×

Announcing: Slashdot Deals - Explore geek apps, games, gadgets and more. (what is this?)

Thank you!

We are sorry to see you leave - Beta is different and we value the time you took to try it out. Before you decide to go, please take a look at some value-adds for Beta and learn more about it. Thank you for reading Slashdot, and for making the site better!

Comments

top

Google Releases More Windows Bugs

slashdot_commentator Re:But CERT Also Allows Variances (261 comments)

Any sale of goods, provision of service, or transaction has implied requirements by the vendor to not "damage" the recipient or bystanders. When such vendor is remiss in delivering services as such, OR try to cover up malfeasance, that is a civil harm. When it physically damages individuals, or otherwise legally defined, it is a crime. In most cases, damages are resolved in the civil courts.

Microsoft's products are so pervasive in our society, their ability to be penetrated by hackers threatens bank accounts, personnel records, medical records, and in rare cases, infrastructure. Where Microsoft is "negligent", they can be sued. Its only a matter of time.

And unknown flaw lurking for years does not make Microsoft liable for negligence. A KNOWN flaw, which Microsoft does not move on, will eventually be grounds for civil damages. If it ends up killing people, its possible for it go criminal trial.

about a week ago
top

Best current live-action TV show based on comics?

slashdot_commentator Re:Out of the loop (148 comments)

Takes about halfway through Season 1 for Agents of SHIELD to really come together, bout the time Winter Soldier came out, and the series tied into the MCU more solidly as a backdrop for the overall series storyline, but it's really solid now.

Season 2 AoS has been lights out, but Season 1 was so horrifically bad, I still hold a grudge against the showrunners for wasting my time for so many weeks. And I'll probably have to waste another week devising a season one guide, where I tell you what episodes are good, and important to following the season, and write summaries for the episodes to skip.

Arrow is pretty good once you get past the CW's penchant for having shows look like overly photoshopped supermodel showcases (and face it, the cast is pretty good looking, both genders). The main actor carries it well and the cast overall has decent chemistry.

I don't hold a grudge against actor/supermodels that can do a salmon ladder. Sometimes, the writers can stick in awesome snark, but usually not often enough. One of my problems with Arrow is that its basically cloning/coopting the Batman mythos.

Gotham is a pleasant surprise. It's quite good. And if you British cinema, you'll see Sean Pertwee as Alfred, one of my favorite British actors.

There are a (counting) gross of British actors that I think are measurably better that Pertwee, (most of them playing Americans on TV) but I do have a soft spot for him, in his limited roles, and that he's Jon Pertwee's (Doctor Who #3) kid.

 

He does quite well as Alfred, and I'd even argue he'd make a good choice for the movies as well, though he might be a bit young to play Alfred to an adult Bruce Wayne. The show overall again has a good cast with good chemistry. And it didn't have the shaky/cheesy start that SHIELD did, finding its footing right away in the pilot episode in my opinion.

My problem with Gotham is that I think the ideal Batman TV series needs to be TV-MA on a subscription cable network, and that DC doesn't have the guts to put out a truly artistic rendition, so they will destroy it with half-measures like Gotham. Its much like how corporations have destroyed Christmas as an enjoyable holiday. And Robin Lord Taylor (Penguin) is the only actor truly keeping the show afloat. It would be a mistake to introduce the Joker in the 1st or even 2nd season, but that show needs more than RLT to be worth watching. They can't carry that show with one-shot comic-like villains each week.

about a week ago
top

Google Releases More Windows Bugs

slashdot_commentator Re: Hope the trend continues. (261 comments)

That's what Microsoft's response to one of the security bugs. And then they started bitching after Google produced an exploit based on that "trivial" bug.

about two weeks ago
top

Google Releases More Windows Bugs

slashdot_commentator Re: Hope the trend continues. (261 comments)

And how do you prove they're working on the problem in a manner which will result in a quick resolution? Instead of hiring minimum wage flunkys to take calls and say "We're working hard on the problem. Its just a matter of weeks..".

about two weeks ago
top

Google Releases More Windows Bugs

slashdot_commentator Re:But CERT Also Allows Variances (261 comments)

But what gives Google the right to do what they're doing?

What right? The right for the general public to utilize computer products SAFE from thieves and infrastructure terrorism.

They're just as guilty as Microsoft when it comes to security problems and shitty insecure software. Why should they spend their money on announcing other people's flaws, rather than fixing their own?

They are guilty of the same security problems and shitty software. And they should be punished in the commercial markets the way as Microsoft. If they commit the same crime as Microsoft, they should suffer the same penalties. NOT be complicit in covering up competitors' crimes, because they're criminals too.

Especially when Microsoft already has fixed pending and just needs a bit more time to ensure they don't cause even worse problems?

Who honestly thinks that forcing someone to rush out a less-tested patch is a good idea, just because Google has a hard-on for playing the fake superhero?

Microsoft has not always been diligent in correcting security problems, and I'm sure they're more than willing to backslide. Just like once upon a time, you could count on Microsoft putting out reliable windows update patches, but now they drop the ball as when they changed their management and protocols last year.

about two weeks ago
top

Google Releases More Windows Bugs

slashdot_commentator Re:Hope the trend continues. (261 comments)

Posting notices of critical security flaws after giving 90 days for a company to fix it are security researchers' way to tell CORPORATIONS how IMPORTANT it is to design and release secure products.

If you don't do it, marketing will say that security flaw X can't be fixed because too many customers depend on the "insecure" feature. And the COO will say, "why can't you reveal it one year later, so we don't have to hire 12 people to get a fix within 90 days? We can hire 3 people instead." Eventually, some jackass will say "Shoot the messenger! Its their fault bad guys can exploit our insecure product!" Meanwhile, customers and the internet community will be at the mercy of criminals, and critical infrastructure will be vulnerable to hostile, rogue governments.

No company has a RIGHT to jeopardize computer security to ensure a profit, with underqualified developers and marketing deadlines. If you don't let the market determine security's value, then it will be up to civil lawsuits.

about two weeks ago
top

Google Releases More Windows Bugs

slashdot_commentator Re:Shame on you Google (261 comments)

Yet another clueless consumer who doesn't understand the nature of the computer security braying their pronouncement of what Google should do.

What's missing in the real world is a litigation avenue where (security) negligence by a (software) company can be address as a class action suit. Now picture companies like Target going bankrupt for their security miscalculation in court, rather than the business hit it took for being publicly embarrassed. Or picture a major bank going under, because of their security design flaw.

Or you can look at Google's actions as tailor made to address security flaws, while minimizing harm to companies and the world's consumers.

about two weeks ago
top

Google Releases More Windows Bugs

slashdot_commentator Re:But CERT Also Allows Variances (261 comments)

Some are deeper architectural problems that, even if an "easy" fix, have a whole ecosystem of software built around that wrong behavior..

Google, or the world, do not have an obligation to tolerate Microsoft's willingness to market a fatally flawed product because a whole industry "expects" to take advantage of an insecure feature. It is no different that a fatally flawed skyscraper design. When such a building or bridge comes about, the world doesn't require architects or engineers to keep quiet about a safety flaw, because people already use it. The owner/design company is required to produce an effective correction to the problem, or the building gets condemned. Otherwise, the company is liable to be sued for the deaths and injury that can be attributed to it when the flaw is finally manifested. Do we really want an industry where companies put out shoddy products that can avoid a bad result in 10-20 years, wait for that error to harm people, and then suffer no economic consequences because they no longer exist?

about two weeks ago
top

Google Releases More Windows Bugs

slashdot_commentator Re: Hope the trend continues. (261 comments)

The sample exploit code is necessary because the corporate response after "I need more than 90 days" is "oh, its not a serious security bug".

about two weeks ago
top

Google Releases More Windows Bugs

slashdot_commentator Re:Hope the trend continues. (261 comments)

Boo hoo. So the alternative is allow Microsoft's entire customer to be hacked at will, because Microsoft doesn't want to dedicate resources necessary to resolve a coding issue within 90 days? Security by obscurity.

about two weeks ago
top

Linux On a Motorola 68000 Solder-less Breadboard

slashdot_commentator Re:Haytahs gunna h8. (147 comments)

I'd argue that Slashdot is a website with a national presence and has better topics to cover than a hack in some parent's basement, but apparently not.

about 2 months ago
top

Linux On a Motorola 68000 Solder-less Breadboard

slashdot_commentator Re:Awesome (147 comments)

68000? Easier than 8086, absolutely, but probably not easier than ARM. People should be learning assembler on an RPi, or clone, or arduino.

about 2 months ago
top

Linux On a Motorola 68000 Solder-less Breadboard

slashdot_commentator Re:Awesome (147 comments)

Its probably just as cheap as buying a Raspberry Pi or clone. Its probably more useful to start out on assembler with a fully functional computer unit like the RPi. I would see doing assembler on a 6502 more like "embedded" programming, and that's going to be a lost art at some point in the next decade. (The low end with the FPGAs/ASICs and the high end with Artificial Intelligence will eat up most of the market.)

about 2 months ago
top

The Downside to Low Gas Prices

slashdot_commentator Re:Stupid, trucks cause the problem (554 comments)

lower prices on anything is always a positive.

So you'd prefer Iran to have been able to afford the price of acquiring weapons-grade plutonium? Or perhaps you'd celebrate a pay cut for yourself?

Don't forget the Russians and ISIS as well.

about 2 months ago
top

The Strangeness of the Mars One Project

slashdot_commentator It'd make a hell of a reality show (246 comments)

See how many days it takes for a colonist to die on Mars. Will it be from lack of oxygen? Run out of supplies before he/she can get a successful harvest? Blow their brains out? Add a deathpool component to it, and that will fund the mission right there.

about 2 months ago
top

Raspberry Pi A+ Details Leaked

slashdot_commentator Re:Will it have the same garbage CPU? (141 comments)

The payoff of the A+ board is not the price. Its supposed to use significantly less power, which would make it more desirable if you needed to leave a remote device alone for a longer period of time, or place it on a drone, where the battery would need to be lighter, or needed to solar power the device on a small cell, and have it run overnight on the rechargeable battery. Still can't beat the power consumption of an arduino, but there's probably applications (drive a webcam) which the arduino can't meet with its CPU.

about 2 months ago
top

Americans Rejoice At Lower Gas Prices

slashdot_commentator Re:Pot, meet the Fat Kettle (334 comments)

They prop up the value of our currency, and then expect us to go out and die for their interests.

about 3 months ago
top

Big Data Knows When You Are About To Quit Your Job

slashdot_commentator Re:Good luck with that! (185 comments)

But there's currently only a finite number of people who can properly devise data models and interpret statistical data. There will always be a limit to how "reliable" derived information can be.

about 3 months ago
top

Big Data Knows When You Are About To Quit Your Job

slashdot_commentator Re:Does it know if I've been bad or good? (185 comments)

Why would you be opposed to big data finding out when you take a dump in the morning, as long as its voluntary?

If you do all your internet activity through tor, and don't subscribe to cable TV, and find non-identifiable ways to obtain your video entertainment, the only thing big data can work with is your bank account, credit card, library card, and social security number. (And cash payments can limit what your credit card can say about you.)

It won't keep you safe from the NSA, but big business isn't holding a gun to your head (yet).

about 3 months ago

Submissions

slashdot_commentator hasn't submitted any stories.

Journals

top

Meme: extending the ISS lifetime beyond 2016

slashdot_commentator slashdot_commentator writes  |  more than 7 years ago

As all the space geeks know, the ISS is planned to operational to 2016, only six years after construction is completed. Afterwards, it will either sit in space until it falls to Earth, or more likely, there will be a deorbit plan to have it burn up "safely" over an ocean.

Everyone following it knows the ISS was pretty much a "white elephant" space project. There will be no future shuttles servicing it (after 2010), and its unlikely the Russians will keep servicing it, out of its own wallet. But with the rise of space programs outside of the big 2, could it not be possible to keep the ISS going beyond 2016?

After all, space station Mir functioned years beyond its original closing date. You have the Japanese, the Indians, and the Chinese all looking to make a mark in space. Perhaps the ISS could be the future launching point of space tourism. Talk about the most exclusive dining experience. What would need to be accounted for to allow this possibility to come about?

top

Network Appliances sues Sun over patent infringments in ZFS

slashdot_commentator slashdot_commentator writes  |  more than 7 years ago Network Appliances is suing Sun Microsystems, alleging that seven of its patents are unlawfully being used in ZFS, the filesystem used in Solaris 10 and OpenSolaris. Ironically, Sun may have shot itself in the foot. They initiated legal proceedings against NetApp 18 months ago, over related patents Sun believed NetApp was infringing. Dave Hitz, NetApp's founder and Exec VP lays out his case in a blog entry.

top

Looking for a new laptop. Suggestions?

slashdot_commentator slashdot_commentator writes  |  more than 7 years ago

Man, laptop shopping is a bitch...

Requirements:
It will run Windoze (for the games). (& dual-boot linux, of course)

Main applications: portable DVD player, websurfing, games.

(Since I want exposure to 64-bit environments for development purposes)
Core2Duo or Turion-64/X2

Portability: Having previously owned a purported 7lb portable (that felt more like a 10lb portable), the target weight will be ~5.5lbs or less.

Indirectly, this means I'm aiming for a 14" (or less) widescreen

Good battery performance: 3+ hrs

Pricing: Not over USD $1050.

The Sony VAIO VGN-C150P/B probably comes closest to my ideal machine, but it is list price $500 over what I am willing to spend.

Right now, the Lenovo 3000 N100 will probably be what I pickup, but boy, I hate that Intel graphics chip.

Suggestions, anyone?

top

OpenBSD: GPL violator?

slashdot_commentator slashdot_commentator writes  |  more than 7 years ago

Michael Buesch, lead developer of the Linux driver for Broadcom's wifi chipset (bcm43xx), stumbled across copied code in the OpenBSD's bcw driver earlier this week. The problem is that the bcm43xx linux driver uses a GPL license. OpenBSD inadvertently makes that linux code available to be used in a proprietary manner, by virtue of its BSD license (and not giving proper attribution where due).

Busch sends a stern email to the developers of OpenBSD, and CCs the bcm43xx developers mailing list. Now enjoy the fireworks as Theo de Raadt defends the tender feelings of an apparent plagiarist, downplays intellectual property theft, and attacks "rude" behavior.

top

Kernel 2.6, wheel mouse, and KVMs

slashdot_commentator slashdot_commentator writes  |  more than 9 years ago

(Yet another /. rejection. Not unsurprising, since its so esoteric, but I know quite a few guys with this problem:)

For some geeks, one box cannot do it all (well). You need your reliable server, your Windows PC (for games and Windows-centric applications), your firewall/VPN, and one or two more boxes for experiments. Or you're the poor SOB who administers all the machines for your family. (Et cetera...) KVMs are really sweet for such setups, but not if you dropped $150 for a Belkin Omniview F1DS104U and run (Slackware) Linux.

Anyone afflicted with similar setups know that the Linux doesn't handle Belkin's (or generic) KVM switching between machines properly. The KVM doesn't retain/transmit mouse information between machines, and you end up with an erratic mouse that will corrupt your GUI configuration. With the 2.4 kernel, this is worked around by flipping out and back into of GUI mode (ctrl-alt-F1 then ctrl-alt-F7) with each machine switch.

But recently, I took the plunge to kernel 2.6.13. (It seemed stable enough.) It does things differently enough that I cannot use the mode switch kludge to get around the problem. The only way I've found to resolve the problem is opening a CLI session, and removing and restoring the psmouse module. Needless to say, this pretty much kills the convenience functionality of a KVM.

And my friend Google has let me down. Some users have found that adding an "append=psmouse.proto=imps" in lilo.conf resolves the problem for them. (Slackware 10.2's kernel never heard of it.) So, does anyone have a solution yet that resolves this problem, or USD $275+ to lend me for the "get a real KVM" response? Or are a bunch of linux geeks stuck running a 2.4 kernel for another year?"

top

Insightful Lightbulb Joke

slashdot_commentator slashdot_commentator writes  |  more than 9 years ago

How many Bush Administration officials does it take to screw in a light bulb?

None.

There is nothing wrong with the light bulb; its conditions are improving every day. Any reports of its lack of incandescence are a delusional spin from the liberal media. That light bulb has served honorably, and anything you say undermines the lighting effect. Why do you hate freedom?

(kudos to some guy named Naum from AZplace.net)

top

More failure - Attracting the non-geeky creative types

slashdot_commentator slashdot_commentator writes  |  more than 9 years ago I was about to add my $0.02 to this response when it occurred to me to submit the question here.

How can the community attact the artistic and fiction writing types into open-license type projects?

It seems to me the better documented type open-license projects are able to attract technical writers, but not so much with games. The few good ones tend to be one man shows who are already artistically inclined.

Should the programmer community start focusing on generic game engine tools to aid these people in expressing their talent? Are programmers "bogarting" the credit for a game? What suggestions come to mind?

top

St. Valentines Day hazardous to health

slashdot_commentator slashdot_commentator writes  |  more than 9 years ago (Once more into the breach...)

Falling in love used to be fun. Now doctors are warning that the throes of passion should be seen as a potentially fatal medical disorder.

Psychologists say that "lovesickness" is a genuine disease that needs more awareness and diagnosis.

Symptoms can include mania, such as an elevated mood and inflated self-esteem, or depression, revealing itself as tearfulness and insomnia.

top

Time for some more rejection - BSEs found in goat

slashdot_commentator slashdot_commentator writes  |  more than 9 years ago

Submitted title: Mad Cow Disease discovered in other animal species (Science,News)

The BBC reports that a French goat has tested positive for mad cow disease - the first animal in the world other than a cow to have bovine spongiform encephalopathy (BSE). The European Commission says further testing will be done to see if the incidence is an isolated one.

You can thank the animal rendering industry for that one. Time to change to a vegetarian diet?

top

James (Scotty) Doohan has Alzheimer's

slashdot_commentator slashdot_commentator writes  |  more than 10 years ago

Terrible news, the actor James Doohan, who played Chief Engineer Montgomery Scott in the TV sci-fi series Star Trek, is diagnosed with the early stages of Alzheimer's disease. Sadly, he also suffers from Parkinson's disease and diabetes.

In August, he'll bid farewell to the still thriving Trek convention circuit, with "Beam Me Up Scotty...One Last Time," a three-day fest that's billed as his last-ever con appearance.

(Yeah, lets see the /. editors pass on this submission...)

top

Would you inflict linux on Aunt Tillie?

slashdot_commentator slashdot_commentator writes  |  more than 10 years ago

Eric S. Raymond has recently written a wonderful piece explaining to the linux zealot why it may not be the operating system of choice of all users. (Or what user aspects open source developers need to focus on to further Linux World Domination.) The op-ed specifically focuses on the CUPS printing system. (But it would be a mistake to dismiss it as a screed against CUPS.) The CUPS authors surprisingly acknowleged ESR's points, and he wrote a followup to the article.

top

Computer Espionage in the US Senate Judiciary

slashdot_commentator slashdot_commentator writes  |  about 11 years ago

What do you do when you just can't get your co-workers to see eye-to-eye with you? The Boston Globe reports that Republicans on the Senate Judiciary Committee stole confidential memos from their Democratic counterparts by cracking into their computer files. The memos highlighted Democratic strategies concerning Republican Judicial nominees. Its suspected that some of them were leaked to Republican shill Robert Novak, who then disclosed their contents in a February 2003 column.

What can we learn from Republicans when accused of cracking?

(Blame the victim.)

"As the extent to which Democratic communications were monitored came into sharper focus, Republicans yesterday offered a new defense. They said that in the summer of 2002, their computer technician informed his Democratic counterpart of the glitch, but Democrats did nothing to fix the problem."

(Feign ignorance and indignation.)

"Judiciary Chairman Orrin Hatch, Republican of Utah, made a preliminary inquiry and described himself as "mortified that this improper, unethical and simply unacceptable breach of confidential files may have occurred on my watch."

("I'm shocked, *shocked* to find cracking in this establishment." "Here are their memos." "Ah, thank you...")

top

Novell screws SCO for Xmas

slashdot_commentator slashdot_commentator writes  |  more than 10 years ago

Novell quietly submitted conflicting copyright claims on System V UNIX a few months ago. SCO's lawyers appears to have been unaware of this. Now SCO will have serious problems going forward with its copyright infringement suits on IBM and other major Linux users. The immediate result of Novell's actions is that SCO's lawsuits will probably be deferred, so no windfall quarters for SCO to report in the following year. SCO could even suffer legal penalties by submitting flawed DMCA suits.

Ahhh, nothing like a nice holiday story to warm the cockles of a penguinista's heart...

top

Criticize Microsoft security, get fired.

slashdot_commentator slashdot_commentator writes  |  more than 11 years ago

After 12 rejections and the "de rigeur" absence of explanations, I've decided to post each story I submit to /. into this journal for your perusal.

...and given the nature of this story, it should be interesting to see if /. has the stones to publish it...

The soon to be rejected submission:

Dan Geer Jr., is now the former CTO of @Stake, Inc. (a security consulting group), after participating with six other security experts in a report (released yesterday) critical of the US Government's over-reliance in Microsoft products. The report, entitled "CyberInsecurity: The Cost of Monopoly" argues that a "monoculture" of OS software makes gov't computers more vulnerable to computer viruses and hacker attacks.

``The values and opinions of the report are not in line with AtStake's views,'' the company said in a statement. It said Geer's participation working on the report was ``not sanctioned.''

Bruce Schneier, the chief technology officer for Counterpane Systems Inc., worked with Geer on the report. He said security experts contacted to help work on the report critical of Microsoft indicated their support but couldn't participate publicly. ``There is a huge chilling effect based on Microsoft's monopoly position,'' Schneier said. ``It's unfortunate that AtStake put its private agenda ahead of intellectual integrity.''

More sordid details can be gleaned here and here. Lets hope Schneier still has a job by the end of the week. (And any /. posters who dare comment.)

Slashdot Login

Need an Account?

Forgot your password?