Beta

Slashdot: News for Nerds

×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Comments

top

OKCupid Experiments on Users Too

mysidia This is outrageous (149 comments)

I think Firefox should boycott the site.... display a message about it being possibly malicious/dangerous to all users attempting to visit OKCupid, showing a link to the article as a warning message in bright red... (Just kidding <EG>).

yesterday
top

Enraged Verizon FiOS Customer Seemingly Demonstrates Netflix Throttling

mysidia Re:Thanks (393 comments)

TCP performance on the Internet is almost totally limited by latency (AKA RTT or round trip time for the ACKs), not the bandwidth.

Modern TCP stacks, including Windows 7, 8 and Linux these days have a feature called TCP Timestamping, where an RTT estimate is taken for the connection, and a feature called TCP Autotuning where the window size is automatically scaled up to fill a Long fat pipe.

So no... the days where TCP throughput of a session was totally limited by latency are long gone.

yesterday
top

Enraged Verizon FiOS Customer Seemingly Demonstrates Netflix Throttling

mysidia Re:Thanks (393 comments)

You could even run a network monitoring app. But the browser is one highly visible one that most people already have installed.

Perhaps you could, but now essentially you are having "users that think they have problems" downloading an extra application and they start monitoring after there's a problem most likely.

This means your app cannot get the right data on what's normal for the user or for the world, because you have a sample of app users that are biased towards users that already are experiencing network issues of some sort, and you don't have a good baseline for the user that installed it either.

3 days ago
top

Enraged Verizon FiOS Customer Seemingly Demonstrates Netflix Throttling

mysidia Re:Thanks (393 comments)

It will probably end up pissing off ISPs to the point of either finding ways of faking the data, blocking the data, or just as policy telling customers to ignore the speed numbers.

If the data is blocked, the browser should figure out why and explain to the user that there seems to be an issue with their network; in other words "Blocking" should make it even worse for the ISP. a smarter browser UI could be a tremendous help to support technicians, which the ISPs should absolutely love ---- perhaps even tell the user exactly which entity to contact, even display their ISP's support number on the screen, to help accelerate the problem resolution process, and providing access to comments by other users of the same ISP, leading to happier customers, and customers who can share info with each other pertinent to troubleshooting or why this is happening, etc.

A lot of people won't be able to distinguish when something is their ISP's fault and when it might be the end servers fault.

I am suggesting the browser should also take some responsibility to the interpretation of the results here. There should be a highly visible "troubleshooting" button that causes some tests to be run. Explanations should be right there in a natural language that any English speaker could understand.

The browser should not show an alert if there is not enough data to make a conclusion with a fair measure of statistical confidence.

We can definitely make a strong distinguishment between a "web site performance issue" and a client connectivity issue, with data from a sufficient number of users.

The browser would also need to take into account geographic location and client connectivity, however.

e.g. Is the site slow because the visitor is half way around the world from the nearest mirror, or is it slow because they're connecting over congested WiFi or 3G networks, instead of a wired connection?

I realize it's not "easy", but the web browser is the only software component that is in a position to take the kinds of measurements that are required and help alert the user to the problem, tell the user which entity they should contact, and assist with troubleshooting.

3 days ago
top

Enraged Verizon FiOS Customer Seemingly Demonstrates Netflix Throttling

mysidia Re:Thanks (393 comments)

SO when you pay for that service it says something like "up to 75mbps" which in reality means that the speed test and google's home page could see that much speed and everyone else will look like dial up from the 1990's.

I have a suggestion.... Web browsers should take some measurements and display prominently in a visible status bar or other location.... average TCP throughput --- And Estimated average bandwidth;

Both a "this site" value, a "this browser session" value, and (Optionally) if the user decides to share their numbers, Community average bandwidth for this site, Community average bandwidth for this ISP, and Community average for this site on this ISP.

If Community average for this site on this ISP is more than a standard deviation below Community average for this site,

Then a little warning exclamation point should appear to the right of the browser bar. On mouseover, and for a few seconds after loading the page, a little warning bubble should appear for a few seconds. "Your internet service provider seems to have below average performance in loading this page."

3 days ago
top

New SSL Server Rules Go Into Effect Nov. 1

mysidia Re:subdomain trust (90 comments)

Or is this an option?

RFC 3280 #4.2.1.11

The name constraints extension, which MUST be used only in a CA certificate, indicates a name space within which all subject names in subsequent certificates in a certification path MUST be located. Restrictions apply to the subject distinguished name and apply to subject alternative names.

...

>

It is an option that was not forced on the root CAs. Essentially none of the public CAs are signing from intermediary CAs with name restrictions applied to their certificates.

Generally the restriction mechanism is only allowed to do something kind of "creepy"; where the root CA essentially "sells" this service to a smaller company for perhaps $50,000 or so and issues a restricted certificate --- that allows whoever bought this service to sign subcerts within certain constraints.

4 days ago
top

New SSL Server Rules Go Into Effect Nov. 1

mysidia Re:Why? (90 comments)

or at least just force via policy certain certificates onto each computer's browser as trusted?

That works fine for Internet Explorer on Windows via group policy.

It doesn't work for Firefox or Java (separate private trusted certificate storage databases).

More importantly: It doesn't work for iPhones, Androids, or macs accessing intranet resourses, or that require a valid certificate to setup Activesync connection.

4 days ago
top

Man Booted From Southwest Flight and Threatened With Arrest After Critical Tweet

mysidia Re: name and location tweeted... (877 comments)

This isn't really about privacy, though - it's about SouthWest's perogative to refuse service to someone they feel was being abusive.

Their perogative to arbitrarily refuse service ends when they accept your money and enter into an agreement to render service; they essentially can't back out without cause, or they risk being sued for breach of contract and discriminatory actions.

Also, there is this matter of coercing a customer to remove a public message under threat of arrest, that the customer had a right to post.

4 days ago
top

Man Booted From Southwest Flight and Threatened With Arrest After Critical Tweet

mysidia Re: name and location tweeted... (877 comments)

Airports are NOT public places, particularly the Gates at airports.

They are called places of public accommodation just like restaurants. There is zero expectation of privacy for the employees in areas where there is customer access. Members of the public have access to them. Specifically... any members of the public who have paid a fee and obtained a ticket.

5 days ago
top

Black Holes Not Black After All, Theorize Physicists

mysidia Re:What about existing evidence? (225 comments)

Unless the objects weren't black holes but a massive amount of dark matter which is invisible across the visible light spectrum, and maybe our telescopes saw nothing, but there actually is a finite mass which does not emit light.

5 days ago
top

For Half, Degrees In Computing, Math, Or Stats Lead To Other Jobs

mysidia Re:STEM is the new liberal arts degree (173 comments)

and have used the calculus and statistics required for my CS degree precisely never. And honestly there are hardly any professions that need either of these disciplines.

It's not that everyone absolutely has to have the knowledge to get by: it's that it is useful.

You use it, or lose it.

Chances are, in one way or another --- what you learned in Calculus helped you.

Either that, or you never really learned calculus, or you just did the homework, and you forgot about it after the test: instead of exploring.

Things you learned there can make your job easier now, or they can help you accomplish some tasks faster or more accurately, and maybe even do some things you couldn't do otherwise, if you actually learned and retained them.

Don't tell me you write computer software and never had a need to numerically approximate a figure or categorize something probalistically, such as... is it Spam or Not spam? What's the best route to draw on the map to give your user some driving directions?

Which product is the most relevant to recommend to this customer?

5 days ago
top

Intel Launches Self-Encrypting SSD

mysidia Re:I Have a New Technology for This (91 comments)

Sorry, you're too late. I already subscribed to a competing cloud service which provides the same functionality, only: I can use it from anywhere in the world, and my provider worries about maintenance.

about a week ago
top

Privacy Lawsuit Against Google Rests On Battery Drain Claims

mysidia Judge should accept privacy violation as damage (175 comments)

This would be like suing a hacker who formatted your company web server and the judge refusing to accept the argument that the damage was harm to reputation and loss of business, and instead only accepting the claim of increased electric bill and wear/tear on the hard drives.

about a week ago
top

Researcher Finds Hidden Data-Dumping Services In iOS

mysidia Re:DON'T PANIC (98 comments)

The only secure Android phone is what is running Cyanogenmod.

No... the only secure Android phone is the one you pulled the battery out on.

iPhone is trickier... since there's no removable battery: it is very hard to secure. Best bet is to wrap it in tin foil and let the battery drain down on its own, then when it reaches 0% it will be secure

about a week ago
top

How One School District Handled Rolling Out 20,000 iPads

mysidia The schools' major mistake (285 comments)

Is having the county itself provide internet connectivity. We already know that doesn't work.

Don't do that! School districts' should be provisioning their own upstream connectivity.

This is not the type of thing that the county should be handling.

The answer is simple..... put internet services out for bid and buy a big bandwidth contract for the school district.

Yes it's expensive..... it's where a majority of the cost of 20,000 iPads goes.

And it's not fair to be leeching off the local government's resources or forcing 100 school districts to share a limited pipe that cannot reliably meet the requirements.

about a week ago
top

The Loophole Obscuring Facebook and Google's Transparency Reports

mysidia Re:Ummm... (18 comments)

Yep. The Canadian enforcement bureau wants to see some information... so they make a request to the DOJ.

The DOJ then makes an order for Google to deliver that information to them.

The DOJ looks over the response, and saves a copy of all the juicy data for later reference, just to see if there's anything that might interest them in the future, then they bundle it up, attach it to an e-mail, and forward it unencrypted to their Canadian buddies..

about a week ago
top

States That Raised Minimum Wage See No Slow-Down In Job Growth

mysidia Re:Local testing works? (778 comments)

But what about when you can't prove date of hire?

I have no hatred towards the individuals. The point is to punish the employer, thus eliminating the market that is causing some businesses to effectively invite large numbers of illegals to come in and work for money under the table under illegal employment conditions.

Why not enfranchize the migrant population. Let's open the borders, and adjust benifits for non-citizens.

The illegals are only able to get work since they can work for such low wages. You could also eliminate the problem of illegals by exempting certain specified non-skilled jobs or completely untrained workers from minimum wage requirements.

The illegals can't be "enfranchized," because this would effectively disqualify them for the jobs that the market wants illegals for ---- which are jobs where they illegally pay undocumented workers below minimum wage. Above minimum wage, they are competing with legal residents for jobs, which causes problems, but most illegals do not have training or skills beyond the simplest of labor.

Give everyone who isn't a violent criminal and who wants it a path to citizenship. Get everyone on the tax rolls, and out of black markets.

I believe that's the case already --- there is a path to legal residency and citizenship available, which many immigrants take: the illegals are just getting an unfair shortcut by ignoring the processes established and required to become a legal resident.

about a week ago
top

New York Judge OKs Warrant To Search Entire Gmail Account

mysidia Re:Warrants are supposed to be narrow (150 comments)

but they'd certainly have enough evidence for a search, and they could keep a record of any potential weapons seen in the house in case forensics can later get them a better description of the weapon used.

They wouldn't have probable cause to visit every apartment in the building and cease every blunt object in the house from every tenant and take it to the lab for analysis. And from the public there is a simple answer to this illegal search behavior.... Jury nullification. If this person comes before a jury charged with a crime, and I find out about this illegal search; I will almost certainly reach a finding of not guilty, regardless of the facts of the case.

Not a single citizen is required to tolerate an illegal unconstitutional search or assist in a law enforcement action tainted by such misbehavior of police and judges.

However, with a service such as Google there is a simple answer. Order them to preserve and not delete any e-mail for the user within the potential time frame

Then when they have enough evidence to specify the thing to be searched or the particular objects to be seized, without first conducting an illegal search, they will be able to get a legitimate warrant and inspect the preserved materials.

about a week ago
top

MIT May Have Just Solved All Your Data Center Network Lag Issues

mysidia Re:rfc1925.11 proves true, yet again (83 comments)

To be honest, I've see this, but only when migrating VMs off host for host Maintenance, or a boot Storm on our VDI.

Maintenance mode migrations are pretty common; especially when rolling out security updates. Ever place two hosts in maintenance mode simultaneously and have a few backup jobs kick off during the process?

about a week ago

Submissions

top

Senators petition to censor DUI checkpoint apps

mysidia mysidia writes  |  more than 3 years ago

mysidia (191772) writes "Senators, Harry Reid, Charles Schumer, Frank Lautenberg and Tom Udall, sent etters on Tuesday requesting Apple, Google, and RIM remove or modify apps that notify users of police checkpoints. According to the senators, the apps are "harmful to public safety", because drunk drivers could use them to evade police detection.
BlackBerry maker RIM ceded to the request on Wednesday."

Link to Original Source
top

R.I.P. OpenSolaris 2005-2010

mysidia mysidia writes  |  more than 3 years ago

mysidia (191772) writes "Last month, on July 14th, it was mentioned that the OpenSolaris governing board issued an ultimadum to Oracle. It turns out that Oracle continued to ignore requests to appoint a liason after the OpenSolaris governing board's demands. This morning, the OpenSolaris governing board unanimously passed the resolution to dissolve itself.

Source code changes are no longer available, and It would appear that OpenSolaris and community involvement in the development of Solaris have been killed as rumored.

A recent article on slashdot discussed a "Spork" of OpenSolaris, Illumos. Perhaps now, this will have a chance of becoming a true fork."

Link to Original Source
top

US court strikes down media swearing ban

mysidia mysidia writes  |  about 4 years ago

mysidia (191772) writes "A federal appeals court in Manhattan struck down a policy of the FCC which banned broadcasters from allowing curse words on live TV. The court concluded the rule was unconstitutionally vague and had a chilling effect on broadcasters. In the 2 to 1 ruling, the court found that policy was "arbitrary and capricious", but that the FCC might be able to craft a policy that does not violate the First Amendment.

"'By prohibiting all `patently offensive' references to sex, sexual organs and excretion without giving adequate guidance as to what 'patently offensive' means, the FCC effectively chills speech, because broadcasters have no way of knowing what the FCC will find offensive,' the appeals court wrote."

Fox Stations, owned by News Corp., and other networks had brought suit in 2006 after the FCC cited use of profanity during the airing of awards programs."
Link to Original Source

top

IPv4 free pool drops below 10%, 1.2.3.4 allocated

mysidia mysidia writes  |  more than 4 years ago

mysidia (191772) writes "A total of 16,777,216 IP address numbers were just allocated to the Asian Pacific Network Information Centre IP address registry for assignment to users. Some venerable IP addresses such as 1.1.1.1 and 1.2.3.4 have been officially assigned to the registry itself temporarily, for testing as part of the DEBOGON project.
The major address blocks 1.0.0.0/8 and 27.0.0.0/8, are chosen accordance with a decision by ICANN to assign the least-desirable remaining IP address ranges to the largest regional registries first, reserving most more desirable blocks of addresses for the African and Latin American internet users, instead of North America, Europe, or Asia.

In other words: of the 256 major networks in IPv4 (4,294,967,296 IP address numbers), only 24 network blocks (402,653,184 IP addresses) remain unallocated in the global free pool, and many of the remaining networks have been tainted or made less desirable by unofficial users who attempted an end-run around the registration process, and treated "RESERVED" IP addresses as "freely available" for their own internal use. This allocation is right on target with projected IPv4 consumption and was predicted by the IPv4 report, which has continuously and reliably estimated global pool IP address exhaustion for Late 2011 and regional registry exhaustion by Late 2012.

Services such as anoNet, and other private Enterprises that have been using 1.0.0.0 IP addresses, such as "1.2.3.4", for their private networks or intranet applications, are on the verge of impairing their activity to legitimate users of those IP addresses in the next few years.

So, does your enterprise intranet use any unofficial address ranges for private networks?"
top

How To Hijack 'Every iPhone In The World'

mysidia mysidia writes  |  more than 4 years ago

mysidia (191772) writes "A new article from forbes.com reports on an unpatched iPhone vulnerability that researchers Charlie Miller and Collin Mulliner plan to reveal at Black Hat. The bug may allow hackers to remotely seize control of iPhones by using SMS text messages. "If you receive a text message on your iPhone any time after Thursday afternoon containing only a single square character, Charlie Miller would suggest you turn the device off. Quickly."
A similar vulnerability is reported to exist on devices running Windows mobile software."

Journals

mysidia has no journal entries.

Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Create a Slashdot Account

Loading...