Announcing: Slashdot Deals - Explore geek apps, games, gadgets and more. (what is this?)

Thank you!

We are sorry to see you leave - Beta is different and we value the time you took to try it out. Before you decide to go, please take a look at some value-adds for Beta and learn more about it. Thank you for reading Slashdot, and for making the site better!



Apple Pay Competitor CurrentC Breached

WillerZ Re:It's Ironic... (265 comments)

I'm not OP but I've bought a secondhand car at £14500 on a Chip & PIN card here in the UK. Wasn't even called to confirm.

about 3 months ago

DMCA Claim Over GPL Non-Compliance Shuts Off Minecraft Plug-Ins

WillerZ Re: What the heck? (354 comments)

Illegal means "in violation of the law".

All crime is illegal, not all illegality is crime.

about 5 months ago

ARIN Is Down To the Last /8 of IPv4 Addresses

WillerZ Re:About time! (306 comments)

+1, accurate.

One of my peeves with IPv6 is that in v4 I had over 16 million legal loopback addresses out of only 4 billion addresses; now in v6 I have exactly one out of a much larger pool. It is not often useful, but it isn't always useless to use more than one of the loopback addresses on a host.

I would have preferred loopback to be a /64 rather than a /128 in IPv6: it's not like the address-space is too small to afford it.

about 9 months ago

Dr. Dobb's Calls BS On Obsession With Simple Code

WillerZ Re:To quote Einstein (381 comments)

I have never seen a complete and unambiguous requirement for any real piece of software, and I would wager no other software engineer has either.

about a year and a half ago

Aaron's Law: Violating a Site's ToS Should Not Land You in Jail

WillerZ Re:Yeah? So? That is how life works (246 comments)

You are conflating ignorance of the law with ignorance of the facts (and you appear to have copious amounts of both).

A pre-existing patent is not law, it is fact. IBM advises its employees to remain ignorant of other patents while working on products because if those products are later found infringing then their liability is reduced.

I was a Master Inventor at IBM before I quit in 2010 and we absolutely did check for pre-existing patents before filing anything new. Occasionally this would lead to wasted effort within IBM because a proposal would get further through the process than it would if the inventors had looked for relevant patents before starting work.

about 2 years ago

NVIDIA Unveils GRID Servers, Tegra 4 SoC and Project SHIELD Mobile Gaming Device

WillerZ Re:more stupidity (109 comments)

It will probably stream OpenGL commands, not rendered images.


If you can stream one rendered image every 16ms you can display 60fps. If you send OpenGL commands you will be better-off on a lot of frames but it will stutter every time you need to send a texture larger than a rendered frame (and most textures are larger than a rendered frame).

The game is to make the peak frame latency 16ms (or whatever your target is), not to reduce the average.

about 2 years ago

Petition For Metric In US Halfway To Requiring Response From the White House

WillerZ Re: there's yer problem! (1387 comments)

Actually the old-skool unit of mass is the slug, not the gram.

about 2 years ago

New Documents Detail FBI, Bank Crack Down On Occupy Wall Street

WillerZ Re:"Stifle descent?" (584 comments)

What I find odd is this: "stifle" is a relatively obscure word to use and yet they can't spell "dissent".

about 2 years ago

BLAKE2 Claims Faster Hashing Than SHA-3, SHA-2 and MD5

WillerZ Re:Missing the point (134 comments)

A very reliable rule of thumb is that if there are N possible hash values, then you should expect 0.5 hash collisions after hashing N items.

No you shouldn't. You should expect 0.5 collisions after hashing N/2 items. Trivially you are guaranteed at least M collisions when hashing N+M items.

I don't actually know off the top of my head how many collisions you should expect if you hashed N items.

more than 2 years ago

ITU To Choose Emergency Line For Mobiles: 911, or 112?

WillerZ Re:Why not both? (354 comments)

It might even be a foreign network if you're near a boarder.

If you're going to be connected to the emergency services of the wrong country anyway, I would say you have bigger problems than which number to dial.

more than 2 years ago

ITU To Choose Emergency Line For Mobiles: 911, or 112?

WillerZ Re:Prior use (354 comments)

the GSM spec contains a special call type 'emergency' which is meant to be triggered when you press that, or dial 112 or 999 (or presumably 911) so the digits really don't matter to the network. The idea was that those calls could kick someone else off the network if it was congested, for an emergency. I don't believe it was ever implemented though.

It was implemented. In the UK at least if you call an emergency number when you have a weak signal it will dramatically improve for the duration of the call as the cell tower reconfigures itself to use up to its maximum power and, as you say, drops any other call that was interfering with the call placed by your handset.

The towers are smart enough not to drop any calls or boost the power unless it will help.

more than 2 years ago

"Jedi" Religion Most Popular Alternative Faith In England

WillerZ Re:Jedi was a joke... and still is! (262 comments)

If being an atheist, Christian or Jedi ever becomes a matter that gets you brought to the attention of the Secret Service in the UK, we're beyond fucked already.

The forms linked from this page give you a good idea of what will bring you to the attention of SIS and friends.

more than 2 years ago

Microsoft To Apple: Don't Take Your Normal 30% Cut of Office For iOS

WillerZ Re:We are the 30% (724 comments)

I agree that a 30% cut is a bit too much...

b) When a company sells digital software themselves, they don't get to keep 100% of the sale price. They have to pay for hosting, bandwidth, marketing, sales processing, manhours involved in all of this, etc., etc., etc.

I own a small business selling apps on the iOS store and I agree that 30% is a reasonable price for what they provide.

Apple do nothing to market or promote your apps, so you should not have included that. You missed a relatively important factor in that they test and validate the apps they sell which gives consumers more confidence to purchase than they have on competitor's app stores.

more than 2 years ago

Text Message Spammer Wants FCC To Declare Spam Filters Illegal

WillerZ Re:Sounds reasonable (338 comments)

This sounds reasonable to me - the telephone company has no business filtering phone calls, so it should not filter text messages either. Subscribers may choose to employ a spam-blocking service, which could be provided by other people than the phone company.

I agree with this in principle, but I would add that it is a matter between the subscribers and the telephone company; I do not see that any third party has grounds to interfere in that relationship.

If the telephone company's scheme is optional, subscribers are given a clear choice, and subscribers may change their choice at any time without penalty then I would say it's fine. Failing that, if subscribers have a choice of telcos and at least one of them offers an unfiltered option there is no need for any regulator to get involved.

more than 2 years ago

What To Do After You Fire a Bad Sysadmin Or Developer

WillerZ Re:It can be worse, lots worse (245 comments)

It should be relatively easy to bust the myth: what are the capacities of the USB drives? If they are all >4Gb I don't buy that they are from 3 years ago. Drive make and model would also give you a fairly firm point for the earliest point in time at which they could have been purchased.

more than 2 years ago

Cisco Pricing Undercut By $100M In Big Cal State University Network Project

WillerZ Re:I knew cisco was expensive (220 comments)

It's worth more than all the computers and related hardware in the office combined.

Debatable. It cost more than all the computers and related hardware in the office combined for sure.

more than 2 years ago

Microsoft Patents 1826 Choropleth Map Technique

WillerZ Re:First-to-file isn't a problem (183 comments)

The only trouble with the America Invents Act of 2011 is it is not an Amendment to the Constitution, which it needs to be in order to change the original text of the Constitution which clearly specifies (re: "Inventors") the "first to invent" system over the "first to file" system.

No it doesn't. It specifies that the rights over their discoveries shall go to the Inventors but it nowhere specifies the process that inventors shall be required to undergo to secure those rights.

Under first-to-file as it is practiced elsewhere it is still illegal for anyone other than the inventor to secure a patent on a discovery. It is really a very minor change which only makes a difference in the case of near-contemporaneous discoveries. It mostly benefits accidental inventors who are less likely to be able to provide any evidence for the date of invention than the industrial-scale patent-generators who receive most patents.

A secondary effect which may turn out to be rather more important is that the current US system requires that you file within 1 year of the discovery or never file for patent protection; so an invention cannot be kept a trade-secret and used for 40 years before being patented by that same person/corporation when they feel there is a risk of someone else working it out, effectively securing them a 65-year monopoly. First-to-file elsewhere generally allows this; I am not familiar with the US statute in question.

more than 2 years ago

Schneier: We Don't Need SHA-3

WillerZ Future proofing (143 comments)

However, SHA-2 could be broken tomorrow, and this time we won't have a decade's wait while a suitable replacement is designed.

more than 2 years ago



Security flaws in iPhone CryptoExercise

WillerZ WillerZ writes  |  more than 5 years ago

WillerZ writes "Apple's CryptoExercise sample for the iPhone (sorry, link only works if you have an iPhone developer account) uses the SHA-1 algorithm incorrectly, leaving significant security holes. This is a problem given the distinct lack of other documentation on the iPhone security services. You might want to read how I recommend you fix it before modelling your application on it."
Link to Original Source


WillerZ has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?