Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Comments

top

Come Try Out Slashdot's New Design (In Beta)

BagOBones meh (1191 comments)

- News uses less than what 1/3 of the horizontal space not including the polls, everything is crammed in a narrow strip down the middle of the screen.
- bright blank white space on each side is great than the content section as a whole at 1920X1080
- contrast of new design makes reading harder some how.
- Comments are awful; due to the compressed layout and the fact they aren't boxed in as well as the old system
- loaded it on my iPhone, and waited... and waited... slow and the banner ad that loaded made the layout break. big step backward from the current mobile option

Bottom line I am hard pressed to find anything positive here...

about a year ago
top

New Moxie Marlinspike Tool Cracks Crypto Passwords

BagOBones Re:so what? (71 comments)

PPTP is a type of VPN still used by some companies and included with windows...
MS-CHAPv2 is the default / most common authentication option when using PPTP with windows. Thus organizations still using PPTP for remote access may be at risk.

about 2 years ago
top

City's IT Infrastructure Brought To Its Knees By Data Center Outage

BagOBones Re:First post! (102 comments)

This is true, we just finished doing evaluations and IBMs quote included subbing out ALL the work to multiple sub vendors, the only part with IBMs name on it was the Quote.

more than 2 years ago
top

Cisco's Cloud Vision: Mandatory, and Killed At Their Discretion

BagOBones Re:Voting with wallet (307 comments)

Dd-wrt and tomato-USB firmware builds run on several buffalo and asus brand routers.

Buffalo even ships dd-wrt on select units.

more than 2 years ago
top

Ask Slashdot: What's Your Beef With Windows Phone?

BagOBones GIANT FONT TITLES (1027 comments)

I hate the GIANT font that doesn't fit on the screen used for titles on screens like the people app.

more than 2 years ago
top

After Launch Day: Taking Stock of IPv6 Adoption

BagOBones Re:Network gear features are still WAY behind v4 (244 comments)

Hacking in a custom firmware like OpenWRT, Tomato or DD-WRT isn't the point when it comes to mass penetration of IPv6, devices need to officially ship with it for it to spread.

more than 2 years ago
top

After Launch Day: Taking Stock of IPv6 Adoption

BagOBones Re:Network gear features are still WAY behind v4 (244 comments)

Out of the box you get access to a lot more (ipv4 features) than with Cisco without extra licensing, however you are right that the split is odd.

more than 2 years ago
top

After Launch Day: Taking Stock of IPv6 Adoption

BagOBones Re:Network gear features are still WAY behind v4 (244 comments)

I can forgive Juniper when compared to Cisco on the topic of licensing and complexity.

Despite advancements for support at the device level the next major hurdle for large enterprise is the management tools and monitoring tools not fully supporting IPv6.

It is really hard to manage a modern network without flow monitoring, snmp and syslog data from all systems. This is another area where you end up with a setback or compromise if you try and roll out right now.

more than 2 years ago
top

After Launch Day: Taking Stock of IPv6 Adoption

BagOBones Network gear features are still WAY behind v4 (244 comments)

On the consumer front only just recently did home WiFi routers start shipping or start getting IPv6 support, even then finding an ISP that will provision you is next to impossible.

On the enterprise front gear has been labeled as IPv6 ready or compatible or even listed it as a feature for a long time. However if you work in security and have to implement policy control over content, you quickly see that the functionality is years behind when applied to IPv6 flows... At an enterprise level switching isn't easy without swamping out a lot of gear, or reducing expectations... IPv6 enabled deep inspection, and application layer inspection tools are only now becoming available, or only now becoming mature enough to roll out.

more than 2 years ago
top

MD5crypt Password Scrambler Is No Longer Considered Safe

BagOBones Re:Brute-force was solved decades ago. (212 comments)

That is external application brute force, in this case the attacker simply broke in and copied the list of hashes given them unlimited time to try and match them to known passwords.

more than 2 years ago
top

Researchers Find Methods For Bypassing Google's Bouncer Android Security

BagOBones Re:Mobile Security (79 comments)

Not sure about Android 4.0 but iPhone has supported more ActiveSync policy management than Android for some time. Specifically around app-store access.
http://www.netqin.com/en/security/newsinfo_4388_3.html

However all bets are off once ether is rooted / jailbroken.

more than 2 years ago
top

The Cost of Crappy Security In Software Infrastructure

BagOBones Re:Yes, blame the developers! (156 comments)

Developers are not end users... they are some level of engineer, as they are BUILDING things for end users to use... They should be reading some kind of docs before choosing tool / function they use for the job... the more powerful the language the more you need to know.

In your example the developers should be the ones that build the BAD CAR with the exploit in it that was sold, they where not the poor end users that purchased it.

more than 2 years ago
top

The Cost of Crappy Security In Software Infrastructure

BagOBones Re:Yes, blame the developers! (156 comments)

Your example is still a failure of the developer understanding the tool which caused the problem, not the tool missing an alternate secure way to do it.

more than 2 years ago
top

The Cost of Crappy Security In Software Infrastructure

BagOBones Yes, blame the developers! (156 comments)

Most web app exploits ARE the developers fault!
- They don't check their inputs (length) buffer over flow
- They parse or merge database commands (SQL injection)
- They don't limit abuse (brute force retry attacks)

Yes some of these can be mitigated at other levels, but ALL are common APPLICATION DEVELOPER ISSUES! by measure of deployment to number of exploits I would say the programing languages and OS already do a MUCH better job than the application developers...

more than 2 years ago
top

Ask Slashdot: Equipping a Company With Secure Android Phones?

BagOBones Re:Blackberry? (229 comments)

Fair enough, BB OS 10 adopts active-sync removing much of the dependance.

What about Siri? Or MobileMe/iCloud? Even Gmail has unexpected outages. Those are consumer features or services.

For Enterprise Email, calendaring and directory a current gen BB device simply has more points of failure to hop through before you get the message.

ActiveSync is Exchange->Internet->Device
BES BB7 and below is Exchange->BES->RIM->Internet->Device two additional points of failure.

more than 2 years ago
top

Ask Slashdot: Equipping a Company With Secure Android Phones?

BagOBones Re:Blackberry? (229 comments)

Also if you check the news for the ONLY platform with centralization to the point of causing National/ North America wide device outages, and being forced to hand over some control to other governments by building in centralization in a specific way, you have RIM..

On the plus side we haven't had a nation wide outage on RIM in over a year, must be all the surplus capacity. We started to see a surge in iOS device uptake during the last one.

more than 2 years ago
top

Ask Slashdot: Equipping a Company With Secure Android Phones?

BagOBones Re:Blackberry? (229 comments)

Playbooks and BB OS X devices will REQUIRE mobile fusion on top of BES. Mobile fusion is barely out of beta. If you manage blackberries and don't know this you might also want to go check out the License cost for this upgrade, you might be shocked.

more than 2 years ago

Submissions

top

Netflix offers new bandwidth options

BagOBones BagOBones writes  |  more than 3 years ago

BagOBones (574735) writes "Due to low bandwidth caps, Netflix is now offering a third lower bandwidth option to users in Canada, in addition to the original two options which were Full quality and SD only mode.. Netflix lists the three settings as follows:

        "Good" — The default setting with good picture quality and lowest data use per hour (about 0.3 GBytes/hour)
        "Better" — Better picture quality and medium data use per hour (about 0.7 GBytes/hour)
        "Best" — Best picture quality and highest date use per hour (generally about 1.0 GBytes/hour — or up to 2.3 GBytes/hour when streaming HD content)"

Link to Original Source
top

Google Reader:Following, Liking and People Search

BagOBones BagOBones writes  |  more than 5 years ago

BagOBones (574735) writes "Looks like Google is sneaking more social network features into google reader. The "following" feature makes me think of Twitter and the "like" feature makes me think of StubleUpon. Searching people is just a common feature among social networks, were is google going with this?"
Link to Original Source

Journals

BagOBones has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>