Giving websites a secret they have to protect, especially second-tier player like this, just seems like a losing strategy in the long haul.
^THIS.
I agree 100%- keeping secrets on a website is a game that's nearly impossible to win but easy to lose. All it takes is one misstep and *boom*, you're toast.
You can run a very, very secure site, follow best practices, be diligent about patching, etc etc etc....and some poorly-written plugin or obscure vulnerability in some minor bit of software that you didn't even know existed can end up compromising the entire thing.
The only problem with this is, if you give leakedsource your email address to check, that means that they now have your verified email address to keep. Forever.
No, there's no verification required that I saw or was asked for. All it means is that they have an email address, not necessarily even a real one.
For example, I started making up email addresses...and after inputting "sexygurl@yahoo.com", leakedsource came back with this:
MySpace.com has: 200 result(s) found. This data was hacked on approximately 2013-06-11 00:00:00
But I'm not the owner of that email and didn't even know if it was a real email address or not.
I checked, and it seems like VBulletin has been a major source of leaks of my email address:
VerticalScope Network (Vbulletin) (939 Websites) has: 1 result(s) found. This data was hacked on approximately 2016-02-01 00:00:00 AVSForum.com has: 1 result(s) found. This data was hacked on approximately 2016-01-23 00:00:00 Vbulletin.com has: 1 result(s) found. This data was hacked on approximately 2015-10-27 00:00:00 W3schools.invisionzone.com has: 1 result(s) found. This data was hacked on approximately 2015-01-11 00:00:00
Fortunately I make up different passwords any time I use that email, but still...thanks VBulletin! Thanks for being so easy to hack, I really, really appreciate it.
I'm just as leery of password "vaults" as I am of easy passwords.
Same here...it seems like a single point of failure. Sure, you can use a long, ugly password for the password vault, but that won't matter if you get zapped by a key logger or malware that sniffs for credentials. And if I was a malware write you could bet your ass that I'd be on the lookout specifically for password keeper apps so I could target them directly.
Password keepers seem like a good idea at first, but the consequences of having one compromised would be catastrophic. They don't just one of your logins, they get them all.
I'm a Democrat, and I think there's been "enough evidence" available to indict her for quite some time.
Seriously, what do they need, HD video of her snickering, "They'll never find these classified emails now, ha ha ha!" while she presses the Delete key again and again?
If you or I had done this we'd already be serving time in a Federal prison.
Couple of years! More like a decade at minimum if you ask me.
Yep, that sounds more realistic for real-world use. At least 4 or 5 years, but yeah, it'll need some serious real-world testing before any claim of "stable" will be credible.
"APFS supports nanosecond time stamp granularity rather than the 1-second time stamp granularity in HFS+.
Damn, 1-nansecond time stamp granularity? A factor of one billion improvement in resolution, that's fairly impressive. I'm not sure it'll be of much use to a lot of people, but I'm all for greater precision/resolution in stuff like this.
Apple has a great calculator on the iPhone and yet in their infinite stupidity they don't have the same app on the iPad forcing users to download one of the crappy ones. WTF !?
I've noticed this and my reaction was exactly the same: WTF?
Not having a default calculator app on the iPad puzzled me, I kept thinking that I was just missing it when I looked for it, but nope, it ain't there.
The iPad may be the only computing device in the last 20 years that doesn't come with a calculator app. Hell, even my stand-alone GPS device has a calculator app on it.
Exactly. Atheism is the exact opposite of a religion.
And the North Pole is the exact opposite of South, but does that really matter to some poor bastard who has to deal with either?
Yes, it most certainly does if you're trying to get from point A to point B. Trying to get to the truth or reality of something certainly does matter depending on whether you start from a religious viewpoint or a scientific viewpoint. The false equivalency that you put forth just doesn't fly.
-
Atheism gets lumped in with religions because it keeps inspiring preachy assholes to get holier than thou in their quest to convert you and/or assert their e-dominance.
Err, no. Atheism gets lumped in with religions because some people are too ignorant to understand realize that religion and atheism are by definition polar opposites. The vast majority of "preachy atheists", unlike actual preachers, don't want to convert anyone- they just want to be left alone.
(Also, let's remember where the word "preacher" came from. It didn't start out meaning "non-believers". When it comes to someone being "preachy", please understand that religion has a 2,000 year head start on claiming the term, okay?)
The fact is that it's actual preachers are the ones who feel that it is their life's mission to convert every single person on the planet to their viewpoint. And they insist that their magical sky-god has appointed them to do that. No atheist claims they've been given some divine command to do anything.
wonder if it's possible to have honest, life-applied, and consistent religious beliefs without also being mentally ill to some degree.
No, it's not possible. The very nature of faith and religious beliefs demand the suspension of logic and reason. Religious beliefs also demand that you suspend your disbelief in critical areas.
Religion is a delusional mindset and can progress to a genuine form of mental illness. It's often brought on by people whom you trust (authority figures) repeatedly lying to you and planting false ideas in your head.
The fact is that we're really all atheists to some degree. Most people don't believe in Anubis or Thor or Neptune, but they're all too happy to believe in Jesus or Mohamed.
I just believe in one less god than those people do.
To state that atheism is a religion would be like stating that "off" is a TV channel or that silence is a particular sound. Absence of a thing is not a form of the thing. It is simply the absence of it, no more, no less.
Exactly. Atheism is the exact opposite of a religion.
If atheism is a religion, then "abstinence" is a sexual position, "bald" is a hair color, and "not collecting stamps" is a hobby.
When the authorities gave their first press briefing after the Orlando shootings, they had a local imam speak. He spoke at length about how no one should immediately think this was a Muslim nor should they think he was linked in any way to ISIS. What he did not do was condemn the murders. Not one word about how horrific they were, how it was wrong, etc etc. I kept waiting for him to condemn the act, but he never did.
Wordpress can be made pretty resilient to mischief by following some basic security rules, and there are also a couple of plugins I use to harden WP sites- the one I like best is called Wordfence. Lots of good options in there to help keep malicious stuff from happening.
But the real problem with Wordpress isn't Wordpress, it's the plugins. Many of the plugins are written by people with little or no knowledge of good data security practices, and many of them use the most childish and ineffective methods imaginable to sanitize incoming data. So while the WP installation itself may be solid, one crappy plugin is all it takes to compromise the site.
I sometimes look through a plugin, scanning for GET and POST statements and checking to see that the incoming data is handled properly. Oftentimes it is not, and so I insert my own sanitizer function. But that's a huge pain in the ass and makes upgrading the plugin a risk- you have do it over and over each time you upgrade.
It seems counter-intuitive, but the Simple Machines Forum is actually an excellent base for a CMS. There are a number of CMS-plugins for it, thousands of themes and extensions, and almost all of them are free. SMF is open source.
- excellent, fine-grained user management - active development - clean code, easily modifiable - large user base - vulnerabilities are far and few between, and fixed aggressively - literally thousands of plugins and extensions - excellent support forums
Personally I like TinyPortal, ezPortal, and PortaMx, but there are others.
They're way ahead of you- Comcast has its own "Fool Ourselves" division. Just dial their 800 number and press any button to be connected to be connected to a fool.
Giving websites a secret they have to protect, especially second-tier player like this, just seems like a losing strategy in the long haul.
^THIS.
I agree 100%- keeping secrets on a website is a game that's nearly impossible to win but easy to lose. All it takes is one misstep and *boom*, you're toast.
You can run a very, very secure site, follow best practices, be diligent about patching, etc etc etc....and some poorly-written plugin or obscure vulnerability in some minor bit of software that you didn't even know existed can end up compromising the entire thing.
The only problem with this is, if you give leakedsource your email address to check, that means that they now have your verified email address to keep. Forever.
No, there's no verification required that I saw or was asked for. All it means is that they have an email address, not necessarily even a real one.
For example, I started making up email addresses...and after inputting "sexygurl@yahoo.com", leakedsource came back with this:
MySpace.com has: 200 result(s) found. This data was hacked on approximately 2013-06-11 00:00:00
But I'm not the owner of that email and didn't even know if it was a real email address or not.
I checked, and it seems like VBulletin has been a major source of leaks of my email address:
VerticalScope Network (Vbulletin) (939 Websites) has: 1 result(s) found. This data was hacked on approximately 2016-02-01 00:00:00
AVSForum.com has: 1 result(s) found. This data was hacked on approximately 2016-01-23 00:00:00
Vbulletin.com has: 1 result(s) found. This data was hacked on approximately 2015-10-27 00:00:00
W3schools.invisionzone.com has: 1 result(s) found. This data was hacked on approximately 2015-01-11 00:00:00
Fortunately I make up different passwords any time I use that email, but still...thanks VBulletin! Thanks for being so easy to hack, I really, really appreciate it.
I'm just as leery of password "vaults" as I am of easy passwords.
Same here...it seems like a single point of failure. Sure, you can use a long, ugly password for the password vault, but that won't matter if you get zapped by a key logger or malware that sniffs for credentials. And if I was a malware write you could bet your ass that I'd be on the lookout specifically for password keeper apps so I could target them directly.
Password keepers seem like a good idea at first, but the consequences of having one compromised would be catastrophic. They don't just one of your logins, they get them all.
So if you report on something a rich person doesn't like, they can sue you into oblivion? That sounds totally fair.
I'm a Democrat, and I think there's been "enough evidence" available to indict her for quite some time.
Seriously, what do they need, HD video of her snickering, "They'll never find these classified emails now, ha ha ha!" while she presses the Delete key again and again?
If you or I had done this we'd already be serving time in a Federal prison.
Well, everyone on Slashdot calls me a "fanboi";/quote>
Really, macs4all, why in the world would that be? I can't imagine why...
Couple of years! More like a decade at minimum if you ask me.
Yep, that sounds more realistic for real-world use. At least 4 or 5 years, but yeah, it'll need some serious real-world testing before any claim of "stable" will be credible.
"APFS supports nanosecond time stamp granularity rather than the 1-second time stamp granularity in HFS+.
Damn, 1-nansecond time stamp granularity? A factor of one billion improvement in resolution, that's fairly impressive. I'm not sure it'll be of much use to a lot of people, but I'm all for greater precision/resolution in stuff like this.
Yay! More advertising, lucky us! Yippee, whoo hoo, lets all celebrate!
Apple has a great calculator on the iPhone and yet in their infinite stupidity they don't have the same app on the iPad forcing users to download one of the crappy ones. WTF !?
I've noticed this and my reaction was exactly the same: WTF?
Not having a default calculator app on the iPad puzzled me, I kept thinking that I was just missing it when I looked for it, but nope, it ain't there.
The iPad may be the only computing device in the last 20 years that doesn't come with a calculator app. Hell, even my stand-alone GPS device has a calculator app on it.
"Apple's Stock iOS Apps Land On App Store, Hints That It Could Allow People To Get Rid Of Them"
You mean they'll let you delete apps on your own phone, the one that you paid for? SMELL THE FREEDOM!!!
Thank you Apple! Thank you for letting me delete stuff off my own phone!
(Yes, I know Android phones have similar issues, but I just couldn't resist.)
And the North Pole is the exact opposite of South, but does that really matter to some poor bastard who has to deal with either?
Yes, it most certainly does if you're trying to get from point A to point B. Trying to get to the truth or reality of something certainly does matter depending on whether you start from a religious viewpoint or a scientific viewpoint. The false equivalency that you put forth just doesn't fly.
-
Atheism gets lumped in with religions because it keeps inspiring preachy assholes to get holier than thou in their quest to convert you and/or assert their e-dominance.
Err, no. Atheism gets lumped in with religions because some people are too ignorant to understand realize that religion and atheism are by definition polar opposites. The vast majority of "preachy atheists", unlike actual preachers, don't want to convert anyone- they just want to be left alone.
(Also, let's remember where the word "preacher" came from. It didn't start out meaning "non-believers". When it comes to someone being "preachy", please understand that religion has a 2,000 year head start on claiming the term, okay?)
The fact is that it's actual preachers are the ones who feel that it is their life's mission to convert every single person on the planet to their viewpoint. And they insist that their magical sky-god has appointed them to do that. No atheist claims they've been given some divine command to do anything.
Though for him it's more of a mission than a hobby.
Right. And "mission" and "hobby" are two different things. That's why there are two different words for them.
-
If you don't molest children, is that a "hobby"?
No. It's being a decent person.
I'm glad to see you agree that "not doing something" isn't a "hobby".
If it's not a fake story, then this guy is my hero.
"not collecting stamps" is a hobby.
It is if you go out of your way to excoriate stamp collectors for the folly of their ways.
No, that would just be persecuting someone for having different beliefs. Kind of like most religions do.
Not doing something isn't a hobby, just like not worshiping an invisible super-being isn't a religion.
If you don't molest children, is that a "hobby"?
Doesn't matter. The guns did it. Only Guns kill people.
Yep, I saw the gun jump up out of the drawer, force its way into his hand, and then go off repeatedly while he yelled, "No! No! Don't shoot anyone!"
One time a gun forced me to rob a store. I didn't want to but it made me!
wonder if it's possible to have honest, life-applied, and consistent religious beliefs without also being mentally ill to some degree.
No, it's not possible. The very nature of faith and religious beliefs demand the suspension of logic and reason. Religious beliefs also demand that you suspend your disbelief in critical areas.
Religion is a delusional mindset and can progress to a genuine form of mental illness. It's often brought on by people whom you trust (authority figures) repeatedly lying to you and planting false ideas in your head.
The fact is that we're really all atheists to some degree. Most people don't believe in Anubis or Thor or Neptune, but they're all too happy to believe in Jesus or Mohamed.
I just believe in one less god than those people do.
To state that atheism is a religion would be like stating that "off" is a TV channel or that silence is a particular sound. Absence of a thing is not a form of the thing. It is simply the absence of it, no more, no less.
Exactly. Atheism is the exact opposite of a religion.
If atheism is a religion, then "abstinence" is a sexual position, "bald" is a hair color, and "not collecting stamps" is a hobby.
Atheism can be a religion too. However, there is one true LORD that reigns.
Both of your statements are so wrong that they make me laugh at your unbounded ignorance.
When the authorities gave their first press briefing after the Orlando shootings, they had a local imam speak. He spoke at length about how no one should immediately think this was a Muslim nor should they think he was linked in any way to ISIS. What he did not do was condemn the murders. Not one word about how horrific they were, how it was wrong, etc etc. I kept waiting for him to condemn the act, but he never did.
And the answer is "No".
Wordpress can be made pretty resilient to mischief by following some basic security rules, and there are also a couple of plugins I use to harden WP sites- the one I like best is called Wordfence. Lots of good options in there to help keep malicious stuff from happening.
But the real problem with Wordpress isn't Wordpress, it's the plugins. Many of the plugins are written by people with little or no knowledge of good data security practices, and many of them use the most childish and ineffective methods imaginable to sanitize incoming data. So while the WP installation itself may be solid, one crappy plugin is all it takes to compromise the site.
I sometimes look through a plugin, scanning for GET and POST statements and checking to see that the incoming data is handled properly. Oftentimes it is not, and so I insert my own sanitizer function. But that's a huge pain in the ass and makes upgrading the plugin a risk- you have do it over and over each time you upgrade.
It seems counter-intuitive, but the Simple Machines Forum is actually an excellent base for a CMS. There are a number of CMS-plugins for it, thousands of themes and extensions, and almost all of them are free. SMF is open source.
- excellent, fine-grained user management
- active development
- clean code, easily modifiable
- large user base
- vulnerabilities are far and few between, and fixed aggressively
- literally thousands of plugins and extensions
- excellent support forums
Personally I like TinyPortal, ezPortal, and PortaMx, but there are others.
What's next, people fooling Comcast?! -_-
They're way ahead of you- Comcast has its own "Fool Ourselves" division. Just dial their 800 number and press any button to be connected to be connected to a fool.