Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Comments

top

Obama May Toughen Internet Privacy Rules

SteelRat Terminating traffic in another country (222 comments)

Okay. I think I'm done. I'm going to terminate my traffic, all of it, via VPN in some other country.

more than 3 years ago
top

BlackBerry Battle In India Going Down To the Wire

SteelRat RIM needs to make a decision (176 comments)

Do they want to secure customer data, or provide a documented mechanism for institutional wiretaps.

They should pick one and stick with it.

about 4 years ago
top

Please Do Not Change Your Password

SteelRat The impossible: DELIVERED! (497 comments)

I think you know what you're asking for is impossible, John. Is that your point?

Physical penetration tests can validate the presence of password lists in wallets, in desks, and in caches on workstations. I think I can say with confidence that there are no sources of metrics for what you have specifically asked.

So where are we then? No one can prove anything and therefore we can all claim to be correct? That's awful. That's also the state of the security industry; mountaintop sages and so called best practices sold by vendors.

Your suggestion on having a little book with them is also pretty bad. It breaks the password model of being something you know to something you have.

Remember everyone, multi-factor authentication should be a combination of something you are, something you have, and/or something you know.

If everyone did as you suggest, all thieves would have to do would be to throw an admin in the back of a van. In fact, I'm surprised that we haven't been seeing more of that anyway.

more than 4 years ago
top

Please Do Not Change Your Password

SteelRat Password aging and complexity = lists (497 comments)

If anyone gathered metrics on such practices, I would bet that for most environments, they would find that it yields the opposite effect of what is intended.

It makes strong passwords and lots and lots of password lists under keyboards, in text files, and on post-it notes.

I gave a little talk at a Toorcon event a couple years ago where I included some pictures of password lists found in the wild.

I think everyone competent knows about these things, they just choose not to say anything about it because it is a "best practice."

more than 4 years ago
top

Should You Be Paid For Being On Call?

SteelRat I've been paid for it (735 comments)

As a consultant, I was paid quite a lot for being available for an on-call basis; several thousand a month.

I also didn't have to do much when things happened. I would join a call, establish that it was not my problem, and then drop off.

If you're deeply concerned for your jobs, get better at your jobs and leave your bad gigs. Retention and performance problems should correct this problem of thinking that management assholes can get people to work for free. They would never work for without compensation. Why should people who are smarter than them?

more than 4 years ago
top

Drunk Yoga

SteelRat Re:Star wars (6 comments)

Take a shot, you will.

more than 5 years ago
top

Pirate Bay's Anonymity Service Enters Beta Testing

SteelRat Re:Free? (137 comments)

RTFA, guy. It's not free.

Also It's been done before and well. The code has been open for a long time now. I'm just surprised it hasn't happened sooner.

The code used to be archived by some of the industry cool kids for quite a while, but I'm not readily finding it in the allowed attention span of this comment.

more than 5 years ago
top

Microsoft vs. Google — Mutually Assured Destruction

SteelRat seriously now guys (416 comments)

I always suspected that Cringely was completely clueless, but now I have something to point to which by his own words damn him more than anything I could ever say.

This is the kind of writing that you can point at as an example of how some people do not get it despite their pomp and bigdealness.

more than 5 years ago
top

Give Up the Fight For Personal Privacy?

SteelRat $20 and anyone can know more about you than you do (751 comments)

With the rise of consumer databases, I realized that it was pointless to spurn social networks as anyone with pocket change can buy more information from any of these firms than I know about myself.

Sure. You can have privacy from the casual websearching douche, but if they don't mind spending tens of dollars, they can know all there is to know.

The game is over, and unless you go all unibomber off the grid and only pay cash, forget about it. You might as well get laid by scenewhores on myspace.

more than 5 years ago

Submissions

top

SteelRat SteelRat writes  |  more than 7 years ago

Ian Gorrie writes "I disapprove of what you say, but I will defend to the death your right to say it.
Voltaire (1694 — 1778) (Attributed)

This incident is one that is comical with enough novelty to, hopefully, keep the attention spans of most internet readers for a few minutes. It is one of a subcultural icon, old man named Sean Manchester who hunt vampires, and a blogging service that should really know better. The name of that service is Livejournal, now owned by Six Apart.

Livejournal describes itself as an online journal service with an emphasis on user interaction, as long as this interaction does not become unpleasant to anyone or break any laws.

So based on the interpretation of what some call vague terms of service, Livejournal promotes an environment where inconsistent censorship, destruction of works, and displays of punishment are dolled out haphazardly and inconsistently. Their abuse staff has become bullies where they do things largely because they have been given the power to do so. Thus, Livejournal abuse staff generally behave as Stasi-like boogeyman of their online community which they censor, delete, or take corrective action to maintain an undefined state of status-quo where only a calm consensus is to be tolerated. This has been displayed on many occasions and recently notably last June with a group of lactating mothers.

Alex Lucard's most current story of censorship by livejournal of his mockery of public figures, a right protected under the first amendment, and his most recent harassment by occultist author Sean Manchester can be found on his wordpress blog. He is considering a lawsuit against Six Apart with the sponsorship of the ACLU, EFF, BBB, OFCOM, and possibly other legal assistance.

Alex is not alone in receiving this measure of treatment. Another author known as stonemirror was targeted in a similar way on livejournal by a rather pedigreed troll known as Extinct Marsupial. The details of which can be found on stonemirrors wordpress, and are occasionally catalogued in the ljabuse journal at blogspot.

For bloggers to maintain some amount of first amendment rights, they must not, says Livejournal by their actions, say anything that people find offensive enough to undermine. To counteract these type of arbitrary and knee-jerk reactions, the EFF, Chilling Effects, and CyberSLAPP have content that should be read and considered for everyone who views free speech on the internet as an important right to be preserved. Livejournal is a major landmass in the (I shutter to use the word) Blogosphere geography and they should be at the front of the pack in being a proponent of bloggers rights. Instead, they are one of the first to cut them down."

Journals

SteelRat has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>