402 posts • joined 7 May 2012
68% maybe ok if it uses a methodology that has nearly no false positives but combined with a 1 in 20 false positive is pretty poor. You could probably get similar stats by assuming anyone who sends a URL is a spammer
Re: Obligatory XKCD link
Although that one is probably common now. My approach is to generate a random number for each required credential.
The problem I have with dropbox and similar services is that your don't get a say where your data is held and you rely on them to have appropriate security arrangements. I use btsync myself because there is no third party holding your data. The main downside is you can't just send a file by URL and that the syncing will only occur while your computer is on.
Re: If you're not a terrorist, you have nothing to worry about
To be fair, glitter can be really annoying to get off.
Re: "Having faced down the totalitarian dangers of fascism and communism"
> If it weren't for the involvement of the US in WW II, most of Europe might be speaking German today
Good Lord. I don't wish to downplay the significant role that the US had in both Europe and Pacific both directly and indirectly, but you do owe it to yourself to actually read something on the matter rather than assuming saving Ryan's privates is all there was.
The eastern front and particularly Stalingrad was much more strategically significant than DDay and the allies were helped by Hitler's military stupidity going for the symbolic battles against Moscow and Stalingrad rather than locking up the oilfields and building massive battleships rather than the uboats that were crippling British supply lines.
Not to mention the Italians cocking up in Greece and Africa and needing to be rescued by Germany.
The US did help prevent western Europe having a new language but that language was Russian.
Re: "Lawfully collected"???
> But who made it legal in the UK for a foreign power (the US) to snoop on us without a warrant issued in the UK (and the same applies to every other non-US country)?
Hate to break it to you but UK law has no jurisdictionoutside the UK beyond treaty obligations agreed between the countries. That is why women are allowed to drive in the UK in spite of backwards laws in some other countries that forbid it.
> This sounds a lot, but bear in mind US mobile users alone send an estimated six billion texts a day.
Oh ok. Well that is fine and dandy then.
> malware developers in the mobile realm seem laser-focused on Android, with Android users experiencing nearly three quarters of all encounters with web-based malware in 2013.
Wouldn't that be expected given that android claims about 75% market share? Isn't that like saying Toyotas are less safe than Porsches because they are involved in more accidents?
> Scrumpi cost around £65, right in the centre of the £50-60 price range
What a dick.
Re: Where's the link to the bigger version of the spaaace pic?
And how many light weeks per pixel is it?
Re: Stunning photo
> How cool would that be?
Quite. No more than a few Kelvin.
> I wouldn't give a car a shit review because the chap delivered it to me without the keys.
I don't think anyone else here would either, but if they weren't able to give keys to any of the purchasers, that goes a bit further don't you think.
Images posted on Youtwitface tend to be legitimate. It is probably a link to the new Kony 2014 or something
> If this is a prototype, would it be in china?
No. It would be left in a bar somewhere.
Btsync is a pretty good start.
Re: I couldnt see anything patentable about the design at all
BB: It's a keyboard in a draw.
USPTO: Sorry but I'm afraid there is prior art so you can not patent it.
BB: OK, fair enough. Well how about this?
USPTO: What is it?
BB: It's a keyboard draw for a mobile device.
> No-one can claim the test author isn't knowingly phrasing things in a way that isn't natural to the English language.
Spoken like a true Samsung user ;p
Re: Touchscreen Bias ..
No. It is clearly the additional time to move your finger around the giant screens on the Samsung
Re: Most dangerous animal in Aus?
> We just write Drop Bear deaths off as "camping/hiking accidents"....
Not to mention the "holiday road toll". Why anyone would voluntarily go on a drive through the country in a soft top or with windows down is just crazy.
> There are venomous sheep in australia?
Don't get carried away. There are a small minority of sheep species that are placid.
Re: So what can be done to nobble the Crypto API ?
If only it were that simple. If the Crypto API was nobbled, it would break the ability to perform authentication (validating password hashes for logins / network shares) and break the ability to generate and validate session keys (https). It would also break any application relying on the API (usually random number generation, encryption for secure data transfer or hashing).
Additionally, it would be ineffective because there are countless libraries that provide the same functionality. It would increase the payload size of the malware by a few hundred KB but that is about all.
> but how often do you replace a printer
To be fair, it is probably no more expensive than a replacement ink cartridge.
Re: Load of rubbish
Or since we are talking android, press power and volume down at the same time.
Sorry Mr Cook, this is not necessary. If their current or future phones infringe your patents, you can get the court to hear it at that time. This is a waste of time because even if you are right, there would be noimpact.
Re: The real reason
It's been a while since I looked into it, but it used to be the casethat the embeded ios browser couldn't asynchronously render the page. This meant that the same page delivered via safari was much much faster than the samepage embedded inside an app.
Re: Hmm. Setting up a set of dummy data sources to feed to the app?
We could even use Dual_EC_DRBG to generate the longitude/ latitude for fake GPS :)
Re: Can't say no..
In principle you are right, but it is not possible for developers. The security model requires all permissions to be identified in the manifest "upfront". There is no way for a developer to indicate whether a permission is mandatory or optional. There should be but there is not.
For example, Bittorrent Sync requires has some pretty obvious permission request which the app would be useless without (full network access / USB storage). But it also allows you to generate a QR code to setup a sync folder. This means it has to request access to the camera. This means they either have to request that token, not offer the feature, or offer umpteen versions of the app with various combinations of permission requests.
Please provide a way of:
1. Allowing developers to explain next to each token the reason they need it. Some apps do this in the description or FAQ, but on the popup with a big red "We're not telling" by default will encourage some disclosure.
2. Allow selective denial of permissions.
@AC, it all stems back to who you think their customer is.
I remember the Trustwave CA signing the root certificate for surveillance controversy from a few years back. The only use of a CA is to tell you whether the server you are talking to matches who they claim to be. If that is not what they are doing, then they are failing their job to prevent man in the middle attack.
The difference here is obvious but the reasoning for the outrage is the same. For what purpose does RSA exist if not to provide secure communication between devices? If it knowingly allows this to be compromised, then it is of no value to me.
I have no problem with it offering Dual EC DRBG as an option, but it should have been actively advising against using this since 2007 when the backdoor was found.
Re: Just a moment on camera battery advice
One other thing I didn't want to get in to, or we'd have spent the whole article talking about batteries, is of course that some makers have firmwares that reject third party batteries, so you need to check that first
, if you're going to buy extras so you don't waste money buying such a device.
Re: Panic Attack.
Er, that should have been elliptic, as in Dual Elliptic Curve Deterministic Random Bit Generator.
Stupid autocomplete or well played Mr NSA.
Re: Honey Trap?
I think theoatmeal needs to do a chart on when to use an. :)
Re: Panic Attack.
There is nothing wrong with RSA. Ecliptic curve pseudo random number generators are another matter entirely.
But can it run Crysis?
Re: But will it help you decrypt Sky Digital
Yes. All you would need is a microphone next to the set top box and a webcam feed from your local sewage works for an hour or so.
Re: Digital Rights Management
Plus well if your goal is to get access to the unencrypted sound wave for a song and all you have is a microphone and a computer *playing the song* there are probably easier ways to get it.
Re: Very Nice Mozilla @Adam1
Some functions of Firefox require more than 64KB of addressable memory which rules out a 16 bit address space, but why not try to answer the question?
64 bit processes can do some ops faster like floating point manipulations but it makes other things slower like copying pointers. The main advantage from a browser's point of view is the ability to make use of 2GB RAM which makes a lot of sense when your 25 open tabs are combined in one address space with the 8 plugins also loaded, but if you have already separated it into a process per tab model then you are probably a long way south of 2GB.
Or have I just been trolled by an rf -rm handle not noticing the advocation of threading and missing the irony. If so, well played sir.
Re: Very Nice Mozilla
If you think it should be multiprocess, why do you also think it should be 64 bit?
I doubt that bargain bin phones are really the issue these days. By the time your IMEA is blocked you have a toy that can't connect to the mobile network . Given the specs of landfill android and winphone that market will only shrink.
A more likely scenario is that your phone is still stolen, pulled apart and then sold as a refurbished battery, screen and ųSD card.
> erect a web page explaining its policies
Although the link will probably be put below the fold using fancy CSS trickery.
Re: The title of the article should be...
Nah it's legit.
If it WAS Siri, it would Shirley have pointed out some nearby coffee house.
You're closing it wrong.
> and it is felt the lack of such an ability helped the 9/11 plotters to evade detection
So is this some new form of Godwin's Law I am not yet familiar with?
No need to give it away. Just reinstate the start MENU from Windows 7 and provide the option to stop showing TIFKAM for the vast majority of PCs without touch.
Now if only there was some other giant stash of nukes they could start dismantling ...
At least you guys get a science minister
Our current government has decided that we don't need one. They have also decided that AGW and Y2K are both scams, so I suppose that is no surprise.
UI Design Principle Fail
There needs to be a great big "Don't Allow" button on that popup (selected as default).
Re: What's an object?
> I measure storage in bytes, or maybe floppy discs
1 object = 1.44 Blue Whales or 17 London buses
- Fee fie Firefox: Mozilla's lawyers probe Dell over browser install charge
- 20 Freescale staff on vanished Malaysia Airlines flight MH370
- Neil Young touts MP3 player that's no Piece of Crap
- Review Distro diaspora: Four flavours of Ubuntu unpacked
- Sysadmins and devs: Do these job descriptions make any sense?