Slashdot Mirror

Bill Gate's quote on the subject:
"If people had understood how patents would be granted when most of today's ideas were invented, and had taken out patents, the industry would be at a complete standstill today. I feel certain that some large company will patent some obvious thing related to interface, object orientation, algorithm, application extension or other crucial technique. If we assume this company has no need of any of our patents then they have a 17-year right to take as much of our profits as they want. The solution to this is patent exchanges with large companies and patenting as much as we can. "

taken from the 1991 memo at http://www.std.com/obi/Bill.Gates/Challenges.and.Strategy

Gates knows software patents are bad for the industry, but Microsoft still lobbys for software patent laws in many countries. They will win in the EU soon...

And by the time of the release of NCSA Mosaic 0.91 web designers had figured out how to bungle pages in such a way as to cause them to be garbled when viewed with the "wrong" font.

People had figured that out by the late '70s, but it wasn't measured in any standard way until the creation of the Indent-o-Meter in the early '90s.

The polish SF writer Stanislaw Lem has described exactly this problem (swarm robotics in military) as far back as 1986:

The really interesting essay of the three, and the one with the greatest connection to the rest of Lem's work, is the middle one, "The Upside-Down Evolution." Lem announces that, by unspecified means, he's gotten hold of "a military history of the twenty-first century," and proceeds to describe the advent and evolution of warfare by micro- and nano-robots.

It's been some time since I read it, but I recall him having envisioned evolution of war machinery as it became more and more miniaturized and swarm-like, until it was completely impossible to know if and who was attacking who. A country was able to e.g. form giant undetectable light-focusing lens overlaid in the upper layers of the atmosphere to influence agricultural yield of another country and affect its economy without needing to resort to direct contact and observable violence.

Very interesting to see the actual 21st century technology follow the exact path predicted by Stanislaw Lem.

All in all, a recommended read (like many other works by Lem).

May I present my method:

Visit this page and generate yourself a nice litte passphrase.

For every combination of login and domain/account/ do

echo "$login:$account:$iteration:$passphrase" | sha1

Tada, instant secure password. You only need to write down $login, $account and $iteration.

The 8088 is a twisted, flawed architecture.

In true QWERTY fashion, it got a lock on the market by solving an immediate problem: the need to get beyond a 16-bit address space in a single-chip microprocessor. We are hamstrung by its limitations to this day.

See

Limitations of the IBM PC Architecture

                        or

        The Curse of Segments

http://world.std.com/~swmcd/steven/rants/pc.html

I agree, but it's hard to guarantee security without encrypting everything. If you only encrypt part of the system (say, a partition on a USB thumb drive), data tends to get out (users copying files to their desktop for convenience, unencrypted virtual memory, applications saving temporary copies of documents, etc). And don't forget to keep the computer disconnected from the Internet! It's just Murphy's Law: what can go wrong, will go wrong.

Some of that may be overkill, but it depends on what you're doing. I like this quote from the Diceware page: "Of course, if you are worried about an organization that can break a seven word passphrase in order to read your e-mail, there are a number of other issues you should be concerned with -- such as how well you pay the team of armed guards that are protecting your computer 24 hours a day."

Perfect security is really hard to obtain if there's more than one or two people keeping a secret. The compromise route is usually the most pragmatic: (1) encrypt to the point where if you encrypted anything else, users couldn't use the system; (2) tell your users what is and what is not encrypted; and (3) hold users accountable.

Just a couple of cents.

They did the bit about factorization right because they had Adleman (the A in RSA) as a consultant on the movie. http://world.std.com/~reinhold/math/sneakers.adleman.html

I question the wisdom of relying on a third party website to generate passwords for you. At least they are using ssl but how do you know they aren't keeping those passwords? How do you know they are generating them with real entropy?

Diceware is a better bet, IMHO. You can generate them offline and with a good set of dice you get real entropy. You can use the instructions on that webpage to generate totally random passwords or to generate passwords with words in them that are easy to remember but still pretty secure/random.

That's the kind of poor thinking that gets us those crappy password strength measuring scripts on websites. These things are totally wrong. Just like every single e-mail address validator out there, they annoyingly, incorrectly reject my perfectly valid (i.e. strong) diceware passwords.

Someone already linked this, but here it is again explaining why dictionary words are fine, as long as you do it right (i.e. with something like diceware): Diceware FAQ.

Basically, my point is: Netscape complained to the court that MS had an advantage because they were using their monopoly regarding their OS to get an unfair advantage over Netscape by providing their browser free with the OS. MS responded that you couldn't remove the browser without breaking the OS because they were joined. "The browser IS the OS," I think was the quote. And they proceeded to make sure they were even more tied together by the time the next version of Windows came out (Windows 2000, I think).

And I still think they're joined. (At least in the US, I don't know about the European versions because of the court action there.) If they two, separate programs, you should be able to remove the browser from the OS without either destabilizing or crashing it altogether. And if they are separable, then they should be forced to add a removal option.

We're still decades (centuries?) [sic] away from room temperature superconductors.

Why would that be? After all, cold-fusion is already a reality!

=Smidge=

Your key smashing doesn't produce as much entropy as you think. In fact, there is very little entropy in there at all (there are patterns and many repeated characters), and is probably equivalent to just a few randomly generated printable characters.

However, it is true that you don't need software to generate a good password. Use Diceware.

"Really, though, I think your observation was spot-on."

Thank you!

For all their talk about freedom and liberty and voluntary cooperation, it always seems to come down to "the money".

And if some action, somewhere reduces the profit margin of some multinational hypercorp, the cry of "SOCIALISM!" is heard throughout their tubby ranks, and the sound of their chubby thighs rubbing together as they rise, en masse, to rush, well, actually, waddle, to their keyboards, sounds like the oncoming wind. The clacking of the keys, as they go on the Internet to register their displeasure is deafening!

They're the nerds who give honest & rational nerds a bad reputation.

He coined a name for the hypothesis, but since I gave my copy away I can't look it up. This page calls it a "developmental window". Fiasco is intensely enjoyable, thought-provoking, and arguably deeply condemnatory of human nature.

Even though this method doesn't really create terribly secure passwords, I imagine this is a large step up for most users. If you have 100,000 files in your computer and one was chosen at random (at random meaning NOT by a human being), that makes your password worth about as much as a 16 bit key. This is less than a 3 character randomly generated password.

If you want a strong password jammed into a tiny space (6 to 8 characters), generating one randomly -- from /dev/random or some other reliable source of entropy -- using the 94 or so printable characters is the way to go, but they tend to be hard to remember and easy to forget. The security lies in that fact that any permutation of any 8 printable characters as equally likely as any other. You are making a large key space for an attacker. The hashed version described by the article doesn't do this.

Personally, I like to use something a little longer but easy to remember. Using something like diceware will do this. It's mainly used for generating passphrases (used as encryption keys), which must be much, much stronger than passwords to be effective. With it, you can generate passwords that look like: "applefloorpin" or "cloudbrickyoung". If you used Diceware to get these, they are each worth at least 38.8 bits (12.9 bits per word). This assumes an attacker knows you used Diceware and knows the exact list you used. That's equivalent to 6 randomly generated printable letters, but its probably easier to remember and type.

Another way that I like (and I wrote a Perl program to do this) is to read in your /usr/share/dict/words list of words on your system. These generally have over 65k words in them. If you use /dev/random to select words at random, each word is worth over 16 bits. A three word password generated this way is worth the about same as an 8 character random garbage password. Change the case and throw in a [!@#$%^&*()-=] and you get a few more bits of security, if you like.

Personally, I think "applefloorpin" is easier to remember and type than "FfK%L7aO". And if you do it right, they are worth the same.

Anyway, if I wanted to try this music/image-file-to-password thing described in the article myself, a simple command like this will do it:

md5sum <your-file> | awk '{print $1}' | perl -MMIME::Base64 -e 'print encode_base64 pack("h*", <>);' | head -c8

That's an 8 character password. Adjust the last command to make it longer/shorter.

For those who are advocating that an anti-bot be released (or whatever you want to call it) so as to disable this pest, I have a question for you: how is someone going to be able to tell the difference between these:

1.) A user who creates and releases an anti-bot, but through an error (design, programming, whatever) inadvertently causes "harm" to the system.

2.) A user who creates and releases an anti-bot that appears to try to block the worm, but is in fact designed to cause "harm" to the system.

Recall that the Morris worm was not intended to bring down the internet:

According to its creator, the Morris worm was not written to cause damage, but to gauge the size of the Internet. An unintended consequence of the code, however, caused it to be more damaging: a computer could be infected multiple times and each additional process would slow the machine down, eventually to the point of being unusable.

The critical error that transformed the worm from a potentially harmless intellectual exercise into a virulent denial of service attack was in the spreading mechanism. The worm could have determined whether or not to invade a new computer by asking if there was already a copy running. But just doing this would have made it trivially easy to kill; everyone could just run a process that would answer "yes" when asked if there was already a copy, and the worm would stay away. The defense against this was inspired by Michael Rabin's mantra, "Randomization." To compensate for this possibility, Morris directed the worm to copy itself even if the response is "yes", 1 out of 7 times [3]. This level of replication proved excessive and the worm spread rapidly, infecting some computers multiple times. Rabin remarked when he heard of the mistake, that he "should have tried it on a simulator first."

See also A Tour of the Worm for a more detailed account of how it unfolded.

The intention may have been good, but the implementation had an unintended consequence that led to a major disruption of the internet. I remember full well the confusion at the time as the details unfolded. I was working at a major computer manufacturer that dropped its connection to the net to protect itself. Ultimately, none of our systems were hit (wrong OS), but the sheer volume of packets on the net led, effectively, to a DDOS'ing of the uninfected systems, too.

So, in a nutshell, how can one objectively tell the difference between an attempt to kill the worm that causes problems, and an attempt to cause problems that looks like it is trying to kill the worm? In a non-static environment. With our limited ability to write bullet-proof, error-free code. Besides, someone else could capture and re-purpose the good code to cause more problems.

How The Internet Will Make The Record Labels Evaporate

http://world.std.com/~swmcd/steven/stories/labels.html

Sorry that you got modded offtopic; should have put that part after the relevant comment about HD-DVD.

I in fact know a great deal about what libertarianism is, and what it is not. I have been around the apologists and the critics and found reason and logic to be only in the minds of the latter. Libertarianism is NOT the only (or best, or even a feasible) solution to the problems of overspending, wasteful spending, and warmongering. Many people inside the Democratic party feel very strongly about these issues too, as well as several things you lumped into the concept of "mommy government". For instance, I advocate drastically reducing the size of the active military by at least 50% (based on dollars not personnel) this would free up a huge amount of money for social (no, I'm not afraid of that word, or socialism. It's not a pejorative no matter how hard the right tries to make it sound like one) welfare programs AND make it impossible for us to even start wars of aggression in the first place. Don't think for a second that the LP has a monopoly on peace.

But that's besides the point. Libertarianism is a self-serving, self-interested, selfish ideology for individuals with the political minds of teenagers who have absolutely no concept of responsibility or empathy. In short, they want to smash and grab as much as they can and then take it all home. But you can't do that in modern society without rewriting all the rules and obliterating the social contract that CREATED the country. In the same breath libertarianism legitimizes the very thing it attempts to denounce. It is closer to Fascism, or Corporatism, than it is to any ideology that uses the term "liberty" to define itself.

I would point you to this website for further reading on the subject, specifically the section titled "Exercises and contact".

You also might be interested in reading a piece that is linked to from that site titled, I'm Still Not a Libertarian.

Thanks to google and its archive of usenet posts: this query on google groups of: "FTP SMTP virus proxy server group:comp.*" for the time period of 01-Jan-95 through 26-Sep-95 (the patent was filed on 26-Sep-95) returned this link .

It appeared in the comp.security.misc newsgroup and the first few paragraphs (emphasis added) suggests to me this might be prior art:

FOSE '95, WASHINGTON, March 21 /PRNewswire/ -- Norman Data Defense Systems, Inc. today introduced the Norman Firewall, a firewall providing a single, highly secured route for data traveling between networks and the Internet.

"We are proud to deliver a new level of data defense for networks that are currently vulnerable to attack from a variety of global data security threats, including hackers and viruses," said Norman Data Defense Systems, Inc. President and CEO David J. Stang, Ph.D.

Like a sentry positioned to identify visitors and then authorize or deny entry, the Norman Firewall combines an integrated front-end server, proxy server, and virus detector to defend systems and information. The Norman Firewall essentially opens incoming and outgoing data packets, and inspects, virus-checks (against more than 6,500 known viruses), and repackages the data packets, before delivery to their destination. No packets ever need to directly enter or leave internal networks.

I don't have time right now to search further, but wanted to put this out there for others to follow up on. Any takers?

P.S. As a point of comparison, consider that the Morris Worm was released onto the internet on 02-Nov-88 (more details here: A Tour of the Worm) and THAT was nearly SEVEN YEARS before this patent was filed!

The wake-sleep algorithm for training neural networks

http://world.std.com/~swmcd/steven/stories/dream.html

But it *is* like CTRL and ALT,

A 'space cadet keyboard' can still be patented in the US, e.g. USP 6885315, "The present invention relates to a keyboard having special keys provided thereon, and more particularly to a keyboard that enables a user to perform professional and convenient operation or document editing directly under a computer operating system without the need of memorizing and combining multiple keys or using a mouse as an aid."
http://www.patentstorm.us/patents/6885315-description.html
filed 2002-04-08, Issued on April 26, 2005

That is, 'when the inmates run the asylum'.

CC.

Finally, a keyboard designed for Emacs!

I miss emacs on Multics. My first word processor, I wrote a lot of papers using it. Even today I catch myself typing emacs commands that only existed on Multics emacs.

Did you perchance happen to be using a MIT Space Cadet Keyboard with that Multics system, or did you just enter your papers in using punch cards?

She describes a symptom called "hypergraphia", which is commonly found in temporal lobe epilepsy as well as bipolar mania. It is an uncontrollable urge to write.

Hypergraphic people, in fact creative people of all sorts report being visited by "The Muse", and often have the subjective experience that their creations are not of their own doing, rather, they are channelling for The Muse.

I was hypergraphic for several years. Not continously, but episodically: when I'd get the urge to write a new essay or article, I would drop everything, quite without regard to common sense, for example I would abandon paying work for clients until I had published whatever I was inspired to write on my website, or at community sites like Kuro5hin.

This all stopped when I was hospitalized for mania about a year ago, and put on the antipsychotic Zyprexa. While I'm a lot better off than I used to be, in that I don't experience symptoms of mental illness anymore, I seem to find it impossible to write at much length about anything.

Memory eraser??? ---> http://www.std.com/~mica/mib.jpg

I've rolled dice to generate small random numbers. See Diceware.

You really want to know why everyone thinks the Libertarians are a joke? Look no further. I have absolutely no problem with decriminalizing drug use, as you seem to. I do have quite a big problem with, say, abolishing the FDA, FEMA, child labor laws, etc.

Oh, you mean, this worm? Absolutely bloody fascinating, mind you.

OK, here's one that's signed.

Why I no longer support NPR
http://world.std.com/~swmcd/steven/rants/NPR.html

If you are falling back on a single password, then that password can be ridiculously secure. I use a big diceware password http://world.std.com/~reinhold/diceware.html, along with a keepass database http://keepass.sourceforge.net/ Assuming that we arent dealing with keyloggers, that is perfectly secure. ...first post

An app to find broken links on your web site.

Checking links with LinkCheck
http://world.std.com/~swmcd/steven/perl/pm/lc/link check.html

Gerald Bull had a vision and an obsession, a vision that led to estrangement from his native Canada, prison in America, and ultimately assassination by Israel. His vision was of an entirely new way to get into space: small rockets boosted by giant guns. To achieve it he worked for some of the worst regimes on earth: South Africa, China, and ultimately Iraq. His work affected the course of two modern wars and revived the ancient field of artillery.

Gerald Bull had a vision and an obsession, a vision that led to estrangement from his native Canada, prison in America, and ultimately assassination by Israel. His vision was of an entirely new way to get into space: small rockets boosted by giant guns. To achieve it he worked for some of the worst regimes on earth: South Africa, China, and ultimately Iraq. His work affected the course of two modern wars and revived the ancient field of artillery.

The article and basic approach remind me of Gerald Bull's work and his disturbing tale of doom as documented on the Doomed Engineers site:

Gerald Bull had a vision and an obsession, a vision that led to estrangement from his native Canada, prison in America, and ultimately assassination by Israel. His vision was of an entirely new way to get into space: small rockets boosted by giant guns. To achieve it he worked for some of the worst regimes on earth: South Africa, China, and ultimately Iraq. His work affected the course of two modern wars and revived the ancient field of artillery.

The article and basic approach remind me of Gerald Bull's work and his disturbing tale of doom as documented on the Doomed Engineers site:

Gerald Bull had a vision and an obsession, a vision that led to estrangement from his native Canada, prison in America, and ultimately assassination by Israel. His vision was of an entirely new way to get into space: small rockets boosted by giant guns. To achieve it he worked for some of the worst regimes on earth: South Africa, China, and ultimately Iraq. His work affected the course of two modern wars and revived the ancient field of artillery.

Da Vinci's a great counter-example, but it's a shame that people can't come up with any others. There are many:

Alexander Borodin was a Russian composer and a very good chemist.

Charles Kavalovski is a tenured professor of physics and the former principal horn of the BSO.

I've seen examples of naturalists who were very good at drawing wildlife and plants and also had deep knowledge of their subjects.

etc. etc. etc.
 

An essay I wrote in 2004:
    http://www.kurtz-fernhout.com/oscomak/AchievingASt arTrekSociety.html
An excerpt:
"Now, let us move on to the question of where could more money for
education and creativity come from -- such as to fund more creation of
free copyrights and free patents? And where could budget cuts be made so
US parents (and everyone else) could work less hours and devote more
time to their families and charitable hobbies -- including informally
educating their children? As we shall see, a hundred billion dollars
here, a hundred billion dollars there, and soon we are talking real
money. :-)

Let us consider ways to free up money for the non-profit sector (or
reducing working hours) by cutting wasteful government and consumer
spending in these areas with (annual estimate of easy savings):
    * Healthcare ($800 billion),
    * Military ($200 billion),
    * Prisons ($125 billion),
    * Agriculture ($40 billion),
    * Transportation ($250+ billion),
    * Housing ($350+ billion),
    * Manufacturing (very variable),
    * Media (very variable),
    * Banking ($14000 billion up front, $320 billion annually), and
    * Education (very variable).
This is a total of $14000 billion up front and at least another $2085
billion per year. And this is even without considering any lifestyle
changes such as from widespread adoption of Voluntary Simplicity:
    http://world.std.com/~habib/thegarden/simplicity/
which will ultimately result in the largest savings in the US and
worldwide (but I discuss no further here). "

Put the scroll lock with the 'prtscrn' 'scrlk' and 'pause/break' keys, and free up that space for an additional meta shifting key...a la Space Cadet Keyboard.

Think of all the possible key combinations you can attain using CTRL-ALT-META-SHIFT - it boggles the mind. Not to mention, emacs users will have an actual 'Meta' key to use on PCs (instead of the 'ESC' key).

The only thing that scares me more than republicans is libertarians, except thankfully they're pretty much confined to the intarweb because it appears they don't leave their basements.

http://world.std.com/~mhuben/libindex.html

Libertarianism, regardless of the clueless palitical parties who espouse it, was on the left wing of the spectrum teh last I checked.

The terms "left" and "right" as applied to politics originally meant the commoners and the nobility. As used today, they're best applied to the workers and the owners or "capitalists" - like the nobility of old, the owning class is defined and backed by the state (which issues corporate charters, land and resource deeds, patents, copyrights, etcetera).

"Left" and "right", "worker" versus "owner", should not be confused with social liberalism or conservatism, or with command economies versue free markets, or with interventionism versus isolationism in foreign policy. Politics is multidimensional, and one could very well be a leftist with conservative social views who favors a free market and an interventionalist foregin policy, or a right-wing backer of command economies with a tolerant social attidude and a yen for isolationism. Of course, some combinations of these views are statistically more common than others.

The term "libertarian" originally refered to the sort of libertarian socialism generally known today as anarchy. Libertarian socialism is decidedly leftist, i.e., aligned with the concerns of workers over owners.

"Libertarian capitalists", of the sort you'll often find in the American "Libertarian Party", attempted to appropriate the term in the mid 20th-century. Libertarian capitalists are decidedly to the right, i.e., aligned with the concerns of owners, putting property rights as primary. (Indeed, many hold the view that a persons body is their "property" and thus arguing that all other rights flow from property rights).

Heinlein was clearly socially liberal, a free-marketer, and a supporter of war as legitimate foreign policy. Beyond that, I'm not familiar enough with his work to attempt to characterize him.

Most people have responded with their experiences in keeping track of their passwords, but I was wondering if it would be possible to implement a system where the password expiry would be based on the complexity of your password. So when you enter your passowrd, the system could analyse the length, number of repeated characters, digits, and symbols. Then with the complexity, it could calculate the exipry time. So people who have passwords of length 8-12 would have to change their passwords every month, those who have 20+ length passwords could keep theirs for 6 months (depending on how you calculate the complexity). This way people could 'buy' a longer expiry time by adding symbols or length.

My personal favorite way of generating secure passwords is to use a Passphrase. You can use Diceware to generate some passphrases for you http://world.std.com/~reinhold/diceware.html and it also has instructions for adding symbols/numbers to the passphrase.

Other slashdotters have mentioned Password Safe by Bruice Schneier. I strongly recommend this as well. I keep a copy of these at home encrypted using my master passphrase just in case I forget them.

This is actually even supported by the article you site in section 4.5:

The first fact to face is that Unix was not developed with security, in any realistic sense, in mind... [Dennis Ritchie, "On the Security of Unix"]

• In the beginning, man dwelt in a state of Nature, until the serpent Government tempted man into Initial Coercion.
• Government is the Great Satan. All Evil comes from Government, and all Good from the Market, according to the Ayatollah Rand.
• We must worship the Horatio Alger fantasy that the meritorious few will just happen to have the lucky breaks that make them rich. Libertarians happen to be the meritorious few by ideological correctness. The rest can go hang.
• Government cannot own things because only individuals can own things. Except for corporations, partnerships, joint ownership, marriage, and anything else we except but government.
• Parrot these arguments, and you too will be a singular, creative, reasoning individualist.
• Parents cannot choose a government for their children any more than they can choose language, residence, school, or religion.
• Taxation is theft because we have a right to squat in the US and benefit from defense, infrastructure, police, courts, etc. without obligation.
• Magic incantations can overturn society and bring about libertopia. Sovereign citizenry! The 16th Amendment is invalid! States rights!
• Objectivist/Neo-Tech Advantage #69i : The true measure of fully integrated honesty is whether the sucker has opened his wallet. Thus sayeth the Profit Wallace. Zonpower Rules Nerdspace!
• The great Zen riddle of libertarianism: minimal government is necessary and unnecessary. The answer is only to be found by individuals.

Government

• Libertarians invented outrage over government waste, bureaucracy, injustice, etc. Nobody else thinks they are bad, knows they exist, or works to stop them.
• Enlightenment comes only through repetition of the sacred mantra "Government does not work" according to Guru Browne.
• Only government is force, no matter how many Indians were killed by settlers to acquire their property, no matter how many blacks were enslaved and sold by private companies, no matter how many heads of union members are broken by private police.
• Money that government touches spontaneously combusts, destroying the economy. Money retained by individuals grows the economy, even if literally burnt.
• Private education works, public education doesn't. The publicly educated masses that have grown the modern economies of the past 150 years are an illusion.
• Market failures, trusts, and oligopolies are lies spread by the evil economists serving the government as described in the "Protocols of the Elders of Statism".
• Central planning cannot work. Which is why all businesses internally are run like little markets, with no centralized leadership.
• Paternalism is the worst thing that can be inflicted upon people, as everyone knows that fathers are the most hated and reviled figures in the world.
• Government is like fire, a dangerous servant and a fearsome master. Therefore, we should avoid it entirely, as we do all forms of combustion.

Regulation

• The FDA is solely responsible for any death or sickness where it might have prevented treatment by the latest unproven fad.
• Children, criminals, death cultists, and you all have the same inalienable right to own any

Hmmm? Which article? Think for yourself, my ass. The points raised in those articles are valid criticism of libertarianism. Some of them were written by Libertarians criticising each other! Go ahead, try to refute them.

I'm waiting.

What's that? You can't be bothered to read criticisms of your favorite dogma? You might actually have to think for yourself instead of parroting back the libertarian party line? Maybe that's because Libertarianism makes you stupid.

Thinking about voting Libertarian? Check out Critiques of Libertarianism before you drink the cool-aide

Example

Suppose you want a five word passphrase, as we recommend for most users. You will need 5 times 5 or 25 dice rolls. Let's say they come out as:

            1, 6, 6, 6, 5, 1, 5, 6, 5, 3, 5, 6, 3, 2, 2, 3, 5, 6,
            1, 6, 6, 5, 2, 2, and 4

Write down the results on a scrap of paper in groups of five rolls:

            1 6 6 6 5
            1 5 6 5 3
            5 6 3 2 2
            3 5 6 1 6
            6 5 2 2 4

You then look up each group of five rolls in the Diceware word list by finding the number in the list and writing down the word next to the number:

            1 6 6 6 5 cleft
            1 5 6 5 3 cam
            5 6 3 2 2 synod
            3 5 6 1 6 lacy
            6 5 2 2 4 yr

Your passphrase would then be:

            cleftcamsynodlacyyr

large keyboard like this: http://world.std.com/~jdostale/kbd/KanjiTablet.htm l

> I wish there was a way that I could view websites without giving any IP or client information.

Have a look at http://anon.inf.tu-dresden.de/ by the AN.ON project. They are running casades of mixes (based on the concepts by David Chaum, c.f. http://world.std.com/~franl/crypto/chaum-acm-1981. html) and are also supporting TOR in their latest versions.

The project receives consulting from the Independent Centre for Privacy Protection (ICPP, http://www.datenschutzzentrum.de/), a leading German institution in both legal privacy protection and privacy-enhancing technology design. They have already won some court cases against German Federal Police who wanted their anon service not that anonymous.