Posts by happygeek

Lenovo really isn't that bad, in fact it makes some very solid and reliable lappys in my experience. That said, I agree with Hiroshe that choosing by brand is a mistake and you should, instead, choose by model. That choice should be dependant on budget/usage/reviews.

Morning! :) Welcome to DaniWeb

Good to meet you as well, enjoy your time with us!

Good for you, on all counts!

As for the tattoo, may I suggest the England rugby union badge?

bacsa_michaella

Please do not hijack old threads with your new question. I have deleted your post so you can create your own new thread. This thread has been solved (a year ago) and you are unlikely to get any help by asking a completely different question in an already answered thread about something else...

I best not mention that I have sucked dust out of a server with a Hoover before now, lest someone copies me... ;)

Actually, that highlights another problem that people face: email phishing scams have become so commonplace that genuine security alerts are often seen as suspicious and ignored. The only way to deal with a breach of this nature is for the service to reset logins and force a password change when users try to connect next.

I'd say you've come to the right place then; happy learning!

Oh, and I should add, of course:

1. If same password was used at other services, change it there as well...

The latest major online outfit to suffer from a breach is Bitly, the url shortening service beloved by users of Twitter and Facebook. According to a statement from Bitly CEO Mark Josephson, the company has "reason to believe that Bitly account credentials have been compromised."

Although Josephson insists that there is no indication at the current time that any Bitly accounts have actually been accessed by the hackers, he has quite wisely taken the proactive step of disconnecting all users' Facebook and Twitter accounts which means they will be required to reconnect these when they next login once their API key and OAuth tokens have been changed, and password reset.

"We invalidated all credentials within Facebook and Twitter. Although users may see their Facebook and Twitter accounts connected to their Bitly account, it is not possible to publish to these accounts until users reconnect their Facebook and Twitter profiles" Josephson states.

So how do you do that? Well, in true Bitly style, here's the short of it:

1. Log in, navigate to Your Settings|Advanced
2. Hit the reset button next to Legacy API key
3. Copy new key, change in all apps
4. Reset password from profile tab
5. Disconnect and reconnect all Bitly using apps

Meanwhile, Josephson insists that Bitly has "already taken proactive measures to secure all paths that led to the compromise and ensure the security of all account credentials going forward."

You've got to like the irony of 'hippopotomonstrosesquipedaliophobia' which is a fear of long words...

Good to have you back!

Welcome to the wonderful world of DaniWeb

Hi Carl - welcome to DaniWeb. You would do well to post your question above in the Web Design forum rather than here. This is just for saying hello and telling us about yourself, rather than getting help with stuff :)

Welcome Soukaina

Welcome to DaniWeb

If a week is a long time in politics, then 24 hours is an absolute age in ecommerce security terms. Which make the findings of a Tripwire survey, published today, all the more worrying.

The survey, conducted by Atomic Research, questioned 102 financial organizations and 151 retail organizations which process card payments in the United Kingdom. It has concluded that 35% of organisations takes two or three days to detect a breach, with 44% admitting they could protect customer data better.

This gets more worrying when you realise that 24% had already been victims of a data breach which saw Personally Identifiable Information either stolen or accessed, and 36% of those asked said they didn't have confidence in their incident response plans. With only 51% being 'somewhat confident' that the security controls they have in place are capable of detecting malicious applications you might think this would be a serious cause for concern for the organisations concerned. Yet an incredibly high 40% of them simply refused to believe that all those recent, and very high profile, card holder breaches we have been reading about have changed the opinions of high level executives when it comes to security strategy.

Tim Erlin, director of IT security and risk strategy for Tripwire which sponsored the report, calls it shocking that there is such a high level of confidence exhibited by respondents. "60% of respondents said they are confident that their security controls are able to prevent the loss of data files" Erlin says, …

Welcome aboard!

Welcome, fellow traveller...

You've come to the right place then, I'm sure DaniWeb will be of help to you during your programming journey. Welcome!

When I was in school there were no computers in the curriculum, or in the school for that matter. Welcome :)

The OP (svsathyavishnu) needs to explain exactly what they are trying to do, otherwise this conversation could be deemed to be against the 'Do not ask for help to pursue any illegal activity including, but not limited to, hacking and spamming' rule and end up being deleted...

See my reply above about where to post. Now closing this thread...

Welcome

Welcome both

Hello, good morning, and welcome

Good to have you with us

Top o' the morning

Welcome indeed.

Morning :)

There are two very obvious truths which need to be stated before going any further:

Truth 1 - prevention is better than cure, so don't visit 'dodgy' sites or download anything anyone sends you a link to, and do keep your PC as secure as possible with the help of security software such as real-time malware scanners and firewalls.

Truth 2 - when it comes to malware there is no single 'removes it all' solution, there are far too many malware variations out there from rootkits and zero-day exploits through to long-established malware families which are continuously evolving in order to thwart detection and removal attempts.

That said, there is a third truth which probably also needs mentioning; namely that shit happens and sometimes computers do become infected despite the best efforts of responsible users. So what should you do if you suspect that you have become the latest victim of the malware epidemic? This basic tutorial aims to highlight the procedures and resources available to users of the Windows Operating System, and should help get you on the path towards having a clean PC again; hopefully without having to take the nuke it, format and start again final option. Yes, I know that the real solution to malware is to run Windows within an isolated Virtual Machine environment that allows you to simply delete and restore a new instance if any infection gets in - but we are talking the real world here where very few users would go …

i dont think it would be hacked. Becuase adobe is a very high secured.

A ha ha ha ha ha ha ha ha ha.
Ha ha ha ha ha ha ha ha ha ha ha ha.
Ha ha ha ha ha.
ROFL
Bonk...

Moved...

Feedly app left attack window open for malicious JavaScript hackers according to one security researcher.

Security consultant and blogger Jeremy S revealed that the Feedly Android app, or at least the version prior to the update on March 17th 2014, had been subject to a zero-day JavaScript code injection vulnerability. Jeremy reported the discovery to the Feedly developers who patched the vulnerability within 24 hours, ethical disclosure working at its best if you ask me.

The Singapore based researcher explained that the code injection was possible from an RSS feed into the app itself as the Feedly app didn't sanitize the JavaScript but simply interpreted them as code. This opened up an attack window to enable code executions on the user Android app session via a specially crafted feed, but only if the user was subscribed to that site already. The potential exploits for this could include a redirect button to malicious sites etc, although there is currently no evidence that the zero day was exploited by anyone other than the researcher himself in order to prove it existed.

Of course, Feedly is a hugely popular app with millions of users so there is always the potential that someone could have exploited this hole without it coming to the attention of the wider world.

The reported danger that users who do not perform automatic updates from the Play Store would be at risk from older Feedly versions seems unfounded as the developers confirm the fix was at the …

Having taken a look at the blog in question I would advise that the best way to upgrade it would be to press the delete button.

Morning. Welcome to DaniWeb...

You would be better off posting in our Jobs and Resumes forum than replying to a six year old thread that was pretty much in the wring place to start with...

Here's the Maglus Black in all its, erm, blackness :)

Another update, as Applydea has now expanded (and shrunk) the range of Maglus styli it produces. Let me explain: the expansion is the addition of two new products, the Maglus Black and the Maglus Mini - the shrinkage is a reference to the Mini. As the name suggests, this new version of the stylus is smaller than the original and was produced with smaller tablets such as the iPad Mini and Nexus 7 in mind, as well as larger smartphones. I've got one courtesy of a review unit supplied by Applydea, and have to say that it really is exactly the same in terms of quality, finish, feel and even price - just a tad smaller. How much smaller? Well the Mini measures up to a 15% all around reduction in size, making it perfect for those smaller devices. That said, I actually prefer the slightly heavier in the hand weight of the original as the extra heft adds to the 'premium item' feel of the product in my opinion. If you have small hands, or just want a smaller stylus for a small device, then the Mini is a good choice. As for the Maglus Black, the name is a big clue there as well: it's identical to the original, same price as well, but comes in a sleek anodized black finish. Perfect for the likes of the Nexus 7 or a black iPad. If I hadn't have already invested the money in the original, this is the one …

What, you mean the one that you seem to be selling/promoting and the one that you have posted details of with a scattergun approach across forums as if you are an expert on the matter already? Yopu wouldn't just be here to spam/promote/market would you? I strongly advise you read the rules before continuing...

As I stated when reviewing the Minisuit 3-in-1 Folio Case for the Nexus 7 2013, the most important things a writer looks for in any keyboard are key travel, spacing and feedback. Obviously a travel keyboard throws some additional requirements into the mix such as weight, size and battery life. However, when it comes to the single most important factor for me personally, and that's key spacing, the Minisuit Ultra-Thin Aluminium Bluetooth Keyboard Cover falls flat. There is simply no spacing at all, the keys just seem to merge together and it is very hard indeed not to hit the neighbouring keys when typing at any rate above 'slowly hunt and peck with extreme care'. This lack of spacing does allow for a very small keyboard solution, there's no denying that, but it comes at the cost of usability and as far as I am concerned that's a deal-breaker.

Talking of which, although the key travel feels pretty much the same as the 3-in-1 Folio (and remember these are both from the same manufacturer) the feedback is not the same at all. I do prefer the bigger, and more responsive, spacebar on the aluminium keyboard but that's as far as it goes. The lack of an escape key the tiny shift keys, and the fact that the keyboard itself is sunk into a tray all make it hard to use for any prolonged period.

The positives are mainly to do with the look …

For a professional writer of any description, there are three things that matter when it comes to the keyboard that they are using: key spacing, key travel and key feedback. The Minisuit 3-in-1 Folio manages, as far as any such small keyboard is ever going to achieve, to get the key spacing and feedback right. The scrabble tile keys are far enough part, in that there is sufficient gap between them and above/below them to prevent too much mis-keying. This is the bane of most travel keyboards, the keys are badly spaced and you end up making so many typos that you give up. Not so with the 3-in-1 Folio, my typo count was low enough not to be problematical (and I say that as someone with compromised eyesight - so although my typing speed is relatively slow on a small keyboard it isn't compromised too badly overall). Key travel is decent enough, and there's sufficient feedback to know you've hit the key. Thankfully, neither keyboard I tested were of the rubber membrane variety which provide no depth of travel and no feedback and are consequently of no use whatsoever.

The Minisuit 3-in-1 Folio is not without some negatives though, notably the tiny spacebar which is only about the length of three keys including spacing and, importantly, only works reliably well if you hit in centrally rather than towards the edges. The Minisuit aluminium spacebar is twice as large and seems to allow …

Yes, the vulnerability was just stumbled upon but it is rather rash to suggest that it's 'their problem' if people haven't updated their servers yet. If their servers are serving you, and it's your data that is being potentially accessed now that heartbleed is out in the open, I'd humbly suggest it is your problem as well.

I'd say that these reports have it about right:

https://www.schneier.com/blog/archives/2014/04/heartbleed.html

"the probability is close to one that every target has had its private keys extracted by multiple intelligence agencies" Bruce Schneier

and

http://arstechnica.com/security/2014/04/critical-crypto-bug-exposes-yahoo-mail-passwords-russian-roulette-style/

"All of this means that applying the OpenSSL patch is only the starting point on the multi-step path of Heartbleed recovery. Website operators should strongly consider replacing their X.509 certificates after applying the update and getting all users and administrators to change passwords as well. While it's possible that none of this data has been compromised, there's no way to rule it out, either." Dan Goodin

Last year, CryptoLocker ransomware hit the headlines after infecting hundreds of thousands of computers and encrypting the data, and backups of that data to any connected device, with the promise of decryption on payment of a fee. This kind of IT extortion is profitable for the bad guys as it targets the people who are least likely to be in a position to do anything but pay; the people who are most likely to get infected are the same folk who are least likely to have an offsite backup or know how to get help with such a problem. This year we have CryptoDefense doing much the same thing, and already apparently infecting and encrypting many tens of thousands of victims. It targets the same victim profile, although in truth as with all such malware a scattergun approach to infection/distribution is employed; the targeting is in terms of who is most likely to pay up once infected. CryptoDefense hits text files, PDFs and Office files, images and video which are encrypted using a RSA-2049 key making it all but impossible recover data without that key. Like CryptoLocker before it, it also looks to disable backup and this time it appears to wipe out any shadow copies of data before encryption and putting up the ransom notice for a $500 unlocking fee.

So what can you do? Well you can avoid being infected in the first place, that's the most valuable piece of advice. Ensure you have up to …

Head meet sand...

Now that's cool. As a result of the review, Applydea sent me a couple of 'microfibre tips' for the stylus to try. I've always liked the feel of these, although some do have a tendency to 'clog' with grease/dust etc and do the performance degrades over time. I've been using them for the best part of a week now and all seems fine. They appear as well made as I would have expected, given the rest of the product line. Now, what would be really cool, would be a range of tips in different sizes and maybe even a brush tip for art-related usage...

Thanks Dani.

A new member Scott_6 asks:

I noticed when I was setting my profile that the control for selecting my year of birth only goes back to '81. Would you know why?

'Spanner' or 'Soup' are both good, simply as I like the way my mouth feels when I say them (file me under odd).

And he's gone again for his offensive 'gay' and 'homo' remarks. Didn't take long, did it?