Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Comments

top

Positive Ebola Test In Second Texas Health Worker

MrNiceguy_KS Re:But flights from West Africa are OK? (463 comments)

Well, now that we've had 3 cases in the Dallas area, we might actually see the US-Mexico border secured... ...by the Mexican government.

about two weeks ago
top

VeraCrypt Is the New TrueCrypt -- and It's Better

MrNiceguy_KS Re:Oblig xkcd (220 comments)

Actually if you "stick to the story" there's only 50 dollar bills to choose from and once chosen it's eliminated from the set so 50*49*48*.... = 3*10^64 combinations. Less if any of the bills have identical last digits, which is likely due to the birthday paradox. And if they were just counted and put in an evidence bag most the bills are in the right order. If they count the ones, either in order or reverse order and the only thing you need to figure out is where a few fivers or tens go that's cryptologically pathetically weak. And if it did disappear down some pocket, well there goes your evidence that there actually was a pile of cash making up your password. Worst, the police will probably take this as gloating on your part by showing off your perfect yet obviously constructed get-out-of-jail free card. I think the good old "I don't recall" works better.

If the pile of cash disappears down some pocket, then when you are dragged to court to produce the password, you explain the password storage method to the judge, and the fact that no pile of cash was entered into evidence shows that evidence tampering occurred. Assuming you are in a legal jurisdiction where the rule of law holds any sway, this should get the case thrown out.

If you're in a jurisdiction where this doesn't apply, you're pretty much screwed anyway, (and it's all but guaranteed that your pile of cash disappeared into a pocket rather than the evidence locker.) Granted, in a no-rule-of-law jurisdiction, I'd recommend this method only for data you would literally rather die than give up. The Powers That Be aren't going to stop torturing you once you tell them about your password method, they'll keep torturing you hoping that you're lying and you really can produce the password if they push hard enough. At some point, you'll really wish you had a way to give them the password.

An obvious variation of this is to have a pile of cash that contains 48 bills, with a password constructed from the serials as described, plus something extra you have memorized and inserted in specific spots in the sequence. Then when dragged before the judge, you say that the password was from the serials of the 50 bills you had next to the computer. "What, there's only 48 now? Well, you can try the existing sequence and brute force the remaining digits, but since there are 2 bills missing, there's no way to know for certain where in the sequence to insert the missing digits for the brute force attempt, and since the stack was obviously tampered with, there's no guarantee that the remaining bills are in the original order."

about two weeks ago
top

VeraCrypt Is the New TrueCrypt -- and It's Better

MrNiceguy_KS Re:Oblig xkcd (220 comments)

You are wrong about it being poorly implemented. The "encryption key" being printed on bills is the key here,
The acual password would naturally have nothing to do with the seriel numbers that would just make it needlessly complicated.

You could have only 45 bills and claim that originally there was 50. That would give you the chance to claim
corrupt investigators who ripped off the five $20 bills you had mixed in with your $1 bills. Not only
would it allow you to keep the password secret but also cast the investigating team in a bad light.
Tampering with the evidence and all that, the case might actually get thrown out of the court.

No one would steal your fortune cookies you know.

AC here actually gets the point of this method - you have plausible deniability - "I can't produce my password from memory because it was based on the pile of cash. A pile that is suspiciously smaller than it was before the raid."

about two weeks ago
top

Password Security: Why the Horse Battery Staple Is Not Correct

MrNiceguy_KS Re:Mod parent up. (547 comments)

https://play.google.com/store/...

Here's a version compatible with KeePass 2.0 databases. This version also has native support for syncing databases stored in DropBox, Gdrive, or even over FTP, (which beats my old method of using a 3rd-party file syncing app)

about two weeks ago
top

Password Security: Why the Horse Battery Staple Is Not Correct

MrNiceguy_KS Re:Oh great (547 comments)

Which is why you make up your own phrase.

Forget making up your own phrase - just talk to a child under 8 for a little while. I guarantee they will say something completely random, totally memorable, and guaranteed not to show up in a phrase-based dictionary. Here's a sample of passwords I have used in the past that originated with my nephew - now 7.

I wanna be a squid when I grow up!
I'm a lizard in a swimsuit with a wedgie.
The backyard smells like a wombat
My grandma's stinking it up!

(The last one, by the way, was shouted when Grandma had taken him into a public bathroom with her. No relevance whatsoever to picking a secure password, but just take a couple of seconds to imagine walking past a public bathroom and overhearing a kid yelling that.)

about two weeks ago
top

Statisticians Uncover What Makes For a Stable Marriage

MrNiceguy_KS Re:Anarcho-syndicalist matrimonial contracts (447 comments)

Additionally, quoting Monty Python on a regular basis leads to a 400% increase in divorce threats from my wife.

about two weeks ago
top

Statisticians Uncover What Makes For a Stable Marriage

MrNiceguy_KS Re:Correlaton? (447 comments)

If you have a lot of people at a wedding where you are not spending a lot of money, those people are there because they care about you. That is a good thing.

If you spend a lot of money on a wedding that does not have a lot of guests, it indicates that appearances are very important to you. That is not a good thing.

Mod parent up!

For what it's worth, my wife and I have been married a bit over 15 years, dated a little over 3 years. We got married right out of college, and were therefore broke as heck. My parents paid for the rehearsal dinner, but the rest came out of our pockets. We spent somewhere around $2400, (not counting rings) with the photos making about a third of that. We had somewhere around 300 people at our wedding, which included a general invitation to everyone at the church we attended at the time. To fill in the rest of the data points, we attend church regularly, didn't live together prior to the wedding, and while I think my wife is hot, she certainly didn't marry me for my money. Oh, and we're still pretty broke.

about two weeks ago
top

Independent Researchers Test Rossi's Alleged Cold Fusion Device For 32 Days

MrNiceguy_KS Re:Fails Physics Forever (AKA in vs out doesn't wo (984 comments)

Also, as pointed out by the article, if his Ecat worked as he claims, everyone would be dead within 10 minutes of starting the reactor, due to massive Gamma radiation leaks.

Oh, come on. Everyone knows Gamma radiation just gives people super powers. Rossi himself is the perfect example. He's been working with this device for so long, he has the superhuman ability to transform bullshit into attention.

Now that he's had a team of researchers spending a month examining this thing in a sorta-sciencey way, we should watch them for signs of super powers. I suspect they've gained the ability to smash their own credibility in one swift stroke.

about two weeks ago
top

CIA Tested Primitive Chatbots For Interrogation In the 1980s

MrNiceguy_KS Makes so much sense now... (65 comments)

So the CIA developed a primitive AI as a form of psychological torture, eventually the project was scrapped as frustrating and ineffective...

...so they sold the source code to Microsoft and they used it to make Clippy.

about a month ago
top

Slashdot Asks: What's In Your Home Datacenter?

MrNiceguy_KS Re:We're talking old rack gear here. (287 comments)

This isn't about a 1959 Corvette. It's about a 1959 garbage truck.

Different people like different things. A lot of people develop true passion for the work they do, and it bleeds into their hobbies. I've lived my entire life in agricultural areas, and I've known a lot of people, including my father, who restore antique tractors as a hobby. I've been to car shows where I've seen antique school buses, semi trucks, and tow trucks that have been painstakingly restored. They tended to attract a lot more people than the rows and rows of Camaros and Mustangs. Never seen a garbage truck at a car show, but I'm sure someone's got one out there.

A few years ago, one of the long-time groundskeepers retired from my employer. At the same time, the company retired the 1970's era Cushman he'd been using, and he bought it with plans on a full restoration.

about a month ago
top

What To Expect With Windows 9

MrNiceguy_KS Re:my list is not long (545 comments)

Yes, I've read that. I'm waiting for the punchline, (like, you have to use gestures to log in! C'mon it'll be fun!)

If the next version of Windows requires gestures to log in, I have a few gestures in mind.

about a month ago
top

Ford, GM Sued Over Vehicles' Ability To Rip CD Music To Hard Drive

MrNiceguy_KS Re:Good luck with that. (317 comments)

Yeah yeah, I do it all the time. My car is my primary CD ripping device.

  I take my CD out, rip it, then disassemble the car's audio system and pull the hard drive. Take it to my home computer and upload the files.

  Piece'o'cake, why do you think I bought my car, anyway? Driving? Hahahahahahahaha.....

That's nothing. I've set up a massive file-sharing service based around these systems. And it's completely undercover; to the casual observer, it looks like a used-car lot!

about 3 months ago
top

Windows 9 To Win Over Windows 7 Users, Disables Start Screen For Desktop

MrNiceguy_KS Re: One switch to rule them all? (681 comments)

I think that'll be my answer for the OS too -- Ubuntu+Wine is probably closer to Windows 7 than Windows 8+ are.

Based on this comment, I'm assuming you haven't heard of Unity.

about 4 months ago
top

iOS 8 Strikes an Unexpected Blow Against Location Tracking

MrNiceguy_KS Re:Apple Actually Cares About Privacy (323 comments)

BTW, this app does the same on a rooted Android device.

I'll add my thanks as well. The whole reason I came to this thread was because I hoped someone would post something like this.

about 4 months ago
top

Fixing the Humanities Ph.D.

MrNiceguy_KS Re:Because... (325 comments)

The quote in the summary:

"These programs have gotten both more difficult and less rewarding: today, it can take almost a decade to get a doctorate, and, at the end of your program, you're unlikely to find a tenure-track job."

So you're talking about a people getting a degree where the only career option is teaching others so they can seek the same degree? And the MLA thinks the fix is to make that degree easier to get? I suppose it does have the benefit of people wasting less of their life pursuing a degree that is worthless out in the real world, but it looks to me like a PhD in Humanities is the academic equivalent of a Ponzi scheme.

about 5 months ago
top

Linux Mint 17 'Qiana' Released

MrNiceguy_KS Re:This is so 1990s (132 comments)

You know, I think this is the first time I've seen Metro and professional used in the same sentence. At least, the first time where the sentence didn't end with, "my ass!"

about 5 months ago
top

Linux Mint 17 'Qiana' Released

MrNiceguy_KS Re:This is so 1990s (132 comments)

>

I suppose this only counts if you count Pixar as professionals.

I don't know. I've seen Cars 2.

about 5 months ago

Submissions

MrNiceguy_KS hasn't submitted any stories.

Journals

MrNiceguy_KS has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?