Announcing: Slashdot Deals - Explore geek apps, games, gadgets and more. (what is this?)

Thank you!

We are sorry to see you leave - Beta is different and we value the time you took to try it out. Before you decide to go, please take a look at some value-adds for Beta and learn more about it. Thank you for reading Slashdot, and for making the site better!



Book Review: Designing and Building a Security Operations Center

khasim My experience is different. (29 comments)

The truth is that many firms simply don't have the staff and budget needed to support an internal SOC. They also don't have the budget for an MSSP. With that, Mike Rothman of Securosis noted that these firms are "trapped on the hamster wheel of pain, reacting without sufficient visibility, but without time to invest in gaining that much-needed visibility into threats without diving deep into raw log files".

In my experience it is not the budget but the politics.

Is your company's security worth the expense of an additional tech? Or are office politics the reason you cannot get an additional tech?

Does whomever is in charge of your technology have the authority to say "no" to requests from other departments? And the political capital to make it stick?

I've seen too many examples of companies "suffering" from the problems their own decisions/environment created.

Retrofitting security is not the answer.


Davos 2015: Less Innovation, More Regulation, More Unrest. Run Away!

khasim Re:Escaping only helps you until a war. (333 comments)

The Army alone has about 500,000 soldiers. A lot of them are in support roles but a private military also needs support.

Where are the families of the people in the private military? Because if they have to go back to the USofA (the "enemy" in this scenario) to visit Mom and Dad then there's going to be a problem. So you'll need room on the uber rich estate for the families of your military. And your support personnel.

Which brings up the infrastructure to support those families. Schools, hospitals, etc. Which means more support personnel.

Which means more schools and hospitals, etc.

Of course you can skip that if you want to. But remember who has the guns.

2 days ago

Anonymous Asks Activists To Fight Pedophiles In 'Operation Deatheaters'

khasim Re:Think of the children! (408 comments)

I'm sure that they have the best of intentions. The problem is with the underlying assumption that there is some kind of conspiracy.


Once you accept that there is a conspiracy, there is no end to it.

If they were just interested in cataloguing the various cases then that could be done by scripts and Google news. If something is not getting media exposure then it is more likely to be because of lazy "journalists" than because someone is trying to bury the story.

4 days ago

Why We Still Can't Really Put Anything In the Public Domain

khasim Heirs. (99 comments)

The problem with that is whether your promise would also apply to your heirs.

Once something becomes worth $X there will always be people trying to make money off of it. The larger X is, the more people like that there will be.

4 days ago

Serious Fraud Office Drop Investigation Into Autonomy Accounting

khasim Re:Just a thought... (53 comments)

So, in their quest to be like Facebook and Google by snapping up technology for obscene money, they forgot to do "due diligence", and now they are pissed?

At $10 BILLION I don't think there is any "forgot" here.

Even at the time of the deal the price was questionable. It was 10x more than Autonomy was possibly worth.

I would say "follow the money" but it is sounding like someone did not complete their part of the deal.

HP used to be such a great technology company, until they switched to the printer ink scam.

Yeah. This sounds more like an attempt to loot the company that didn't pan out.

about two weeks ago

Obama: Gov't Shouldn't Be Hampered By Encrypted Communications

khasim Re:I would rather see 1000 terrorists go free... (562 comments)

You know who has trouble with "bad cops?" The people who don't respect authority in the first place.

Maybe you can do a little research (Google) on cops accused of rape.

Or just look at cops sentenced to life imprisonment.

I am still here, still free, and still have my privacy.

No, you do not.

Not being interesting to the authorities is not the same as having your privacy intact.

about two weeks ago

Obama: Gov't Shouldn't Be Hampered By Encrypted Communications

khasim Re:I would rather see 1000 terrorists go free... (562 comments)

And I would rather not die.

If you live in the USofA, you are in more danger of being killed by someone in your family than by a terrorist.

But there comes a point where I need to balance that with other things such as seeing my daughter grow up.

The question is whether you believe there are more terrorists in the USofA or more bad cops/contractors/other-people-with-access-to-track-your-daughter.

Once you sign away her privacy she probably won't be getting it back.

And she will still be in more danger from her boyfriend/husband (and ex-boyfriends/husbands) than she is from any terrorist in the USofA.

about two weeks ago

Silicon Valley Security Experts Give 'Blackhat' a Thumbs-Up; Do You?

khasim Completely believable! (98 comments)

Thor is in jail because he's a hacker. But the bad guys are doing bad things and Thor is the only one who can stop them.

So people who want to help Thor stop the bad guys get Thor out of jail.

And a really hot Asian woman falls in love with Thor.

And Thor and the Asian woman race around the world fighting the bad guys. Literally fighting. Thor kicks physical ass. And he has a hot Asian girlfriend.

No "restore from backup" or "patch your servers" or "fix your firewall's DMZ". This is REAL hacking.

about two weeks ago

19,000 French Websites Hit By DDoS, Defaced In Wake of Terror Attacks

khasim Re:Beats using bullets (206 comments)

It's a step in the right direction.

Now, instead of just posting a graphic of a flag, how about posting some justification? Explain what you are objecting to and why you find it objectionable.

You have the attention of the media.

Unless you're a bunch of teenage script kiddies doing this for the lulz.

about two weeks ago

Parents Investigated For Neglect For Letting Kids Walk Home Alone

khasim Re:The Dangers of the World (784 comments)

From TFA:

The Meitivs say that on Dec. 20, a CPS worker required Alexander to sign a safety plan pledging he would not leave his children unsupervised until the following Monday, when CPS would follow up. At first he refused, saying he needed to talk to a lawyer, his wife said, but changed his mind when he was told his children would be removed if he did not comply.

I think the whole family just learned that.

about two weeks ago

Obama Proposes 2 Years of Free Community College

khasim Have a plan! (703 comments)

The important part is use this as part of YOUR plan for YOUR education. Like you did.

Community Colleges are great for taking care of the 100 level pre-requisites prior to University.

Community Colleges are great at expanding your knowledge WITHOUT going for a degree.

Community Colleges are great for bringing up your Grade Point Average (GPA) if you had problems in High School but still want to pursue an advanced education.


This program should NOT be the FINAL step in your education.

about three weeks ago

Publications Divided On Self-Censorship After Terrorist Attack

khasim Re:Streisand Effect and Mohammad cartoons (512 comments)

And people like you will evidently give it to them under the guise of political correctness.

So first you make claims about what Islam teaches because you know more about it than a million Muslims living in the USofA right now.

Then you make claims about what I believe. You don't know me any more than you know any Muslim living here.

After all, you don't want to Offend a Muslim, or he might cut your head off or shoot you while you're in a meeting.

Again, you don't know me any more than you know any Muslim. I spent 7 years in the Army. I've watched people whose job it was to shoot me watching me. As it was mine to shoot them.

And because I understand math, I know that if a million of them have not tried to shoot me yet then they probably won't. Because despite your claims, they do NOT believe what you claim they do.

And you 'd know that if you knew any Muslims.

However, it is blind political correctness that is allowing most liberals to cede their ideals in the name of tolerance.

What ideals have been ceded?

Because the fact remains, Western values are not valued by Muslims.

Except for the million Muslims who live here right now.

I've heard it all before. It's always about "them" and how "they" are "bad" because of "their" culture or religion or whatever.

Whether "they" are Muslims or blacks or Hispanics or "gooks" or "Japs" or ...

Maybe you should read George Takei's writings on his experience in an internment camp.

about three weeks ago

Publications Divided On Self-Censorship After Terrorist Attack

khasim Re:Streisand Effect and Mohammad cartoons (512 comments)

If you're in the local minority, it is wise to shut up and nod.

So you're saying that the GP was wrong about Islam and it actually teaches a pragmatic approach to democratically elected representative government?

Muhammad Ali is a Sunni. He refused to fight in Vietnam as a conscientious objector. Yet he was given the Presidential Medal of Freedom by Bush in 2005. So .... bad Muslim? Or maybe your understanding of Muslims could be expanded upon by meeting more of them?

about three weeks ago

Publications Divided On Self-Censorship After Terrorist Attack

khasim Re:Streisand Effect and Mohammad cartoons (512 comments)

If you remain silent, because of fear, they have already won.


1) Islam, is not a peaceful religion. There is no major Muslim outcry over any of the acts committed by Muslims. I didn't say there was none, I said there was no major outcry.

Just because you haven't seen them does not mean that they haven't happened. Have you gone looking for them? The media usually skips them because blood gets more views.

2) Islam, does take offense at things that Western Culture deems acceptable for the purposes of liberty, even tasteless crude humor. Muslims in general haven not expressed any desire to curb their rhetoric.

There are at least a million Muslims living in the USofA. The majority seem to be okay with it.

3) Islam doesn't teach co-existence, it teaches domination.

What you claim Islam teaches and how a million Muslims live, every day, in the USofA ... well there seems to be a disconnect there.

Western cultures do no need Islam. We don't want Islam. We don't like Islam. Muslims need to go back the their asswipe countries in the desert and stay there.

I've heard the same rhetoric about blacks. And Hispanics. It's easy to hate someone you've never met.

But then, I live in Seattle and there are two halal markets within a mile of me.

about three weeks ago

Professor: Young People Are "Lost Generation" Who Can No Longer Fix Gadgets

khasim Re:Dupe (840 comments)

And the reason is ... because the stuff used to be BUILT by people. If a guy on the assembly line had to be able to get his hands onto a bolt to install it then someone replacing it would also be able to reach it.

Once we switched to robots for manufacturing it became a lot more difficult. A robot can reach where a person cannot.

Which means you save a lot of "wasted" space and materials ... but you have to take apart X, Y and Z to be able to read the headlight.

about three weeks ago

Writer: How My Mom Got Hacked

khasim Re:The Government is NOT here to help you... (463 comments)

The threat of punishment sure keeps me paying my taxes...

I'll say that it is not because you worry that you will be executed but that you will lose your possessions / job / freedom. Once you've bought into the system then the system has ways to keep you invested.

Once you leave the system then the punishments don't matter.

Either someone doing something "wrong" is going to change their behavior or they are not.

Yeah. Although I see it as whether they have the option to join the system again. If they're paying a mortgage and putting their kids through school then they have an interest in following the rules.

If not, then kill them, they aren't worth the food and air used to keep them alive.

The problem with that approach is that the system is run by people. And those people are flawed.

Convicts who are on death row are being released because of DNA evidence.

And it is even worse if you are a minority.

about three weeks ago

US Army Could Waive Combat Training For Hackers

khasim Mod parent up! (223 comments)

You can (even in uniform) refuse an "unlawful" order, according to the UCMJ.

Yes. You will have to justify it though.

Anyway, back to the previous comment:

there's a magical difference between sworn and unsworn.

It's not magical. It's "military" and "civilian". If you're military then the UCMJ replaces the civilian laws.

if they ask a hacker to create a virus ....

The military does not create the weapons that it uses. It buys them from civilians. The M-16? Parts made by Mattel. The same company that makes Barbie dolls. So a soldier would probably NOT be writing that virus. It would be a civilian contractor or other government agency (NSA).

I think the concept here has gotten lost.

The problem is that if your INITIAL sorting is based upon who can pass Basic Training and such, you will probably exclude people with more valuable skills.

There is nothing stopping the Army from creating a new field and assigning some lieutenants to it. Those lieutenants are the ones that "pull the trigger".

But the network scans, evaluations, compromises and such can all be done by GS contractors. The lieutenants would be the equivalent of "script kiddies" at worst.

about a month ago

NSA Says They Have VPNs In a 'Vulcan Death Grip'

khasim Re:4 years ago? (234 comments)

It's not so much the VPN technology as it is the failure to correctly implement and secure it.

TFA leaves the real content until the end of the article:

The data is then replayed from the repositories through a set of attack scripts, which use sets of preshared keys (PSKs) harvested from sources such as exploited routers and stored in a key database ...

So if the NSA wants to "crack" your VPN session they first record it (we know how they do that) then they try to brute force that recording using what is, essentially, a dictionary attack.

TFA seems more entranced by the cutesy names than by the technology.

about a month ago


khasim hasn't submitted any stories.


khasim has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?