Beta

Slashdot: News for Nerds

×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Comments

top

Among APs I detect, the secured:unsecured ratio is:

spidr_mnky Re:0 unsecured (277 comments)

You are wrong, first in your use of the word "other", implying that mac filtering is a security measure. It's really not that easy to get into a properly secured network.

The only reason you don't see a lot of people jumping up and down to correct you is that it's not necessarily a wise thing to admit, on a widely read message board, that you have invited yourself into a network where you were not welcome. Some of us, if completely honest, would have to tell you, "I have been that guy, MAC spoofing was so trivial I found it worthwhile, and any serious security precaution would have turned me away."

5 digit UID ... trolling?

more than 2 years ago
top

Your Passwords Don't Suck — It's Your Policies

spidr_mnky Re:How about not leaking hashed passwords ... (487 comments)

Well, let's try it the other way. "Assume your institution will never leak your hash, and rate limits at exactly the thresholds you find appropriate."

"OK. I'm going to keep using mittens22 as my password and sleep like a baby." It doesn't make for much of a discussion.

You're probably right that password handling is more important than password choice, but just as sysadmins ultimately can't make their users choose good passwords, users can't make their sysadmins handle them correctly. "Vote with your feet" counts for something, but not when it's your workplace, and you don't always know how badly your passwords are being mismanaged behind the scenes. So you do what you can.

The remedy for a compromised database of hashed passwords is: do not use the same credentials in several places.

Well, that takes care of part of the problem. However, in that scenario, a good password could (if your institution at least does good hashing) mean more time between database compromise and the compromise of your account - time in which you could change your password.

more than 2 years ago
top

New Firefox For Android Beta Released

spidr_mnky Re:Don't forget about mobile AdBlock Plus (107 comments)

AdFree is effective and simple, and I would recommend it for pretty much anyone, but for more aggressive control I like DroidWall. It's a front end for iptables, and grants network access on a UID basis. Since each app is given a UID, this effectively means it works on a per-app basis, and it lists app names in the interface.

Fair warning: While whitelisting is a superior strategy to blacklisting, it can bite you by blocking core functionality like updates, and it's not always clear what needs to be unblocked to restore functionality. Fortunately it does logging, so you can turn on logging, perform the action that's not working, and check the log to see what hit the firewall.

It does entail some work, at least while you're still breaking in your phone, which is why I recommend it only if you're feeling "aggressive". AdFree is easy and practical.

more than 2 years ago
top

Antivirus Pioneer John McAfee Arrested In Belize

spidr_mnky Re:Check the citation... (367 comments)

I think "fatal" means the wound is the cause of death, regardless of whether death was a certain outcome of the wound. I'm less sure about "mortally wounded", but I take it to mean exactly the same thing, with the slightly different connotation that the speaker is asserting that the wound is certain to be fatal, although he may not know for sure. I definitely wouldn't take, "He's mortally wounded," to mean, "I think he might pull through if we can get him to a doctor."

"Fatally wounding" does not necessarily mean "it could have lived", but it does leave room for that interpretation. Of course, I think he was just illustrating the distinction, not attempting to make the first stab in an etymological knife fight.

more than 2 years ago
top

Smartphones Invade the Prepaid Market

spidr_mnky Re:Slamming (173 comments)

They definitely do it. My girlfriend just bought a Fusion (marketed by AT&T as a pay-as-you-go thing) with the sole intention of ditching the sim card that came with it and using it on her existing AT&T voice only plan. Suddenly they tell her she has a data plan, and she's going to pay for it monthly. We're still working out exactly how to react to that, but yeah, they're apparently serious about it.

more than 2 years ago
top

James Cameron Begins His Deep-Sea Dive

spidr_mnky Re:Good (162 comments)

Honestly, when I heard the term, I thought the character was joking. It dawned on me a few minutes later that perhaps that was intended to be the actual name of the stuff, but I was too busy watching blue people ride dragons through canyons to be upset about it.

more than 2 years ago
top

Linode Exploit Caused Theft of Thousands of Bitcoins

spidr_mnky Re:Free Insurance (450 comments)

Always the libertarian argument:

Always?

more than 2 years ago
top

Torvalds Calls OpenSUSE Security 'Too Intrusive'

spidr_mnky not the whole point of sudo (311 comments)

I can't speak for developer goals, but that's not why I use it. I use it so that I never have to have a root shell open, which I might carelessly leave open, which is a small (depending on context) security vulnerability, and a large safety problem, since I could (again, carelessly) type the next few commands as root by accident.

Anyway, making any program setuid root increases the chances that anyone that can run it could get unlimited root access. sudo in particular has a history of problems with the "limited access" use case. It tends to give away more root than you might think, especially if the user is inclined to persist at trying to get it.

I'll grant that if you trust someone not to try to exploit your system, but you just don't think they need full root access, sudo is a convenient way to give them just what they need. I disagree that that's the "whole point", though. My policy is not to give out sudo privileges (however limited) to anyone I wouldn't trust with full root access.

more than 2 years ago
top

Google Working On Password Generator For Chrome

spidr_mnky Re:One small problem... (175 comments)

I agree with the sentiment that preventing autocomplete is stupid behavior. I find it mildly offensive that the browser enforces this, without option to turn it off, since it is supposed to be acting on my behalf. "Fix it yourself" is generally not a very helpful answer. However, in this case, I eventually did fix it myself (after I read how).

There are bookmarklets floating around which will force autocomplete for a page, but you have to load the page, then hit the bookmarklet, and it's not (that I've seen) a 100% solution. Better than nothing, though, and it works as a non-admin user.

Ultimately, to remove this behavior, I ended up altering a system file. I have to edit it again every time I upgrade Firefox, but that's part of the documentation for my system, now. On Gentoo, running FF 3.6.20, the file is /usr/lib/xulrunner-1.9.2/components/nsLoginManager.js. There is a function named "_isAutocompleteDisabled". Alter it to unconditionally return false, and the effect is that autocomplete is never disabled.

That's just my system, and I obviously use a pretty old version of Firefox. If you figure out where the current version of Firefox keeps the equivalent files on your OS of choice, and grep around for "isAutocompleteDisabled", I think you'll likely find the right place to hack the newest versions.

I am very pleased with the results. Autocomplete is no longer conditionaly, and I am never bothered by a site's attempt to prevent it. On the other hand, I'd be even more pleased to find a solution which is as effective, but stays within the confines of "normal" user configuration - an extension, or greasemonkey script, what-have-you.

more than 2 years ago
top

Ex-FCC Chair: Spectrum Plan "Single Worst Telecom Bill I've Seen"

spidr_mnky Re:The Problem Is (63 comments)

We seem to love us some comma splices, though. :P

more than 2 years ago
top

White House Refuses To Comment On Petition To Investigate Chris Dodd

spidr_mnky Re:No. The petition asked for the wrong thing. (765 comments)

The post to which you responded directly addressed that point.

[...]there is precedent for impeaching a government official after leaving office.

Did I miss a distinction?

more than 2 years ago
top

Ask Slashdot: Best Way To Print From an Android Tablet?

spidr_mnky Re:No printing sucks (203 comments)

This topic got me thinking about it, so I installed CUPS. I have a crappy little android phone. It doesn't even run CyanogenMod. I have a debian chroot environment on the sdcard. CUPS installed, and the service started, and localhost:631 shows the usual page. I haven't added a printer, yet, but I'll try to test that part out soon.

So my direct answer to your last question is that not a lot of porting is necessary. CUPS seems to work. Why isn't it part of the base system? Why doesn't every app have a "print" button? Either they ought to or the answer eludes me at this hour.

I will throw out the caveat that really only network printers are compatible with this setup. There is an obvious problem when you look at a printer, the accompanying USB cable, and a phone. But then, I don't think a lot of people have just a printer and a phone. If your USB printer is attached to a computer, the computer can take care of the network end of things. (More CUPS.)

more than 2 years ago
top

Physicist Uses Laser Light As Fast, True-Random Number Generator

spidr_mnky Re:More obligatory Dilbert (326 comments)

I have to disagree. I saw that strip first, and I got it, and I appreciated the concept of the joke, and generally I appreciate Dilbert ... but that's just not funny. Later, when I saw the XKCD panel with the comment about rolling a die, I laughed, because it's funny. Subjective, though, I guess.

more than 2 years ago
top

Physicist Uses Laser Light As Fast, True-Random Number Generator

spidr_mnky Re:"Truly random numbers" (326 comments)

Well ... no, it doesn't. I'm not a physicist, but I assume they've got a bit more backing up the uncertainty principle than, "We can't seem to get these two measurements at the same time, therefore no one ever will." (Note that I think you're less wrong than the post to which you replied, but more worth correcting on this somewhat philosophical point.)

more than 2 years ago
top

US Gov't Seizes 130+ More Domains In Crackdown

spidr_mnky Re:Like the internet (219 comments)

As someone who fucked up at work yesterday (and heard about it today), I smiled at this comment. :)

more than 2 years ago
top

Of all my locally stored data, I encrypt ...

spidr_mnky Whole (single) drive. (261 comments)

I encrypt a single device. (My laptop hard drive.) There are partitions laid out on top of that, including root, home, swap -- the usual. External devices are generally unencrypted. It seems like the most obvious way to do encrypted storage for my purposes. I don't have to fuss with making sure data lands on an encrypted spot (swap is a famous gotcha), but it's still just one key to remember. I'm surprised it's not listed.

Is that actually an unusual setup, or did that option just get left out as an oversight?

more than 2 years ago
top

MS To Build Antivirus Into Win8: Boon Or Monopoly?

spidr_mnky Re:Anti-Trust (748 comments)

Some other problem controls granting capabilities.

Was that a Freudian slip (s/problem/program/) or did I mis-parse that sentence?

more than 2 years ago
top

Did Fracking Cause Recent Oklahoma Earthquakes?

spidr_mnky Re:Smaller earthquakes are better (288 comments)

So, unless Oklahoma is in unrecoverable ruins, that's Kohath: 1, pclminion: 0.

more than 2 years ago
top

PETA To Launch Pornography Website

spidr_mnky Re:We at PETA were only *mostly* crazy before (348 comments)

Good points. I mean, they sounded pretty good when Penn and Teller were making them. I don't think you parroted them correctly, though.

Penn made the point that if we treat animals with the same respect and rights as people (which PETA seeks), it would make sense to give them the same responsibilities, and cited obscenity and sanitation codes as an example, which most animals would be completely unprepared to follow. I'm fairly sure PETA doesn't go around saying animals should have to obey our laws, though.

"Bullshit!" is a great show, I think, but it sounds like you watched an episode, half-remembered it, and regurgitated what you remembered as the main points.

(Oh, it looks like PETA was season 2, episode 1, if anyone else wants to check it out.)

more than 2 years ago

Submissions

spidr_mnky hasn't submitted any stories.

Journals

spidr_mnky has no journal entries.

Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Create a Slashdot Account

Loading...