×

Announcing: Slashdot Deals - Explore geek apps, games, gadgets and more. (what is this?)

Thank you!

We are sorry to see you leave - Beta is different and we value the time you took to try it out. Before you decide to go, please take a look at some value-adds for Beta and learn more about it. Thank you for reading Slashdot, and for making the site better!

Comments

top

POODLE Flaw Returns, This Time Hitting TLS Protocol

DES Re:Nothing to see here (54 comments)

This affects BigIP F5 and A10 load balancers which implement TLS incorrectly.

Proper grouping: ((BigIP F5) and (A10)) (load balancers).

about two weeks ago
top

10-Year-Old iTunes DRM Lawsuit Heading To Trial

DES Re:Change in operations instead of cash.... (246 comments)

Although I have to use the iTunes software to put music onto the iPod [...]

Rhythmbox, Clementine and Amarok all support iPod synchronization.

about two weeks ago
top

10-Year-Old iTunes DRM Lawsuit Heading To Trial

DES Re:Change in operations instead of cash.... (246 comments)

No... CDs are an industry standard format, which the consumer experience shows can be used with any devices, so selling a CD that cannot be played in a CD player would be deceptive marketing.

There are DRM solutions for audio CDs that are supposed to make the them unrippable or even unplayable in a computer's CD drive (one method is to make a multi-session disc with an audio session and a data session, under the assumption that a PC will ignore the audio session if a data session is present while a regular CD player will ignore the data session). In my experience, these CDs will play fine in a PC (and iTunes can rip them without issue), but many car stereos struggle with them.

about two weeks ago
top

10-Year-Old iTunes DRM Lawsuit Heading To Trial

DES Re:Change in operations instead of cash.... (246 comments)

That's a bad analogy. Auto parts, by and large, have always been proprietary.

Car parts aren't proprietary. You can second-source most mechanical and electrical parts, and it is not uncommon for larger assemblies (suspensions, transmissions, even engines) to be interchangeable between models from competing manufacturers because they were either developed jointly or sourced from the same third party.

about two weeks ago
top

10-Year-Old iTunes DRM Lawsuit Heading To Trial

DES Re:OT: Vladimir Lenin - a murderer like all Commie (246 comments)

[...] The US too had a Civil War — 50 years before Russia. There was plenty of killing, some of it unwarranted, but there were no mass-murders. That, in my not so humble opinion, is because we are (or were) an Individualist country. On contrast [sic], 70 years before our Civil War here, France too had its own — being a Collectivist society, they had an awful lot of mass-executions. [...]

The American Civil War was, for all practical purposes, a conventional war between two nation states. The French Revolution was not; it was not even a civil war (unless you count the revolt in Vendée where loyalists attacked republican forces with material support from the United Kingdom). The mass executions of the Reign of Terror were political purges, pure and simple. Meanwhile, your “individualist country” is responsible for the enslavement, internment and mass murder of millions of its own (abducted) citizens on its own (stolen) territory, and the political faction which you seem to support is doing its damned best to continue the tradition, so shut the fuck up.

about two weeks ago
top

How many devices are connected to your home Wi-Fi?

DES Re:Phones + 1 laptop. (260 comments)

Two phones, two tablets, two Kindles, three laptops, a printer, a TV, two consoles, a few dozen squirrels, and a partridge in a pear tree.

about 4 months ago
top

FreeBSD Developers Will Not Trust Chip-Based Encryption

DES Re:Very Smart Move (178 comments)

TL;DR: Linux was NOT trusting chips and doing a variant of what FreeBSD plans to do now since quite a bit before.

You mean “a variant of what FreeBSD has been doing since 2003”

1 year,6 days
top

FreeBSD Developers Will Not Trust Chip-Based Encryption

DES Re:Me neither (178 comments)

I wouldn't trust chip based encryption either, and I wouldn't trust anybody else that did.

Assuming we're only talking about ciphers and not protocols: by definition, there is one and only one possible ciphertext for any given combination of key and plaintext. Thus, there is no way to introduce a weakness in an implementation which would not be trivially detectable by comparison with any other implementation; in fact, the result would be unusable as it would not be interoperable with other implementations.

(With a caveat for algorithms which require a random initialization vector; don't let the implementation choose the IV for you.)

1 year,6 days
top

FreeBSD Developers Will Not Trust Chip-Based Encryption

DES Re:Is there any way to gain trust in a chip? (178 comments)

You can't be sure with true randomness. With cryptographically secure randomness you can be (at least within a specified tolerance around 2^-128).[citation needed]

You can never be sure. The keystream of a good stream cipher is fully deterministic, yet statistically indistinguishable from the output of a good PRNG.

1 year,7 days
top

FreeBSD Developers Will Not Trust Chip-Based Encryption

DES TFA is completely wrong (178 comments)

FreeBSD has been using Yarrow for 10+ years, and no FreeBSD release has ever shipped with the option to feed the stream from a HWRNG directly to /dev/random. The only news here is that we have a new framework in the kernel for plugging hardware pseudo-random number generators into Yarrow, and an explicit policy (issued in my capacity as FreeBSD Security Officer) to not expose HWPRNGs directly to userland. There was some pressure from corporate users who want the raw feed for compliance reasons, but they were told to use RDRAND etc. directly rather than through /dev/random.

1 year,7 days
top

What To Do When an Advised BIOS Upgrade Is Bad?

DES Re:Yes (467 comments)

Dell subcontract the actual hands-on work to a InfoCare [...]

s/a InfoCare/InfoCare/ obviously.

about 2 years ago
top

When 1 GB Is Really 0.9313 Gigabytes

DES Re:Ok, so what would make sense? (618 comments)

"K" (note capital K as distinct from 'k', the SI prefix for 1000) is a unit meaning 2^10 bytes

No, K is the SI unit for temperature, named after Lord Kelvin, who first suggested the concept of “absolute zero”.

about 2 years ago
top

When 1 GB Is Really 0.9313 Gigabytes

DES Re:Oh puh-lease (618 comments)

The problem came with the storage industry and their pious "oh, but that's not what SI says the units mean". If you think that conforming to strict SI is the reason they made their change [...]

You're the one who's confused here. The storage industry never “made their change”. They've always used powers of 10.

about 2 years ago
top

When 1 GB Is Really 0.9313 Gigabytes

DES Re:"they" can fuck off, the binary units are the o (618 comments)

Memory is allocated in increments of at least 4096 bytes and a maximum of 1,073,741,824 bytes.

Assuming you are talking about MMU page sizes and not memory allocation: that may be true of the computer architectures with which you are familiar, but it is not universally true. The Sparc64 architecture, for instance, supports page sizes of 8 kiB, 64 kiB, 4 MiB, 256 MiB and 2 GiB. Older systems such as early Motoroal MMUs or early MIPS implementations had smaller page sizes (1 or 2 kiB).

about 2 years ago
top

When 1 GB Is Really 0.9313 Gigabytes

DES Re:"they" can fuck off, the binary units are the o (618 comments)

That's how prefixes have always been used in the IT world and always will be. The International System of Units can go to hell.

Absolutely wrong. The use of kB to mean 1,024 bytes started around 1960, and only for memory. Bandwidth has always been, and is still, measured in powers of 10, not 2. Disk space was measured in powers of 10 until Microsoft came along and muddled the issue. Disk manufacturers still use powers of 10, like they always have. Software is a mixed bag, with some developers using powers of 10 and others using powers of 2.

Since someone mentioned Wikipedia: http://en.wikipedia.org/wiki/Timeline_of_binary_prefixes

In any case, a disk labeled 2 TB will never have exactly 2 TB or 2 TiB of storage space. The number on the label is just an approximation; the exact number is “as much as we can cram in and still have a reasonable amount left over for reallocation”.

about 2 years ago
top

What To Do When an Advised BIOS Upgrade Is Bad?

DES Re:Yes (467 comments)

Are those actually the "resolve the issue" times? Or the "we will acknowledge your ticket and provide a 'first response'", MAYBE have someone show up onsite to begin troubleshooting...

HP usually resolve the issue (deliver parts and if necessary dispatch a tech) within the specified time frame. Dell rarely do. I haven't read the support contracts, so I don't know the details, but I _do_ know that the people who have negotiated those support contracts get royally pissed off when I tell them that Dell once again refused to replace a DIMM or disk on the basis of a predictive failure warning, or that our payroll database will have to run on only one server for a week while Dell scour warehouses on all five continents to scrounge up six DIMMs for the other.

about 2 years ago
top

What To Do When an Advised BIOS Upgrade Is Bad?

DES Re:Yes (467 comments)

I am in Norway as well. Dell subcontract the actual hands-on work to a InfoCare (as do HP, coincidentially), but handle all communication with the client themselves. They have a support center in Ireland staffed with techs from many different nationalities and generally try to route calls from Norway to Norwegian- or Swedish-speaking techs.

FWIW, we do most repairs ourselves, so the issue is “how fast can you send the parts” rather than “how fast can you dispatch a technician”. HP deliver most parts (disks, DIMMs, CPUs, RAID controller batteries) within a couple of hours but sometimes have to ship less common parts from other parts of the country or from Sweden. Dell deliver parts whenever they feel like it, which usually means within a day or two, but sometimes longer.

about 2 years ago
top

What To Do When an Advised BIOS Upgrade Is Bad?

DES Re:Yes (467 comments)

I work for an organization that has a large number of Dell servers, all of them with 5-year support contracts: a mix of 4-hour and next-business-day. In my experience, Dell have never, ever, ever solved an issue within the specified period of time. They also frequently refuse to replace failing parts until after they've actually failed (which AFAIK is a breach of the support contract), and they once told me that six DIMMs were a “large order” that would take a week to fill (after I'd already spent a week just getting them to agree that they needed replacing). They simply don't give a shit. I've had far better experiences with HP, but they also far more expensive.

about 2 years ago
top

Virginia Woman Is Sued For $750,000 After Writing Scathing Yelp Review

DES Re:Not entirely fair to the contractor here (424 comments)

She won at least one case in court against the contractor based on the previous work (he sued her for pay, she claims the work wasn't done, she won the case).

IIUC this is one of the statements which the current lawsuits claims are materially false.

about 2 years ago

Submissions

DES hasn't submitted any stories.

Journals

DES has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?