Beta

Slashdot: News for Nerds

×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Comments

top

New SSL Server Rules Go Into Effect Nov. 1

dskoll Documentation (63 comments)

I'm curious as to what documentation the CA's required for you to prove that you own localdomain or 192.168.2.22.

4 hours ago
top

Switching From Microsoft Office To LibreOffice Saves Toulouse 1 Million Euros

dskoll Re:And... (144 comments)

In my small company, we all use Linux on the desktop. Here are our answers:

Time to learn a new system: It took my employees maybe a day to learn LibreOffice (they already new MS Office). Anyone who needs more than a day to come up to speed with casual use of LibreOffice is too stupid to be employable, IMO.

Reintegrating mail onto a new client platform: Well, I just said "Here's your email program" and gave them Claws Mail. They were up and running in about 30 minutes. Again, anyone who cannot learn a simple graphical mail client in a day or so is too stupid to be employable.

Keeping patches up-to-date: One word for you: apt-get

4 hours ago
top

How One School District Handled Rolling Out 20,000 iPads

dskoll Wrong headline (285 comments)

"How one school district threw millions of dollars down the drain"

Ooh, shiny.... must be useful for educational purposes....

4 days ago
top

Critroni Crypto Ransomware Seen Using Tor for Command and Control

dskoll Re:Time to get rid of Tor (122 comments)

The problem with Egypt, Syria, Libya and Tunisia is they've suffered over a thousand years of Islam. That has left their population with a fatalistic outlook, their leaders corrupt and their drive and innovation sapped. The Internet is not going to free the billion humans who live enslaved to Islam. Unfortunately, only the people themselves can do that by throwing off the stultifying oppression of Islam, and that's not happening any time soon.

5 days ago
top

Selectively Reusing Bad Passwords Is Not a Bad Idea, Researchers Say

dskoll Re:Dumb dumb dumb advice... (278 comments)

Actually, writing down your password is a good idea as long as you keep it in your wallet. People understand how to protect their wallets. Posting it in a public place is probably not such a good idea.

about two weeks ago
top

Selectively Reusing Bad Passwords Is Not a Bad Idea, Researchers Say

dskoll Re:Dumb dumb dumb advice... (278 comments)

There are some sites where it truly doesn't matter.

I don't believe that. You may think it doesn't matter, but when it comes to identity theft, any little crumb of information may be useful to an attacker. And if you use the same weak password across a whole slew of supposedly "unimportant" sites, an attacker may be able to piece together a lot of information about you... enough to surprise you with cell phone bills you didn't sign up for, credit cards in your name, etc.

about two weeks ago
top

Selectively Reusing Bad Passwords Is Not a Bad Idea, Researchers Say

dskoll Re:Dumb dumb dumb advice... (278 comments)

But I sure as fuck am not going to put ALL of them into ANY app or single program - there are backdoors built into routers these days, you expect some start-up (or even established) "password keeper" doesn't have that possibility? I am concerned for your common sense.

Woah, woah, woah, chill out!

I have the complete source code for my password manager. And guess what... I've even read the source code!

It uses "openssl bf" to encrypt (that's the Blowfish cipher). In spite of all the warnings about OpenSSL holes, I don't believe anyone's yet found a problem with its Blowfish implementation, and though Blowfish is old and there may be weak keys, I don't believe it has serious vulnerabilities especially when only used to encrypt small files.

about two weeks ago
top

Selectively Reusing Bad Passwords Is Not a Bad Idea, Researchers Say

dskoll Re:Dumb dumb dumb advice... (278 comments)

If you don't have Internet access, then remembering your password for a web site is moot.

If you have only insecure Internet access, then you don't do anything important unless you can use HTTPS and make sure you validate the certificates.

That means they are both weak to being cracked/tampered with, and should your device be stolen, you are without all your passwords.

To defend against the first attack, you choose a strong master passphrase and you make sure your password manager uses a properly-implemented and secure encryption algorithm such as AES. To defend against the second attack, you regularly back up your password database. It's not rocket science.

about two weeks ago
top

Selectively Reusing Bad Passwords Is Not a Bad Idea, Researchers Say

dskoll Re:Dumb dumb dumb advice... (278 comments)

I have two off-site backups: One to an encfs partition in my office and one to an encfs partition in a colocated server 200km away. Next question?

about two weeks ago
top

Selectively Reusing Bad Passwords Is Not a Bad Idea, Researchers Say

dskoll Re:Dumb dumb dumb advice... (278 comments)

I use something called TkPasman, which runs on my Linux desktop. I don't use a mobile device much to surf the web, and never to log into any sites I care about because it's just too painful.

I could access it in a pinch by tunneling X over SSH back to my main computer, and I have done so in the past. Another thing I do is sync the password database to the handful of Linux desktops I use on a regular basis.

The password manager keepassx is available for Mac OS, Windows and Linux and you can sync the databases. I'm not aware of one that also works on Android or IOS, though. :(

about two weeks ago
top

Selectively Reusing Bad Passwords Is Not a Bad Idea, Researchers Say

dskoll Re:Bah (278 comments)

The linked paper did mention password managers in passing, but dismissed them as being vulnerable to client-side malware which could compromise all your passwords. That assumption is true if you're running your password manager on a Windows system, I suppose, which is likely the only thing the "Redmond researchers" are even aware of. But if you keep your password manager on a separate device or run it under a secure sandbox in a secure OS, you're much better off than the paper implies.

about two weeks ago
top

Selectively Reusing Bad Passwords Is Not a Bad Idea, Researchers Say

dskoll Re:Dumb dumb dumb advice... (278 comments)

Following up on myself: That research paper is awesome! Never before have I seen the use of partial differential equations to justify unequivocal bullshit. Amazing! They must've really worked hard on that.

about two weeks ago
top

Selectively Reusing Bad Passwords Is Not a Bad Idea, Researchers Say

dskoll Dumb dumb dumb advice... (278 comments)

That is just so stupid. Use a password-keeper and use strong passwords everywhere. Then you only need (1) physical access to your password keeper and (2) to remember one strong passphrase.

about two weeks ago
top

'Hidden From Google' Remembers the Sites Google Is Forced To Forget

dskoll Re:Awesome! (163 comments)

The "Right to Forget" could be a good ruling if the EU added two conditions:

  1. A fee (lets say between $25-$50) for each takedown request. That is a small enough fee that it won't deter someone who really wants to get rid of an embarrassing search result, but it's big enough to deter organizations like the Scientologists from making thousands of requests.
  2. A determination by a judge, tribunal, etc. that taking down the search result is in the public's interest.

about two weeks ago
top

'Hidden From Google' Remembers the Sites Google Is Forced To Forget

dskoll Re:Awesome! (163 comments)

If I'm a victim of slander, I'll go after the slanderer and the site publishing the slander, not Google for indexing it. Existing laws are quite sufficient to handle this case.

about two weeks ago
top

'Hidden From Google' Remembers the Sites Google Is Forced To Forget

dskoll Awesome! (163 comments)

I hope this makes people think twice before filing a forget-me request. It ensures they'll be remembered.

about two weeks ago
top

Meet the Muslim-American Leaders the FBI and NSA Have Been Spying On

dskoll I thought FBI/NSA spied on everyone (223 comments)

Is this really news? Are we going to have an exposé entitled "Meet the model railroad enthusiasts the FBI and NSA have been spying on" ?

about two weeks ago
top

U.S. Supreme Court Upholds Religious Objections To Contraception

dskoll Summary (1330 comments)

TL;DR: We hereby decide that those who believe in supernatural creators, talking snakes and magical rib-women are more qualified than medical professionals to decide who gets what medical treatment.

Thank you,

The Christian Republic of United States (Supreme Court Fatwa #1)

about three weeks ago
top

NYC Loses Appeal To Ban Large Sugary Drinks

dskoll Re:Let them drink! (532 comments)

It was not your over a regulated banking system that prevented the problem It was good business sense.

I disagree. I don't think Canadian bankers have any more business sense the US bankers. If they could have gone on the wild subprime mortgage ride, they probably would have. But strict government regulations limited what they could do. So our banks had "dismal" profits in 2007 compared to US banks, but at least they were all still standing in 2009. See this analysis for example.

about a month ago
top

NYC Loses Appeal To Ban Large Sugary Drinks

dskoll Re:Let them drink! (532 comments)

One study in the U.S. concluded that smokers save society 32 cents for every cigarette they smoke

OK. Here's something I don't expect Americans to grasp, but I'll say it anyway:

Sometimes there are more important values at stake than financial consideration.

The laws as expressed by government should be a reflection of the values of the population. If all the population cares about is money and nothing else, then that's not a society I'd care to live in.

about a month ago

Submissions

dskoll hasn't submitted any stories.

Journals

dskoll has no journal entries.

Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Create a Slashdot Account

Loading...