Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!



Verizon Injects Unique IDs Into HTTP Traffic

TheGratefulNet Re:HTTPS Everywhere (196 comments)

quite a valid point!

just like you can NEVER trust a windows (or mac or even linux box) that was not setup by you, especially if its a corporate box that was given to you pre-installed.

almost every company of mid-size or larger preinstalled MitM certs for their spying firewalls. they don't tell employees that, but netadmins and sysadmins pretty much all know this.

I work at a large networking company and they didn't tell me WHAT they do or HOW they'd spy on me, but I found out via a friend (in germany) exactly what they are doing. in .de, you have to disclose to the employees a lot more than the US requires you to do, and he relayed the info to me about how our corp laptops come preinstalled with corp spyware. ability to active mic, camera, screen caps, all that bullshit in addition to traffic logging.

I'm a network mgmt guy and when I was out interviewing for jobs (the last few years) almost all of them involved DPI and MitM attacks, even though they tried to explain it away as 'troubleshooting information' and 'for the users benefit'. quite bullshitty but they said it with a straight face, like they believe their own BS.

you guys have to start realizing that corp america is all about privacy invasion; of customers and employees, alike. if you have a corp laptop, do NOT login to your home email systems and keep your work laptops entirely clean of anything personal and home related. yeah, even if you see the lock icon on the browser, it means nothing anymore, in a corp LAN.


Verizon Injects Unique IDs Into HTTP Traffic

TheGratefulNet Re: Is there a way to prevent this? (196 comments)

I don't think you could modify packets that are in an ssl stream and not have ssl detect it and reject the 'broken' packets.

https is mostly secure (other than MitM attacks on certs) and vpn's are also very secure.

I have a vpn and while I use it mostly at home, there is an android client (even for my ancient 2.x android o/s) for the vpn provider I have and so I could get as complete privacy as possible on my phone, while doing inet things.


FTDI Removes Driver From Windows Update That Bricked Cloned Chips

TheGratefulNet Re:Alternatives? Same problem.. (540 comments)

problem with that is: so many come from china and the sellers are like cockroaches when the light comes on; they scatter, change names, go out of business and resurface.

there is next to zero ways to punish china based sellers and 99% of them are engaged in selling fakes (of anything, not just chips).

suppose the chip is soldered onto a system that can't easily be fixed? is ftdi going to do the rework? zero point zero percent chance of that happening. so, them sending you another 'chip' is pretty useless, in practice.

shaming the sellers usually wont' work unless its a perma business like sparkfun or adafruit. amazon and ebay sellers are like cockroaches, as I've said. you can't kill them all.

all you could realistically do is give a tool to end users to DETECT fake chips. then, next time you buy one, you run the test and you have a few days or weeks to return to the vendor (while they are still around and in business). then again, ebay would have to ammend its policy to NOT require you to ship the goods back to a china seller, or at least send you a prepaid shipping label.

in reality, I see none of this happening.

best I can do is stop windows update from now on (MS lost all my trust on this, forever, at this point), install 2.10 on my win boxes, lock them down and carry on with my life.

oh, and all ftdi designs I had in progress are now being modified to use another chip instead of ftdi. I may have to buy ftdi's on arduino nanos (I like them...) but I won't DESIGN with the chip in my own embedded boards anymore.


FTDI Removes Driver From Windows Update That Bricked Cloned Chips

TheGratefulNet Re:Computer Missues Act 1990 (540 comments)

just yesterday, there was a linux kernel patch (on the usb drivers mailing list) that now allows a 0000 pid for ftdi devices.

also, there was a tool by mark lord that allows you to write back any pid value you want, for example, when I ran it, I got this output (and it 'fixed' the chip again, too):

% ./ft232r_prog --old-pid 0x0000 --new-pid 0x6001

ft232r_prog: version 1.24, by Mark Lord.
              eeprom_size = 128
                  vendor_id = 0x0403
                product_id = 0x0000
            self_powered = 0
          remote_wakeup = 1
suspend_pull_downs = 0
          max_bus_power = 90 mA
            manufacturer = FTDI
                      product = FT232R USB UART
                  serialnum = (elided...)
      high_current_io = 0
    load_d2xx_driver = 0
            txd_inverted = 0
            rxd_inverted = 0
            rts_inverted = 0
            cts_inverted = 0
            dtr_inverted = 0
            dsr_inverted = 0
            dcd_inverted = 0
              ri_inverted = 0
                      cbus[0] = TxLED
                      cbus[1] = RxLED
                      cbus[2] = TxDEN
                      cbus[3] = PwrEn
                      cbus[4] = Sleep
Rewriting eeprom with new contents.


FTDI Reportedly Bricking Devices Using Competitors' Chips.

TheGratefulNet Re:On the other hand... (689 comments)

"user-settable blacklist."

user, here, is ftdi, though ;(

3 days ago

Samsung Acknowledges and Fixes Bug On 840 EVO SSDs

TheGratefulNet Re:Windows only; NTFS only (101 comments)

short answer: yes.

I would not trust their 'fix' if they actually work at the filesystem level.

you'd think this was a sector based issue. you'd think!

even if there is a dos bootable for this, unless it understands ext2/3/4 (and maybe others; jfs, reiser, xfs) then linux guys ARE screwed by this.

4 days ago

Samsung Acknowledges and Fixes Bug On 840 EVO SSDs

TheGratefulNet Re:Classic Samsung... (101 comments)

I don't trust samsung. but sadly, I did buy a bunch of 840 evo drives over the last year or 2. damn.

samsung is known as the company that makes things last 'the warranty period + 1 day'. almost literally. almost to an art form.

samsung lcd's also are built like crap. one after another, their electrolytics die (fake china caps; like so many others). buying japanese (nichicon, panasonic, etc) low ESR caps usually brings the monitors back to life. I've fished several out of the trash cans and restored them via simple psu cap replacements.

but dammit samsung, why do you have to be SO cheap??

guess I should start avoiding all samsung things, now. I'm tired of their crap.

4 days ago

Cisco Exec: Turnover In Engineering No Problem

TheGratefulNet Re:Folks this is what happens with bad leadership (148 comments)

all datacomm companies are in bed with the spooks. cisco is just like all the others, not special in that regard.

I joined cisco in the early days, back in the early 90's. I was there a short time, then left, and recently came back; so I see the new cisco and do remember the old 3 building cisco. they are not even close to the same company anymore.

I enjoy being there but its more about my group than the company. company wise, I see a lot of bad designs and bad decisions and a lot of young kids who have no business writing or supporting routing software. but like all other valley companies, most work is farmed out to india to the lowest price bidder and the results really show this ;( even locally, you won't find many americans working there and the attention to detail has been long gone. its a young employees company and experience is not really valued, again, like most other bay area companies.

there is a lot of cool stuff going on, but they have lost their ability to stay focused and deliver world-class software like they once did. its now a body shop with very few visionaries left. sad to see that happen.

about a week ago

Federal Government Removes 7 Americans From No-Fly List

TheGratefulNet Re:I have never understood this (124 comments)



keeping you from challenging authority.

pretty much, just that.

(oh, and security theater, too.)

about two weeks ago

Federal Government Removes 7 Americans From No-Fly List

TheGratefulNet Re:That whole list (124 comments)

ALL of our founding fathers would be arrested as terrorists.

they fought their own country, the English.

now, we agree with their views, but if the TLA's had their way (and congress, and the president and, well, all the courts, too) they'd be marked as 'bad guys' and would have little to no freedom.

odd, how that turns 360, huh? ;(

about two weeks ago

Liking Analog Meters Doesn't Make You a Luddite (Video)

TheGratefulNet Re:Analog displays are better in some situations. (155 comments)

as a guy over 50 who has analog meters (triplett, simpson, stuff like that) that are nearly as old as I am, I can say with confidence that you have no idea what you are talking about.

digital meters tend to fail more! they are more complex, and unless you buy very good ones, they will suffer 'cap problems' (esp. if made in china, which nearly all things are, these days).

otoh, buy a used meter of the type I described and as long as it was not hit by a truck, it will likely work and out live YOU.

springs fail? never saw that happen. bushings fail? again, never saw that happen.

I would guess, based on your very high UID that you are a youngster and never really used or lived with such gear before.

probably better to just remain silent than to speak up and tell everyone how much you don't know.

about two weeks ago

FBI Says It Will Hire No One Who Lies About Illegal Downloading

TheGratefulNet Re:They may still hire you (580 comments)


you're only allowed to do illegal things and lie about it AFTER you are hired by the fbi.

does anyone seriously believe that 'law enforcement' is about fighting the good fight and standing up for what is right, anymore?

I have lost 101% confidence in our system's ability to do what's Right(tm). it seems only the stupid or brainwashed would want to work for the government goons.

and of course, goons is basically what they have, now, anyway.

about two weeks ago

FBI Says It Will Hire No One Who Lies About Illegal Downloading

TheGratefulNet Re:Fewer candidates to draw from... (580 comments)

2 words: parallel reconstruction.

FBI is a corrupt org, as are all the top-level 'law enforcement' orgs.

they have no right to call the kettle black, so to speak...

they break any laws they want and they use 'ends justify the means' along the way.


about two weeks ago

Samsung Paid Microsoft $1 Billion Last Year In Android Royalties

TheGratefulNet Re:Nevertheless, Microsoft is doomed (93 comments)

And desktops and laptops last more than 8 to 12 years,

NOT in a corp environment, they don't! 2 or 3 yrs, tops. corps do a 'refresh' and buy new gear (cheaper than supporting older stuff).

and every company I've been at in the bay area, for the last 10 yrs at least, has mandated windows (sometimes giving mac a choice) but they NEVER run linux on the desktop. juniper ran freebsd on the desktop for its engineers (2000 timeframe) but that's the exception, not the rule.

corps keep paying the MS tax. happily, it seems.

MS is not going away. they may not get consumers to rebuy pc's so often but corps do, that much is true.

about three weeks ago

Apple To Face $350 Million Trial Over iPod DRM

TheGratefulNet Re:This is typical of the "Jobs era" Apple (135 comments)

well, how do you make playlist with a filesystem?

really? that's your question?

% cd somewhere; find . -print > playlist.txt

or equiv.

yeah, that was REAL hard. filesystems suck for audio playback.

oh wait, NO THEY DON'T.

about three weeks ago

Debian Switching Back To GNOME As the Default Desktop

TheGratefulNet Re:How many of you are still using Gnome? (403 comments)

I try the 'desktops' every so often, but I keep getting annoyed and go back to very old fvwm1 (emulating twm. no, not kidding).

very light weight, no huge process list from hell (like all desktop linux's these days) - just the window manager, the x server and some other minor things. makes fast systems truly fast, and slower systems quite acceptable.

what do I run on a rasp pi or beaglebone? yup, fvwm1 and no 'desktop'. makes those tiny systems usable. does not need a lot of memory or disk footprint.

about a month ago

Ask Slashdot: Is iOS 8 a Pig?

TheGratefulNet Re:Alright smart guy (504 comments)

18 months, huh? you think that's long enough?

I still have my N1 phone and its still in nearly new physical condition. bugfixes and security updates stopped several years ago. should I throw it out? even CM is not updated for this phone.

otoh, I have pc's that are more than 10 yrs old, STILL SECURE and STILL able to be updated.

fuck google. they are children with a short attention span. they make linux look like something worse than MS or apple (even MS and apple give more updates than google does on older hardware.)

about a month ago

Google's Doubleclick Ad Servers Exposed Millions of Computers To Malware

TheGratefulNet Re:And there's the reason why... (226 comments)

any site that demands I disable ad-blockers is not a site I NEED to visit. so, its self-filtering.

(what's the problem, again?)

about a month ago

Microsoft Lays Off 2,100, Axes Silicon Valley Research

TheGratefulNet Re:No more cash in the bank? (109 comments)

do you live here (bay area)? I do. been here several decades.

the valley does NOT want talent. what do they want? CHEAP LABOR. quality is not important, insight is not important, even code quality is not important. speed and price is all that matters.

I wish I was kidding... ;(

about a month ago

Comcast Allegedly Asking Customers to Stop Using Tor

TheGratefulNet vpn's also get you disconnected (short term) (418 comments)

I recently moved and had CC for the previous year I was in my last place. I used a vpn almost all the time and my line stayed up pretty much 100%.

this year when I moved, I transferred CC to my new place and I continue to run a vpn. I now notice, for some reason, that after a few hours, I get a loss of ping to anything. if I stop my vpn, the default router is still unpingable. what 'fixes' it is to reboot the cable modem (and my access pfsense router, which then gets a new dhcp primary addr) and then things are good again for a few hours.

not sure if this is related, but if I don't use a vpn, the line stays up for days and weeks at a time. when I use a vpn, I get a few hours at a time.

might not mean a thing, but then again, it might. I can't quite tell yet. what I am planning on doing is designing/building a reboot/test loop so that my line will stay up even if I'm not home to notice that it went down.

I had to do that kind of thing with pacbell dsl about 10+ yrs ago (their alcatel, aka crash-catel modem was at fault back then; but same thing happened - I'd lose connectivity and only a reboot of the modem would bring it back again).

its not convenient but if this keeps my line alive, sigh, well, this is what I will have to do.

about a month ago



Alternatives to Gmail (web and IMAP, paid)

TheGratefulNet TheGratefulNet writes  |  more than 2 years ago

TheGratefulNet (143330) writes "I want to cut the cord with google and the first step is to find a good email/ISP provider. With all the snooping going on (by governments and the data center raids that happen in the US), I'd like to find an *offshore* (maybe Europe?) provider who emphasizes 'freedom' aspects, such as end to end security, data encryption on local disks, keeping absolute minimal logs/purging them frequently; as well as having a decent enough set of spam filters that they actively maintain. I *want* to pay for the sevice since I don't want ads or to have to spend time blocking stuff. I'd like to support a right-thinking ISP; are there any left, out there? Help me find a trusted offshore ISP that will likely be around and who does not do DPI and other evil things. Any recommendations for well-behaved ISPs out there?"


TheGratefulNet has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?