Announcing: Slashdot Deals - Explore geek apps, games, gadgets and more. (what is this?)

Thank you!

We are sorry to see you leave - Beta is different and we value the time you took to try it out. Before you decide to go, please take a look at some value-adds for Beta and learn more about it. Thank you for reading Slashdot, and for making the site better!



Silk Road Journal Found On Ulbricht's Laptop: "Everyone Knows Too Much"

grnbrg Re:What an idiot (180 comments)

Not much use if the create a distraction and grab the laptop before you can do anything...

4 days ago

Silk Road Journal Found On Ulbricht's Laptop: "Everyone Knows Too Much"

grnbrg Re:Encryption, motherfucker, do you speak it? (180 comments)

It was encrypted. And seized while he was logged in and active.

Initial analysis was done before the laptop was allowed to shut down.

The feds may be cavalier about laws, but it's a mistake to think they are stupid.

4 days ago

Silk Road Journal Found On Ulbricht's Laptop: "Everyone Knows Too Much"

grnbrg Re:What an idiot (180 comments)

Apparently he was arrested (in public) at a library, and the techs who got the laptop knew what they were doing...

It was logged in, and they spend several hours copying data without letting it sleep or lock.

Full disk encryption is great, but assumes that you won't have unlocked it for the attacker.

5 days ago

Canadian Copyright Notice-and-Notice System: Citing False Legal information

grnbrg Re:In Canada it is legal to download and rip movie (172 comments)

> In Canada, once you have paid for a license of a movie, it is legal to rip it from a physical copy, or download a digital copy.

The problem being, is that it is still illegal to upload that digital copy. And bittorrent is peer-to-peer, which means unless you have specifically configured your client to *not* *share* with other members of the swarm, you are uploading.

Where do you think the notice companies get your IP address? You sent them a piece of whatever content they're complaining about.

about three weeks ago

Microsoft Quietly Starts Accepting Bitcoin As Payment Method

grnbrg Re:As a Market Lover (107 comments)

The creation itself seems troubled with the possibility of fraud.

Do some reading. Bitcoin is absolutely uncounterfeitable.

Unfortunately, there have been more than a few fraudulent exchanges, which has more to do with the involvement of amateurs than anything else. The marketplace is improving fast.

about a month and a half ago

Another Election, Another Slew of Voting Machine Glitches

grnbrg Re:Restating the obvious... (388 comments)

There have been multiple places where the total paper ballots cast exceeded the number of eligible voters. Paper changes the fraud, but does *nothing* to stop it.

Stuffing a ballot box with fraudulent paper ballots is risky, and relies on many people to be effective in multiple polling locations.

Falsifying electronic records requires a few people at a strategic points, and can be impossible to detect.

about 3 months ago

Adobe Spies On Users' eBook Libraries

grnbrg Re:plenty of alternatives to adobe (150 comments)

Yes, of course your lending habits are kept private, and legally protected. You can relax.

The access logs of the security cage, on the other hand.....

about 4 months ago

Network Hijacker Steals $83,000 In Bitcoin

grnbrg Re:How did people not notice this early? (101 comments)

I got hit April 25th with this. I noticed within an hour, and it took me about an hour to determine that my connection to the pool had been spoofed, and my miners redirected to the attackers pool. I had no idea at the time *how* it was done.

My mining software was a couple of months old at the time, and the latest version would ignore such redirect requests. I updated and continued on, having lost maybe 2 hours of mining.

The redirect comes from that fact that the "Stratum" protocol used by many minors to request work from the pools was originally designed as a wallet to blockchain server protocol. Under that use case, it makes sense that the server might suggest to a (wallet) client that they use another server.

about 6 months ago

Mass. Supreme Court Says Defendant Can Be Compelled To Decrypt Data

grnbrg Re:Except, of course, they have to prove you can (560 comments)

There is a hierarchy of trustworthiness with the judge at the top, and the dirty criminal at the bottom. Anything the police say will be believed over what you (the dirty criminal, otherwise why would you be arrested) say. Lawyers are above the police in that hierarchy.

about 7 months ago

Ask Slashdot: How To Bequeath Sensitive Information?

grnbrg Shamir's Secret Sharing and Encryption. (208 comments)

Pick a nice, long, secure passphrase. Use it to secure a GPG keypair. Back up this keypair in multiple locations, and with multiple people who know "This is the key that encrypts all of my digital stuff. My family will need it when I die.".

Use that keypair to encrypt all of your important passwords and data. Back up the encrypted files in multiple locations. Make sure your family knows where these locations are, and why thy and the files they contain are important.

Download a copy of http://passguardian.com/ . Load the saved copy (preferably in an offline PC) in a browser, and use it to convert your passphrase into several N of M parts. ie: Create 10 parts, and require at least 6 to reconstruct the passphrase.

Use something like http://goqr.me/ (or any other generator) to create QR codes for the 10 secret shares. Laser print the text share, QR code and some instructions onto a business card sized piece of paper, and have them laminated.

You now have 10 waterproof, hard to damage cards, any 6 of which will unlock your digital data. Distribute them to trusted parties and locations with instructions to use the shares once they hear and confirm your death. These parties don't have to be literate enough to merge and decrypt the data themselves, they just need to know that it is possible with their share. On your death, they will arrange to bring the shares and data together, and even if they have to hire a nerd to help them, they will unlock what they need.

about 7 months ago

Theater Chain Bans Google Glass

grnbrg Re:Ban them everywhere! (376 comments)

Alamo Drafthouse is banning them, and I doubt they care at all about the piracy thing - they ban talking and any sort of device use or distracting behavior flat out. People go there to watch the movie, if you want to play with your electronics instead, there are plenty of other places to go.

And from what I've read, if they catch you using your electronics, they'll help you get started finding those other places by escorting you to the parking lot. :)

about 8 months ago

Japanese and Swiss Watchmakers Scoff At Smartwatches

grnbrg Re:Maybe they should ask corded phone manufacturer (399 comments)

Corded phones didn't cost $350 - $500 either.

$350-$500 puts you into the range of cheap trash and knock-off timepieces. Try adding a zero. Or two.

I'm a geek, and I've got a Pebble that I wear fairly regularly. But the watch I wear when I want to dress up a bit (or when I get tired of the cheesy plastic smart watch) is a Tag Heurer with an automatic movement. The Pebble is neat, and has IMHO the right balance of features and price. But it has no soul.

about 9 months ago

Bitcoin Inventor Satoshi Nakamoto Outed By Newsweek

grnbrg Re:"It's been turned over to other people" ? (390 comments)

It's not encoding anything. Miners are basically doing sha256( sha256( block header info + random number )) until the result has (currently) about 15 leading zeros.

There is no room in the protocol to do anything else, or solve some sort of background problem.

about a year ago

Yep, People Are Still Using '123456' and 'Password' As Passwords In 2014

grnbrg Re:"it's a shock" (276 comments)


I've probably contributed a "Mr. Test Testuser, 123 Main St, Somewhere, CA, 90210" password 1234 once or twice a year for the last decade....

1 year,4 days

23-Year-Old X11 Server Security Vulnerability Discovered

grnbrg Re:The usual clueless submission... (213 comments)

When was the last time you installed a "specially crafted" bdf font from anywhere?

You don't have to. Anyone with a writeable ${HOME}/.fonts can.

This could be really big.

1 year,19 days

Ask Slashdot: How To Protect Your Passwords From Amnesia?

grnbrg PassGuardian, with N of M secret reconstruction. (381 comments)


This uses Shamir's Secret Sharing algorithm to take your password, and split it into a configurable number of pieces, and requires a subset of those shares to reconstruct the original. Take your master password, split it into 10 shares, and require 5 shares to reconstruct. Then distribute the 10 shares to secure locations and trusted people.


Password: 12345
Share 1: 801650d0edcbd0c3c949f
Share 2: 802c91a40a532182e3570
Share 3: 803ad177a79bc1420a1de

Any 2 shares can reconstruct the password.

And the site runs entirely in Javascript. You can save it to a USB stick and run it from an offline PC, so you don't have to worry about your password being stolen.

1 year,19 days

Bitcoin Tops $1,000 For the First Time

grnbrg Re:Reminds me of other inflated markets (371 comments)

Who needs luck?

Over the last couple of years, I've put a two to three thousand dollars into Bitcoin... I've made some bad decisions, and currently have "only" 20 BTC or so.

If the whole thing implodes, and those coins become worthless... I've had a hell of a ride, and think the couple of grand was well spent for the entertainment. On the other hand, if it takes off and Bitcoin turns out to be the next big thing like Ebay or Facebook, I can retire early.

about a year ago

Cyprus University Accepts Bitcoin For Tuition Fee Payments

grnbrg Re:Good Luck (157 comments)

There are no regulated exchanges yet, and the unregulated ones occasionally disappear with all the money.

Sounds like PayPal. :)

about a year ago

Cyprus University Accepts Bitcoin For Tuition Fee Payments

grnbrg Re:When will people accept it's not a real currenc (157 comments)

Please can we see an end to the "it's not a real currency" posts. It's money and you can buy stuff with it. The end.

Heh. You waited too long for the punchline... Just about everyone started foaming before they got to the end.

Not everyone missed the bus, though. :golf clap:

about a year ago


grnbrg hasn't submitted any stories.


grnbrg has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?