Slashdot Mirror


User: JWSmythe

JWSmythe's activity in the archive.

Stories
0
Comments
6,545
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 6,545

  1. Re:Brilliant failure on CP80's Cheryl Preston Suggests "CyberSecurity" Group At ICANN · · Score: 1

        If you like the site porn_example.com, you'll probably remember the name. But if they're forced to move to porn_example_3.xxx (because 1 and 2 were already taken), you'd have no idea how to get there. Well, except for the fact that I'm sure someone would make the site pornoogle.com to index them. :)

        Renaming a web site, just like moving a company physical location, would have a huge negative impact on it's existing customer base.

        Back to the article, if they wanted porn_example.com:80 to move to the new porn port (oh, that just sounds ... well ... appropriate) on port 80, the user may not realize that they have to go to http://porn_example.com81./

  2. Re:Looks fine to me on Making Sense of Mismatched Certificates? · · Score: 1

        Yup. There are a few different ones you can buy. It depends on what your needs are.

        For a regular site that needs a cert, a $20/yr cert is fine. I have one on my news site. It's only there to protect login information, and for the overly cautious (read: paranoid). It's the same cert that Verisign charges $400 for. Go figure.

        There's a wildcard cert, which you can wildcard part of a name. Like *.example.com . It doesn't do multiple levels for some browsers though, so you can't do foo.bar.example.com and expect it to work properly for everyone. For that, you'd either need a cert for that domain, or the wildcard cert for *.bar.example.com. Wildcard certs start at about $150. So, it's not cost effective to get a wildcard unless you are protecting more than 7 hostnames.

        There's also an "EV" cert (extended validation), which does the same as a regular cert, but adds the pretty green bar at the top. Those start at about $900.

        Does that help? :)

       

  3. Re:Brilliant failure on CP80's Cheryl Preston Suggests "CyberSecurity" Group At ICANN · · Score: 1

        It was more like, her parents, and some other parents in the neighborhood are very conservative. If they are caught holding hands, then it's very likely she will be forbidden from playing with him at all.

        He seems to like her, so I gave him some friendly guy advice.

        In actuality, I told him something like, "You can't do that there. I know you like her, and apparently she likes you, so if you're going to hold hands or whatever, don't do it right in front of the house where all the neighbors can see. But, don't go hide somewhere either, that's going to be too obvious, and people are going to assume you're doing worse than holding hands. If you're going to do it, don't get caught. It's not me you have to worry about, it's everyone else."

        His mother sent me out to yell at him, so I went with what I felt was better for him.

        I didn't formally approve of it. I just gave guy advice. :) I know he'll talk to me about other stuff in the future. He already knows that I have some godlike omnipotent powers, and can see everything he's doing. Really, he's only 13, so anything he does is pretty obvious, but I'll continue with the illusion for now. I told him it's better off to tell me what he's up to, rather than me find out.

        Ya, when the day comes and he's interested in going farther, I'm going to make sure he has protection AND uses it. Well, not make absolutely sure, but make sure he's facilitated. "There's something in the front seat of my car. The windows are down, and the doors are unlocked. I'll be in the garage doing something (anything) else. If that something happens to disappear, I'll just assume I lost it somewhere." That won't be any time too soon though.

        She seems like a nice girl, and her mom is cute, so I'm assuming that she's attractive to him. :)

        I'm sure the day will come too, when I notice beer missing from the fridge, that I'll just have to overlook, as long as I know he's safe. When he starts driving, I'll have the very very firm discussion with him about it. It'll be the whole, "Under no circumstances at all, no matter what, will you drive if you've had anything to drink."

        He's not my kid, but I've been around him since he was 1, so he knows when I'm playing, and when I'm very serious.

        One of his friends, about his age, is interested in motorcycles. He has a little scooter that his mom got him. I've had some very serious talks about helmets, and what can happen when you screw up on a motorcycle. I took him and some other kids out for fast food (payment for helping me move some stuff). He really liked the cashier. Hey, she was in her mid 20's and drop dead gorgeous. I realized that the way to get him out of the motorcycle interest, and into something safer was "you know, you'll never get her on a date. Girls like motorcycles. They're fast and dangerous. If you ask her out, she's not going to go, because she'll get all dressed up and her hair done, and you're going to ask her to ruin it all on the drive. He wants a car now. :)

        I used to love motorcycles. I also had my fair share of mishaps, which luckily never left any permanent damage. Now I'm much happier being surrounded by a good layer of protection. I got side swiped the other day, and he saw the aftermath on my car. I told him, "On a motorcycle, I'd be dead. In my car, it was just enough to upset me." Sadly enough, it was the truth.

  4. Re:Brilliant failure on CP80's Cheryl Preston Suggests "CyberSecurity" Group At ICANN · · Score: 1

        Yup, there's two, and now you know them both. :)

  5. Re:Looks fine to me on Making Sense of Mismatched Certificates? · · Score: 1

        That's one that's thrown a lot of people. "I'm sorry, we need an IP per SSL site". They don't quite get, it's encrypted traffic, we can't see the host header.

        I love the wildcard certs. I've moved them around too. My company (we'll use example.com) has all kinds of stuff. Internally, we have intranet.example.com. It's on a private network IP (like a 192.168.0.0/16 IP), so it would be unreasonable to ask them to buy a cert, but I can use the wildcard cert there. :) There's no real good reason for it. I don't have a concern that someone internally will hack it. There isn't anything to hack, it's information for the staff. I've caught the wildcard cert expiring because of it though. We forgot once, and the intranet site threw the error. It was less than 5 minutes after it expired. We had the new cert fairly quickly, and then started deploying it to everywhere it needed to be. They want to test everything first. Fine. I tested on intranet.example.com first. It's not customer facing. The worst that'll happen is some internal information won't be available for a few minutes.

       

  6. Brilliant failure on CP80's Cheryl Preston Suggests "CyberSecurity" Group At ICANN · · Score: 3, Interesting

    This is a brilliant attempt at a failure.

    It is one of the worst ideas I've ever heard of.

    I used to work in adult entertainment. One of the big (BIG) things is availability to customers. Regardless if it's mainstream or not, most customers (readers here excluded) are barely functional on the Internet. They have a hard time trying to even go to a site. I'm amazed at how many people have to go to their home page, which happens to be a search engine, to type the url into the search box to get the site. They can't grasp that you enter it in the address bar. If httpp (http for porn) is put on port 81? We're suppose to believe that they can type http://porn.example.com81/ or httpp://porn.example.com?? It'll never happen.

    At times, I tried to move things off to other ports. You'd be amazed how many people couldn't grasp the concept. Even putting a mail server web client on http://mail.example.com:8080/ completely throws them, even though you write it down for them, and it's right in front of them when they try to go there.

    Other options have been attempted over the years. The meta tag pics-label was suppose to show what kind of content you were serving up. On very rare occasions, I see it used. Usually I don't.

    There were other site rating tags that came and went. They weren't generally used by the browsers. They weren't implemented very frequently on web sites. In the end, they died. If someone was running an adult web site, they honestly wouldn't want to run the risk of having their content blocked by the provider, when the customer did want to view it. So, nothing identifying to say "porn".

    Even the .xxx TLD was a spiffy keen idea, but that didn't have a prayer. "Please move all of your domains to the .xxx TLD. Ya, right. First problem. You may have different ownership of porn.com and porn.net. They'd both have to complete for that new position. Then you have to tell all of your viewers, "Go to porn.xxx, we're shutting down porn.com in 30 days". Some clients would only view every few months, or even every few years. They wouldn't have seen the memo, and would then be out of luck. No one, regardless of the business they're in, wants to lose their customer base because they had to move. That's why when you see a physical storefront move, you'll usually see a note taped in the front window saying "We've moved to 14 main street, 3 blocks over. Come visit us there!" those moves are usually unavoidable. It's better for a business to expand to a second location, than to ever shut down their first one. Frequently, it's a death sentence.

    I know killing off the adult entertainment industry is a motive in wanting to force them to move. It won't work, but it'll really shake up the industry. New companies will get lucky and make more money. Old companies will be very very upset that they went from multi-million dollar empires, down to nothing. In the end, sites will still pop up as .com's on port 80, and they'll make good money by avoiding the new found filters.

    If it wasn't an idea that would hurt things, why not move the mainstream sites over to a new "safer" place?

    It then brings up the question, what's "safe". What's safe for my kid may not be safe for your kid. I run a news site. We carry news. What if you didn't want your kid to know about wars, or famine, rape, murder, drugs, or gay/lesbian/bi sexual preferences? Better not let them read the news.

    Is a woman showing cleavage acceptable? How about in a bikini? Lingerie? Topless? Full frontal nudity? Implied sexual intercourse? Obvious and visual sexual intercourse? You may not want a 10 year old seeing too much cleveage, so should that be in the porn domain? Now you've moved things in

  7. Re:Looks fine to me on Making Sense of Mismatched Certificates? · · Score: 1

        Did they have an EV cert? My address line didn't go all wonky with extra colors. :)

        If users don't even care that the cert isn't for the right place, I don't think the EV certs are worth anything, other than to make the signing authorities more cash.

  8. Re:Looks fine to me on Making Sense of Mismatched Certificates? · · Score: 1

        I've been using them for a while. They seem to work fine, as long as you don't try to go too nuts with the names.

        If you have: *.example.com, these will work:

        example.com
        foo.example.com
        bar.example.com
        batz.example.com

        But these won't.
        foo.bar.example.com
        www.whoo.foo.bar.example.com

        So, it's all in how deep you really need to nest your names. I've never had such a naming problem that it couldn't be fit in *.example.com. Really, if you only use 8 characters, that gives you 2.8e+12. Most places only really need a handful of names for the public, and even the private stuff can be logically named. nyb4c956.example.com could be New York City - Building 4 - Cube 952.

        If you really want to expand it beyond that, well, buy more certs. I think Capital One can afford 'em. :)

  9. Re:Evil Geniuses Use Linux on Linux Foundation Asks Who Says "I'm Linux" Best · · Score: 1

        Ya, I lost final Jeopardy like that once.

        Then I woke up, and realized it was a bad dream.

        Except, I was napping in the waiting room of Jeopardy, just before going on the show.

        And then I woke up and said, "Wow, that was a really weird dream...."

        Then I realized I was still sleeping.

        When I woke up, I got up, went to work, spent the whole day there, and then woke up.

        I found myself laying in bed, exhausted, with the alarm clock blaring. Time to go to work.

        Am I awake, or is this still part of a bad dream?

  10. Re:/me shakes head on Battlestar Galactica Hosted At the UN · · Score: 5, Informative

        Well, it wasn't quite that. Watch the video. It's 100 students and a few members of the UN listening to a couple members of the BSG cast.

        They were simply using the building, which added the illusion of authority to the event. If it had happened in any other venue, it wouldn't have been news.

        It does give the impression that they were addressing the UN General Assembly, which simply wasn't true.

        The event was more of a photo op.

  11. Re:Looks fine to me on Making Sense of Mismatched Certificates? · · Score: 4, Interesting

        Exactly. They were stupid. They gave a server an alias, and didn't realize that it will throw an error to the clients. It probably worked fine in their dev environment though, where they probably accepted the wrong cert and saved the exception because they got tired of clicking the link. :)

        Being that he ignored the error, didn't view the cert to see what it was really assigned for (and continued on to give his login information), it proves that most users don't really care, and will provide their security credentials regardless if they've been warned that there is a problem or not. The cert could have been for bad_haxor_inc.ru, but since he didn't look, he doesn't know.

        We have to assume that it's a mixup with the servicing.capitalone.com and onlinebanking.capitalone.com hosts, but we don't know.

        Why didn't they just buy a wildcard cert? They're so much easier to work with. :)

  12. Re:I'm Debian on Linux Foundation Asks Who Says "I'm Linux" Best · · Score: 1

        {yawn}

  13. Re:And that so sums up Linux... on Linux Foundation Asks Who Says "I'm Linux" Best · · Score: 1

        Oh, I don't take it as a personal jab at all. I'm not in the advertising business. :) I've done various things, where I've been exposed to a lot of different things.

        Ads aren't designed for a minority target audience. They want to get the most "bang" for their buck. The number one thing is that sex sells. The number two thing is that you have to get and keep the viewer's attention. They test ideas through focus groups initially, and then through the return on the investment.

        The Seminole Hard Rock Casino in Tampa recently added blackjack. They have 3 major things to do. Slot machines, poker, and blackjack. I've seen a couple billboards. They have a beautiful woman on one side, showing plenty of skin. Beside her, it says "SLOTS", as well as poker and blackjack, and of course the company name. Seeing that billboard, I see a beautiful woman showing lots of skin, and "sluts" written beside her. I now know that there are hot chicks that I can get with at the casino.

        Why did they advertise it this way, instead of saying there are 50 blackjack tables, they're playing with 5 decks, etc, etc? Because they don't need to. Guys will go, with the hint that there are hot women. Women will go because they feel they're hot too, and that's where the hot women go. The reality is, there are some attractive people. There are also an awful lot of retirees sitting at the slots all day, hoping to strike it rich.

        I was trying to find a picture of the billboard. On a news story for it, there was an ad for the Flamingo casino/resort in Las Vegas.

    http://spe.atdmt.com/ds/HCHEIHARNBAO/3133_FLV_300x250.jpg?ver=1. I know where I want to go. They have hot chicks too! :)

        By listing out, or doing a good description of what they're selling, they would only be marketing to a very small percentage of the audience. This way, they're marketing to the broader, but stupider, audience. Stupid people are easier to seduce with an advertisement. Smarter people actually research a product. Have you ever bought an item, just because it was shown in an ad? Probably not. We'll research it first, and then if it's a good value, we'll purchase it. If it doesn't work as advertised, we'll return it, and/or not buy the newer one.

  14. twisted on Hologram Commercial · · Score: 1

        That was twisted. I love it. :)

  15. Password lists on Social Search Reveals 700 Comcast Customer Logins · · Score: 4, Interesting

        I remember in the good ol' days of dialup, folks (now known as script kiddies) would pound on the dialups with common username:password combinations until they found one. Those lists would float around. I've seen lists of thousands of valid usernames. The folks who got them would use the now "free" dialup until the customer finally canceled. Of course, those usernames were the same as the email address (like foo@aol.com), so in theory you had their email address too. If you hopped in the right IRC channel and chatted for a few minutes, you could get your hands on a different list pretty quickly.

        I saw other comments saying that this was just Comcast insecurity, but it brought back memories. :)

  16. Re:Comcast has Passwords? on Social Search Reveals 700 Comcast Customer Logins · · Score: 4, Funny

        I've moved around a lot, and each time they've tried. They've also been insistent that I have a Windows machine for them to install with. I used to keep a spare Windows box handy just for the installs. Usually I could talk them out of touching the machine. Two insisted, and finally made me sign a waiver that I refused, but the connection worked so I didn't care. One blatantly refused to do the install without putting the CD in. I was happy that it was a spare machine I didn't care about. It came offline, and I put my Linux machine up just after they walked out the door. It had a nice clean install of Win98 on it, so they got absolutely no personal information. I wiped it later on, just in case I needed it again for something.

       

  17. Re:Slackware on Linux Foundation Asks Who Says "I'm Linux" Best · · Score: 1

        Dammit, typo. stable. :)

        And yes, it can. :) I've used both MRTG, RRDTool, and OpenOffice to make graphs. :) There are other tools, of course.

  18. Re:Any Comerical like this would be fitting. on Linux Foundation Asks Who Says "I'm Linux" Best · · Score: 1

        Thank god in the real world most of these ads never make it past the focus group.

  19. Re:And that so sums up Linux... on Linux Foundation Asks Who Says "I'm Linux" Best · · Score: 5, Insightful

    I was going to reply to him, but you seem to actually understand.

        He has no clue about advertising. It has absolutely NOTHING (none, nada, nil, zip, zero, nuthin') to do with the product. It has everything to do with getting the viewer's attention, and keeping it for the 15 to 30 seconds that the ad runs, *AND* mixed in somewhere show the product.

        Like, this would make a killer ad..

        Show a jet fighter buzzing the surface of the ocean. It fires a missile. WOOSH! People like jet fighters. They like big explosions. The flash and the noise will get (or keep) them looking.

        The camera follows the missile. You see the girls on the beach. It flys down a road with flashy cars. it buzzes some other flashy thing. Then you see it going straight into a building with a big Linux sign on it.

        Big explosion. Dust settles (quickly, we're at like 20 seconds already), and the sign is still standing.

        No words. No dialogue. Just music (optionally, but suggested), jet engine noise, rocket noise, and explosion noise.

        People who want to sell their product always want to include all kinds of crap about their product. Consumers don't care. 99% of the people driving cars (like in your example) don't know anything about them. They can't tell you what engine it has. Half of them can't even tell you the model without going outside to look. Everyone can say if it's pretty or ugly. There are some people who are really into their cars (like me) who can run down every part in it accurately. Ads for my car had nothing to do with the features of the car.

        Here was the short version (30 sec). It doesn't even say the name until the end. Lots of noise and effects.

        This was the long promo video. Only the first 45 seconds showed up on TV, as I recall. Again, lots of noise and effects. Even I, a TransAm owner, didn't care to watch it past 1 minute, when they started babbling about the features.

  20. Re:Evil Geniuses Use Linux on Linux Foundation Asks Who Says "I'm Linux" Best · · Score: 3, Funny

    Alex, the question is...... 3 things your wife likes more than you?

  21. Re:I'm Debian on Linux Foundation Asks Who Says "I'm Linux" Best · · Score: 1

        I guess that's why it worked flawlessly viewed on my Linux machine. :)

        But I noticed it got slow, and then finally the Slashdotted note showed up. I'll have to come back tonight when the working class Slashdotters are asleep, and the rest of you are busy in IRC. :)

  22. Re:I'm Debian on Linux Foundation Asks Who Says "I'm Linux" Best · · Score: 1

        But ... Yggdrasil has been dead since 1995.

  23. Re:Slackware on Linux Foundation Asks Who Says "I'm Linux" Best · · Score: 2, Interesting

        Praise be brother.

        Actually, that's one of those things people don't get. Slack has been around the longest, and is still the most table and unmolested distro there is. They've been doing it right for years, while others have come and gone.

       

  24. Re:Or in other words... on UK Gov. Clueless About Own Internet Blacklist · · Score: 1

        Well, it's good that I'm not working in it. I'm already aware that it requires human review.

        I have had excellent results using MD5's to identify photographs. With hundreds of thousands of images, we didn't have a single collision. They were all very much unique. The identified duplicates were really duplicates. On something like a single traffic cam, I wouldn't be surprised that they had collisions. I used md5's to watch for duplicate frames from a webcam for a while. Duplicate frames were dropped, to reduce the overhead of sending duplicate frames to the reflector and on to the client. Two frames of an empty room, or two frames of an empty intersection are very likely to be the same.

        What you're citing though isn't proof. It's a defense lawyer arguing that a technology isn't reliable. Lawyers will argue any side of the case that they're paid for, and the better lawyer usually wins. That's not a worthy argument saying an MD5 fingerprint is a good method to identify duplicated files. Files that matched would be reviewed, which would reduce the pool of files to evaluate from hundreds of thousands or millions, down to a handful.

        But, I would have to assume that no law enforcement department is going to attempt to suck down the whole Internet to find a few files. Good luck storing the whole internet on a floppy. :)

  25. Re:Something simple on Best Practice For Retiring RSS Feeds? · · Score: 1

        I'm right there with you. The RV is half way through renovation. I work because it pays. I only do what I love in my spare time. Right now, I'm cloning virtual drives, so I can't do much until they're done, so it makes for good Slashdot time. When I get home, I'm going to work on my own web site, and talk to my friends on the phone. This weekend, I hope to have some time to work on my RV. :)

        When the time is right, I hope to go on a road trip, decide a spot is right, buy a few acres, and park the RV in the middle of it, and never think about the past again. :)

        I can fight the man and the machine, or I can just work with it, until I can walk away from it happily. There's no need to stress about any of it.