×

Announcing: Slashdot Deals - Explore geek apps, games, gadgets and more. (what is this?)

Thank you!

We are sorry to see you leave - Beta is different and we value the time you took to try it out. Before you decide to go, please take a look at some value-adds for Beta and learn more about it. Thank you for reading Slashdot, and for making the site better!

Comments

top

Google Proposes To Warn People About Non-SSL Web Sites

Midnight_Falcon Including Slashdot? (391 comments)

I find it more than ironic that this article was posted on Slashdot, which in 2014..still doesn't support SSL. It'll even redirect HTTPS to plaintext HTTP!

3 days ago
top

Clarificiation on the IP Address Security in Dropbox Case

Midnight_Falcon Judge Bennett issues a Concurring Opinion (152 comments)

...and no one cares. I think we should however appeal to some sort of internet tribunal as to whether wasting so much space on this, on such a high traffic website like Slashdot, warrants a sentence of an electronic gag device.

about three weeks ago
top

Ask Slashdot: What's the Most Hackable Car?

Midnight_Falcon Re:Subaru Impreza (195 comments)

Hadn't heard about this, but my model is a 2010 (I got it new in 2010), and has had zero problems at 40k miles. Still haven't had to even get a brake job done. Worst I've had to do is plug a couple tires -- but really can't blame the car for placing nails in the road :)

about a month ago
top

Ask Slashdot: What's the Most Hackable Car?

Midnight_Falcon Subaru Impreza (195 comments)

I'm biased here because I drive one, but, Subarus are known for being "lego cars." They are ridiculously easy to take apart and put parts in, everything is setup very logically, and parts are interchangeable within a few years of the model. Also, there's a huge community at NASIOC that will give you lots of information and people to ask about whatever you'd like to do.

So far, I have (previously having no experience doing work on cars):
Installed Pioneer head unit w/ DVD player + ebrake bypass (no I do not watch DVDs while driving, it's just easier to bypass than connect the ebrake :) )
Replaced speakers with SEAS Lotus
Replaced battery with an optima yellowtop for the soundsystem (stock 90A alternator works great though)
Installed subwoofer in custom enclosure (easy to find custom fiberglass for these cars)
Installed remote starter
Disabled the blasted beeping when a passenger doesn't put on their seatbelt

I'm sure you could do a lot more with one of these, but that's just what I've been able to do in a year or two of playing around with it. I am no longer at all intimidated by opening my car up and doing work on it, if you can put together a PC and do legos, you can work on a Subaru.

about a month ago
top

Study Shows How Humans Can Echolocate

Midnight_Falcon The bike riding is less than impressive.. (136 comments)

If you'e seen videos of him doing the supposed "riding bike down the street," he only gets a handful of meters, slowly, and it is a very painstaking bike ride. They even edit his video to show the more successful parts. I looked into this after seeing his TED talk -- while echolocation seemed pretty neat, it definitely seems like his foundation is exaggerating its efficacy. It definitely does something, his bike riding is awkward at best but I think it's talked up in an effort to encourage others to learn it as well.

about a month ago
top

American Express Seeks To Swap Card Numbers For Secure Tokens

Midnight_Falcon Re:Finally.. (130 comments)

I'm pretty sure I'm not the "asshole" here...in that, well, you chime in on a conversation just to call someone an expletive, or insult them..without even bothering to google OTP first. Notice in all my posts in my post history I don't resort to name calling like you have done here -- it's a clear sign logic has failed, and all you have is nonsense rhetoric and insult to offer.

about a month and a half ago
top

American Express Seeks To Swap Card Numbers For Secure Tokens

Midnight_Falcon Re:Finally.. (130 comments)

Clearly I should've spelt out OTP to avoid confusion in this context..except, yes, I do PCI compliance audits for a living, and this acronym seems very second-nature at this point. However though, I wasn't the one confusing OTP..it was the readers applying their own cognitive bias to apply the "one time pad" meaning here, even though the context clearly pointed away from that.

about a month and a half ago
top

American Express Seeks To Swap Card Numbers For Secure Tokens

Midnight_Falcon Re:Finally.. (130 comments)

Sure they do. It's actually common in security parlance. When was the last time you made it to a security convention?

Here's an example in commercial marketing:

https://www.yubico.com/product...

about a month and a half ago
top

American Express Seeks To Swap Card Numbers For Secure Tokens

Midnight_Falcon Re:Finally.. (130 comments)

I'm not confusing anything, One time password is the proper name for the technology.

about a month and a half ago
top

American Express Seeks To Swap Card Numbers For Secure Tokens

Midnight_Falcon Re:Finally.. (130 comments)

What am I saying? I think I have some idea.

I've done plenty of PCI compliance audits, CISA certified, yadda yadda.. so you would hope I have some insight here.

What do you know about crpytography? For example, if AMEX cards had a smart card in them that also had a OTP functionality -- like YubiKey, meaning a public key, an OTP (one time password, not pad), and a counter -- they could be made much more secure.

How so, you ask?

  • Merchant validation service would validate based on OTP, this could be API-based with only AMEX etc storing shared secrets with the OTP devices
  • Replay attacks prevented by counter -- so old OTPs could not work if re-used
  • May require information on magnetic strip + RFID/NFC/OTP device, thus ensuring the card is present
  • POS systems could be compromised and since the OTP/counter changes, compromise of PAN data stored at endpoints would be far less valuable

This is just the tip of the iceberg in terms of the many advantages such a system would have on making fraud a lot more difficult, and thus less profitable/worthwhile.

about a month and a half ago
top

American Express Seeks To Swap Card Numbers For Secure Tokens

Midnight_Falcon Re:Finally.. (130 comments)

If you're going to troll at least you give the benefit of the doubt on acronyms. OTP = One Time Password ...NOT one time pad.

Here's a reference so you can avoid further confusion and undeserved insult: http://en.wikipedia.org/wiki/O...

about a month and a half ago
top

American Express Seeks To Swap Card Numbers For Secure Tokens

Midnight_Falcon Finally.. (130 comments)

With OTP and related two-factor authentication technology becoming so widely available, one would have hoped that credit cards would implement some type of solution either using OTPs instead of cards, or augmenting them with OTPs. Millions of dollars in fraud prevention, "credit monitoring" and other such services would be saved by simply using solid cryptographic systems for the payment networks.

PCI compliance would probably be a lot less of a headache as well...

about a month and a half ago
top

Silicon Valley Swings To Republicans

Midnight_Falcon Re:This is great news! (485 comments)

FYI SCUSA is not the acronym for Supreme Court -- it's generally given as SCOTUS. In italian, "Scusa" is feminie for "Excuse me."

about a month and a half ago
top

Tim Cook: "I'm Proud To Be Gay"

Midnight_Falcon Re:News for Nerds? (764 comments)

The problem is the context these terms are used in. Perhaps it is a result of living with so many attacks, but the various transgendered people I meet seem to have one thing in common: being very defensive. They throw around the word "cisgendered" almost like a racist epithet, .e.g. "Who cares what that stupid cismale thinks." -- which, because they're a minority group, seems to be tolerated. But it is not much better than saying something most people would agree as offensive, like, "Who cares what what stupid Jew thinks?"

I have been in many situations where it seemed like the transgendered person was trying to trap people into saying something they consider offensive, using the wrong pronoun or what not, just so they can act out. This has made many, including me, grow tired of the constantly changing politically correct vocabulary associated with these people -- as well as the over-the-top dramatic defensive attitudes.

about 1 month ago
top

We Are All Confident Idiots

Midnight_Falcon Re:Sounds like Slashdot (306 comments)

Eratosthenes pre-dated Columbus by some time...he was not wildly wrong about the circumference of the Earth, but the size of the Atlantic Ocean.

about 2 months ago
top

Tech Firm Fined For Paying Imported Workers $1.21 Per Hour

Midnight_Falcon fwd.us! (286 comments)

The real reason tech companies want more H1B Visas is clear: So they can exploit foreign workers in a mix between the days of indentured servitude and the company towns of the Industrial Revolution. Too much education and culture has gone into making Americans averse to such exploitation; but companies manage to sponsor employees and get away with paying them a pittance under this system. It's the closest thing to chattel slavery still legally viable.

Then, when it gets found out, the company pays a slap-on-the-wrist order a fine....almost nothing compared to fines for sexual harassment or other torts that might affect Americans.

about 2 months ago
top

Google Adds USB Security Keys To 2-Factor Authentication Options

Midnight_Falcon Re:USB Device Recommendation (121 comments)

If you read TFA, you'll see YubiCo is offering a new device and their NEO devices are compatible with FIDO U2F. Unfortunately, the standard YubiKey and YubiKey nano does not support U2F.

about a month ago
top

An Algorithm to End the Lines for Ice at Burning Man

Midnight_Falcon False "Solution" Ignores the real problem (342 comments)

Bennett went to Burning Man once in 2013 and now thinks he's somehow relevant to Burning Man and writes about it online more than many core community members who actually get stuff done. His one experience with Burning Man was as little more than an ancillary helper at a smallish camp. His bold "solution" to this problem actually ignores the key issue that workers are not moving fast because there is no motivation to sell more ice.

The reason the ice line moves so slowly is everyone is a VOLUNTEER and they are not paid to sell ice. They just get a free ticket working for Arctica. They're also stoned, and burnt out, and aren't really concerned about moving fast in the high heat of the day to get people more ice. If they just get through their shift, they're happy -- people waiting is not a concern.

The solution Bennett should be looking for should not be some magic "algorithm," but a political one involving staff being paid more and being hired for merit, rather than knowing someone in Arctica. His attachment to this idea and even stating that there are no counter-arguments shows his inexperience and cursory knowledge about Burning Man in general. Technically, his idea might work, socially, it'll never happen.

As far as I know, Bennett's social connections to Burning Man are very limited, so this would be something that flies above his head. Burning Man is predominately, a social event, and technical/algorithm solutions ignore the fact that the reason most core contributors are there is for social reasons.

about 2 months ago
top

Sci-Fi Authors and Scientists Predict an Optimistic Future

Midnight_Falcon Re:Jean-Luc Picard is my idol... (191 comments)

Yes, there's tons of holes in it -- e.g. everyone speaks English via the dubious "Universal Translator," money seems to sort of exist with latinum and somehow Starfleet officers seem to have it..etc etc...but there are also tons of holes in other SciFi.

William Shatner actually ended up making TEK to essentially describe a dystopian future of people addicted to quasi-holodecks :) But it was awful! It, also, had tons of holes in it..despite being more, dystopian.

In the end it's not about the holes in the optimistic or pessimistic portrait the show paints. It's about whether the portrait the show paints gives you something to aspire towards or, by contrast, makes you skeptical or fearful of scientific change. In the latter case, this would make you more comfortable in the way things are, the status quo of our time, as not being so bad. In the former, it would make you less comfortable and want to push things in a positive direction so life could be more like this vision of the future.

about 3 months ago
top

Sci-Fi Authors and Scientists Predict an Optimistic Future

Midnight_Falcon Jean-Luc Picard is my idol... (191 comments)

and I think watching Star Trek: The Next Generation as a child inspired me to become an engineer.

Star Trek painted a very optimistic picture of humanity, of a few generations from now mankind not being focused on money, but instead ideas, and progress/wellbeing for all of humanity. About technology (foremost the replicators) really making the world a better place.

Contrast this to the reboot of Battlestar Galactica , which paints a very dreary portrait of advancement of science/artificial intelligence causing the downfall of humanity..

about 3 months ago

Submissions

top

U.S. Cedes Control of DNS to ICANN

Midnight_Falcon Midnight_Falcon writes  |  about 9 months ago

Midnight_Falcon (2432802) writes "Sixteen years after Jon Postel's famed attempt to bring the DNS system under IANA control, the U.S has agreed to cede control of the root DNS servers of the internet to ICANN. With NSA spying (some of which utilizing the U.S's privileged access to the internet system) a hot button issue, this may indicate a step in the right direction for internationalizing the internet."
Link to Original Source

Journals

Midnight_Falcon has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?