo on Tuesday September 20, 2011 @02:40PM (#37458712) Attached to: Ask Jennifer Granick About Computer Crime Defense

Regarding minors and contracts, wikipedia is your friend. In most states, minors certainly can enter into contracts, but have a special privilege to disaffirm/void the contract at any time, in which case they must disaffirm the entire contract and return any consideration. In the case of an EULA, this is probably not much different from anybody's right to stop using the software if they don't like the EULA. https://secure.wikimedia.org/wikipedia/en/wiki/Capacity_(law)

Slashdot Top Deals