Gmail allows for dot address matching. This is a *huge* problem that has never been addressed.
Apparently my first letter, last name gmail address happens to be pretty popular. So popular, I receive emails from at least 5 other people in my inbox. One from PA, another one in Florida, still another in New Zealand... I could go on and on, but you get the idea. Apparently, this seems to happen a bit to people.
Sadly, Google has no fix for it, no way to get it to stop. Their support address and site are useless, imho.
I have since moved all of my email off to my own domain and mail services not controlled by Google. I still keep the account open and forwarding to my new email address, so I still get their email, too. I do what I can to minimize problems by auto-deleting everything that hits my inbox that's obviously not for me.
Stories like this scare the shit out of me because, at any time, if one of those people I happen to receive email for suddenly decides to go into full-creep mode, I could be put in prison for a very, very long time. Not for anything that I have done, but for how gmail has been setup to allow for this.
I've had really good luck with my RB2011UAS-2HND-IN from Mikrotik. It's pretty easy to configure queues by interface, all the way down to tagging the packets and throttling down to individual TCP/UDP ports.
Costs slightly more than a cheap home router, but you have something pretty sturdy and extremely flexible to work with.
The timing seems... odd to me. Right when people are using this guy as a hero and poster boy for whistleblowing and BAM. Try to make him look "a little off in the head" instead.
Just seems rather PSYOP-flavored story. I'm probably wrong, but it feels that way.
Anyone who puts lemon juice in their coffee should have their coffee taken away from them and it given to an adult who can enjoy a proper cup of coffee responsibly.
Reporter: Can you tell me about the whistles? Bubb Rubb: The whistles go WOO-- You wanna WOO WOO-- Reporter: Some neighbors are saying it’s “way too loud.” Bubb Rubb: That’s only in the mowrning. He’s supposed to be up cooking breakfast or something, so it’s like an alarm clock!
once upon a time they had a great product, and they made it terrible by forcing annoying advertisements in all their menus, as soon as you pause anything, over live tv when a product is featured, and they don't provide digital over the air programming info for non-cable subscribers. 100% of customer contact goes through a call center which is powerless to perform all but the most basic tasks.
/rant
that's odd. I've never seen an advertisement whenever pausing live TV, or when pausing recorded shows. Yes, there's a 'more about $foo_show' item that pops up, but I clicked on it exactly once years ago and never noticed it again.
I'm unsure about the OTA programming thing, but since the device is basically geared to be a 'cable box replacement'. It has a niche and it's a good one.
All the times I've called the TiVO call center (it was in Canada, I believe) the techs were quick, gave good answers to my questions, and even help me grandfather in my USD12.99/mo subscription on to my Premiere device.
I've used MS-based DVR's in the past and was shocked at the poor quality and glaring usability problems.
Stop. I just had a stroke of genius. Are you ready? Open your mouth, baby birds, cause Mama's about to drop you one sweet, fat nightcrawler. Here she comes: Put another core on that fucker, too. That's right. Three cores, one chip, and make the third one play MP3's or someshit. You heard me--the third core plays MP3's. It's a whole new way to think about computing. Don't question it. Don't say a word. Just key the music, and call the chorus girls, because we're on the edge--the razor's edge--and I feel like dancing.
I started hacking away with an Arduino a few weeks ago and have loved it. Sensors, motors, potentiometer's, MUX/DEMUX, programming, soldering, it's all there.
You don't even have to be particularly interested in robotics. For example, my first project is a analog drum machine that fires off MIDI messages to my DAW. Lots of pots, wires, understanding low-level MIDI interfacing, it's a blast. So anyway, yeah. I can't recommend electronics hacking / robotics enough.
I think that having subtitles in regular movies would be the deal breaker for me. While the review showed a foreign film with subtitles, does anyone know if "normal" films have subtitles as well?
Misspent youth playing in speed metal bands before turning into a hardcore geek has unfortunately robbed me of a nice chunk of my hearing. So, subtitles are a necessity.
Please remember that, when using inflammatory rhetoric like that, the largest receivers of government welfare money happens to be large, multinational companies and not the "fat, lazy, and stupid" that you are probably thinking of.
A lot of companies (perhaps like yours, perhaps not) are looking into service providers who sweat the particulars of the PCI. That's my job. I have had 3 PCI audits this year, one SAS 70, and another misc bank audit all within the first 6 months of this year. It's a long, and mostly thankless job, but it really feels good to get an excited email from one of my clients letting me know that they passed the ROC and are good to go for another year.
I, for one, am glad for the PCI and the demand for a certain level of security to be a mandate. The 2008 DSS requires an app-layer firewall. The 2007 is a recommendation for one. I believe in either case a code review is a requirement.
Yep, you're correct. It depends a lot on whom "they" are, I suppose. After the plethora of 'ISP's monkeying with your connection' stories, I thought the most reasonable method of securing traffic would be between my local system and the remote colo box.
Traffic from there on out isn't too much of a concern yet.
A few months ago I set up a configuration where I tunnel all of my HTTP traffic from my home system through Open VPN to my colo box using Squid. (I have squid running on port 443 to keep the possibly of port-based traffic shaping from my ISP)
It works extremely well and is very secure (packet sniffers just see jibberish). Any thoughts from anyone on how DPI would affect encrypted traffic?
Slashdot Mirror
Gmail allows for dot address matching. This is a *huge* problem that has never been addressed.
Apparently my first letter, last name gmail address happens to be pretty popular. So popular, I receive emails from at least 5 other people in my inbox. One from PA, another one in Florida, still another in New Zealand... I could go on and on, but you get the idea. Apparently, this seems to happen a bit to people.
Sadly, Google has no fix for it, no way to get it to stop. Their support address and site are useless, imho.
I have since moved all of my email off to my own domain and mail services not controlled by Google. I still keep the account open and forwarding to my new email address, so I still get their email, too. I do what I can to minimize problems by auto-deleting everything that hits my inbox that's obviously not for me.
Stories like this scare the shit out of me because, at any time, if one of those people I happen to receive email for suddenly decides to go into full-creep mode, I could be put in prison for a very, very long time. Not for anything that I have done, but for how gmail has been setup to allow for this.
Here recently I run by the store on the way home to pick up some milk. Was in a rush and left my Surface Pro on the front seat, in plain view.
When I came out, I discovered someone had broken into my car and left three more Surface Pro's :(
[citation needed]
haha. See if this link works:
http://www.amazon.com/Mikrotik-Routerboard-RB2011UAS-2HND-IN-port-Ethernet/dp/B00BGIXOHQ
At worst, you can just google for the model (RB2011UAS-2HND-IN). Pretty close to the top link
I've had really good luck with my RB2011UAS-2HND-IN from Mikrotik. It's pretty easy to configure queues by interface, all the way down to tagging the packets and throttling down to individual TCP/UDP ports.
Costs slightly more than a cheap home router, but you have something pretty sturdy and extremely flexible to work with.
http://xkcd.com/927/
The timing seems... odd to me. Right when people are using this guy as a hero and poster boy for whistleblowing and BAM. Try to make him look "a little off in the head" instead.
Just seems rather PSYOP-flavored story. I'm probably wrong, but it feels that way.
Anyone who puts lemon juice in their coffee should have their coffee taken away from them and it given to an adult who can enjoy a proper cup of coffee responsibly.
Bubba Rub was a visionary
www.youtube.com/watch?v=Nnzw_i4YmKk
Reporter: Can you tell me about the whistles?
Bubb Rubb: The whistles go WOO-- You wanna WOO WOO--
Reporter: Some neighbors are saying it’s “way too loud.”
Bubb Rubb: That’s only in the mowrning. He’s supposed to be up cooking breakfast or something, so it’s like an alarm clock!
once upon a time they had a great product, and they made it terrible by forcing annoying advertisements in all their menus, as soon as you pause anything, over live tv when a product is featured, and they don't provide digital over the air programming info for non-cable subscribers. 100% of customer contact goes through a call center which is powerless to perform all but the most basic tasks.
that's odd. I've never seen an advertisement whenever pausing live TV, or when pausing recorded shows. Yes, there's a 'more about $foo_show' item that pops up, but I clicked on it exactly once years ago and never noticed it again.
I'm unsure about the OTA programming thing, but since the device is basically geared to be a 'cable box replacement'. It has a niche and it's a good one.
All the times I've called the TiVO call center (it was in Canada, I believe) the techs were quick, gave good answers to my questions, and even help me grandfather in my USD12.99/mo subscription on to my Premiere device.
I've used MS-based DVR's in the past and was shocked at the poor quality and glaring usability problems.
Reminds me of This old chestnut from the Onion.
I started hacking away with an Arduino a few weeks ago and have loved it. Sensors, motors, potentiometer's, MUX/DEMUX, programming, soldering, it's all there.
You don't even have to be particularly interested in robotics. For example, my first project is a analog drum machine that fires off MIDI messages to my DAW. Lots of pots, wires, understanding low-level MIDI interfacing, it's a blast. So anyway, yeah. I can't recommend electronics hacking / robotics enough.
imag0
If you want something completely under your control, you do not put it online. How hard is this?
... How do they get it into the kitchen?
Really? A toddler pulling the trigger of a .380? A toddler?
I smell bullshit.
The blurb reminds me of the venerable Robokoneko project that never quite got off the ground.
What. An honest one?
There are PCI Compliant service providers out there, in fact, Visa has a list of them[1]. I work for one.
[1]
http://usa.visa.com/download/merchants/cisp-list-of-pcidss-compliant-service-providers.pdf
I Subscribed to Pandora a while back and it was worth every penny.
If you're listening free, then realize that it has to be subsidized by someone. That means ads.
Do yourself a favor. Subscribe. It's really worth the money. Probably the best 36 bucks I've spent this year.
Imag0
Isn't this really what is comes to? You're just paying money out of your check for someone else to tell you what to do.
No thanks. I'd rather stand on my two feet.
Imag0
One Down!
I think that having subtitles in regular movies would be the deal breaker for me. While the review showed a foreign film with subtitles, does anyone know if "normal" films have subtitles as well?
Misspent youth playing in speed metal bands before turning into a hardcore geek has unfortunately robbed me of a nice chunk of my hearing. So, subtitles are a necessity.
Cheers,
imag0
Please remember that, when using inflammatory rhetoric like that, the largest receivers of government welfare money happens to be large, multinational companies and not the "fat, lazy, and stupid" that you are probably thinking of.
A lot of companies (perhaps like yours, perhaps not) are looking into service providers who sweat the particulars of the PCI. That's my job. I have had 3 PCI audits this year, one SAS 70, and another misc bank audit all within the first 6 months of this year. It's a long, and mostly thankless job, but it really feels good to get an excited email from one of my clients letting me know that they passed the ROC and are good to go for another year.
I, for one, am glad for the PCI and the demand for a certain level of security to be a mandate. The 2008 DSS requires an app-layer firewall. The 2007 is a recommendation for one. I believe in either case a code review is a requirement.
Ok, back to my tripwire migration.
Cheers!
imag0
Yep, you're correct. It depends a lot on whom "they" are, I suppose. After the plethora of 'ISP's monkeying with your connection' stories, I thought the most reasonable method of securing traffic would be between my local system and the remote colo box.
Traffic from there on out isn't too much of a concern yet.
Cheers,
imag0
A few months ago I set up a configuration where I tunnel all of my HTTP traffic from my home system through Open VPN to my colo box using Squid. (I have squid running on port 443 to keep the possibly of port-based traffic shaping from my ISP)
It works extremely well and is very secure (packet sniffers just see jibberish). Any thoughts from anyone on how DPI would affect encrypted traffic?
Cheers,
imag0