today update channels










>
August
    •  
    •  
    •  
    •  
    •  
    • 1
    • 2
    • 3
    • 4
    • 5
    • 6
    • 7
    • 8
    • 9
    • 10
    • 11
    • 12
    • 13
    • 14
    • 15
    • 16
    • 17
    • 18
    • 19
    • 20
    • 21
    • 22
    • 23
    • 24
    • 25
    • 26
    • 27
    • 28
    • 29
    • 30
    • 31
     



     
    Users
    reade
    riko4
    NicoCanali
    reader
    irodgers
    bluronline
    chaolong34
    jtanderson
    alicia4live
    bizman
     
     slashdot.org 
     
    +90% of IT Professionals Don't Want Vista
      A survey by King Research has found that Ninety percent of IT professionals have concerns using Vista, with compatibility, stability and cost being their key reasons. Interestingly, forty four percent of companies surveyed are considering switching to non-Windows operating systems, and nine percent of those have already started moving to their selected alternative. "The concerns about Vista specified by participants were overwhelmingly related to stability. Stability in general was frequently cited, as well as compatibility with the business software that would need to run on Vista," said Diane Hagglund of King Research.Read more of this storyat Slashdot.

    +Hackers Use Banner Ads on Major Sites to Hijack Your PC
      The worst-case scenario used to be that online ads are pesky, memory-draining distractions. But a new batch of banner ads is much more sinister: They hijack personal computers and bully users until they agree to buy antivirus software. And the ads do their dirty work even if you don't click on them.The malware-spiked ads have been spotted on various legitimate websites, ranging from the British magazine The Economist to baseball's MLB.com to the Canada.com news portal. Hackers are using deceptive practices and tricky Flash programming to get their ads onto legitimate sites by way of DoubleClick's DART program. Web publishers use the DoubleClick-hosted platform to manage advertising inventory." CT: Link updated to original source instead of plagerizer.Read more of this storyat Slashdot.

    +Judge Rules That I Own Slashdot
      Bennett Haselton wrote in with this weeks amusing and shocking story of high finance, judicial discretion, and oh so much more... he writes "People still ask me if I make enough money suing spammers in Small Claims court to make it worthwhile. I say: What about the entertainment value? Recently I received an e-mail with the subject line: 'Reminder: Link exchange with your site http://slashdot.org' Finally, I thought, someone else who agrees that I'm carrying the site's entire success on my shoulders. I even hurried off to check the registration of the slashdot.org domain to see if they had made the transfer official in honor of my contributions, but apparently the domain is still being squatted by some outfit calling itself "SourceForge"." I'm shocked that a legitimate businessman would make such an error. Read on to see what Bennett does about it.Read more of this storyat Slashdot.

    +Boing Boing Founder Warns of "Internet AIDS"
      An anonymous reader writes "Cory Doctorow, founder of Boing Boing, says he doesn't have a problem in principle with the automated network defense systems that guard the Internet against malware, spamigation bots, and other network nasties. However, in his article 'The Future of Internet Immune Systems,' he bemoans the problems caused by 'Internet autoimmune disorder' — where the network defenses designed to block network attacks are automated and instantaneous, but the systems in place to reverse erroneous lockdowns are manual and unresponsive."Read more of this storyat Slashdot.

    +The Fine Line Between Security and Usability
      SkiifGeek writes to ask, "Where should vendors be required to draw the line when supporting deprecated file formats and technology? In a recent case independent security researcher cocoruder found a critical bug with the JET engine, via the .mdb (Access) file format, he reported it to Microsoft, but Microsoft's response came as a surprise to him — it appears that Microsoft is not inclined to fix a critical arbitrary code execution vulnerability with a data technology that is at the heart of a large number of essential business and hobby applications."Read more of this storyat Slashdot.

    +Multiple FLAC Vulnerabilities Affect Every OS
      Enon writes "eEye Digital Security has discovered 14 vulnerabilities in the FLAC file format that affect a huge range of media players on every supported operating system (Windows, Mac OS, Linux, Unix, BSD, Solaris, and even some hardware players are vulnerable). Heise points out a number of vulnerable apps that use the open source libavcodec audio codec library, which in turn relies on the flawed libFLAC library. These vulnerabilities could allow a person of ill will to trojanize FLAC files that could compromise your computer if they are played on a vulnerable media player. eEye worked with US-CERT to notify vulnerable vendors."Read more of this storyat Slashdot.

    +UK Government Loses 15 Million Private Records
      bestweasel writes "The BBC reports that a UK Government department has lost discs with details of 15 million benefit recipients, including names, addresses, date of birth and bank accounts. The head of the department involved, HM Revenue & Customs, has resigned and his resignation 'was accepted because discs had been transported in breach of rules governing data protection' so someone thinks it's not a trivial matter. The Chancellor will try to evade responsibility in the House of Commons at 3.30 GMT. A similar leak of a 'mere' 15,000 records from the same department happened a month or so ago. At that time, they refused to say 'on security grounds' whether the information was encrypted." We just recently talked about Britain's consideration of legal penalties for situations like this. I imagine this incident will weigh on that decision.Read more of this storyat Slashdot.

    +Anatomy of the VA's IT Meltdown
      Lucas123 writes "According to a Computerworld story, a relatively simple breakdown in communications led to a day-long systems outage within the VA's medical centers. The ultimate result of the outage: the cancellation of a project to centralize IT systems at more than 150 medical facilities into four regional data processing centers. The shutdown 'left months of work to recover data to update the medical records of thousands of veterans. The procedural failure also exposed a common problem in IT transformation efforts: Fault lines appear when management reporting shifts from local to regional.'"Read more of this storyat Slashdot.

    +AT&T Calls Telecommuters Back To the Cubicle
      bednarz writes "AT&T is requiring thousands of employees who work from their homes to return to traditional office environments, sources say. 'It is a serious effort to reel in the telework people,' says the Telework Coalition's Chuck Wilsker, who has heard that as many as 10,000 or 12,000 full-time teleworkers may be affected. One AT&T employee says rumors have been circulating since AT&T's merger with SBC that the new upper management is not supportive of teleworking: 'We'd heard rumors to that effect, and all of a sudden we got marching orders to go back to an office.'"Read more of this storyat Slashdot.

    +Using Google To Crack MD5 Passwords
      stern writes "A security researcher at Cambridge was trying to figure out the password used by somebody who had hacked his Web site. He tried running a dictionary through the encryption hash function; no dice. Then he pasted the hacker's encrypted password into Google, and voila — there was his answer. Conclusion? Use no password that any other human being has ever used, or is ever likely to use, for any purpose. I think."Read more of this storyat Slashdot.

    +Maryland To Tax Custom Programming and Computer Services
      mcwop writes "Early this morning Maryland passed legislation to apply a new 6% sales tax to 'custom computer programming' and other computer- and hardware-related services. Computer industry groups lobbied hard against the measure to no avail. Purchasers of IT services may find that in-house IT and buying out-of-state become attractive options, as well as cutting money out of other projects."Read more of this storyat Slashdot.

    +The Evolving Face of Credit Card Scams
      An anonymous reader writes "The 12 Angry Men have a followup to their piece on the cross-sell scam credit card companies have begun using. Their new article concerns another evolving scam being employed, where users are racking up huge fees and charges on cards that have never even been activated. The article goes deep into the standard way the scam plays out, as well as detailing some interesting history on how credit applications are processed, and where they are typically (and frighteningly) subject to tampering."Read more of this storyat Slashdot.

    +Dan Geer On Trusting PCs In Botnets
      walk*bound writes "In an essay published by ZDNet, security scientist Dan Geer has an interesting proposal for e-commerce sites to evaluate the trustworthiness of clients that try to connect. Assume that end users either always say 'Yes' or always say 'No' to security dialog boxes. Then make the decision one of two ways: 'When the user connects, ask whether they would like to use your extra special secure connection. If they say "Yes," then you presume that they always say "Yes" and thus they are so likely to be infected that you must not shake hands with them without some latex between you and them. In other words, you should immediately 0wn their machine for the duration of the transaction — by, say, stealing their keyboard away from their OS and attaching it to a special encrypting network stack all of which you make possible by sending a small, use-once rootkit down the wire at login time, just after they say "Yes."'"Read more of this storyat Slashdot.

    +DNS Server Survey Reveals Mixed Security Picture
      Kurtz'sKompund writes in with word on the latest annual survey of the state of DNS on the Net. The survey, commissioned by infrastructure appliance vendor Infoblox, found that the use of Windows DNS Server in Internet-facing applications has fallen off dramatically as more users act on concerns about security. BIND 9, the latest version, gained against earlier, less secure versions. But in other dimensions, DNS practices showed little improvement from a security point of view. Hardly anyone is using DNSSEC; and 31% of nameservers allow promiscuous zone transfers, a number little changed from last year. Here's a video of an interview with Infoblox's chief architect Cricket Liu on the state of DNS.Read more of this storyat Slashdot.

    Archive: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146


    © 2008 Pagerss. All rights reserved to their owners.