Beta

×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Comments

top

Employers Switching From Payroll Checks To Prepaid Cards With Fees

Firehed Re:How is this legal? (1103 comments)

Sorry, what?

This is greed, plain and simple. Companies that partner with issuing banks of prepaid cards (whether used as payroll, gifts/bonuses, payment cards for the underbanked paid for in cash, etc) get a cut of the fees paid by the cardholder and merchants where the cards are used (interchange).

I expect it also allows employers to more easily employ people who have a questionably legal worker status, as those workers are likely to accept the prepaid card since getting a proper bank account to cash paychecks may be difficult (I suspect that the Know Your Customer diligence required of the issuing banks of these cards is dubious; opening a proper bank account may screen illegals more effectively). It doesn't help that banking laws requiring performing KYC, but do not at all define what that minimally entails. Because there are no lines of credit being issued, the risk to the bank is effectively zero so long as they successfully screen out people on the terror watch lists.

Poor regulation of the payment card sector is what allows this to continue. Stuff like the Durbin Amendment helped slightly as it capped interchange on debit cards, but of course did nothing to address the "convenience" fees thrown in the mix. A lot of the costs of processing payment cards (i.e., as the merchant), when you dive in, are reasonably justified, but that's not a discussion I can have in a textarea field; however, charges such as cash withdrawal or balance inquiry fees are simply abusive and need to be legally addressed.

Source: I work in the payment card industry, and have in the past integrated with issuing banks to issue debit cards. Not for this sleazy payroll shit though.

1 year,29 days
top

SanDisk Focusing More On Desktop and Mobile SATA SSDs, Extreme II Series Tested

Firehed Re:you've got to be kidding me (71 comments)

Using a JOIN is not a sign of a badly broken application; on the contrary, it generally indicates you have well-normalized data. We've shied away from using them in the past because they're inherently reliant on data scattered across the disk, and until SSDs came around accessing the non-sequential data proved too expensive in many cases.

This exactly the kind of problem that you *should* throw hardware at, because this kind of hardware (storage with near-zero latency) is the right tool for the job. We've just historically performed a lot of software-based workarounds because we were forced to use the wrong tool (storage with relatively high latency; i.e. spinning platters), either because SSDs didn't exist or were prohibitively expensive.

I agree about the reliability concerns, but all forms of long-term storage we have will eventually fail. If you're doing something mission-critical without accounting for that... stop.

about a year ago
top

BBC Clock Inaccurate - 100 Days To Fix?

Firehed Re:Not-so-accurate source (487 comments)

The timezone thing is a legitimate concern, but there's virtually no reason to not have ntpd running on your servers anyway. Depending on their level of server (non-)automation, it could conceivably take a non-trivial amount of time to set that up if it wasn't already, especially if there's software logic that doesn't like time running in reverse should it have to sync up in that direction.

about a year ago
top

Security Fix Leads To PostgreSQL Lock Down

Firehed Re:That's not a good approach (100 comments)

Open-source doesn't magically decrease the severity or number of bugs, but it does allow more people to eventually discover them. There's an obvious trade-off here: non-malicious people can find and then report and/or fix the bugs, or malicious people can find and then exploit them. The hope is that there are more contributors than attackers finding bugs and that it ends up being a net positive for stability and security. Neither open nor closed source is the right model 100% of the time for 100% of projects.

There's no hypocrisy here - the source of the patches will be released and all future commits will be made public again. This was a short-term decision weighing practicality and security against the "religion" of OSS. It's the difference between responsible disclosure and letting the software maintainers find out about the same exploit because you blogged about it, so attackers find out at the same time. They could have one or two people developing the patch in a local branch and simply not push anything upstream until it's done and tested and have the same effect, this is just an easier approach.

about a year ago
top

Security Fix Leads To PostgreSQL Lock Down

Firehed Re:That's not a good approach (100 comments)

People looking to exploit vulnerabilities on widely-installed software (databases, programming languages, frameworks, etc.) keep an eye on commit logs to do precisely this. Those patches and commits call attention to themselves; postgres is right to ensure that a patch is available at the same time it indicates the attack vector. In fact, they'd probably be wise to make sure major binary repos have a patched copy even before making the changed source available so that sysadmins have a week to do an update from yum/apt-get/$pkgmgr

The only difference between this and patch tuesday is that you know what goes into this fix after the fact. If you see 'critical security update' in your mailing lists, it becomes a race between you updating your system and attackers figuring out how to exploit the old version; them doing so is orders of magnitude more difficult if they don't actually know what's changed.

Is it the FOSS way? No. But I'd happily take a project going closed-source for two weeks if it means my database doesn't get hacked (but then again, I'm dealing with PCI-DSS Level 1 so I kinda have to). Now hopefully people have their databases completely inside the firewall as to minimize the attack vector - assuming it has something to do with an authentication flaw, at least (and not, say, remote code execution due to a bug in parameterized queries). See - I don't know what they're changing, so I don't even know where to start probing.

about a year ago
top

United States Begins Flying Stealth Bombers Over South Korea

Firehed Re:Good luck with that (567 comments)

Yes, but hasn't yield increased significantly since the mid-40s? It looks like 2-3 orders of magnitude based on Wikipedia (https://en.wikipedia.org/wiki/Nuclear_weapon_yield) This may not be true for NK's weaponry, but let's say they succeed in bribing someone that has competent engineers to lend a hand.

Also, what of the radiation fallout?

about a year ago
top

Helena Airport Manager Blocks TSA From Taking Full-Body Scanner

Firehed Re:Think you may want to look at his logs (221 comments)

Please re-read the summary. It says that having the scanner removes the need for enhanced pat-downs. i.e. if they take it away, it will increase the number of pat-downs required.

about a year and a half ago
top

Firefox Will Soon Block Third-Party Cookies

Firehed Re:Not that simple (Re:Online Advertising Response (369 comments)

Which is based on OAuth and has precisely nothing whatsoever to do with third-party cookies.

It does cause problems for other completely legitimate use cases, but this is not one of them.

about a year and a half ago
top

Twitter's Vine App Ready To Bomb Internet With GIF-Like Videos

Firehed Re:bomb the internet? (117 comments)

What? No. A large number of the high-profile celebrity twitter accounts are run by a social media manager, same as on facebook.

about a year and a half ago
top

Dean Kamen Invents Stomach Pump For Dieters

Firehed Re:Isn't this just bulimia? (483 comments)

no awkward situations in the bedroom or airport

You're kidding, right?

about a year and a half ago
top

Should Microsoft Switch To WebKit?

Firehed Re: Content management (244 comments)

People ought to know that the prefixed attributes are in beta and may change. If they ship that to production anyway, they had better be ready to change it if the standard is updated before the prefix is dropped.

Fortunately none of the vendor-specific extensions are anything but minor enhancements, so they can't do any serious damage. It's not like W3C is going to redefine a pixel here.

about a year and a half ago
top

Should Microsoft Switch To WebKit?

Firehed Re:It's a silly proposition (244 comments)

That was the argument in 2003 when we were first trying to get people to switch to Firefox. While I'm sure that's true in some places (China mostly, from what I last heard on the subject) the days of widespread SAAS are upon us and now even giant mega corps don't have a real problem upgrading.

Even if the updated web apps have ignored the last several years' best practice of feature detection instead of user-agent sniffing, they're unlikely to have serious problems with how close the modern rendering engines have become to each other.

about a year and a half ago
top

The Tiny Console Killers Taking On the PS4 and Xbox 720

Firehed Re:latency (349 comments)

Where the hell are you? My ping to Google is 15ms and I'm less than ten miles away from Mountain View.

about a year and a half ago
top

Boeing Dreamliner Catches Fire In Boston

Firehed Re:Titanic (151 comments)

I'll take the 0.01% when the alternative is certain death in a metallic fireball.

about a year and a half ago
top

2013 FIRST Robotics Competition Kicks Off

Firehed Re:Serious advice (64 comments)

You were a part of a team with qualities that wasn't in line with FIRST, if that's an accurate description of your experience.

While it's definitely true that there are teams where the mentors do all of the hard work (I've met some, and they tend to be looked down upon by the rest of the community), most of the teams actually have mentors being mentors and let the students run the show. But it's important to have volunteers that will police each other about doing too much - having an actual teacher as a mentor helps immensely here. Out of the at least two hundred teams I've worked with in varying capacities, only two or three were mentor-dominated, and that includes those I met at the world championships.

When I was mentoring a team, we had to often remind each other to back off a bit because as an adult it's really easy to accidentally dominate the process - especially when it's a fun and rewarding one. It's pretty impressive what the students can create when the mentors keep their roles confined to safety police, knowledge-base, and the occasional reality check ("no, you can't add flamethrowers", "cool idea, but it violates the laws of physics", "I like where you're going with that, but we tried something similar five years ago and it ended up being a disaster... go ahead and prototype it but don't get too attached in case it doesn't work out").

about a year and a half ago
top

2013 FIRST Robotics Competition Kicks Off

Firehed Re:Why not robotics competitions elsewhere? (64 comments)

FIRST is international, but most of the teams are US-based. Every regional competition I've attended has teams from Canada, Mexico, and at least one other continent - often two or three (Australia, Europe, South America)

about a year and a half ago
top

Scary Toothbrush Prompts Shutdown of World's Busiest Airport

Firehed Re:The first rule... (284 comments)

Came here to read that. Thank you for not disappointing!

about a year and a half ago
top

Anti-GMO Activist Recants

Firehed Re:This is a rare breed of human. (758 comments)

One creates in one generation what would have normally taken the other process a few million.

Sounds pretty efficient to me, provided you end up with the same result. I count that as a win.

about a year and a half ago
top

Anti-GMO Activist Recants

Firehed Re:This is a rare breed of human. (758 comments)

Sounds like a problem not with the fact that something _has_ been genetically modified, but what was done. The solution is not labeling, but ensuring that GMO food is safe, healthy, and equivalent to or better than the naturally-evolved original.

However the FDA has been bastardized, its original purpose was to address this kind of concern and prevent it from becoming an issue. I don't want to eat meat where someone has taken a shit in the cow carcass regardless of whether it's some grass-fed organic ideal or injected to hell and back with (let's assume for the sake of argument provably safe) growth hormones. Let's figure out the real issues, separate them, and address them one at a time. We shouldn't be avoiding progress unless it causes some sort of other regression, and even still we should weigh the amount of progress against the damage of the regression before preventing it outright.

about a year and a half ago
top

Anti-GMO Activist Recants

Firehed Re:This is a rare breed of human. (758 comments)

If they're provably safe, and for all intends and purposes identical to the original, why on earth should we label them?

I see more value in not labeling them (greater adoption because people aren't scared off by voodoo non-science) than in labeling them (honestly can't see any benefit to doing so if all else is, in fact, equal).

about a year and a half ago

Submissions

Firehed hasn't submitted any stories.

Journals

Firehed has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?
or Connect with...

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>