×

Announcing: Slashdot Deals - Explore geek apps, games, gadgets and more. (what is this?)

Thank you!

We are sorry to see you leave - Beta is different and we value the time you took to try it out. Before you decide to go, please take a look at some value-adds for Beta and learn more about it. Thank you for reading Slashdot, and for making the site better!

Comments

top

The Correct Response To Photo Hack Victim-Blamers

Zapotek Reality? (622 comments)

that for the celebrities taking their nude selfies, the probable benefits of their actions outweighed the probable negatives

What the hell is wrong with the author, basing his proposition on a premise that was already proven to be wrong by reality? Wasn't the leak a probable negative? Didn't it outweigh the probable positives?

about 2 months ago
top

The Site That Teaches You To Code Well Enough To Get a Job

Zapotek Re:Face Palm (131 comments)

I'm working with Ruby code all day, and you were quite right to facepalm. That wasn't some convoluted one-liner, it was perfectly readable and didn't allocate space for an unnecessary lambda as the final "clean" iteration does. Anything more complicated than that and breaking it into pieces wouldn't hurt, the one-liner cleverness gets old ready fast if abused.
Ironically enough, the clever code of old that had to be creative to deal with low specs is one of the cleanest, clearest, most elegant code I've seen. I used to review ancient Linux, FreeBSD and Xenix source to pass the time on slow days at the office and it was beautiful. On the other hand, I guess it kind of had to be, because debugging anything complex back then would have probably been hell (I'm assuming, I'm not old enough to know).

about 3 months ago
top

Uber CEO: We'll Run Your Errands

Zapotek Re:Urban Fetch (139 comments)

You don't think cheap access to unlimited infrastructure can make a difference?

about 3 months ago
top

Responding to Celeb Photo Leaks, Reddit Scotches "Fappening" Subreddit

Zapotek Re:Bah humbug censorship (307 comments)

Did you just call me politically correct? You've gone too far mate...

about 3 months ago
top

Responding to Celeb Photo Leaks, Reddit Scotches "Fappening" Subreddit

Zapotek Re:Bah humbug censorship (307 comments)

The examples I gave ware successful in demonstrating a high-risk situation vs a low risk one, and that adults should be able to assess these sorts of situations properly.

Nowhere did I suggest that people be IT professionals, as it's not about the cloud nor any other intricate technicality, but I simply stated that you should flat out not create documents of any sort that can be damaging to your image, if that image is important to you. Someone hacking your account, someone stealing your phone or laptop, you forgetting your phone at a park bench, you accidentally sending them to the wrong person and a myriad of other reasons should discourage you from putting yourself at risk without any real benefits. Those people have spectacularly failed at that, so part of the blame goes to them, as well as to the people who violated their privacy, if we want to be realistic.

You called them hapless, you accounted them no responsibility, essentially treating them as non-people. Is that really the right way to treat healthy adults?

Finally, your post makes it sound like I'm on some sort of a crusade against them or as if I were defending the people who both broke valid laws and violated someone else's privacy, which I absolutely did not. Your excessive defensiveness and offensiveness stems from your own issues man, don't put that on me.

about 3 months ago
top

Responding to Celeb Photo Leaks, Reddit Scotches "Fappening" Subreddit

Zapotek Re:Bah humbug censorship (307 comments)

Quit with the black and white stuff, it's not that clearcut. If you walk past a neighborhood which is known for its high criminal activity wearing a Rolex, holding a $600 iPhone with one hand and a $2000 laptop with the other, then yes, it obviously is also your fault if you get mugged. The universe does not stand on principles.

The problem is that people (you being a prime example) fail to calculate risk effectively. For example, the risk of someone hacking a PCI compliant institution and stealing my credit card info (from a card with limited funds which I only use for on-line purchases) is low enough that doesn't dissuade me from making CC purchases -- also taking into account other safeguards.

However, if public image was important to me then I certainly wouldn't store embarrassing pictures of me anywhere. Especially not on a laptop I'd brazenly display while walking past a bad neighborhood -- or someone else's server.

Also, if you're looking to get rubbed[sic] then $1000 in cash would certainly help.

about 3 months ago
top

Silicon Valley Fights Order To Pay Bigger Settlement In Tech Talent Hiring Case

Zapotek Re:Fair? (200 comments)

And what happens with the thousands of people who have the H1B visas?

about 3 months ago
top

The Grumpy Programmer has Advice for Young Computer Workers (Video)

Zapotek Re:Transcript... (120 comments)

I learned that many programmers are musicians or good at various art forms. Which surprised me because I was a good programmer and can't play a musical instrument or do anything artistic at all.

Music is basically counting and patterns, something that should come naturally to most programmers. The music theory jargon can easily go over your head at the beginning but you don't need to dive into it to actually play music at a basic level, and after you get some practise and a feel for it, the more advanced stuff start to make sense.

The hard part is actually getting some level of technical proficiency over your instrument of choice, dexterity is rarely useful in real life but it's the basis of playing most instruments.

If you can whistle a tune you can play music, getting control over the new medium (the instrument in this case) is the biggest issue, as the learning curve is highly steep and the fact that you'll initially sound like crap doesn't provide adequate positive re-enforcement, something necessary to any learning process.

Also, the fact that the cheap learner instruments sound really bad and are much harder to play than the expensive awesome sounding stuff doesn't help either.

PS: I'm an amateur self-taught guitar player, maybe someone with actual training can provide a better perspective.

about 4 months ago
top

New Nail Polish Alerts Wearers To Date Rape Drugs

Zapotek Re:A few issues with this... (595 comments)

Everyone focused on the very personal concern I voiced, which is me being grossed out by the finger dipping approach. No-one touched on the very real issue of whether there were any compromises in accuracy for making this thing work as a nail-polish. For Pit's sake I've got a sister and plenty of female friends and I don't want them to get in trouble just because they trusted a product based on how popular it is, due to people drowning out valid criticisms, like mine.
I don't care if someone claims they've found the cure for cancer, show me the data, then I'll tattoo your name on my forehead.

Also, I don't have to have a better idea to voice concerns, just like I don't have to be a master chef to say that I don't like the food at a restaurant.

about 4 months ago
top

New Nail Polish Alerts Wearers To Date Rape Drugs

Zapotek Re:A few issues with this... (595 comments)

That's a good point. If this thing is accurate too that'll be awesome.

about 4 months ago
top

New Nail Polish Alerts Wearers To Date Rape Drugs

Zapotek Re:A few issues with this... (595 comments)

Fair enough, that sounds gross to me but that's just my problem, which is why I'd prefer the strips. Possible compromises in accuracy can be a real problem though, does anyone have any resources they can link to on the subject?

about 4 months ago
top

New Nail Polish Alerts Wearers To Date Rape Drugs

Zapotek Re: A few issues with this... (595 comments)

Dude, I'm a guy, who doesn't wear nail-polish.

about 4 months ago
top

New Nail Polish Alerts Wearers To Date Rape Drugs

Zapotek Re: A few issues with this... (595 comments)

How am I shitting on the idea? Criticism is how you get improvement. Also, even if I were shitting on the idea, I'm pretty sure that'd have absolutely zero effect overall. You know this is a public forum right? I don't have veto power over the product, I'm just throwing my concerns out there, lighten up.

about 4 months ago
top

New Nail Polish Alerts Wearers To Date Rape Drugs

Zapotek Re:A few issues with this... (595 comments)

I think the subtlety will wear-off once this invention becomes common knowledge, if someone can see you dip a strip, they can see you dip your fingers. Actually, I can palm and dip a strip without others noticing, I can't do the same with my fingers though.
And I still can't help but find it gross, and not all drinks have a high alcohol content, and you'd be surprised what's under your fingernails -- cba to find the oblig XKCD.

about 4 months ago
top

New Nail Polish Alerts Wearers To Date Rape Drugs

Zapotek A few issues with this... (595 comments)

First of all, you've got to stick your fingers in your drink, which doesn't seem at all appealing. Why nail-polish? Why not just use the strips? If all you had was nail-polish and someone came out with strips, that'd be an improvement. This looks like a step backwards.
Secondly, what's the false-positive/false-negative rate on this thing? Were there any compromises in accuracy in order to make it work as a nail-polish?

Again, doesn't anyone see a problem with sticking your fingers in your drink? I know I'm the finicky type, but doesn't this look bothersome to anyone else?

about 4 months ago
top

Facebook Seeks Devs To Make Linux Network Stack As Good As FreeBSD's

Zapotek Re:Biggest troll on Slashdot ever (195 comments)

How is that an insult? As a coder (software engineer/developer/whatever) myself I'm always glad when people point out things in my systems that can be improved. The possibility of someone hiring someone else to improve them for me, that'd make me ecstatic. This isn't about egos, this is about getting stuff done right.

about 5 months ago
top

Porn-Surfing Execs Infecting Corporate Networks With Malware

Zapotek Re:Why porn sites and malware? (151 comments)

Seems easier to setup a porn website to serve malware than a sports one. Not much need for coherence of content in porn, just random pictures/videos of naked people; plus, it really catches the eye.

about a year ago
top

As IPO Nears, Do Twitter's Active User Claims Add Up?

Zapotek Re:The Funny Part (73 comments)

I don't know who modded you interesting but they're wrong and so are you. My buying a product from a store appearing as a first result makes you wrong, along with plenty of other people quite probably. I'm not saying that I selected a store based on its position in the results, but the first-result shop carried the product I wanted and I didn't have to look any further.

I'm not defending all the SEO ball-busting spammers and pseudo-experts (not by a long shot), but it's reasonable to expect that making a website friendly to search engines will make it easier to find and get you more visitors and customers.

about a year ago
top

Google Bots Doing SQL Injection Attacks

Zapotek Re:HTTP RFC - Section 9.1 Safe and Idempotent Meth (156 comments)

I'm not sure to which line of thinking you're referring, both myself and the GP just posted a technical remark each. Also (to my great joy and surprise) no-one is blaming Google (at least not yet) and rightly so.

As for the back-end countermeasures you described, you are of course spot on, however it's safe to assume that if you're vulnerable to something as trivial and mundane as SQL injection, you won't have the required foresight to setup and use different DB roles, each with the absolutely least privs for the queries you expect to perform through them.

about a year ago

Submissions

top

Security Assessments of Modern Applications Made Accessible by Arachni v1.0

Zapotek Zapotek writes  |  about 3 months ago

Zapotek (1032314) writes "With web application security breaches being all the rage, the situation was further worsened by the lack of open systems, that can accurately assess the security of modern web applications. Today's requirements for HTML5, DOM, JavaScript and AJAX technologies meant that automated security assessments of modern applications could only be performed via closed-source and prohibitively priced products, as their free and open-source counterparts were severely lacking in support for such advanced features. However, with the breakthrough release of Arachni Framework v1.0, there is now a free and open-source system that not only has adequate support for the necessary features, but surpasses even the most established commercial products at common industry security benchmarks.
(Full disclosure: I am Tasos Laskos, the founder and lead developer.)"
top

Arachni v1.0, the F/OSS webappsec scanner with integrated browser environments

Zapotek Zapotek writes  |  about 3 months ago

Zapotek (1032314) writes "In the world of web application security scanners, the disparity in crawl coverage and vulnerability detection has always been rather significant between commercial offering from big names such as IBM and Hewlett-Packard and F/OSS projects; this was in no small amount due to the fact that F/OSS systems have been severely lacking in support for modern technologies, such as HTML5/JavaScript/AJAX/DOM. The Arachni Framework v1.0 has now crossed that line and is the first F/OSS system to support such complex features, allowing it to surpass even the most established commercial offerings in vulnerability coverage, detection and accuracy. In an effort to make a quality security scanner available to all, we would like to invite penetration testers and administrators to try it, provide us with their valuable feedback and generally get the word out. Thank you in advance, Tasos Laskos — founder and lead developer."
top

The true reasons behind the LHC site defacement, o

Zapotek Zapotek writes  |  more than 6 years ago

Zapotek writes "Many news sites have misinterpreted the message of the defacement of CERN's LHC website left by Greek crackers.

Thankfully, a colleague and friend of mine, George Chlapoutakis (also known as DarkSYN) got his hands on a genuine screenshot of the defacement containing the full message in the Greek language and proceeded to write an accurate translation.
The story sums up as follows:

The purpose of GST (or Greek Security Team's) intrusion was neither to disrupt the experiment, nor to humiliate the CERN admins.
Their statement was against their adversaries in the Greek underground scene and the only reason they chose this site was due to it's extraordinary traffic.

"

Link to Original Source
top

Segfault.gr (Beta) :: Projects :: vget

Zapotek Zapotek writes  |  more than 6 years ago

Zapotek writes "vget is a Linux video downloader for the Veoh service.
It is written in C using the cURL, libXML2 and ncurses libraries.
vget requires no personal data, no authentication of any kind and no registration.
Finally, it downloads the full-time, high-resolution, original uploaded videos."

Link to Original Source

Journals

Zapotek has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?