Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Comments

top

Ask Slashdot: How Do You Automatically Sanitize PDF Email Attachments?

guusbosman Re:Test the Attachments (238 comments)

This is already reality. So called "red pills" allow malware to find out if its are running in an emulator or virtual machine.

Here's a paper that describes automatically generating such red pills:

"A fistful of red-pills: how to automatically generate procedures to detect cpu emulators" by R. Paleari, L. Martignoni, G. F. Roglia, and D. Bruschi
https://www.usenix.org/legacy/event/woot09/tech/full_papers/paleari.pdf

The authors found more than 23k red-pills to detect QEMU and/or BOCHS.

about a year ago
top

Ask Slashdot: How Do You View the Wall Street Protests?

guusbosman Re:Where's your $50,000? (1799 comments)

Let's look at what page 131 of the GAO report says about Table 8 (http://www.gao.gov/new.items/d11696.pdf).

First of all, these are loans, not bailouts.

Second, for at least half of the amount (the PDFC loans), the number is highly inflated: "For example, an overnight PDCF loan of $10 billion that was renewed daily at the same level for 30 business days would result in an aggregate amount borrowed of $300 billion although the institution, in effect, borrowed only $10 billion over 30 days."

more than 2 years ago
top

Chapel Hill Computational Linguists Crack Skype Calls

guusbosman Similar work in a December 2010 paper (156 comments)

A December 2010 paper, "Uncovering Spoken Phrases in Encrypted Voice over IP Conversations", takes a similar approach.

The article was published in ACM Transactions on Information and System Security, PDF version.

The paper details a gap in the security of VBR compressed encrypted VoIP streams. The authors had earlier found that it is possible to determine the language that is spoken on such a VoIP call, based on packet lengths. Now they have expanded their research and show that itâ(TM)s possible to detect entire spoken phrases during a VoIP call. On average, their method achieved recall of 50% and precision of 51% for a wide variety of phrases spoken by a diverse collection of speakers (some phrases are easier to detect than others; the recall various from 0% to 98%, depending on length of the phrase and the speaker). In other words: they can detect fairly well if a certain phrase is being used in a conversation, even though the VoIP conversation is encrypted.

more than 3 years ago
top

PostgreSQL 9.0 Released

guusbosman Re:Waiting for a capable PostgreSQL front-end (344 comments)

You know that you can point your MS Access client to any supported back-end right? Just create an ODBC connection on your Windows machine to your PostgreSQL server and you can use Access with pretty much all the features that work for the Microsoft JetEngine (PostgreSQL has ODBC drivers here; http://www.postgresql.org/ftp/odbc/versions/)

Earlier this year we converted a huge Access application from MSSQL to PostgreSQL and the technical conversion, using ODBC to PostgreSQL instead of connecting to MSSQL, was a piece of cake.

about 4 years ago
top

Treasured 'Moon Rock' Is Petrified Wood

guusbosman Vrije Universiteit (209 comments)

While "free" or "liberal" is a translation of the Dutch word "Vrije", the officially used name in English of this university is "VU University", not "Free University". See the website: http://www.vu.nl/en/index.asp

more than 5 years ago
top

How Often are Internal IT Projects Open Sourced?

guusbosman JavaConfig (55 comments)

A example of a small, but useful open source project that started as an internal project:

JavaConfig. It allows easy and type-safe access to configuration properties, for Java based applications.

My previous employer, Chess in Haarlem, the Netherlands, agreed to make it Open Source (under a BSD license) after me and a few other colleagues had been working on it for a while. Proves that it's a cool company ;)

more than 9 years ago

Submissions

top

The legal meaning of "strictly random"

guusbosman guusbosman writes  |  more than 3 years ago

guusbosman (151671) writes "Yesterday a district court in Washington, D.C. issued its ruling in a case that boiled down to the definition of "strictly random".

In the 2011 drawing of the U.S. "Green Card Lottery', a computer programming error was made and two weeks after the official drawing of the lottery the Department of State closed the website and voided the results.

A lawsuit sought an injunction claiming that, while the process was not mathematically random, it was random in the dictionary definition of âoewithout definite aim, direction, rule or method". The court, analyzing language from the State Departmentâ(TM)s regulations, and examples from laws on casinos and the like, rejected that and came out in favor of a mathematical definition of randomness. The lottery is voided and the results of the new drawing came out today at noon EST."

Link to Original Source
top

New motorist tax decided based on on-line poll

guusbosman guusbosman writes  |  more than 4 years ago

guusbosman (151671) writes "The Dutch government, planning to introduce a kilometer tax, will decide on a new tax based on an on-line poll by the ANWB motoring organization.

Dutch News.nl:

"The cabinet will abandon its plans to introduce a kilometer tax on driving if members of the ANWB motoring organization are opposed to it, transport minister Camiel Eurlings appeared to tell reporters after Friday's weekly cabinet meeting.". In turn, the motoring organization opened the poll to members and non-members alike.

Predictably, the website with the online poll quickly became overloaded and is now off-line."

Link to Original Source

Journals

guusbosman has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?