214 stories
·
3 followers

Will GDPR Kill WHOIS?

2 Comments
Slashdot reader monkeyzoo shares the Register's report on a disturbing letter sent to ICANN: Europe's data protection authorities have effectively killed off the current service, noting that it breaks the law and so will be illegal come 25 May, when GDPR comes into force... ICANN now has a little over a month to come up with a replacement to the decades-old service that covers millions of domain names and lists the personal contact details of domain registrants, including their name, email and telephone number. ICANN has already acknowledged it has no chance of doing so... The company warns that without being granted a special temporary exemption from the law, the system will fracture. ["Registries and registrars would likely implement varying levels of access to data depending on their interpretations of the law," ICANN warns.] "ICANN had made the concept of a moratorium the central pillar of its effort to become compliant with the law," writes the Register. "But its entire strategy was built on a fantasy." Thursday the EU's data protection advisory group told the site that there's no provision in the GDPR for an "enforcement moratorium", and the Register adds that the EU's data protection advisory group "is clearly baffled by ICANN's repeated requests for something that doesn't exist."

Read more of this story at Slashdot.

Read the whole story
Share this story
Delete
1 public comment
letssurf
83 days ago
reply
Oops
Northampton, UK

Parents Can Now Limit YouTube Kids To Human-Reviewed Channels and Recommendations

2 Shares
Google is announcing an expanded series of parental controls for its YouTube Kids application. "The new features will allow parents to lock down the YouTube Kids app so it only displays those channels that have been reviewed by humans, not just algorithms," reports TechCrunch. "And this includes both the content displayed within the app itself, as well as the recommended videos. A later update will allow parents to configure which videos and channels, specifically, can be viewed." From the report: The controls will be opt-in -- meaning parents will have to explicitly turn on the various settings within each child's profile in YouTube Kids' settings. [...] First, videos are uploaded to YouTube's main site. They're then filtered using machine learning techniques through a series of algorithms that determine if they should be added to YouTube Kids' catalog. But algorithms are not people, and they make mistakes. To fill in the gaps in this imperfect system, YouTube Kids relied on parents to flag suspect videos for review. YouTube employs a dedicated team of reviewers for YouTube Kids, but it doesn't say how many people are tasked with this job. This system, parents have felt for some time, just wasn't good enough. Now, parents will be able to toggle on a new setting for "Approved content only," which also disables search. A later version of YouTube Kids will go even further -- allowing parents to select individual videos or channels they approve of, for a truly handpicked selection. The new features in YouTube Kids will roll out over the course of the year, the company says, with everything but the explicit whitelisting option arriving this week.

Read more of this story at Slashdot.

Read the whole story
Share this story
Delete

Software Bug Behind Biggest Telephony Outage In US History

1 Comment and 3 Shares
An anonymous reader writes: A software bug in a telecom provider's phone number blacklisting system caused the largest telephony outage in US history, according to a report released by the US Federal Communications Commission (FCC) at the start of the month. The telco is Level 3, now part of CenturyLink, and the outage took place on October 4, 2016. According to the FCC's investigation, the outage began after a Level 3 employee entered phone numbers suspected of malicious activity in the company's network management software. The employee wanted to block incoming phone calls from these numbers and had entered each number in fields provided by the software's GUI. The problem arose when the Level 3 technician left a field empty, without entering a number. Unbeknownst to the employee, the buggy software didn't ignore the empty field, like most software does, but instead viewed the empty space as a "wildcard" character. As soon as the technician submitted his input, Level 3's network began blocking all incoming and outgoing telephone calls — over 111 million in total.

Read more of this story at Slashdot.

Read the whole story
Share this story
Delete
1 public comment
letssurf
105 days ago
reply
Lol
Northampton, UK

Foxconn acquires Belkin International for $866 million

1 Comment
Foxconn expands its footprint into the mobile accessories and smart home markets by acquiring Belkin International, including the Linksys, Wemo, and Phyn brands, for nearly $866 million in cash. Read more...
Read the whole story
Share this story
Delete
1 public comment
letssurf
116 days ago
reply
Eek
Northampton, UK

All my messages are being marked as spam

1 Comment and 2 Shares

Read the whole story
Share this story
Delete
1 public comment
letssurf
119 days ago
reply
Oh no, how was he suppose to know. lol
Northampton, UK

Let’s Encrypt now supports wildcard certificates

1 Comment

Here are some very exciting news from Let’s Encrypt:

We’re pleased to announce that ACMEv2 and wildcard certificate support is live! With today’s new features we’re continuing to break down barriers for HTTPS adoption across the Web by making it even easier for every website to get and manage certificates.

ACMEv24.0k is an updated version of our ACME protocol which has gone through the IETF standards process, taking into account feedback from industry experts and other organizations that might want to use the ACME protocol for certificate issuance and management some day.

Wildcard certificates5.1k allow you to secure all subdomains of a domain with a single certificate. Wildcard certificates can make certificate management easier in some cases, and we want to address those cases in order to help get the Web to 100% HTTPS. We still recommend non-wildcard certificates for most use cases.

Wildcard certificates are only available via ACMEv2. In order to use ACMEv2 for wildcard or non-wildcard certificates you’ll need a client that has been updated to support ACMEv28.5k. It is our intent to transition all clients and subscribers to ACMEv2, though we have not set an end-of-life date for our ACMEv1 API yet.

Additionally, wildcard domains must be validated using the DNS-01 challenge type. This means that you’ll need to modify DNS TXT records in order to demonstrate control over a domain for the purpose of obtaining a wildcard certificate.

Read the whole story
Share this story
Delete
1 public comment
letssurf
124 days ago
reply
Yay wildcards!!
Northampton, UK
Next Page of Stories