Slashdot Mirror

Here's the thing about those wi-fi kiosks replacing New York City's public payphones. They're owned by Google/Alphabet company Sidewalk Labs, they're covered with ads, and if you read the privacy policy on its web site, "it's not that one." An anonymous Slashdot reader quotes an article from the Observer: Columbia professor Benjamin Read got a big laugh at this weekend's Hackers on Planet Earth XI conference in Manhattan when he pointed out that the privacy policy on LinkNYC's website only applies to the website itself, not to the actual network of kiosks.
The web page points out that it has two separate privacy policies in an easily-missed section near the top, and for their real-world kiosks, "They essentially have a privacy policy that says, 'we can collect anything and do anything' and that sets the outer bound'," says New York Civil Liberties Union attorney Mariko Hirose.

The Observer reports that the policy "promises not to use facial recognition... however, nothing stops the company from retracting that guarantee. In fact, Hirose said that she's been told by the company that the kiosk's cameras haven't even been turned on yet, but it is also under no obligation to tell the public when the cameras go live." The article concludes that in general the public's sole line of defense is popular outrage, and that privacy policies "have been constructed primarily to guard companies against liability and discourage users from reading closely."

First time accepted submitter themusicgod1 (241799) writes According to 2600, their distributor (Previously known as "Source Interlink", now recently renamed to "TEN: The Enthusiast Network") has decided to consolidate its resources and is keeping the money retailers paid for the last two issues of the quarterly magazine. 2600, in the meanwhile, is still busy trying to organize the upcoming HOPE X conference. However, according to the link: "In the worst case scenario, being ripped off at this level would make it almost impossible for us to continue publishing. We would have to make a lot of painful choices and cut back on things for no reason other than some outside company's mismanagement. Our readers have supported both our print and digital publications and we've been doing quite well overall." Note: As it says at the linked explanation, 2600 is not a charity, and they're not seeking donations -- but they would like you to buy the magazine (in print or Kindle form), and to attend the upcoming HOPE X conference. (I wish I could make this year's HOPE but can't; as conferences go, HOPE is a wildly good bargain.)

First time accepted submitter themusicgod1 (241799) writes According to 2600, their distributor (Previously known as "Source Interlink", now recently renamed to "TEN: The Enthusiast Network") has decided to consolidate its resources and is keeping the money retailers paid for the last two issues of the quarterly magazine. 2600, in the meanwhile, is still busy trying to organize the upcoming HOPE X conference. However, according to the link: "In the worst case scenario, being ripped off at this level would make it almost impossible for us to continue publishing. We would have to make a lot of painful choices and cut back on things for no reason other than some outside company's mismanagement. Our readers have supported both our print and digital publications and we've been doing quite well overall." Note: As it says at the linked explanation, 2600 is not a charity, and they're not seeking donations -- but they would like you to buy the magazine (in print or Kindle form), and to attend the upcoming HOPE X conference. (I wish I could make this year's HOPE but can't; as conferences go, HOPE is a wildly good bargain.)

Have you ever been handcuffed and wish you weren't? Even if you haven't, what if you plan to demonstrate at a political party convention in the next couple of weeks? Either way, you need to watch this video, shot by Timothy Lord and unknown_lamer at H.O.P.E. (Hackers on Planet Earth), which will teach you the rudiments of unhandcuffing yourself -- but on purpose leaves out the fine points. For those, you'll need to buy several pairs of handcuffs and practice on your own. At worst, you will probably embarrass yourself no more than Timothy does as he tries to shimmy his handcuffed hands from behind him to in front of him, starting at about 5:18.

The name — MidAtlantic Retro Computing Hobbyists — might make you think this is a bunch of nerds who get together to enthuse over long-obsolete computer hardware and ASCII computer games. And that's exactly what it is. There are farmers who gush over antique tractors, drivers who love antique cars, and music lovers who dote on old phonographs. So why not old computers? Many people in the computer industry seem to have asked that question, so there are lots of computer museums around. MARCH was just the group Slashdot ran into at HOPE. Their website has lots of links that will help you connect with fellow antique computer buffs (assuming you are one), wherever you may be. See here a member showing off the MacGyveresque process that is booting BASIC and playing a game on a reproduction Apple I. Update: 08/01 15:20 GMT by U L : Evan Koblentz (the guy in the video) commented with a bit more information on MARCH (including info on the discussion list and computer museum).

Sparrowvsrevolution writes "Free software lawyer and activist Eben Moglen plans to give a talk at the Hackers On Planet Earth conference in New York next month on the need to apply Isaac Asimov's laws of robotics to our personal devices like smartphones. Here's a preview: 'In [1960s] science fiction, visionaries perceived that in the middle of the first quarter of the 21st century, we'd be living contemporarily with robots. They were correct. We do. We carry them everywhere we go. They see everything, they're aware of our position, our relationship to other human beings and other robots, they mediate an information stream about us, which allows other people to predict and know our conduct and intentions and capabilities better than we can predict them ourselves. But we grew up imagining that these robots would have, incorporated in their design, a set of principles. We imagined that robots would be designed so that they could never hurt a human being. These robots have no such commitments. These robots hurt us every day. They work for other people. They're designed, built and managed to provide leverage and control to people other than their owners. Unless we retrofit the first law of robotics onto them immediately, we're cooked.'"

An anonymous reader writes "Tim Jones over at the EFF's Deep Links Blog just posted an interesting article on the widespread use of deceptive interface techniques on the Web. He began by polling his Twitter and Facebook audience for an appropriate term for this condition and received responses like 'Bait-and-Click' and 'Zuckerpunched.' Ultimately, he chose 'Evil Interfaces' from Greg Conti's HOPE talk on malicious interface design and follow-up interview with media-savvy puppet Weena. Tim then goes on to dissect Facebook (with pictures). So, what evil interfaces have you encountered on (or off) the Web?"

aestetix writes "As previously mentioned on Slashdot, hackers at the last Hackers on Planet Earth (HOPE) conference deployed an RFID tracking system to follow attendees around the conference. The system also allowed users to enter personal interests related to the convention, and served up both talk recommendations and similar people based on these interests. The first results have been posted, and the tracking data and source code have been released under the GPL." They've also made available some videos with 2-D and 3-D representations of the data.

aestetix writes "As previously mentioned on Slashdot, hackers at the last Hackers on Planet Earth (HOPE) conference deployed an RFID tracking system to follow attendees around the conference. The system also allowed users to enter personal interests related to the convention, and served up both talk recommendations and similar people based on these interests. The first results have been posted, and the tracking data and source code have been released under the GPL." They've also made available some videos with 2-D and 3-D representations of the data.

Radio Statler! writes "This weekend marks 2600's last Hackers on Planet Earth (HOPE) conference at the Hotel Pennsylvania in New York City. For those of you that can't make it this weekend, Radio Statler! will be streaming live from the event the whole weekend. There will be simulcasted talks, interviews with speakers and important guests, and music 24 hours a day for the duration of the con. Listeners can request music or submit questions by phone or IRC." The conference schedule (PDF) is available if you're curious about a particular seminar, though not all of them will be broadcast. CNet will be running some related stories about presentations from the conference. So far, they've written about a hacking how-to presentation. We briefly discussed the seventh and final HOPE conference last month.

Radio Statler! writes "This weekend marks 2600's last Hackers on Planet Earth (HOPE) conference at the Hotel Pennsylvania in New York City. For those of you that can't make it this weekend, Radio Statler! will be streaming live from the event the whole weekend. There will be simulcasted talks, interviews with speakers and important guests, and music 24 hours a day for the duration of the con. Listeners can request music or submit questions by phone or IRC." The conference schedule (PDF) is available if you're curious about a particular seminar, though not all of them will be broadcast. CNet will be running some related stories about presentations from the conference. So far, they've written about a hacking how-to presentation. We briefly discussed the seventh and final HOPE conference last month.

un1xl0ser writes to tell us Hacktivismo has released a new chat program known as ScatterChat. It is a friendly fork of GAIM that "provides end-to-end encryption, integrated onion-routing with Tor, secure file transfers, and easy-to-read documentation." This announcement was made at HOPE, where CDs were distributed. A torrent and several screenshots are also available."

2600's Macki writes in to remind me and everyone else that H2K2 is coming up shortly, with pre-registration closing on Friday. The conference will be July 12-14 in New York City, in the exciting yet inexpensive Hotel Pennsylvania. I could only make the HOPE 2000 conference for one day, but it was quite interesting and it looks like audio from most of the panels is available, or just check out the list of panels for 2002 to see if it looks intriguing to you. And if you read Slashdot, the answer to that is probably "yes".

Kirch asks: " Company XYZ Encryption Technologies creates an encryption package (read anti-piracy) that will encrypt your data (read IP) for you and can only be read through licenced decrypted produced by XYZ. Now, the encryption used is very, very weak. It 'encrypts' by offsetting every bit by one and then 'decrypts' by offsetting every bit again by one. Or yet even better 'encrypts' everything by the Pig Latin method. Now the encryption is kept secret by XYZ. Users use this assuming they are protected by the encryption technology touted by XYZ. A semi smart user looks at the encrypted data and says 'Oh Look it's Pig Latin!' The user posts this on forums, makes a Web page exposing XYZ for using Pig Latin and writes a DePigLatin program. Who is liable here? The company, for producing a product with weak encryption, or the user for posting the DePigLatin program?" Sound familiar? It should, but not necessarily for the reason you expect.

ESRI makes a product called ArcView. Arcview has a feature that allows developers to customize it with Avenue. Developers can also encrypt their scripts so they can sell them to users. Dr. William Huber found out a way to decrypt the "encrypted" scripts using the Avenue scripting language. You'll find his findings here. It seems that he stumbled upon this a year ago. Again, who's at fault? ESRI or Dr. Huber? You'll notice he hasn't actually given out the code but does give out a few hints to those who know Avenue.

My limited understanding of the DMCA is that it is a crime to circumvent anti-piracy measures built into most commercial software. This would make the user a criminal for circumventing an anti-piracy measure. There is no provision saying, well if it's weak, then it's OK. So, according to the DMCA, was circumventing the XYZ Pig Latin Encryption technology a crime?"

The similarities to DeCSS should probably come as no surprise to you all at this point. What is a consumer to do when the very laws that are designed to ultimately protect us (as the software publishers keep saying) can be used as a bludgeon to silence the act of discovering what can and should be considered design flaws? Sure the DMCA protects someone, but the answer most assuredly isn't 'us' in any way shape or form.Of course, that last bit shouldn't come as any surprise to you, either.

Update: 07/13 12:43 AM by C :Some information for those of you who are still looking for ammunition against the DMCA: here's a lengthy paper from Pamela Samuelson, a professor at UC Berkeley, and another article from Openlaw . Finally, this bit from Michael Sims: "Sachems, grandmothers, and hackers of all ages have obtained a New York City Official Media Event Permit to peacefully assemble for the redress of wrongs:

Monday 17 July 2000
10:30 am to 5:00 pm
Court Yard of the Federal Court
500 Pearl Street"
(Manhattan, New York City, obviously)

Also, Martin Garbus (the famous lawyer who's representing the DVD defense) will be speaking at H2K, the hacker's conference this weekend. More precisely, he's speaking this Friday at 3PM at the Hotel Pennsylvania (you can go to Hope.Net for more info)."