Announcing: Slashdot Deals - Explore geek apps, games, gadgets and more. (what is this?)

Thank you!

We are sorry to see you leave - Beta is different and we value the time you took to try it out. Before you decide to go, please take a look at some value-adds for Beta and learn more about it. Thank you for reading Slashdot, and for making the site better!



Amazon Takes On Microsoft, Google With WorkMail For Businesses

HTMLSpinnr Re:Privacy (58 comments)

Amazon's Press Release (well, blog post rather) suggests that data is encrypted at-rest. Excerpt from https://aws.amazon.com/blogs/a...

WorkMail Security Controls Let’s talk about security for a bit. WorkMail includes a number of security features and controls that will allow it to meet the needs of many types of organizations. Here’s an overview of some of the most important features and controls:

Location Control – The WorkMail administrator can choose to create mailboxes in any supported AWS region. All mail and other data will be stored within the region and will not be transferred to any other region. During the Preview, WorkMail will be supported in the US East (Northern Virginia) and Europe (Ireland) regions, with more to follow over time.

S/MIME – Data in transit to and from Outlook clients and certain iPhone and iPad apps is encrypted using S/MIME. Data in transit to other clients is encrypted using SSL.

Stored Data Encryption – Data at rest (messages, contacts, attachments, and metadata) is encrypted using keys supplied and managed by KMS ( https://aws.amazon.com/kms/ ).

Message Scanning – Incoming and outgoing email messages and attachments are scanned for malware, viruses, and spam.

Mobile Device Policies & Actions – The WorkMail administrator can selectively require encryption, password protection, and automatic screen locking for mobile devices. The administrator can also remotely wipe a lost or mislaid mobile device if necessary.

Sounds like it has the makings of a usable service.


Ask Slashdot: Which VHS Player To Buy?

HTMLSpinnr Re:Pre Macrovision with 4+ heads (201 comments)

The number of heads only matters if the content was recorded at SLP/EP speed. On a 4-head VCR, 2 wider heads are optimized for SP playback, and the other two narrower heads are optimized for SLP/EP.

about 9 months ago

Ubisoft Hacked, Account Data Compromised

HTMLSpinnr Re:Amusing.. (138 comments)

gMail flagged Ubisoft's email as spam and potentially bogus. I wonder how many people will think it's just another phishing attempt and ignore it now.

I actually read the source of the email to confirm the embedded links were legitimate before marking it as "Not Phishing".

Really sucks for Ubisoft that their notification system will go unheard by many GMail users!

about a year and a half ago

PlayStation 4 Will Be Running Modified FreeBSD

HTMLSpinnr What about Mac OS X and ATI/AMD? (457 comments)

"BSDs in general currently lack manufacturer supported full-feature AMD graphics driver, which leads to the conclusion that Sony and AMD have likely co-developed a discrete driver for the PS4."

Really? What about the BSD-like Mac OS X and the ATI nee AMD Graphics chipsets used in the Mac Pro and Macbook Pro? Or is that relationship so far removed that AMD couldn't use that intellectual property in partnership with Sony?

about a year and a half ago

Ask Slashdot: How Best To Disconnect Remote Network Access?

HTMLSpinnr One time password on time limited access (284 comments)

Configure your VPN headend to authenticate against a RADIUS host that is configured for a one-time-password. You must provide that one-time-password to the vendor each time they wish to connect. The second time the same password is used, it should be denied. This should NOT be a token-derived password they posses, but rather something they must get from you over the phone after authenticating themselves in some other way.

Ensure that the connection has a timeout of some reasonable time that won't kick them out of a legitimate activity.

about a year and a half ago

Cockroaches Evolving To Avoid Roach Motels

HTMLSpinnr Is it evolution, or survival of the fittest? (315 comments)

Seriously, did the roaches actually evolve and pass it to their young, or did the specific roaches which HAD the sugar aversion trait simply avoid being poisoned and passed along said aversion to their offspring?

I'm kinda thinking it's the latter.

about a year and a half ago

My most frequent OS migration path?

HTMLSpinnr What migration path? (413 comments)

I use all three daily! Dual-boot Windows 7 and Ubuntu on my desktop at home. MacBook Pro at work (no boot-camp), along-side a RHEL 5 desktop, Ubuntu laptop, and a Windows 7 desktop. Where I work, folks regularly use two OSes between their laptops (Win/Mac/Ubuntu) and development desktops.

Thus, there really was no migration path, unless you count giving up Windows 7 for a Mac 4 years ago as my primary work machine.

about 2 years ago

Cubans Evade Censorship By Exchanging Flash Drives

HTMLSpinnr TrueCrypt? (171 comments)

Despite export controls, one has to wonder if they'd be better off protecting themselves w/ encryption on these drives, in case of undesired interception. It's unfortunate that encryption bans can't distinguish between malicious government intent and citizens avoiding the restrictions applied by the same oppressive government.

about 2 years ago

Certificate Expiry Leads to Total Outage For Microsoft Azure Secured Storage

HTMLSpinnr Re:Monitoring Fail (176 comments)

You'd be mistaken. The large company I work for has indeed learned from these mistakes.

about 2 years ago

Certificate Expiry Leads to Total Outage For Microsoft Azure Secured Storage

HTMLSpinnr Monitoring Fail (176 comments)

I find it hard to believe anyone who maintains such a large fleet of services wouldn't have setup some sort of trivial monitoring (I know they own a product or two) that would include SSL Certificate expiration warning. 30+ days out, a ticket (or some sort of actionable tracking mechanism) should have been generated, alerting those responsible to start taking action. Said ticket should have become progressively higher severity as the expiration date loomed (meaning nothing had been updated), which in any sane company, would have implied higher and higher visibility.

That way, if an extensive test plan for such a simple operation was required, they had plenty of time to execute upon it and still not miss the boat.

Working with MS in other ways, and combined with both the lack of foresight and inability to act quickly, just shows that this sort of customer-forward thinking just doesn't exist inside the MS mind.

about 2 years ago

Google Announces New Nexus Smartphone and Tablets

HTMLSpinnr Re:Still no microSD? (297 comments)

I'm not the OP, but in my case, At least 7GB of the ~13GB available on /sdcard (partition, not actual removable media) in my Nexus S is music which I listen to on occasion - mostly in my car or on a flight. The balance (when closer to full) is pictures before transferring to local network or cloud storage or Apps installed to USB (no longer required for Nexus 4's monolothic partition), etc. Amazon MP3 with CloudDrive storage solves the balance of my music problem (you don't have to marry yourself to Google Play for everything). For most, it's simply silly to carry around your entire collection. It's unlikely you'll want all of it available, thus learning to place effective selection criteria when picking what goes to your device helps manage the size constraint.

Personally, I'd feel constrained by 8GB, but not by 16GB once you realize that even 8GB of "music" is more than anyone needs unless they're spending a TON of time away from the balance of their library. What will put the squeeze on things are 8MP photos and full HD video. Provided I can offload my photos to cloud storage (via Wifi thanks) or home storage, I can live with this level of storage. Thus, I'll be buying the 16GB version to replace my Nexus S.

Now if they had 32GB at $429, this would be a compelling compromise/price point, and would shut down many of the "it's too small" comments.

more than 2 years ago

Google Announces New Nexus Smartphone and Tablets

HTMLSpinnr Re:No Strings Attached? (297 comments)

There's a bit missing in those details. $299 buys the 8GB version, and $349 buys the 16GB version. There is no 32GB version, and a CDMA/LTE version was not announced - these are solely Pentaband HSPA+ devices for now. Or... you can ultimately pay more and go T-Mobile subsidized if you can't handle that much out of pocket at once with $199 out of pocket and $20/mo in subsidies for at least 20 months (Value plan, or $20 more/mo for the plan in general over Value for 2 years if Classic plan).

more than 2 years ago

How Will Amazon, Barnes & Noble Survive the iPad Mini?

HTMLSpinnr It's all about the content (354 comments)

Amazon and Nook are all about consuming content. Initial tear-downs of the Kindle Fire purported them to be built at a loss, or at the very least, sold "at-cost". The profits are in App sales, Kindle books, Newsstand subscriptions, and Music/Video content.

Thus, if their consumers are running iPad minis, Amazon already has most of that taken care of. There's a Kindle app for iPhone and iPad, and they've recently released the Cloud Player (music) for iPhone and Amazon Instant Video app for iPad. Those loyal to their content will still be consuming it, regardless of the device. Amazon doesn't have a foothold in all facets of iPad like they do in Kindle Fire or other Android devices (i.e. Appstore), but it's "good enough", right?

To a lesser extent, same applies for B&N. NOOK apps are available for both.

Now the risk for both of these companies is those who aren't loyal to a content provider and the default presence of iTunes.

more than 2 years ago

SAP VP Arrested In False Barcode Scheme

HTMLSpinnr Re:Because he needed the cash? (535 comments)

30 grand tax free, for a side job, is no small haul.

I'd argue that the income wasn't tax free. eBay will will report significant amounts of income (>200 transactions or > $20,000) on a 1099-K form, which started in 2011. Either way, someone knew about the income at that point.

more than 2 years ago

Ask Slashdot: How Best To Deal With a GPLv2 License Infringement?

HTMLSpinnr Understand your choice of license... (240 comments)

This is probably a bit of hindsight advice, but try to understand the license you choose for your work before releasing under said license. Releasing code under GPLv2 w/o understanding how downstream "users" can legally use it doesn't help when you have to question the legality of someone charging money for the work. If they provide the source and attribution to your work, they're good to go.

If this wasn't the intended use, then consider a different license that more agrees with the ideals which the code was released under. Granted - if you reassign your code to AGPL or something of that sort, many people will either not comply or avoid the work entirely to avoid needing to disclose *their* surrounding source too.

more than 3 years ago

Ask Slashdot: Is Your Data Safe In the Cloud?

HTMLSpinnr No, the bits will get wet! (332 comments)


No, seriously - depending on the cloud service, aren't buckets of data encrypted in such a way that only the owner of the data can access them? Cloud service providers may be required to hand over data, but do they have the means of handing over the encryption keys along with it?

For certain cloud services where you're uploading via browser, they may be encrypting your data post-upload, so the request to decrypt may be more trivial. However, if you manage your own (like S3 backups) - or simply use a service that encrypts BEFORE uploading, I'm not sure there's a whole lot Amazon or some other provider could do to hand over the data in any usable form.

Those who are concerned about security of their data should ensure that the backup is encrypted in an acceptable method, or simply stash it in an encrypted container before storing it "online" (I realize there may be limitations of scale with that suggestion).

more than 3 years ago

Good Disk Library Solutions?

HTMLSpinnr Re:I think the generally accepted solution (371 comments)

Bit reducing the video, and capturing core audio (DD out of TrueHD, for example) works just fine for most movies. On most displays you won't notice the difference at a constant quality of RF21 or 22 (using HandBrake in an .h264 encoded MKV as an example). I can tolerate a few GB in storage compared to the whole deal. When I want the full experience, then I'll break out the actual disc, but my kids don't care if some of Tinkerbell's finest detail is slightly obscured through compression, when the trade-off is that they can pick any movie we own any time w/o damaging the original disc.

more than 3 years ago

Smart Meters Wreaking Havoc With Home Electronics

HTMLSpinnr ZigBee for the lose (375 comments)

Obligatory Wikipedia link: http://en.wikipedia.org/wiki/ZigBee

802.15.4 defines the standard that these guys are using - also known as ZigBee. ZigBee is a lower powered WPAN type of "mesh" networking used in things like smart building communications.

There are generally two options for frequency - "900MHz" and "2.4GHz". They operate in a mesh network typically (or virtual star), but usually do so at lower powers. What isn't being fully called out is that most 2.4GHz devices will cause nasty interference to Zigbee, since they typically run at lower powers (0dBm or 1mW) at channel widths of 5MHz (802.11b/g/n uses 20MHz channels by default), using similar encoding as the older 802.11b protocol. Most consumer WiFi routers run between 40mW to 100mW (~16dBm to 20dBm). 1mW (0dBm) will most likely look like noise to WiFi. If the meter operator was considerate, they'd pick one of the few channels that lies between or just outside the typical WiFi 1, 6, or 11 spaces (eff those guys who use channel "3" or "10"). That all said, if the meters are using a ZigBee Pro implementation, they may be transmitting at a much higher level - up to 100mW (20dBm), which would be quite intrusive to WiFi if using a ZigBee channel that overlaps WiFi. Anyone affected by that would HAVE to use a different channel if the meter or meters were constantly transmitting.

In my profession, I'm part of a team that supports the deployment and operation of some very large warehouse WiFi deployments (both 2.4GHz and 5GHz), and thus we're quite protective of the 2.4GHz band within the four walls. I can't tell you how often we've been approached by people who want to deploy ZigBee building controls in this band, each time refusing them since we know we'll make each other's lives miserable. Our 802.11 operation will likely render their equipment useless. We let them know that 900MHz or wired RS422 are both fantastic options in this case.

I bet the power company didn't consider the alternatives... or just didn't know and/or care. Not everyone is an RF expert, and the "wireless" buzz-word wins in may board rooms especially if it saves money.

more than 3 years ago

How Can I Justify Using Red Hat When CentOS Exists?

HTMLSpinnr Consider paying in other ways... and a caveat. (666 comments)

Maybe instead of a monetary donation to CentOS, consider providing a server mirror to help the cause. May be cheaper than "paying" for Red Hat, and it goes to further the cause.

When it comes to support - consultants are great for implementation. However, if you've got a really large installation and start running into obscure kernel bugs or other software problems unique to your installation, you'll need kernel engineers or other higher caliber software developers or systems engineers to really deep-dive the problem. Red Hat can provide that with support subscriptions (or one-time incidents). Can't say the same for CentOS - you're at the mercy of the community.

Same goes for rapid-paced updates to zero-day problems. Chances are, you're going to get a fix a lot sooner from Red Hat than you would from CentOS.

Do I leverage CentOS for small projects - absolutely. But I understand that while it's 99% Red Hat code, it's not Red Hat in every respect.

more than 3 years ago

In light of the squeeze in hard drive prices ...

HTMLSpinnr What squeeze? (273 comments)

Where's the option for those who are ignorant of the "problem"?

more than 3 years ago



Sys Admin Magazine ends publication

HTMLSpinnr HTMLSpinnr writes  |  more than 7 years ago

HTMLSpinnr (531389) writes "It seems that Sys Admin Magazine, a magazine geared toward UNIX type sysadmins, will be ending publication with it's August 2007 issue. I received a postcard via mail yesterday announcing the end of publication. Those with remaining subscriptions are being offered either a refund for the unsent issues, or a "free" SysAdmin magazine archive CD ("A $49.95 value!"), with all issues from 1992 to the last August 2007 issue. Digging around the Sys Admin Magazine website, or the website of their parent company, CMP, reveals nothing of the magazine's fate.

Will other technical paper publications see a similar fate now that most of us get our news, articles, etc. online?"


HTMLSpinnr has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?