Announcing: Slashdot Deals - Explore geek apps, games, gadgets and more. (what is this?)

Thank you!

We are sorry to see you leave - Beta is different and we value the time you took to try it out. Before you decide to go, please take a look at some value-adds for Beta and learn more about it. Thank you for reading Slashdot, and for making the site better!



Secret Service Investigating Small Drone On White House Grounds

WD Will this scale? (146 comments)

What will folks do when drones get to be insect sized?

3 days ago

Microsoft Outlook Users In China Hit With MITM Attack

WD Who says that the attack is over? (35 comments)

The evidence that China was performing MITM attacks on Outlook.com was because of temporary use of an SSL certificate chain that wasn't signed by one of the hundreds of root CAs included with modern operating systems. (and therefore the software complained)

If the software people are using stops complaining about the SSL certificate chain, does that mean that they're not performing MITM anymore? Hell no. At the very least it means that they're just using an SSL certificate signed by one of the hundreds of trusted root CA certificates. You know, like CNNIC. The internet organization with ties to the Chinese government.

about two weeks ago

Adobe Patches Nine Vulnerabilities In Flash

WD It's Patch Tuesday (95 comments)

This sort of thing happens every month. Microsoft, Oracle, Apple, etc. This is news?

about two weeks ago

How To Hijack Your Own Windows System With Bundled Downloads

WD Easier said than done (324 comments)

How do you teach a non-geek to find and recognize the canonical source for a software download? Is http://www.vlc.cc/ the official VLC site? Is http://www.7zipdownload.org/ the right place to get 7-zip? Is http://www.libtiff.org/ the place to get the latest LibTIFF? The answer to all of these is "No", but I'd like to hear the teaching technique that allows a non-geek to come to these conclusions.

about two weeks ago

Ask Slashdot: IT Career Path After 35?

WD Do you want to be a manager? (376 comments)

If so, pursue it. Don't do it because all your friends are becoming managers.

about 2 months ago

Reported iCloud Hack Leaks Hundreds of Private Celebrity Photos

WD Let me get this straight... (336 comments)

1) Takes nude photos of themselves with an internet-connected device.
2) Has said photos of themselves synchronized with an internet service
3) Is surprised / outraged that said photos are accessed by somebody on the internet.

I'm not saying that those people are to blame, but rather that there is a significant disconnect between technology and users' expectations. And the companies involved aren't making things any better with their hand-waving "cloud" mumbo-jumbo.

about 5 months ago

Internet Explorer Vulnerabilities Increase 100%

WD Vulnerabilities did not increase (137 comments)

Just because you don't know about vulnerabilities, that doesn't mean that they're not there. The vulnerabilities are present in the code before they are discovered.

Having said that, drawing conclusions from vulnerability counts is usually an exercise in futility. There are many factors that affect how many vulnerabilities are discovered and disclosed. Including availability of vulnerability-finding tools, discovery of novel attack techniques, or simply critical mass of interest in the security field.

about 6 months ago

Anti-Virus Is Dead (But Still Makes Money) Says Symantec

WD Re:No explanation for why though? (254 comments)

When on earth did AV detect 95% of attacks? (hint: never)

about 9 months ago

Heartbleed Sparks 'Responsible' Disclosure Debate

WD Re:WTF? (188 comments)

"High risk of leaking?" And what would the consequences of such a leak be? The affected vendors are only slightly better off than they were with how it actually turned out with Heartbleed?

When Heartbleed was disclosed, virtually no affected vendor (e.g., Ubuntu, Cisco, Juniper, etc.) had an update available. So there was a window where the vulnerability was public, but nobody had official updates from their vendor that would protect them. You are claiming that this is better than a coordinated release, where there would have been actual updates available to install?

It's not "buddies" that is being discussed here. It's the people producing the software that is affected!

about 9 months ago

VLC Finally Launches App For Windows 8

WD Re:Costs money (170 comments)

Right. Because the primary concern at Microsoft is that people get the legitimate software that they're looking for: http://i.imgur.com/ydSDGNR.png

Depending on your monitor brightness/contrast and your attention to detail, well, you get the picture...

about 10 months ago

IE Vulnerability Exposing Banking Logins, Spreading Rapidly

WD Re:If we were serious about security... (93 comments)

The vulnerability is a use-after-free bug triggered by DHTML. If DHTML is a feature that you don't care for, feel free to switch to Lynx or Mosaic.

about a year ago

Dear Asus Router User: All Your Cloud Are Belong To Us

WD Guerilla-style hacking disclosure?? (148 comments)

Give me a break. A vulnerability was disclosed, and then some time after that it was leveraged by attackers in the wild. This is what happens.

about a year ago

Netflix Users In Danger of Unknowingly Picking Up Malware

WD How does this stuff get the green light? (153 comments)

1) This has nothing to do with Netflix. I am a Netflix user and I suspect that my Roku is not affected by the vulnerability in question.
2) Silverlight *does* get updated with automatic updates.
3) The vulnerability in question was fixed in March (MS13-022).

about a year ago

Apple Developing Curve Screen iPhones and Improved Sensors

WD Re:The cost of consonants (243 comments)

You're criticizing the grammar of a submitter's summary? You must be new here.

about a year ago

Leaked Manual Reveals Details On Google's Nexus 5

WD Re:Crazy tech? (177 comments)

If you'd bother to RTFA, you would have noticed that the phrase "crazy Nikon tech" is hyperlinked.

about a year ago

First Cases of Flesh-Eating Drug Emerge In the United States

WD Crocodile? (618 comments)

A drug that causes scaly green skin and is called crocodile? Ok, I have to admit that I had to look up that this isn't an early/late April fools joke.

about a year ago

SSD Annual Failure Rates Around 1.5%, HDDs About 5%

WD Re:Poor statistics (512 comments)

I tell folks if they want an SSD don't have anything on it they would feel bad if they lost
How about you tell people that it's unsafe to use a computer without a viable backup scheme, regardless of the type of drive they use?

about a year ago

German Government Warns Windows 8 Is an Unacceptable Security Risk

WD This is absolute nonsense (373 comments)

Has there been the same sort of outcry for iPhones being unacceptable security risks? I mean, Apple controls what software you can put on the device. And they can pretty much do anything to the device that they want without asking you. For any software that you use, you are trusting the vendor. You trust Microsoft to not push out a backdoor on patch Tuesday. You trust Google to not intercept your banking credentials with an automatic/silent Chrome update. etc. etc... There's no justification to say OMG Windows 8 now suddenly gives the ability for someone else to do something I might not want.

On a technical level (e.g. included exploit mitigations), Windows 8 is safer than any other Windows operating system. Even if Windows does go down the iOS route of only running approved software, does that really make it less safe? Maybe vendors are starting to realize that it's OK if Joe Home User can't run CuteKittens.exe that was just emailed to him.

Don't trust software vendors or other people? Good. Write your own OS and don't plug it into the internet. If you get that far.

about a year and a half ago


WD hasn't submitted any stories.


WD has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?