"Credential Stuffing" has got to be one of the worst descriptive tech terms. Just say "Password Reuse".
It's not much of a hack to find a password and see what other websites the same password works on. Given that every fricken website uses email address for a username, once you have a email/password pair, you know the same pair is probably going to work elsewhere.
The court was right. You have a duty to monitor or perform your property's recordings. When my house was paid off I took the "paid in full" documentation to the Recorder of Deeds myself and registered a Release Deed. Done. No more lien.
I know something of OFAC. They are not nice, friendly, people. If they actually had a solid case they would be coming down on Cloudflare like a ton of bricks. The fact that they are whining in letters and not prosecuting means they have no case.
It's not just providing material support, just doing business with anyone on OFAC's list of Specially Designated Nationals (SDN) is a felony. The way the law is written, if anyone sells anything to a person who's on the SDN list, as much as a sandwich or a bottle of water, that's "doing business" and therefore a felony.
OFAC actually has the fantasy that all businesses in the US will check the ID of every customer and then check the SDN database against the customer's name before doing business with them. Nevermind that there are plenty of people in the world with the same names. And nevermind that it would take 15 minutes to buy a sandwich.
Big system with segmented processes and storage. They were a security nightmare. The first international conference on computer security in London in 1971 was primarily driven by the time-sharing concerns./get off my lawn
I'm frequently amazed at the abundance of web sites and app software that do not allow a space character in the password field. I've also had passwords rejected for using uncommon special characters.
I received the Yahoo password notification (cell phone text) for a Yahoo account that I set up only for the purpose of making comments on Disqus sites.
I had to change the password from something simple to something obtuse in order to login. The sent folder is still empty, since I have never sent a single email from that account. Since I have never used that email account for any other site, obviously there are no password reset attempts in the inbox.
There far too many web sites getting hacked. Are the developers simply clueless or are they just out-gunned by hackers?
Apple says: ""We heard from customers... we moved quickly to make improvements... we created additional steps in the purchasing process"
- and apps changed. Features around in app purchases have changed. Behavior around in app purchases have changed.
- you STILL believe that it's a coincidence? Apple gave directions to app devs about how they needed to behave for in app purchases. They own the protocol. If an app wants to sell, they have to follow the protocol.
Some apps made in app purchases look like part of the game. Using the same look and feel as the game. That changed. I believe that Apple had something to do with those changes.
"We heard from some customers with children that it was too easy to make in-app purchases, so we moved quickly to make improvements. We even created additional steps in the purchasing process, because these steps are so helpful to parents."
> Your argument is strikingly similar to those who misunderstand what free software is in the OSS sense.
Free apps share nothing with "free as in speech" OSS. Don't even try.
The business model would have never passed "compliance" at any reputable software company. The fact that the FTC is forcing refunds verifies this fact.
It has been a teachable experience. My son is much more attuned to scams.
Of course, in app purchases have been around since the dawn of computing. People are so clueless about new features that apps develop. People should be born knowing what app features are currently in development.
I bet in app purchases have been around your whole life.
> every single app page lists the top IAP for that app and every app i've seen it clearly says how much it costs to buy in game money, gems or whatever. and then it asks for your itunes password to approve it.
Do you really think that the apps, every single app, has always had those features? Is the world full of sunshine and rainbows in your world?
The app devs were forced to add those features because Apple was taking some serious heat from angry people who were tricked by apps that had none of those features.
Before you call "Bullshit", maybe you should consider the possibility that Apple has changed it's back-end processing since "a few years ago".
When I said "You need money in your iTunes account to download a free app.", I was not saying that the Apple system currently works this way. But it did work that way "a few years ago".
Do you really think that the Apple system works identically today as it did "a few years ago?"
When you're playing a game, the concept of money is game money. A lot of games let you earn and spend money. Why would anyone playing a game, and presented with a choice like "do you want more energy for $0.99?", think that they are spending real USD money? Especially in a "free app".
Yes, I have been known to give my kid a Target gift card and drop him off at Target.
And I review his purchases - like a parent. I call it "trust, but verify". Unlike Apple, Target provides a sales receipt. Also unlike Apple, Target puts a price tag on things. They don't call anything "free", when it's not.
Perhaps you should apply better English supervision if you think that a "free app" should cost money to download - or money to play. I'm on firm ground on thinking that "free" means not just free to download, but free to play.
Do I really need to sit and watch him play "Plants and Zombies?". Is there too much sex or violence? It's normally not conceivable that him playing that game would be costing me money.
Apple was pure evil about this. I got my kid an iPod touch a few years ago. I set him up with his own AppleID, and loaded his iTunes account with a generous iTunes gift card. I told him that there were lots of free apps and he should save his money by playing the free apps.
A couple months later he complained that he could not download any more free apps. I checked his account and he had spent his entire iTunes gift card. You need money in your iTunes account to download a free app. He got very upset and pleaded with me that he had only downloaded free app and he had not gone crazy downloading high priced junk.
I was able to generate a detailed listing of his iTunes purchases. All the gift card money has been spent on in-game purchases. He had no idea that he was purchasing anything. He showed me. The game would ask if the player wanted something (more time, more bullets, more lives, etc.) and ask for the AppleID password. It was entirely unclear that he was spending real money. No sales receipt was ever generated. I complained to Apple and was told that they don't control in-game purchases and that since we didn't buy anything from "Apple", they could not refund anything. I'm sure that didn't stop Apple from collecting fees on the in-game app purchases.
Will my son get his gift card money back? I doubt it.
"Ever lived in a house with a built-in intercom? Find yourself using it? Don't feel bad. No one else does, either."
My family uses the intercom a lot. I removed the built-in intercom. It's been replaced by a Panasonic phone system with 4 wireless handsets. One handset is in the kitchen and one handset is in each of the three upstairs bedrooms. Maybe some people like yelling? I prefer to make a phone call to ask a quick question or to mention something of interest (like "dinner is ready").
Agree with posters who mentioned about Ethernet and coax in every room all going back to a main distribution panel. And maybe fiber too. And conduit for anything that comes along later.
However, not everything can be centralized. Don't overlook the possibility of equipment that might need to be scattered around the house (transmitters, receivers, hubs, access points, etc.) You're going to want that stuff in closets. You'll want some of the distributed wiring to go to those closets.
Suggestion #1: build small utility closets around the house. About one every 500 sq ft.
Suggestion #2: put an electrical outlet in every closet, no matter how small the closet.
Keep your equipment from getting coated with dust over time, which leads me to...
One more, suggestion #3: all the home automation in the world is not going to clean your house. Put in a central vacuum system. It's less noise and more suction than any portable vacuum. And you don't need to worry about dirt recirculation because it exhausts outside. Store the vacuum hoses and attachments in the aforementioned closets.
I did #1 and #2. I regret not doing #3. Everything gets so damn dusty.
I don't know if I was as dumb, when I was in my 20's, as the person who questioned your choices. But having a family, and all that entails, I've met far too many 20-somethings that have no clue about how much it costs to fund a modern lifestyle.
You sir, deserve all the mod points that I don't have to offer.
I'm 50 and you hit every point and more that I could have stated. There is so much more to building computer technology systems than learning a new programming language.
This nails it "...understanding the business, anticipating needs, inventing and delivering solutions, ideally by leading others."
"Their voting record reveals the truth. Complete lockstep, unwavering synchronization. Zero deviation among the ranks"
That would match the Democrat and Republican statistics. Most of our current "representatives" could be replaced with central party robots without anyone noticing.
Slashdot Mirror
"Credential Stuffing" has got to be one of the worst descriptive tech terms. Just say "Password Reuse".
It's not much of a hack to find a password and see what other websites the same password works on. Given that every fricken website uses email address for a username, once you have a email/password pair, you know the same pair is probably going to work elsewhere.
The court was right. You have a duty to monitor or perform your property's recordings. When my house was paid off I took the "paid in full" documentation to the Recorder of Deeds myself and registered a Release Deed. Done. No more lien.
I know something of OFAC. They are not nice, friendly, people. If they actually had a solid case they would be coming down on Cloudflare like a ton of bricks. The fact that they are whining in letters and not prosecuting means they have no case.
It's not just providing material support, just doing business with anyone on OFAC's list of Specially Designated Nationals (SDN) is a felony. The way the law is written, if anyone sells anything to a person who's on the SDN list, as much as a sandwich or a bottle of water, that's "doing business" and therefore a felony.
OFAC actually has the fantasy that all businesses in the US will check the ID of every customer and then check the SDN database against the customer's name before doing business with them. Nevermind that there are plenty of people in the world with the same names. And nevermind that it would take 15 minutes to buy a sandwich.
You say "cloud services", I say "time-sharing".
Big system with segmented processes and storage. They were a security nightmare. The first international conference on computer security in London in 1971 was primarily driven by the time-sharing concerns. /get off my lawn
>adopt passphrases
I'm frequently amazed at the abundance of web sites and app software that do not allow a space character in the password field. I've also had passwords rejected for using uncommon special characters.
I think you'll find that the comment section of that news website is run by Disqus.com. It's not the news site that got hacked. Disqus.com got hacked.
I received the Yahoo password notification (cell phone text) for a Yahoo account that I set up only for the purpose of making comments on Disqus sites.
I had to change the password from something simple to something obtuse in order to login. The sent folder is still empty, since I have never sent a single email from that account. Since I have never used that email account for any other site, obviously there are no password reset attempts in the inbox.
There far too many web sites getting hacked. Are the developers simply clueless or are they just out-gunned by hackers?
See if you can follow this -
Apple says: ""We heard from customers ... we moved quickly to make improvements... we created additional steps in the purchasing process"
- and apps changed. Features around in app purchases have changed. Behavior around in app purchases have changed.
- you STILL believe that it's a coincidence? Apple gave directions to app devs about how they needed to behave for in app purchases. They own the protocol. If an app wants to sell, they have to follow the protocol.
Some apps made in app purchases look like part of the game. Using the same look and feel as the game. That changed. I believe that Apple had something to do with those changes.
"We heard from some customers with children that it was too easy to make in-app purchases, so we moved quickly to make improvements. We even created additional steps in the purchasing process, because these steps are so helpful to parents."
- Apple CEO Tim Cook
> Your argument is strikingly similar to those who misunderstand what free software is in the OSS sense.
Free apps share nothing with "free as in speech" OSS. Don't even try.
The business model would have never passed "compliance" at any reputable software company. The fact that the FTC is forcing refunds verifies this fact.
It has been a teachable experience. My son is much more attuned to scams.
> Because they have a clue.
Of course, in app purchases have been around since the dawn of computing. People are so clueless about new features that apps develop. People should be born knowing what app features are currently in development.
I bet in app purchases have been around your whole life.
> every single app page lists the top IAP for that app and every app i've seen it clearly says how much it costs to buy in game money, gems or whatever. and then it asks for your itunes password to approve it.
Do you really think that the apps, every single app, has always had those features? Is the world full of sunshine and rainbows in your world?
The app devs were forced to add those features because Apple was taking some serious heat from angry people who were tricked by apps that had none of those features.
Before you call "Bullshit", maybe you should consider the possibility that Apple has changed it's back-end processing since "a few years ago".
When I said "You need money in your iTunes account to download a free app.", I was not saying that the Apple system currently works this way. But it did work that way "a few years ago".
Do you really think that the Apple system works identically today as it did "a few years ago?"
/ get off my lawn.
The BS is Apple calling it a free app.
When you're playing a game, the concept of money is game money. A lot of games let you earn and spend money. Why would anyone playing a game, and presented with a choice like "do you want more energy for $0.99?", think that they are spending real USD money? Especially in a "free app".
Yes, I have been known to give my kid a Target gift card and drop him off at Target.
And I review his purchases - like a parent. I call it "trust, but verify". Unlike Apple, Target provides a sales receipt. Also unlike Apple, Target puts a price tag on things. They don't call anything "free", when it's not.
Perhaps you should apply better English supervision if you think that a "free app" should cost money to download - or money to play. I'm on firm ground on thinking that "free" means not just free to download, but free to play.
Do I really need to sit and watch him play "Plants and Zombies?". Is there too much sex or violence? It's normally not conceivable that him playing that game would be costing me money.
Apple was pure evil about this. I got my kid an iPod touch a few years ago. I set him up with his own AppleID, and loaded his iTunes account with a generous iTunes gift card. I told him that there were lots of free apps and he should save his money by playing the free apps.
A couple months later he complained that he could not download any more free apps. I checked his account and he had spent his entire iTunes gift card. You need money in your iTunes account to download a free app. He got very upset and pleaded with me that he had only downloaded free app and he had not gone crazy downloading high priced junk.
I was able to generate a detailed listing of his iTunes purchases. All the gift card money has been spent on in-game purchases. He had no idea that he was purchasing anything. He showed me. The game would ask if the player wanted something (more time, more bullets, more lives, etc.) and ask for the AppleID password. It was entirely unclear that he was spending real money. No sales receipt was ever generated. I complained to Apple and was told that they don't control in-game purchases and that since we didn't buy anything from "Apple", they could not refund anything. I'm sure that didn't stop Apple from collecting fees on the in-game app purchases.
Will my son get his gift card money back? I doubt it.
"Ever lived in a house with a built-in intercom? Find yourself using it? Don't feel bad. No one else does, either."
My family uses the intercom a lot. I removed the built-in intercom. It's been replaced by a Panasonic phone system with 4 wireless handsets. One handset is in the kitchen and one handset is in each of the three upstairs bedrooms. Maybe some people like yelling? I prefer to make a phone call to ask a quick question or to mention something of interest (like "dinner is ready").
Agree with posters who mentioned about Ethernet and coax in every room all going back to a main distribution panel. And maybe fiber too. And conduit for anything that comes along later.
However, not everything can be centralized. Don't overlook the possibility of equipment that might need to be scattered around the house (transmitters, receivers, hubs, access points, etc.) You're going to want that stuff in closets. You'll want some of the distributed wiring to go to those closets.
Suggestion #1: build small utility closets around the house. About one every 500 sq ft.
Suggestion #2: put an electrical outlet in every closet, no matter how small the closet.
Keep your equipment from getting coated with dust over time, which leads me to...
One more, suggestion #3: all the home automation in the world is not going to clean your house. Put in a central vacuum system. It's less noise and more suction than any portable vacuum. And you don't need to worry about dirt recirculation because it exhausts outside. Store the vacuum hoses and attachments in the aforementioned closets.
I did #1 and #2. I regret not doing #3. Everything gets so damn dusty.
The same as diamonds as far as resale goes. A diamond can be "worth" thousands of dollars, until you try to sell it. No buyers to be found.
+1 Insightful
I don't know if I was as dumb, when I was in my 20's, as the person who questioned your choices. But having a family, and all that entails, I've met far too many 20-somethings that have no clue about how much it costs to fund a modern lifestyle.
"The city links the 1,500 cameras that police have placed in trouble spots with thousands more... Even home owners can contribute camera feeds....
http://online.wsj.com/article/SB10001424052748704538404574539910412824756.html
If you link your camera to the city "highly trained crime surveillance specialists will have access" ...
http://www.cityofchicago.org/city/en/depts/oem/provdrs/tech/svcs/link_your_cameras.html
IBM press release about it's Chicago's video analysis software that "detects suspicious activity and potential public safety concerns " ...
http://www-03.ibm.com/press/us/en/pressrelease/22385.wss
You sir, deserve all the mod points that I don't have to offer.
I'm 50 and you hit every point and more that I could have stated. There is so much more to building computer technology systems than learning a new programming language.
This nails it "...understanding the business, anticipating needs, inventing and delivering solutions, ideally by leading others."
"Their voting record reveals the truth. Complete lockstep, unwavering synchronization. Zero deviation among the ranks"
That would match the Democrat and Republican statistics. Most of our current "representatives" could be replaced with central party robots without anyone noticing.
+1 from me if I had mod points.