Slashdot: News for Nerds


Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!



Which desktop environment do you like the best?

Damouze 4DWM ftw :) (611 comments)

I miss the good old days of the SGI Iris Desktop and 4DWM. There is a clone of sorts around for Linux and it looks quite nice, but it just lacks the magic touch of SGI.

about 2 months ago

Free Software Foundation Condemns Mozilla's Move To Support DRM In Firefox

Damouze Re:Yawn. (403 comments)

"Beware he who would deny you access to information, for in his dreams he reckons himself your master"

From a fabulous game I used to play :).

about 2 months ago

FSF's Richard Stallman Calls LLVM a 'Terrible Setback'

Damouze Re:...but if you want free software to improve... (1098 comments)

In what way is it impossible for people to use GPL licensed software to develop commercial applications? Loads of companies do it and not every single one of them shares the source code of their product or products with their customers.

I tend to take a stance in the middle ground here. The GPL license and the BSD license serve different purposes, just like the rest of the plethora of licenses in existence do. It is up to the developers to decide which of those licenses suits them and their philosophy best.

I used to be a nearly religious advocate of the GPL v2.x licenses and their derivatives. In fact, in many ways I still am. The problem with the current incarnation, GPL v3, however, is that it contains more restrictions than freedoms. And while I am no fan of DRM of binary blobs in software, preventing them from being included in Free and Open Source software harms the cause of Free and Open Source Software more than it does it any good, to name an example. Add to that the fact that the legalese in general of the GPL v3 does not invite a sense of freedom (at least to me it doesn't) it could be argued that it actually foregoes its original goals, in favour of the licensing equivalent of hard marxism.

In other words, the GPL v3 doesn't suit me, so I tend to avoid it in my hobby projects. Fortunately for me (and the rest of the world) they're exactly that: hobby projects.

about 6 months ago

Most run piece of code. Ever

Damouze Re:Depends on the decade (9 comments)

It must not be my day today, because I made a mistake:

In C it would have to be:

a &= 15;
a += (a >= 10 ? 48 : 55);

about 6 months ago

Most run piece of code. Ever

Damouze Re:Depends on the decade (9 comments)

I skipped the 'non-assembler' part, my apologies.

I still think it's a cool piece of code though and it's probably been run the most, especially in certain operating systems associated with the color blue :P.

In C:

a += (a >= 10 ? 7 : 55);

about 6 months ago

Most run piece of code. Ever

Damouze Depends on the decade (9 comments)

In the late '70s and early '80s:

and $0f
add a, $90
adc a, $40

Since then:

add al, $90
adc al, $40

about 6 months ago

Controversial Execution In Ohio Uses New Lethal Drug Combination

Damouze Barbaric (3 comments)

Capital punishment is barbaric and should be abolished by every country in the world. No nation can truly call itself civilized unless it has abolished the death penalty.

about 6 months ago

Activision is preventing Gabriel Knight from coming to Linux

Damouze Android is a derivation of Linux (1 comments)

Although probably correct on a marketing and perceptual level, technically speaking the game is in fact going to be published for Linux, since Android is a derivation of Linux.

about 7 months ago

Snowden Document Says Dutch Secret Service Hacks Internet Forums

Damouze Re:Language? (162 comments)

Actually, both are equally correct in Dutch.

about 8 months ago

Why Are Some Hell-Bent On Teaching Intelligent Design?

Damouze Re:More importantly (1293 comments)

Texas also gave us Double Duh Bush. One of the least enlightened beings on this planet, as well as the one who put us in the international mess we're currently in.

"If you're not with us, you're against us."

Great way to sway everyone to your side - or theirs for that matter.

On topic: the problem between science and religion is not that they are mutually exclusive, but rather that science requires actual proof, whereas religion requires merely faith. One cannot prove the existence of god either way.

Even so, it seems silly to me to require the teaching of pseudoscience in school, merely to placate a couple of religious fanatics. I thought it was us who invented the polde model, but the Americans seem to have taken it to an entire new level.

about 10 months ago

Yahoo CEO Says It Would Be Treason To Decline To Cooperate With the NSA

Damouze Re:Treason.. or... (524 comments)

Assange can't be charged with treason in the USA, because he is not an American citizen.

about 10 months ago

Lockbox Aims To NSA-Proof the Cloud

Damouze Dream on (292 comments)

Whatever the encryption is, you can bet your bottom dollar bill that the NSA is at least two decades ahead of it.

about a year ago

Don't Fly During Ramadan

Damouze Pure racism (1233 comments)

That's what it is. And it's time somebody stood up to these assholes and told them so.

about 10 months ago

Misinterpretation of Standard Causing USB Disconnects On Resume In Linux

Damouze Fat chance (280 comments)

You might as well try to tell the Sun not to set tonight.

about a year ago

Peter Capaldi Unveiled As the New Star of Doctor Who

Damouze Re:GET READY.... (242 comments)


about a year ago

Anonymous Source Claims Feds Demand Private SSL Keys From Web Services

Damouze Re:Self signed? (276 comments)

That's a whole different story. See the remark later in my post.

Note that I said 'pretty much secure', not '100% secure'. Also, it seems logical to me that when you are so conscious about security, you would not necessarily trust a wifi network that is not secured with at least some sort of key.

Again, every encryption scheme can ultimately be broken. It is just a matter of computing power and patience.

about a year ago

Anonymous Source Claims Feds Demand Private SSL Keys From Web Services

Damouze Re:Self signed? (276 comments)

I would not be surprised to see that the NSA - or any other nation's intelligence service - can devise ways to make you think (and take it for a fact) they are whoever they tell you they are.

As for certificates and CAs: certificates, keys and CAs are about building trust. Between the service provider on one end for example, and its customers on the other. The Certificate Authority asserts that the service provider is who it claims to be, and another Certificate Authority (or maybe even the same - the root CA is in many cases one of a very select few) asserts that about the customer(s). There is a bond of trust between the two parties that enables them to communicate freely, but in a (more or less) private manner.

If you want, you can be your own root CA, as long as you are your only service provider or can convince others you are trustworthy enough that they believe you are who you say you are. They, as the consumers of your public key, have to be trustworthy enough to you that you believe they are who they say they are and that you entrust them with your public key. By the way, while in theory that should provide an excellent basis for secure communications, in practice it turns out to be a rather awkward weakness. People are gullible. But more about that later.

Self-signed certificates are just that. Nothing more, nothing less. You are your own Certificate Authority. If it's just communications between the email server you host at your end of the internet and your smartphone, the connection between those two endpoints is pretty much secure and unless your suffering from severe paranoia, you obviously trust yourself. But then again, with email, you would worry less about other people accessing your emails in their central data store or intercepting them during your (secured) IMAP session than you would about the fact that SMTP is still, pretty much, plain text. Provided your own SMTP host is entrusted similarly to your IMAP host, with a self-signed key and secured through, e.g. SSL and some sort of authentication barrier, the emails you sent are secure until they reach your SMTP host. Everything beyond that is up to the next SMTP host in the chain.

No IP connection - even encrypted ones - is ever one hundred percent secure. It is a safe bet that someone with enough computing power (e.g. the NSA in any case) will always be able to crack whatever (published) encryption scheme you apply to your communications. Moreover, the weakest link in any so-called secure connection is always the user. He or she can be sloppy with regard to the choice of his or her passwords, or have noted them onto a post-it glued to his or her TFT screen, etc. He or she could also be the victim of a phishing event or of social engineering ("Hello? Am I speaking to this-and-this-person? Yes? My name is so-and-so and I've recently joined your company. Would you please be so kind as to reset my password? I seem to have forgotten it. Ah yes, thank you! Have a nice day!"). Did I mention that people are gullible?

To sum up: the concept of certificates and certificate authorities as a basis to build up trusts is in theory a very strong one. However, its strength is also its weakness. It can be subverted to its own antithesis: anyone convincing enough can abuse his position within the chain of trust to his own ends if he, she or it is clever enough.

about a year ago


Damouze hasn't submitted any stories.


Damouze has no journal entries.

Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Create a Slashdot Account