Slashdot: News for Nerds


Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!



iOS 7 Update Silently Removes Encryption For Email Attachments

CaptainJeff Re:No problem (68 comments) problem doing these things ON AN IOS DEVICE...

about 3 months ago

What It's Like To Be the Scientific Consultant For The Big Bang Theory

CaptainJeff Re:Not for Nerds (253 comments)

By completing an accredited program of study, including conducting research that has been documented and vetted, and judged by a panel of experts in the field to have made a contribution to the field worthy of a PhD degree.

about 3 months ago

Microsoft's Ticking Time Bomb Is Windows XP

CaptainJeff Re:The Solution is Obvious (829 comments)

Better car analogy: When a defect (mistake in the fundamental design or implementation of the car) is found that affects its safety, a recall is issued, and the manufacturer fixes it for free. Regardless of warranty status of age of the vehicle.

about 7 months ago

Bill Gates: Internet Will Not Save the World

CaptainJeff Re:Bill is doing the right things (247 comments)

Imagine being starving and having no ability to do anything for yourself. You need the fish to get yourself at a basic level before someone teaches you to fish. You need to know the value of the fish and know that understanding how you can acquire your own fish is beneficial and will improve your life quality. You need to understand the value of water condensers, farming techniques, etc, first. Then you learn them. You need both levels.

about 9 months ago

Google Advocates 7-Day Deadline For Vulnerability Disclosure

CaptainJeff Re:And when they get bitten in the ass? (94 comments)

One of the key concepts taught in *any* decent MBA program is risk management. For a software development company, having more than one person available to make emergency fixes to code is much cheaper than the cost in not being able to deploy a fix in a reasonable amount of time, so any decent MBA graduate will make sure that there is always a backup person available for his purpose.

about a year ago

A Commencement Speech For 2013 CS Majors

CaptainJeff Re:$130k a year?! (144 comments)

You clearly have not worked for any amount of time on minimum wage.

about a year ago

Ask Slashdot: Safe Learning Environment For VMs?

CaptainJeff Re:SELinux on the host (212 comments)

This is true...
...if you have a valid policy set up for SELinux to enforce. This can be very difficult to construct, especially when you're trying to control the behavior of something like a VM.

For a student lab environment, this is likely to be overkill; if you have students in grades 9 thru 12 finding and exploiting holes in a VMM, you've got much bigger problems.

about a year ago

IBM Takes System/z To the Cloud With COBOL Update

CaptainJeff Re:And this is why people choose IBM (256 comments)

However I disagree that COBOL scales cheaply or efficiently. You could practically build a datacenter for the price of IBM's mainframes.

True...assuming you don't already have an IBM mainframe.

about a year ago

Bruce Schneier: Why Collecting More Data Doesn't Increase Safety

CaptainJeff Re:Fiction, not fact. (149 comments)

Schneier started his career as a computer security and cryptography guy. Over the past five to ten years, he has largely gotten out of that specialty and more into general security practices, and, more specifically, how trust, security, and society all interoperate. He has largely made it his business to determine what works and what does not to solve large scale societal problems that have anything to do with "security," be that real security or not.

about a year ago

Full Review of the Color TI-84 Plus

CaptainJeff Re:Emulate (233 comments)

This statement is incorrect.

Most standardized tests where a graphing calculator would be useful, in fact require such a calculator. The current set of AP tests require/recommend a TI-84 or TI-85. The SAT itself highly recommends a graphic calculator.

Cool story. The SAT specifically does not allow calculators with a QWERTY keyboard. The TI-92 (the original one with the symbolic algebra solving system) had one and was, therefore, not allowed for the SAT. So, TI came out with the TI-89, which runs almost the exact same software as the TI-92, specifically so one could use an SAS-equipped calculator on the SAT. This is why the TI-89 is such an odd beast and somewhat harder to work with; the software was not really designed for that form-factor.

about a year and a half ago

Ask Slashdot: Facebook, Twitter For Business, Is It Worth the Privacy Trade-Off?

CaptainJeff Re:Cookies and referers (158 comments)

I'll always register a new account (usually easy enough) if I really want - too worried about such sites snooping my passwords.

When you use a federated single-sign-on capability like this, your password is NEVER sent to the service provider (the one you're logging in to using you Yahoo/Facebook/Google/etc account). It is only sent to the authenticating service (the identity provider), who already has it, and then that provider generates a signed message in a specific format (OpenID, SAML, etc) that vouches for your identity to the other site. In this model, your password is actually exposed LESS than if you create an account at the site in question.

about a year and a half ago

Ask Slashdot: Facebook, Twitter For Business, Is It Worth the Privacy Trade-Off?

CaptainJeff Re:Cookies and referers (158 comments)

basic security 101 just says that you don't trust another site with the keys to your kingdom... especially with zero assurance that it might even work.

If the other site can handle proper authentication of the user, secure storage of credentials using a suitable hash algorithm and a good amount of salt, and generally follows all of the best practices associated with these functions, and can provided federated single-sign-on using a mature, tested, and generally accepted protocol like OpenID or OAuth, then you absolutely says that you can trust another site to provide your authentication function for you. Well, maybe you can, depending on your business model and risk tolerance. Whatever you decided, I *highly* doubt that you can securely and safely store your users' credential information in a more secure manner than Facebook can.

about a year and a half ago

Ask Slashdot: Which Virtual Machine Software For a Beginner?

CaptainJeff Re:VMware is very easy (361 comments)

Really? You just used VMware? The predecessor for all of these? Well...OK then but please do not pretend to offer an informed opinion on VM software.

about a year and a half ago

How a Google Headhunter's E-Mail Revealed Massive Misuse of DKIM

CaptainJeff Re:This just in... (115 comments)

If the airplane's design allows you AS A REGULAR PASSENGER to do so, then yes.

about a year ago

Android Jelly Bean Much Harder To Hack

CaptainJeff Re:4.2 Jelly Baby (184 comments)

This is why 4.3 will be made of wood. Sonic screwdrivers don't work on wood.

about 2 years ago

Android Jelly Bean Much Harder To Hack

CaptainJeff Re:unix permissions? (184 comments)

The Unix permissions model that is part of the Linux kernel within Android is used extensively and is central to application isolation within Android. It's just not used as you think it is. Each app runs under its own UID and each app has full permission to its own directories and resources (owner has full control) while no other apps have any permissions to those resources (by default, this can be changed by the app's developers and by you, assuming you have root-level access to your phone).

about 2 years ago

Google Vs. Microsoft: a Tale of Two Interviews

CaptainJeff Re:My experience: Google vs Amazon (215 comments)

in a pedantic theoretical sense the interviewer was right.

Which is exactly what Google interviews are like.

about 2 years ago

Ask Slashdot: How To Introduce Someone To Star Trek?

CaptainJeff Re:My advice (634 comments)

Plain simple Garak.

more than 2 years ago

Analyzing the New MacBook Pro

CaptainJeff Re:has no user-replaceable parts at all (914 comments)

The right thing to do is...

...always a matter of perspective. The iPod (and a lot of Apple's devices) offers a far superior interface and experience for the vast majority of users. If my mom buys an iPod and it breaks and she's upset, I will argue that the "right thing" for me to since, since I have the capabilities to fix it would be to do so. By doing so, I increase my mom's happiness, I get to undertake a fun little technical challenge, and both me and my mom are happy. If instead, I "guide" her to buying a user-serviceable device that she hates to use due to an inferior interface from her perspective, then she's lost money, doesn't have a device she likes, and she's mad at me. I cannot see how that would be the right thing to do.

more than 2 years ago

MD5crypt Password Scrambler Is No Longer Considered Safe

CaptainJeff Re:Unsalted hashes are worse. (212 comments)

It will slow down brute force **for a particular password**. That's the key. If you don't use salt, you can brute force all you want and, for each attempt, check to see if that result is there for ANY of the passwords. If you use salt, since you would be using different salt for each password ( should be!), then you need to brute force each password individually.

more than 2 years ago



Email clients for Mac

CaptainJeff CaptainJeff writes  |  more than 5 years ago

CaptainJeff (731782) writes "After hesitating for the past few years about buying a Mac for my primary system at home, I bite the bullet and ordered one of the new Nehalem-based dual-CPU/eight-core Mac Pro workstations. As I eagerly await FedEx, I have planned out many of the aspects of what I can do directly on OSX (most thingS) and what I need to do within a Parallels virtual machine (Visual Studio development for work, etc). My one quandary so far, primarily based on lack of information, is what email client to use. I have always used Outlook on my Windows systems. When I used Macs in my previous job, I use Entourage somewhat (and didn't like it) and settled on using Thunderbird. However, that was three years ago, so I do not know if there is/are better applications out there now for email. Google searching turns up a bunch of options but no good (and current) reviews/summaries to help me select. So, I put the question out there to you Mac users, what do you use for an email client? Why and what do you like/dislike about it?"


CaptainJeff has no journal entries.

Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Create a Slashdot Account