Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Comment Router Packet Inspectors? (Score 1) 174

Filed under "this is why we can't have nice things" --- How about: upgrading "home" routers to offer some form of packet inspection? Yes I know that sometimes the routers themselves are enlisted in the attack. However, it appears that many IoT devices are setup inside the home/business and are insecure. And homes are adding more IoT devices than they are adding routers - thereby increasing the available munition surface area. Usually it is 1-router and (n)-IoTs.

Maybe this is a trivial solution - but couldn't router software enforce a few simple restrictions on properly formed outbound packets?

Or wait - we don't need to upgrade the routers. Instead change their Gateway to send traffic to scanning device. Although one has to wonder if the likes of Comcast have IPS.

And since DNS seems to be in vogue - might DNS servers start asking themselves "why does server x.y.z need 1-bazillion replies to the same entry?"

However, these ideas only resolve the (current) symptom. The basics of the internet may need to be rethought - a super IPSEC? It wasn't that long ago that open mail routers posed a similar threat and opportunity for spammers (yes - the game has since moved to "legit" robo-inboxes). As the network grows attackers will continue to find ways to break it. A "single" person can take over the whole network. Things like blaster/code-red took over whole corporate networks from inside. Now these attacks are outside and treat all domain systems as one giant inside-system.

Submission + - BBC micro:bit specs released as open hardware (microbit.org)

TrixX writes: The makers of the BBC micro:bit have announced that they are releasing the full specs for the device under an open license, (Solderpad License, similar to Apache License but for hardware). This means that anyone can legally use the specs and build their own device, or fork the reference design github repo and design their derivatives.

Submission + - Archaeology team uses cosmic muons to discover 2 new rooms in the Great Pyramid (yahoo.com)

drdread66 writes: Muography is an established technique that uses the constant global background of muons (the much heavier cousin of the electron, created during interactions between cosmic rays and the Earth's atmosphere) as an illumination source that can penetrate even dense, thick structures. This technique has been used to probe the structure inside the damaged nuclear reactor at Fukushima, image Mt. Vesuvius, and to study other pyramids. Now this technique has yielded evidence of new "voids" inside the Great Pyramid of Giza.

From the article: "Egypt's Great Pyramid of Giza could contain two previously unknown "cavities", scientists using radiography to scan the millennia-old monument said on Saturday. On Thursday, the antiquities ministry cautiously announced finding "two anomalies" in the pyramid built 4,500 years ago under King Khufu, with further tests to determine their function, nature and size."

Submission + - Samsung Starts Mass Production Of 10nm Chips

An anonymous reader writes: Samsung has announced that it has begun mass-production of its 10-nanometer chips, claiming to be the first semiconductor manufacturer to start building the technology on a commercial scale. While the Korean electronics giant did not mention who it is producing the transistors for, it was suggested that the deal is to manufacture Qualcomm’s Snapdragon 830 processors using the 10-nanometer technology. In addition to Samsung’s own Galaxy and Note range, should the Qualcomm partnership be confirmed, its 10-nanometer innovation could also be found in devices from Google, HTC and Sony, among others. According to Samsung, the system-on-a-chip (SoC) produced at 10-nanometers will provide 27% better performance and 40% lower power consumption than its current industry-leading 14-nanometer model.

Submission + - When is it OK to mine hacked emails? (backchannel.com)

mirandakatz writes: The recent WikiLeaks dumps and subsequent news reports beg the question: what should journalists do when presented with hacked personal emails, especially since this situation may become the new normal? How do you parse out the newsworthy from the insider gossip? Is it ever really OK to publish scoops mined from illegally obtained emails? At Backchannel, Steven Levy wants to know what you think—and whether there should be guidelines for reporters in these types of situations.

Submission + - The mathematics of the American Justice System (bbc.com)

Bob the Super Hamste writes: The BBC is reporting on the Compas assessment, Correctional Offender Management Profiling for Alternative Sanctions. This tool is used by a number of agencies to assess if someone is likely to commit additional crimes and the resulting score is used in determining bail, sentencing, or determining parole. The article points out that while the questions on the assessment do not include race the resulting score may be correlated with race but this is disputed by the software's creators. The assessment scores someone on a 10 point scale but the algorithm used to determine someone's score is kept secret. Because of this defendants are unable to effectively dispute that the score is incorrect.

Comment Too bad unemployment doesn't start (Score 1) 813

These workers are going to be unemployed - but they aren't yet. They are being paid. If they could all quit now! and pickup unemployment while looking for a new job --- that would be a finger in the eye of their employer. However - I'm sure employers know this and it is what makes the equation work.

If there was a way for them to band together and all quit now - the equation wouldn't work. There is no incentive to remain - go find a job now! Regardless of what carrot the HR dept is hanging in front of you - your life career starts tomorrow, don't delay it. And for those who can quit now... do it.

But let's face it. Automation & Robots are coming and will fill some of these jobs in the near future. Farming used to have lots of labor - but now machines have replaced the laborer. Which is fine because most don't want this kind of hard work - certainly not for the pay.

I think some of these IT jobs are going the same way. Train thy self and move up to a job that can't be so easily replaced. And keep in mind - management is being automated too. These jobs will most likely disappear from the workforce in "10 years."

Submission + - NASA develops electroactive material for rapid wound healing (topexaminer.com)

hypnosec writes: US space agency NASA has developed a new electroactive material that when applied on wounds can speed up the healing process as well as keep infections at bay. NASA says that its new material that can be given the shape of a bandage has ample of applications including on battlefields for the wounded military personnel, patients who have undergone surgery, patients who may have suffered from serious wounds and injured astronauts in space. The bandage made out of the electroactive material [PDF] has to be applied on an exterior wound. Using low level electrical stimulation generated within the material itself, the bandage promotes as well as speeds up the wound healing process and protects it from infection.

Comment Some are pretty real.... (Score 1) 212

the iTunes cards should be a dead give-away of fraud. BUT --- I heard an interview with a woman who received TWO telephone calls at the same time - both working together (she had two phones, cell & landline). This scam was rather sophisticated.

The first caller was the normal "IRS calling - you owe us money" The second caller (caller id was "911") "This is FBI coming to get you now - stay where you are" First caller - "pay us now and I will cancel the FBI agent." She went to Western Union to make the payment as requested - and Western Union blocked her payment realizing it was fraud (they have a dept monitoring this). WU customer service handed her their phone over the desk "WU special agent wants to talk to you" The WU agent on this second line took 30 minutes to talk the woman down from repeatedly trying to make the payment ("no 'mam - this is a scam. no really.") She had the "FBI Agent" still on her cell phone - and WU agent on the store phone. FBI agent demanding "do it now or go to jail" and second person saying "no - it's a scam"

Her backstory was that she owned a small business and had somebody else doing her taxes - so she didn't fully know what was up. The call was semi-plausible coupled with the high pressure tactic.

Critical thought was not obvious.

Comment Re:Listen to an actual call here (Score 1) 212

Yeah the calls to my house began to accelerate last week - then suddenly stopped. It changed over the previous month from weekly recorded messages ("call us back") to daily real humans talking to me. One was an Australian bloke pretending to be an agent with the US Treasury dept.

But my favorite conversation I told the guy "Look, you've been trying to pin this on me for years. You Can't Prove Anything - your evidence is weak. Come Get me.. Every heard of the 4th Amendment? I'm loading my shotgun right now... come get me. You got nothing on me!"

To which a broken english reply came: "you kiss my ass"

Slashdot Top Deals

In every non-trivial program there is at least one bug.