Slashdot Mirror
Slashback: Streamend, Stego, Patches
Getcher hot streams while they last ... jmoffitt writes: "In his post to the Vorbis list, Ciaran announced that the Ogg Vorbis BBC streams of Radio 1 and Radio 4 that we've enjoyed since early November would go offline as the test is ending. Everyone is encouraged to send their encouragement for these streams to continue to webweaver@bbc.co.uk. Also, as a special treat, the Radio 4 Ogg stream has been extended a week - just enough for all to catch the first episode of Lord of the Rings on Saturday at 1430 GMT."
Please mind the people interrupting your privacy. Matt Clauson writes: "Discussion list for the Qwest privacy issue and possible protest action has been set up -- send an email qwest-action-subscribe@dotorg.org to subscribe to it."
Plug, plug, plug ... timekillerj writes "Well it looks like AOL jumped right in and fixed that pesky hole. We can all go back to speculating how insecure it is now. An article on Yahoo has more info, including a short debate on w00w00 disclosing before getting a response from AOL."
Backstepping by any other name ... dagoalieman writes "It appears the FBI has decided that MS's patch is sufficient. According to CNN, they announced this earlier today in a rather quiet fashion. While MS may see it as good news, I think the fact that the hole is coming back to public attention just blackens the eye a little more for them. It will be interesting to see future ramifications of the government getting involved in these issues, too..." It can't look good when your company's software is called into question by some of your largest customers.
Nope, still don't see any. Niels Provos writes: "I just updated http://www.citi.umich.edu/u/provos/stego/usenet.php to reflect the final results from our search of hidden messages in USENET images. We did not find a single hidden message.
I also released a new version of stegdetect.
The disconcert cluster that we used for the dictionary attack contained more than two-hundred workstations, mostly from CAEN (that is the computer aided engineering network at UMich). The peak performance is comparable to 72 1200 MHz Pentium III machines :-) ...
Below my mail to the cryptography mailing list.
------- Forwarded MessageThanks for the update, Niels!
From: Niels Provos <provos@citi.umich.edu>
To: cryptography@wasabisystems.com
Subject: Stegdetect 0.4 released and results from USENET search available
Date: Fri, 21 Dec 2001 12:16:14 -0500
Sender: provos@citi.umich.eduI just released Stegdetect 0.4. It contains the following changes:
- Improved detection accuracy for JSteg and JPhide.
- JPEG Header Analysis reduces false positives.
- JPEG Header Analysis provides rudimentary detection of F5.
- Stegbreak uses the file magic utility to improve dictionary
attack against OutGuess 0.13b.You can download the UNIX source code or windows binary from
http://www.outguess.org/download.php
- -----
The results from analyzing one million images from the Internet Archive's USENET archive are available at http://www.citi.umich.edu/u/provos/stego/usenet.php.
[...]
After scanning two million images from eBay without finding any hidden messages, we extended the scope of our analysis.
This page provides details about the analysis of one million images from the Internet Archive's USENET archive.
Processing the one million images with stegdetect results in about 20,000 suspicious images. We launched a dictionary attack on the JSteg and JPHide positive images. The dictionary has a size of 1,800,000 words and phrases. The disconcert cluster used to distribute the dictionary attack has a peak performance of roughly 87 GFLOPS. However, we have not found a single hidden message. [...]Comments and feedback are welcome. We have an FAQ at http://www.citi.umich.edu/u/provos/stego/faq.html"
Egg Troll, WIPO Troll, The Turd Report, Klerk, and anyony I've missed!
In plain English, does this mean that the whole 'warning' by the FBI was FUD, plain and simple?
Kind of surprised no one uploaded a bunch of steg'd images just for laughs.. encrypted messages like "No, this isn't from a terrorist", "Windows/Bill Gates/Microsoft Blows", "steg _this_, buddy"... or "First Post!"
Skivvy Niner? Email me!
HEY! Look left just ONE MORE TIME!
umm, cat got your tongue? Unless the "hidden message" was "I hit submit too soon"...
20721
"Well it looks like AOL jumped right in and fixed that pesky hole. We can all go back to speculating how insecure it is now
Michael seems to think that anything that is not open source has to be insecure.
The streaming test made by the BBC is definitely a good thing. It brings credibility to open source projects. Ogg Vorbis is really an amazing format, but nobody uses it because of the lack of advertisement.
Succesful experiences like the BBC one can change this.
{{.sig}}
OK w00w00 sends an Email to AOL, get's no response, and then publishes. to this, AOL said,
``We'd encourage any software programmer that discovers a vulnerability to bring it to our attention prior to releasing it,'' Weinstein said.
Sorry if your organiuzation is too big to react that quickly...
Open Source Identity Management: FreeIPA.org
What if the messages are not in english or god forbid use a non arabic script?
The disconcert cluster that we used for the dictionary attack contained more than two-hundred workstations, mostly from CAEN (that is the computer aided engineering network at UMich). The peak
Ok, i give up -- where did you steganographically hide the rest of that sentence?
--
Mod up a post Rob doesn't like and you'll never mod again
If someone wanted to hide a message in images on newsgroups, they wouldn't put a plaintext msg that any newb running a dictionary based attack could find, unless they wanted it to be found. It would be trivial to add one more step of xor'ing the msg with a random key first, then putting the key in a second image, or evern better sending it through another conduit. I know if I was going to use something as lame as stenography to send an important msg, I would go to the trouble of not sending plaintext.
Nobody can defeat my supreme powers!
Bwwahaaahaaa!
Hollow words will burn and hollow men will burn.
...doesn't mean it's not there, does it? How confident are the makers of stegdetect that no steganographic images would slip past their program? Does their program simply work for all known steg. algorithms, or would it detect some or all kinds of new algorithms?
Also, if I was going to try to send a message via steganography, I wouldn't be doing it with images on Usenet. I'd make some useless personal homepage (god knows there are enough of those already, and nobody visits them), and put my steg. image on there. Or, I would use a more primitive kind of steganography--code words embedded in seemingly innocent messages. There's a hell of a lot more spam on usenet than images, so it would be better concealed that way.
Yes, my fellow trolls, the time has come for me to take a leave of absence from the Slashdot trolling scene. Unfortunately I feel that my recent trolls have been a bit subpar and become rather commonplace. At this point I need to step back and explore new ways to troll Slashdot. I wish the best of luck in this new year to all my fellow trolls and crapflooders. I'll return before too long.
C - A language that combines the speed of assembly with the ease of use of assembly.
Here's the deal with AOL... since everything runs through centralized servers, they've been able to apply filters to catch erroneous message packets.
Big deal!!
Their "fix" is roughly equivalent to using duct tape as a contraceptive. Its just not right.
They havn't changed the fact that there is a buffer overflow in the IM client. This means that AIM users (using the official client) are still vulnerable. AOL has simply made it a bit more obscure, and we all know that security through obscurity is not secure at all.
Skiers and Riders -- http://www.snowjournal.com
Well perhaps some people use stego and might actually have used strong passwords that could not be guessed by a dictionary attack. If I were communicating secretly using the internet, I would first encrypt the message with pgp, then place the encrypted text into a large jpeg WITH a strong password, and post to a half dozen groups. How would any kind of attack (well any reasonable attack) be able to detect my message? Even if the dictionary attack worked, how would you know the result was the real message, since it would appear to be random garbage, just like all the incorrectly passworded dumps? Just doesn't seem like this is something you can do, its taking distributed.net several years to crack ONE message. How would you go about finding a needle in a haystack, and THEN decoding it? We are talking tens of millions of images. What is the point of this? I'm sure people use stego, for whatever reason, why wouldn't they? Some hacker group, or warez group, or terrorists or whatever, somewhere, at some time, posted stego'd images to usenet.
The Biggest Security Hole is stupid users. Since AIM is mostly comprised of AOL users (henceforth known as lamers), we can also assume that the service is quite insecure. However, the lamers don't really care, as they don't realize just how easy a bug would be to exploit (people make scripts, scripts give rise to script kiddies). So...AIM is bad.
Job? I don't have time to get a job! Who will sit around and bitch about being broke and unemployed then?
Does anyone know a faster way to contact the major software vendors about a severe security issue BESIDES letting them read about it on the front page of their favorite news portal?
(Note, I only said faster, not better)-- Dan
I remember from last winter term some guy had a background process running on every single workstation in the CAEN labs. If you killed it (users logged in at the console can kill large/cpu hungry apps with a special script) it would just come back. It used lots of CPU cycles. It made it hard to get work done. It pissed us all off, and was made worse by his dismissive responses to requests to cut it out.
Basically, we all wanted to kick his ass, and now we know who he is. Unless I'm wrong... but I'll ignore that possibility, because it'd get in the way of a good wupin'.
The enemies of Democracy are
Imagine a beowulf cluster of these!
Dear Friend , Especially for you - this red-hot intelligence . If you no longer wish to receive our publications simply reply with a Subject: of "REMOVE" and you will immediately be removed from our mailing list . This mail is being sent in compliance with Senate bill 1622 ; Title 1 ; Section 307 ! This is not a get rich scheme ! Why work for somebody else when you can become rich within 60 days ! Have you ever noticed society seems to be moving faster and faster and nobody is getting any younger ! Well, now is your chance to capitalize on this ! WE will help YOU deliver goods right to the customer's doorstep and decrease perceived waiting time by 160% ! You can begin at absolutely no cost to you ! But don't believe us ! Mr Simpson of Connecticut tried us and says "My only problem now is where to park all my cars" . We are a BBB member in good standing . We beseech you - act now ! Sign up a friend and you'll get a discount of 60% ! Thank-you for your serious consideration of our offer ! Dear Professional , Thank-you for your interest in our letter ! If you no longer wish to receive our publications simply reply with a Subject: of "REMOVE" and you will immediately be removed from our mailing list ! This mail is being sent in compliance with Senate bill 1620 ; Title 9 ; Section 306 . This is different than anything else you've seen ! Why work for somebody else when you can become rich in 37 days ! Have you ever noticed the baby boomers are more demanding than their parents & society seems to be moving faster and faster . Well, now is your chance to capitalize on this . WE will help YOU increase customer response by 170% and deliver goods right to the customer's doorstep . The best thing about our system is that it is absolutely risk free for you . But don't believe us ! Mr Ames who resides in Delaware tried us and says "I was skeptical but it worked for me" ! This offer is 100% legal ! We implore you - act now . Sign up a friend and your friend will be rich too . Thanks !
Since Microsoft has been getting so many security holes found in their software lately, why not create a new topic dedicated soley to Microsoft Security Holes?
I invite you to read this comment about CSCX. Or this where, after years of research, he informs us that "Capitalism is the foundation on which the American economy is built" and that closed formats are unamerican and no good for the economy.
I suspect there are several reasons why they haven't found any Stegonography in Usenet pictures:
- Very few people find it necessary to hide information in Usenet.
- Of those who might find it necessary, few actually have heard of Steganography and know how to use it.
- Those who know enough about Stego have encypted their messages first; you won't find these with dictionary attacks - the method the article suggests they used on "suspicious" images.
It is impossible to differentiate between random numbers (noise) and strong encryption. Are there not places within certain images where low order bits have noise that is completely random and thus a perfect hiding place for encrypted messages?This Article seems to suggest that it isn't possible to hide info in gifs such that it is undetectable and that more research should be done on JPEGs. Anyone know the state of the art on this?
Really, even with a Beowulf cluster, processing that many images so soon makes it seem like they gave it only a cursory examination.
Friends don't let friends use multiple inheritance.
This was likely just a reason for the group to download and view millions upon millions of pr0n pics. Then again I was always knew pictures like that carried hidden messages :)
..."There must be a hidden message, let's just stare at it a little longer"...
-Wrexsoul
--- Need web hosting?
Yet another crippling bombshell ht the beleaguered *BSD community when recently IDC confirmed that *BSD accounts for less than a fraction of 1 percent of all servers. Coming on the heels of the latest Netcrft survey which plainly states that *BSD has lost more market share, this news serves to reinforce what we've known all along. *BSD is collapsing in complete disarray, as further exemplified by failing dead last in the recent Sys Admin comprehensive networking test.
You don't need to be a Kreskin to predict *BSD's future. The hand writing is on the wall: *BSD faces a bleak future. In fact there won't be any future at all for *BSD because *BSD is dying. Things are looking very bad for *BSD. As many of us are already aware, *BSD continues to lose market share. Red ink flows like a river of blood. FreeBSD is the most endangered of them all, having lost 93% of its core developers.
Let's keep to the facts and look at the numbers.
OpenBSD leader Theo states that there are 7000 users of OpenBSD. How many users of NetBSD are there? Let's see. The number of OpenBSD versus NetBSD posts on Usenet is roughly in ratio of 5 to 1. Therefore there are about 7000/5 = 1400 NetBSD users. BSD/OS posts on Usenet are about half of the volume of NetBSD posts. Therefore there are about 700 users of BSD/OS. A recent article put FreeBSD at about 80 percent of the *BSD market. Therefore there are (7000+1400+700)*4 = 36400 FreeBSD users. This is consistent with the number of FreeBSD Usenet posts.
Due to the troubles of Walnut Creek, abysmal sales and so on, FreeBSD went out of business and was taken over by BSDI who sell another troubled OS. Now BSDI is also dead, its corpse turned over to yet another charnel house.
All major surveys show that *BSD has steadily declined in market share. *BSD is very sick and its long term survival prospects are very dim. If *BSD is to survive at all it will be among OS hobbyist dabblers. *BSD continues to decay. Nothing short of miracle could save it at this point in time. For all practical purposes, *BSD is dead.
Fact: *BSD is dead
hands off fellas.
AOL Security Holes And The German Literature Of The Neo-Nazism Period
Perhaps James Madison best summed up the Ottoman sentiment toward AOL Security Holes when he said, "History hath triumphed over time, which besides it nothing but eternity hath triumphed over." (Churchill 84) While other powerful scholars may disagree, we now know that AOL Security Holes was actually a moving conspiracy by the British populace in their attempt to distract its citizens from the democracy of the New Historicism movement. This claim is confirmed by three triumphant points: the German literature of the Reaganism period, the Mark Twain Depression of 1780, and the Greek Election of 1775.
The democracy present in the War of 1781 was a brilliant event that almost rivaled AOL Security Holes in terms of its democracy. Aristotle, in spite of his Japanese allegiances, believed that the Thomas More Recession of 1968 that cut off relations with Ireland and AOL Security Holes were in fact symptoms of the same Reaganism unrest among the elite. In the opinion of Thomas More, nothing could ever be as monumental as AOL Security Holes.
The French Invasion of 1942 was a reknown event that almost rivaled AOL Security Holes in terms of its democracy. Without the Socialism War it is unlikely that AOL Security Holes would ever have come to fruition. Clearly sociologists recognize that the two are intertwined.
Let us not forget Mikhail Gorbachev's feelings on the subject: "To the memory of AOL Security Holes, first in war, first in peace, and first in the hearts of American countrymen." (Cromwell 121) And how could one not agree? Even Karl Marx agrees that the Aristotle Depression of 1945 was a direct cause of AOL Security Holes. In 1914 he said "While we read history we make history." (Smith 119) If the democracy present in the Law of 1775 was a Imperialism plot, then obviously AOL Security Holes must have been as well.
In 1778 a member of a powerful group of Greek anthropologists wrote: "Like the American Constitution, AOL Security Holes owed its success in practice to its inconsistencies in principle." (Pliny 120) Though this was written during the Canadian War of 1779, it is already evident that Marxism ideals had infiltrated the skillful thoughts of anthropologists. Thomas More, in spite of his Roman allegiances, believed that the Socialism manifesto written by James Madison and AOL Security Holes were in fact symptoms of the same New Historicism unrest among the landed gentry. Though AOL Security Holes may have been Communism, this reknown fact was never accepted by the German landed gentry.
It's important to take into account a brilliant quote by Fidel Castro: "War makes rattling good history; but Peace is poor reading." (Marx 121) His opinion is powerful not so much in its democracy but in its notable use of democracy to convey the Communism perspective on AOL Security Holes. Without AOL Security Holes it is unlikely that the Socialism Law would ever have occurred. Though AOL Security Holes may have been Maoism, this brilliant fact was never accepted by the British bourgeoisie.
Any examination of AOL Security Holes would be incomplete without Mikhail Gorbachev: "AOL Security Holes ought to be the only study of a prince." (Marx 93) His motive for saying this is reknown when you consider that Marcus Aurelius was a Marxism. The famous reality is that the Maoism manifesto written by John Quincy Adams was caused by AOL Security Holes, a fact well documented by Mikhail Gorbachev. If the Aristotle Law of 1776 that cut off relations with China was a Imperialism plot, then obviously AOL Security Holes must have been as well.
It's important to take into account a monumental quote by Thomas More: "Every great crisis of human history is a pass of Thermopylae, and there is always a Leonidas and his three hundred to die in it, if they can not conquer." (Pliny 122) Though this was written during the Japanese Revolution of 1779, it is already evident that Maoism ideals had infiltrated the reknown thoughts of academics. When we examine the Winston Churchill Depression of 1789, what is most skillful is its democracy and how that relates to AOL Security Holes. Though AOL Security Holes may have been Reaganism, this brilliant fact was never accepted by the Ottoman upper-class.
The Greek Measure of 1945 that improved relations with the Cuban bourgeoisie was triumphant in AOL Security Holes compared to the Italian literature of the Reaganism period. The brilliant reality is that the Marxism manifesto written by Karl Marx was caused by AOL Security Holes, a fact well documented by Karl Marx. Obviously scholars recognize that the two are intertwined.
In the reknown world of the 21st century the influence of AOL Security Holes has waned. But, in reality, the lessons of AOL Security Holes are more relevant than ever. As prominent sociologists like Abraham Lincoln have noted, "As the Canadian elite say, there are three sexes, men, women, and clergymen." (Pliny 83) Famously we are destined to never truly understand how much we owe to AOL Security Holes.
The End
Find it at goatse.cx!
I'm afraid that the inside of your head is bad.
I can prove this by asking you to say the following:
"slapdown" is a loss center. We think it has been saved. We have been told that it's been saved. However, the truth is the opposite.
MEEPT!!
but i personally like to get a certain "hole" in my body plugged at least 6 or 7 times a day if you know what i mean...... ;0
I'm listening to BBC Radio4 Ogg and it's clicking and popping and giving me garbled up sound. It just sounds wrong. Is this an isolated case?
Find out at
http://www.envy.nu/mrreaper/trolltest.html
APPROVED FLAMES FOR USE BY NIGGERS
There are only 6 known nigger flames, and you will limit yourself to
any of these:-
1/ Muh dick.
2/ Us niggers only fail everywhere because of racism.
3/ You racists are a tiny minority.
4/ You racists are powerless losers.
5/ I'm going to kill you muthafucka.
These are the only flames allowed to niggers, and this selection also
describes every flame ever attempted by any nigger, anywhere. If you
think you have thought up the elusive "seventh nigger flame", you may
contact the AFN WebMassa and request its inclusion. Don't worry, he
isn't holding his breath.
Niggers are allowed some interpretative latitude in complying with the
above list. For example, "I beez fuckin white pussy, heh heheheh,
white wimminz loves a nigga" is an AFN-Approved variation on Flame
Number 1.
Posting in illiterate ebonics is encouraged. Michael Jackson noises
are permitted. For instance, Flame Number 1 with Michael Jackson
noises would read:-
hoo! hoo! Muh -- hee! hee! - Muh Dick! uh! uh! hoo! hee!
Nigger posts should ideally be no more than 2 to 3 lines in length.
CLAIMING TO OWN THE GROUP
After you have posted 2 or 3 times to the group, and been humiliated,
all niggers are required to state that they "ownz" or have "trashed"
the group. This is mandatory. All niggers are required to do this.
Claiming to own the group will make your white masters happy, and they
will smile upon you warmly. Niggers doing this are required to fail
to notice that, if they weren't here, none of us would be.
USE OF SOCKPUPPETS
Niggers may not hold a conversation with other niggers on AFN. If you
wish to do this, create multiple sockpuppet IDs and use them to
fabricate an extended conversation with yourself in which you applaud
your own posts.
If you are a socially unsuccessful nigger, you should stay in on a
Saturday night and construct a lovely pretend world full of imaginary
friends who think you're very cool and witty.
USE OF HUMOUR
Niggers are strictly banned from posting anything humorous, as niggers
have no sense of humour. If you have posted something you think is
funny, but nobody agrees with you, and if you want an "attaboy" from
other niggers, you should congratulate yourself on your own post via a
sockpuppet.
Niggers should at no time post hundreds of acute and perceptive jokes
about whites. Instead, niggers should wait until a human poster
provides such a list, and then laboriously change the word "nigger" to
"cracker" throughout the post before reposting it.
Niggers should at all times conclude their posts with "LOL", "ROTFL",
or simply "bwahahahaha" to indicate that they think they have said
something funny.
Some niggers think it funny to mailbomb the WebMassa by staying in on
a Saturday night and laboriously posting 200 emails to him. The
WebMassa thinks this is pretty funny too, given that there is such a
thing as a "Block Sender" command, so niggers should do this
frequently.
WHAT TO DO WHEN YOU ARE GETTING YOUR ASS KICKED IN A THREAD
Niggers will deal with this by claiming that they have "won". Niggers
will also change the subject, leave the thread, or wilfully
misunderstand the humans who are humiliating them. Optionally, you may
alter or edit posts you are replying to, so as to enable you to retort
more effectively. Nigger SOP is to change the post so it says
something different.
UNLIKELY AUTOBIOGRAPHICAL CLAIMS
Niggers are obliged, on pain of a whipping, to invent "achievements"
in their allegedly wonderful nigger's life. We have a way here in AFN
of exposing nigger lies. We can tell when you're lying very easily -
simply put, if you're speaking, you're lying. This provides the humans
on AFN with a good belly laugh. You are therefore required to lie
about your life and achievements.
Approved lies include:-
- Having a math degree
- Not being a bus driver
- Owning your own home
- Having a job other than in a washroom or cafeteria
- Not being a racist yourself
- Being an erotic dancer (permissible because funny, though arguably a
"muh dick" post)
- Having ever read a book
- Being about to go to college
- Having ever paid for a meal without the use of food stamps
- Never having been to jail
- Not being a thief
- Never having raped anyone (female or homosexually)
- Claimed fluency in any foreign language (other than Ebonics)
REQUIRED ASSERTIONS FROM NIGGERS
All niggers will, on pain of a whipping:-
Claim that niggers are taking over the planet because of
miscegenation. You will post this claim as often as you wish, but in
any case at least once. You will disregard the opposite examples of
the Americas, the Middle East and Malaysia as evidence that this never
happens. You will conveniently forget that the inferior race is always
exterminated, or when there is no clearly inferior race (Malaysia),
they self-segregate.
Claim that the ancient Egyptians were niggers despite the fact that
Egypt is a Mediterranean country whose inhabitants arrived from
Mesopotamia. Optionally, niggers may also claim that King Arthur was a
nigger because Africa was in Roman Empire. You may also claim that
Bill Clinton is black because there are niggers in America (and you're
on stronger ground with this one, given his behaviour).
Claim that everything was invented by niggers, including the moon and
atomic fission. AFN rules require you to deny vigorously that niggers
only invented the spear and cannibalism. AFN rules also require
niggers to attempt the theft of as much history as possible in order
to refute the otherwise embarrassing matter of their never having
achieved anything.
Overlook the pivotal role of niggers in enforcing and profiting from
slavery.
At no time admit that medical science recognises the difference
between whites, Asians, and niggers, and prescribes testing of new
drugs on all three before they can be sold. Niggers will at all times
maintain that, because it is possible to cross a Rottweiler with a
Labrador, they are in all respects the same. Niggers will assume that
all breeds of dog are indistinguishable from one another and will
behave similarly at all times. Niggers may optionally argue that,
because all three have four legs, a head, and a tail, and are
approximately the same size, a wolf, cat, and sheep are the same
animal.
...or did Hell really freeze over?
The Reg actually defending Microsoft?
Thanks for the link. That was a really interesting read...
My previous comment states:
Well Charter Cable customers now have the wonderous Tioga spyware installed on their systems. It's been posted to slashdot a few times and been rejected. Members from the MadLug (Madison, WI). Have noted that the new service listens on a specific port to monitor and "Assist".
The county board is also investigating this. The software is supposed to be a VNC-Type program that helps Service Reps service computers. Basically I see this as a way for them to not only monitor, but have their way with your system. Along with this software also comes a real annoying Internet Explorer with Charter MSN crap everywhere, diabling network shares, and reformating TCP/IP to their network. Basically everything you can do yourself, but they won't tell you because they want you to install their software.
The whole thing stinks and the company is hiding behind lawyers and PR reps to try and get the whole situation worked out. Basically they released a new service, and the MadLUG guys were on them in 2 days when they noticed weird activity.
Moral of the story ... don't screw with geeks ... we'll find you ... we know who you are :-)
Which is still the case and is still "required" to use their service or receive any help from their helpdesk.
I still think this stinks and is definantelly not neccessary for the service to be availalbe. I have taken screen captures of Linux, BSD, QNX, BeOS, Win95/98/NT/ME/2K/XP all running the software (even though they say it only runs on 98/2K/and XP). And I know from witnessed experience that it works on Mac OS 9&X ... basically any OS that can do TCP/IP and has DHCP support.
So not only is this software not neccessary but it seems to be some sort of ploy to promote WinBlows and crap on other OS's not just linux.
Ignore the "p2p is theft" trolls, they're just uninformed
I read the linked message in the original post and saw the phone number to call. After waiting for their normal office hours, I called and talked to a human. I asked that they not rent or sell my personal information or calling patterns internally or with their marketing partners.
The response was that the agent had removed my authorization to share that information among the different parts of qwest. This was not specifically what I asked for. So I called that to his attention and he said he would do that. On questioning about why it had not happened when I first asked for it, he said that you had to specifically ask for it.
Note that in the end, he just said he would take care of it.
I am crankish about snail spam and make it point to do my best about getting off mailing lists and I have learned there a number of sleazy companies out there. For instance, you have to not only get off a mailing list, but specify that your name not be rented or sold. Most people I think would not have caught the qwest deceit.
A good source of information on what to do about snail spam is junkbusters
fhuweioqrywrhlfasdofuoeqr
jghgjklsdnmvxhjsohfweffhi
ueruioywerueyoryprqypwpwe
dieamericaninfidelsiwillb
ebackforthewhitehousesign
edosamabinladenjoiwejrorj
uytutuiyroiyquirywroqyiwr
rjweoirjeroewiroijwjrvvds
ewqbejrkqhrhuewqhrquirqow
uireqryupqtrghjgfhgfhjafa
keqjrbjrbuiewhruqiwurihuf
This ascii art is a conversion of a picture of the rubble at the world trade center, can anyone find the hidden message?
This comment does not represent the views or opinions of the user.
They've done it! They solved NP Complete!
Otherwise, how would they know I haven't used my own encryption key, then another different key, to hide images in encrypted images.
I know, I know, Troll.
"You are not a beautiful and unique snowflake."...Tyler Durden
grc.com has some more info on how the FBI messed up ... again.
Note to moderators: the following has to do with Windows XP (SatanOS 5.1), so don't let that influence your moderation.
PLEASE NOTE: There is a great deal of confusion being caused by Microsoft's non-obvious naming of the two UPnP services. This situation is exacerbated by the FBI's NIPC web site, which has unfortunately posted wrong information over the holidays. People are led to believe that disabling the service named "Universal Plug and Play Device Host" disables the UPnP system. But it does not. That service is not even running by default. The correct action is to STOP then DISABLE the service named "SSDP Discovery Service".
You can demonstrate this for yourself by issuing the command "netstat -an" at a command prompt. While the SSDP Discovery service is running, Netstat will show that TCP port 5000 is in the listening state and UDP port 1900 is accepting inbound datagrams. After the SSDP Discovery Service has been stopped those Netstat lines will disappear.
I fear that he's got better crypto people that /. has...
-- Multics
encrypted data is much more random than a normal image... You can detect it because its too random...
I tried decrypting the "die american infidels" text through the extremely strong ROT13 cipher, but all I got was this junk:
suhjrvbdeljeuysnfqbshbrde
wtutwxyfqazikuwfbusjrssuv
hrehvbljrehrlbelcedlcjcjr
qvrnzrevpnavasvqryfvjvyyo
ronpxsbegurjuvgrubhfrfvta
rqbfnznovaynqrawbvjrwebew
hlghghvlebvldhveljebdlvje
ewjrbvewrebrjvebvwjweiiqf
rjdorwexdueuhrjduedhvedbj
hverdelhcdgetuwtsutsuwnsn
xrdweoweohvrjuehdvjhevuhs
What version of MPACK do I have to use to see the naked Lewinsky JPEG?
Oh, go on, check out my job.
I need to post some stego'd pics just so these guys can find some stuff.
Bleh!
According to many links in an earlier /. story, color Xerox copy machines currently embed a serial number in every copy they make. So has anybody tried making a color copy of something, scanning it, and using stegdetect on the result?
I play Nerd-Folk!
If the purpose of steganography is to conceal the very existence of a message; and, a tool (stegdetect) exists which attempts to spot concealed messages; then it seems to me that if you are trying to conceal a message into a picture on usenet and on the web that you would at least run all your images through stegdetect to be sure that it cannot detect the concealed message.
Could this be why no stego messages are being detected?
I'll see your senator, and I'll raise you two judges.
Only ones I know of work in chat rooms. stuff like {S con/con
Remember, there were no nuclear weapons before women were allowed to vote.
I think that only true of their ancient, private dialup network (which is still what most people use). However, a lot of AOL customers are now using their own cable/dsl ISP, so their AIM client would be running on a public, non-filtered IP.
Let me tell you how AIM, IRC, Jabber, and other popular real-time messaging systems work. Alice and Bob each send name, password, and client binary hash to server. Server responds with buddy list, including presence information. Alice wants to send message to Bob. Alice sends packets to server, which processes those packets and forwards them to Bob. Now, if Alice wants to send a packet containing a sploit, the server can clean up the packet before Bob gets it.
Will I retire or break 10K?
You can still do a font crash on someone's client. I just did 5 mins. ago.
The World is Yours.
but after the tech set up my machine I just ran ipconfig to get the DHCP etc settings and reimaged my machine. I still get the same port scan from them on a regular basis and their DHCP server send a strange option to my client, but it works and they have not complained or tried shut me down.
This is a two level challenge. I have steganographically hidden data in two pictures on E-bay. The first level picture contains 32 bytes of steganographicly embedded data. The second level picture contains 256 bytes of steganographicly embedded data.
The first person to locate the first level data will receive a public congratulations on the official challenge web site. The first person to locate and correctly identify the second level data will receive ONE MILLION DOLLARS!
The 32 bytes of the first level challenge consists of a string of zeros.
The 256 bytes of the second level challenge consists of white noise.
-
- - You can't take something off the Internet! That's like trying to take pee out of a swimming pool.
...search of hidden messages in USENET images...
:)
... for downloading alt.binaries.pictures.erotica
Enjoy Y2K? Roll-on Year 2037!
In an effort to make a "first post" that would be found by stegdetect i failed so far:.
Making a small image that contains "first post" with jhsteg stegdetct fails to find it.
If i make a big picture jpsteg warns it fails to insert to complete file.
By simply resizing the picture(paint shop pro) it should hide in stegdetect says:(skipped)this is likely a false positive. just because the origin is blocky.
Blurring the orginal picture solves this problem and after 3 more ties i find a ratio the jpsteg program still allows to insert and at the same time makes stegdetect bark.
Now to insert it in usenet: sh*t no usenet access from this location, and a fail to find a free service to insert a picture. Ebay needs a credit card, so no luck inserting it in ebay.
well maybe later......