Slashdot Mirror

← Back to Users

User: coutch

coutch's activity in the archive.

Stories
0
Comments
25
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 25

  1. Re:what about back-end? on Epsilon Data Breach Bigger Than Just Kroger Customers' Data · · Score: 1

    They must use a different one, I "forced" the bad password through, and it worked just fine (at least it did 8 months ago)

  2. if their security is as good as their programmers on Epsilon Data Breach Bigger Than Just Kroger Customers' Data · · Score: 5, Informative

    .... then we're in trouble

    I ran into their awful code back in August, when I was trying to sign in for a Sears email special (hey, I need some cheap tools ...)

    the page is still there:
    http://www.sears.com/shc/s/dap_10153_12605_DAP_Get%20Connected?adCell=WF

    It wouldn't validate my password (say ... for example, "ab1cd2ef"), even though it met all the requirements:

    "Password must be at least 8 characters, contain at least one number and one character, not start with a number and not contain any
    special characters."

    so I dug in a little, and found quite a gem of Javascript !
    if (/^[a-zA-Z]+[0-9]+[a-zA-Z]*$/.test(oPass.value) == false) {
                    alert(invalidMsg);
                    oPass.focus();
                    return false;
            }

    it won't handle the two numbers ...

    try it ... go to the sears link up there, and try registering with a password like ("ab1cd2de") ... don't worry, it won't work, so your (hopefully fake) email will be safe ...

    if you want to see what's happening, have a look at the script.js file, and searh for the function verifyPass() ...
    you can even see some commented out code of their previous attempts at implementing this basic functionality ...

    I emailed Sears back in August, telling them where the error was, and a simple way to fix the regex used ... but all I got was an "out of office reply"

    ah we.. I still managed to register after all, and have bought a few tools on sale ...

  3. All I want out of HDMI 1.4 on The Joke Known As 3D TV · · Score: 1

    is the Audio Return Channel. Just make a small-ish TV (~ 40") with ARC so I can connect it to my receiver and get the audio out of the built-in tuner without having to have an extra optical cable ... no 3D ... and no 3D price markup either ...

  4. Re:More companies too on Microsoft Mice Made in Chinese Youth Sweatshops? · · Score: 1

    It's so easy to put all the blame on the corporations. but the consumer has to take the blinders off and look in the mirror.

    When we buy something (electronics, car, clothes, vegetables, fruits ... anything!), do we stop and ask ourselves in what type on conditions that good was produced ? unlikely ...

    Or do we only look at the bottom line and get as much as we can for the lowest cost ? sounds more like it ...

    There will always be a corporation willing to do something shady to produce something for a lot cheaper .... because there will always be a consumer willing to overlook shady practices and BUY those goods.

    It starts with the consumer. WE have to change.

  5. Re:and the fourteenth error should be... on The Thirteen Greatest Error Messages of All Time · · Score: 1

    not only on 'early PC'.
    I just rebuilt my 'old' PC before giving it to my dad (it was only about 4 years old), and had to plug the PS2 keyboard in the mouse ps2 connector, or I would get that error ...

  6. And you are surprised because ... ? on US Ignores Unwelcome WTO IP Rulings · · Score: 5, Insightful

    Given the way this administration has been handling Foreign Policy, this shouldn't come as a surprise to anyone ...

  7. Re:WHOIS Record on CES 2008 Hall of Shame · · Score: 1

    it's just a WHOIS privacy service, so that domain owners don't have to put their real address and telephone numbers in their out there on WHOIS ....

  8. Stop global warming - become a pirate ! on Tackling Global Warming Cheaper Than Ignoring It · · Score: 1

    and be touched by his noodly appendage

  9. Irrelevant... on Linux Laptop from R Cubed Reviewed · · Score: 1

    Still using Pentium M when the Core Duo has been here a while, and Merom just around the corner ...

  10. Re:AnandTech flash drive roundup on Blazing Dual Channel Thumb Drive · · Score: 1

    Another good roundup at Ars Technica (without the OCZ unfortunately). The Verbatim Store 'n' Go Pro doesn't look too bad for the price, but I'd probably go with the Kingston Data Traveler Elite myself...

  11. Re:Only 200GB? on 200gb Hack for iPod Nano · · Score: 1

    $90/200GB=$0.45/GB which is a hell of a lot cheaper than $0.21/MB ... $0.45/GB * 1GB/1024MB = .... you do the math ...

  12. Re:It gives a whole new meaning to...... on Cars that Can't Crash? · · Score: 1

    Ford Owners Recommend Dodge

  13. Re:tekiegreg, you are bound by law to stand down on Mount St. Helens Lets Off Some Steam · · Score: 0, Offtopic

    "You are so good looking!"

  14. Canada will have to do it later ... on National TV Turn Off Week · · Score: 1

    because it's NHL playoffs time !!

    Go Sens !

  15. Re:Bay Area! on A Geek's Tour Of North America? · · Score: 1

    And while in the Bay Area, you have to experience the "Fry's Electronics" thing ...

  16. This is your brain on TIVO ... on TiVo For Radio? · · Score: 2

    I keep finding myself reaching for a non-existant button on my car radio that will jump back a few seconds so I can listen to that comment I just missed, or the DJ telling the name of the great song that just played ...

    I wish life came with a pause button ...

  17. Re:following suit on Sun Considers Opteron · · Score: 5, Funny

    April 8: Sun may use Opteron
    April 9: Microsoft commits to Opteron
    April 10: Sun considers Opteron
    Who's following who ?

  18. a similar look at a motorcycle oil change on Getting Help Building Your Computer · · Score: 5, Funny

    The Oil Change

  19. Re:Kegerator (Keg fridge) on Subversive Gifts for New College Students? · · Score: 1

    I was brewing beer while in College ... and kept it in Pepsi kegs. I got them from the local distributor for a $10 deposit ... bought a small CO2 tank and put the beer tap through holes on the side of the fridge ... didn't even need to open the door to refill my beer ... that was living ....

  20. Re:Backwards compatable is good. on 802.11g Approved By IEEE 54 mb/s on 2.4 gigahertz · · Score: 0, Offtopic

    Backwards compatable is bad

    Backwards compatible is good

    --Coutch

    hukt on foniks wurkt fur me !

  21. Are they trying to sell them somewhere else ?? on NSI Class Action Lawsuit Over Domain-Squatting · · Score: 2

    I checked NSI's site, and they seem to be linking a lot to an entity called Great Domains where you can purchase already registered domain names. What is greatdomains.com's relationship with NSI ? Does NSI own them or part of them ? If anyone finds an expired domain name on there, that would explain a lot !!

  22. Re:Hardware Question.... on Mandrake 7.2 Download Available · · Score: 1
    I guess it really depends what source base they used to build XFree 4.0.x ... From NVIDIA's linux driver FAQ:
    Note: currently released versions of XFree86 4.0.x DO NOT support the newer GeForce2 family of NVIDIA cards. This includes cards such as the GeForce2 GTS, the GeForce2 MX, and the GeForce2 Ultra. This has been fixed in XFree86's CVS repository, but will take a new release before binary distributions pick the support up. If you have one of these cards, you will need to skip attempting to run the "nv" driver at this point.
    Coutch - I want to die peacefully, in my sleep, like my grandfather, not screaming, terrified, like his passengers.
  23. Re:they will have you think on @Home Stops Allowing VPNs · · Score: 1

    Ivan, I'm using Mandrake 7.1 with the latest dhcpcd I only tried once, and reverted to the static config right away. I'll check it out tonight to see if I missed something or had a typo somewhere. coutch

  24. Re:they will have you think on @Home Stops Allowing VPNs · · Score: 1

    That's correct. In fact my windows partition has DHCP enabled, while I configured my Linux partition statically. For some reason, their DHCP server did not answer DHCP requests when I booted Linux. They tried to make me believe that not using DHCP was the cause of very frequent interruptions I was experiencing, it turned out it was a problem on their side. It still took a month, 3 service calls, and 2 modems to figure it out. But now, the service rocks... until all the neighbours figure it out ...

  25. Re:Good Timing - Covad Experiences Anyone? on Thoughts On Third-Party DSL Providers? · · Score: 1

    I'm in the exact same situation as you. I'm too far from the Central Office to get decent DSL at decent price. And TCI (now AT&T), keeps telling me that cable modem will be available in my area "VERY SOON" ... well they've been telling me this for 2 1/2 years now !! They still can't get their act together.... If I was the cable people, I'd jump on an opportunity like this .. there's a bunch of people in my apartment complex who want fast internet access, but nobody can get DSL ... They'd have a bunch of customers lining up pretty quick if they only opened their eyes and saw where the demand is ! So, I decided to move, but before I did, I checked 2Wire to get the distance from the central office ...