Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Comments

top

Confidence Shaken In Open Source Security Idealism

ysth Yes, it really is so different. (265 comments)

Yes, it really is so different.

With both the recent openssl and bash bugs, in addition to fixing the bug, careful investigation was done by the respective communities and additional problems were/are being addressed. I submit that this would likely not have been the case with closed source software.

about two weeks ago
top

Password Security: Why the Horse Battery Staple Is Not Correct

ysth Re:Ugh blowhard city (549 comments)

He not only makes the unrelated point, but then goes on with nonsense about when you do need to choose a password:

Even if we entertained the XKCD comic and started training users to select four random words...[w]hat is there to prevent âoeletmeinfacebookâ from being the new most common four word password for Facebook accounts?

Bzzzt. Failure to understand the meaning of the word "random" rules you out as an authority on passwords.

about two weeks ago
top

Fedora To Get a New Partition Manager

ysth Re:So.... (170 comments)

No, we need such a command line tool or possibly library with a command line tool wrapped around it. The GUI is entirely optional and certainly shouldn't be bundled.

about a month and a half ago
top

Mozilla To Support Public Key Pinning In Firefox 32

ysth Re:Please... (90 comments)

You lost me at "Windows".

about 2 months ago
top

Why the Public Library Beats Amazon

ysth Re:KDP Select (165 comments)

So, you think the trade publishers would be fine with exclusivity and their only beef is the money? I think differently.

about 2 months ago
top

Why the Public Library Beats Amazon

ysth KDP Select (165 comments)

There are so many indie books because, AIUI, you cannot choose to have a book included in Kindle Unlimited unless you are providing it to Amazon under the KDP Select program. This program gets you higher percentages and free marketing and promotional tools. The tradeoff is that whatever books you have in the program be available exclusively from Amazon. This is a tradeoff that is going to make sense for many authors, but is just horrible for readers. And in the long run, the lock-in this inspires is bad for the authors too.

See Chris Wright's rant.

about 2 months ago
top

Edward Snowden Is Not Alone: US Gov't Seeks Another Leaker

ysth "mole"? (204 comments)

CNN seems to be very confused; in what way is this additional whistleblower a "mole"?

about 3 months ago
top

The Sudden Policy Change In Truecrypt Explained

ysth Re:tc-play is a reimplementation of Truecrypt (475 comments)

I agree with your first part, but then you go off on a tangent ("By distributing the code...") that seems inapplicable??

about 5 months ago
top

The Sudden Policy Change In Truecrypt Explained

ysth Re:TC developer used hidden message!!! (475 comments)

Yes, it seems pretty clear to me that this is a warrant canary.

It may still be that they triggered it (or let it self-trigger via inaction) out of lack of desire to continue the project.

In any case, the presumed goal of the canary - making sure that no one trusts any future TrueCrypt version released via the normal channel - has certainly been successful.

about 5 months ago
top

Has the Ethanol Threat Manifested In the US?

ysth Re:Comment from a Chemist (432 comments)

Only works if we drink it in space.

And we'd need a space elevator to avoid an even worse carbon problem there...

about 5 months ago
top

Programmers: It's OK To Grow Up

ysth Re:Short Sighted (232 comments)

This. Though that three months sounds exeedingly generous to me. It takes very little time to get up to speed enough to start working with a new fad/language/API/SDK, especially if you are willing to bare your ignorance by asking questions where needed.

about 5 months ago
top

Applying Pavlovian Psychology to Password Management

ysth Re:Preposterous (288 comments)

Because the whole point of a "correct horse battery staple" password is to make a password you can remember simply as a story. It is counterproductive to add in foreign words (to the extent that makes a story harder) or other rules like how to represent accented characters or what punctuation to put between words.

about 6 months ago
top

Applying Pavlovian Psychology to Password Management

ysth Re:Preposterous (288 comments)

zxcvbn rates that as 78 bits of entropy; 72 without the ~.

But if everyone starts using some foreign words or terms with accented characters transliterated, it becomes just another part of a cracker's dictionary, and not much better than "The boy causes rain." (59 bits, still an excellent password).

about 6 months ago
top

Ask Slashdot: Joining a Startup As an Older Programmer?

ysth What is "late-term"? (274 comments)

What is "late-term" in this context?

Number of employees is not a particularly relevant measure (except perhaps of how much money the investors are willing to throw away). How long since the first employee was hired? How many employees were there a year ago?

about 6 months ago
top

Australia May 'Pause' Trades To Tackle High-Frequency Trading

ysth Re:Yikes (342 comments)

The concept is that the market is supposed to be for investing. Investing implies certain loss of liquidity (no idea what you mean by loss of value). That said, see my response.

about 7 months ago
top

Australia May 'Pause' Trades To Tackle High-Frequency Trading

ysth Re:Won't work (342 comments)

There's no need to set a minimum time; what is needed is a minimum tax or fee. It could be .01% and still completely put a stop to abusive trading.

about 7 months ago
top

Researchers Find Problems With Rules of Bitcoin

ysth Re:Bullshit (301 comments)

No, the point of the difficulty is to make attacks, err, difficult. Nothing to do with creating of bitcoins. If you are misunderstanding things this grievously, sit back and let other people talk for a while.

about 7 months ago
top

Facebook Introduces Hack: Statically Typed PHP

ysth Somebody please tell me... (230 comments)

Somebody please tell me this is an elaborate April fool's joke that someone noticed the groundwork for early?

about 7 months ago

Submissions

ysth hasn't submitted any stories.

Journals

ysth has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?