Slashdot Mirror
Anonym.OS a Boon for Privacy Geeks?
The Hosting Guy writes "Wired is running an article about a live CD that makes anonymous browsing easy enough for everyone. 'So easy to use you can hand it to your grandmother and send her off on her own to the local Starbucks.' Anonym.OS makes extensive use of Tor, the onion routing network that relies on an array of servers passing encrypted traffic to permit untraceable surfing."
Has the will to un-molestation finally passed out of mainstream?
Since Slashdot bans most Tor proxies from making comments. Perfect for geeks, eh?
With enough confederate nodes, tor can certainly be tracked. It isn't likely to happen, but it is possible.
A slashdotter who didn't build his own computer is like a Jedi who didn't build his own lightsaber.
This is why co-workers and I have been working on Fappix - The Pornnoisseur Distro. Not only can you browse anonymously but you have several thousand pre-bookmarked pages to choose from in categories ranging from Amateur Nudes to Bukkake Hentai to Puke porn. You have a hankering for some DP? We got it. Maybe a little fisting for those slow lonely nights at home. Nothing but the best for our users!
Never worry about having the correct video codec or player again as they will all be pre-installed! No more waiting another 20 minutes to download and install some obscure viewer just so you can rub on off to Kismet the Albino Sheep Goes to the Circus!
With our patented "Live (Hand) CD" technology you simply boot from the disk and off you go into fantastic realms of spanktacular fun without the worry of spyware, malware, trojans, or incriminating cache files again. You'll never have to blame that spandex scat video on "some spam or something" ever again!
Fappix. The sound of one hand clapping.
Do not taunt Happy-Fun Ball
'So easy to use you can hand it to your grandmother and send her off on her own to the local Starbucks.'
Am I the only one who finds the juxtaposition of these two quotes alarming? I don't want gamgams to end up in the pokey (pun intended) for inappropriate behavior at Starbucks. That would be weird.
Do not taunt Happy-Fun Ball
I don't get the whole Tor thing, nor do I get running a Gnutella or Freenet node. The thing is, if you use or contribute to these anonymising services, you might think you're anonymous and safe, or that you're doing a great service to freedom of speech, but the real thing you're doing is plastering a big "I have something to hide, like trading kidding porn" sign to anybody willing to trace your communications in the first place.
Sad but real.
"A door is what a dog is perpetually on the wrong side of" - Ogden Nash
my grandma is dead you insensitive clod!
I've been very interested in the world of anonymous information sharing -- possibly as a replacement for the normal IP-based Internet. Maybe someone out there can answer a few questions:
1. What are the theories behind simple anonymous sharing of data? (I know there are newer versions of P2P beyond Torrent that allow for a third party mediator between two anonymous parties. This seems like a start to making a truly free-speech undernet.)
2. Is it possible to completely diversify the Internet away from IP-based hosting to a new swarm-network of anonymous users all hosting little pieces of various forms of information? 2b. Is anyone working on this swarm idea?
3. As information becomes more accessible, will the need for information privacy be important? 3b. Is it more important to create a totally anonymous information sharing network than it is to work on harder to break encryption schemes?
So easy to use you can hand it to your grandmother and send her off on her own to the local Starbucks.
... (pause)...
Fantastic! I've always thought copious amounts of caffeine and an anonymous method of browsing for porn were meant for ubergeeks like myself, but now that my *grandma* can do it as well, that's just fantastic!
OH GOD, MY EYES!!!
My understanding is that Starbucks and other places use unsecured, unenrypted wireless networks - so that anyone can get on without much hassle. Is there really any way to have reasonable security over one of these networks? Is there really a way to ensure (or at least be pretty sure) the guy with the laptop on the other end of the shop isn't picking up my passwords and info when I connect to such a network?
You might think from the daemon logo that it is a FreeBSD-based thing.
It isn't -- it is OpenBSD-based. So you'd figure the encryption would be top-notch. Also the OS is already very secure. That's what they focus on, to the exclusion of other things.
OpenBSD is quite reliable. If it includes drivers for hardware, they work.
Also, they only use code that they can look at. No blogs of code (like Linux or FreeBSD) are allowed. That's because if you can't inspect them, the NSA or an attacker might have put some bad code in there. It is because of things like this that Theo De Raadt won a prize from Stallman for his contributions to free software.
http://www.thebricktestament.com/the_law/when_to_
Not really true is you're using TOR and a proxy. It'd be hard as hell to trace. But maybe so if you're running a TOR server (an outlet for other people's anonymity). That's why there are a hell of a lot more TOR users that don't also run servers. That's also why TOR is virtually unuseable (it's dial-up speed, when it doesn't time-out altogether).
I don't respond to AC's.
I know people who outright refuse to use tor because the navy and military had a major hand in tor, and before some retard goes off trying to make himself look cool and get modded up for saying "well the internet was created by the military" that was arpanet, not the internet, the internet came together when the arpanet, and various service providers merged together and everyone else joined. plus, tor isnt a medium, it's an anonymity service, however, no doubt that some of these onion routers are military run or nsa run. thus they can track who uses their routers. So you're not completely anonymous where it counts, nor are idiot wannabe terrorists who will prolly use disks like these to send messages over the net.
I'd check on these projects every few years, until finally, I sorta gave up on following them. They seemed to stagnate, never getting beyond the fringe.
A year or so ago, I wanted to the utilize mixmaster remailers, and I *still* wasn't able to find an up-to-date, lucid HOWTO or a client that didn't require a *lot* of work to use.
I haven't actively sought these tools in a while, so maybe they've caught up. But I keep my ear to the wall, and I have yet to hear any murmers of good anonymizing technologies, nor do I ever see any passing references to people using them.
I have assumed that the movement is either dead (nobody cares anymore) or ubiquitous (it's common knowledge and no big deal). Somehow, I kinda doubt it's the latter.
I've been toying with an idea for a site/system in the spirit of the Mixmaster remailers, but I want to be able to evaluate the current technologies before I totally re-invent the proverbial wheel. (Plus, I wish to be as anonymous in the registration and publication of the site as possible). I'd *love* some pointers.
Method of processing duck feet
If you thought Tor was slow now, just wait until the slashdotters start playing around with this!
Most linux users don't know this, but the man pages were named after Chuck Norris. Chuck Norris fsck'ing hates noobs!
Thats not why, its because a few of us up here feel that you're being given too much exposure on the site and we need to consider alternatives. So please don't complain, its a community, remember.
- it's ScuttleMonkey of * * Beatles-Beatles fame;
- digg-derived article-whores are legion.
You should have honed your celerity after all that FP-dom.IMO, using PGP will make the NSA want to read your stuff.
You have the right to pamphlet anonymously. You have the right to use the internet to do it. You should be able to criticize the government without worrying about anyone getting revenge on you. I totally agree that the Patriot act goes way too far. By removing our basic freedoms, George W. has given the victory to the terrorists. We should be fighting to preserve our freedoms, not giving up our freedoms to fight the terrorists.
The fact that a bunch of sickos use this technology to be perverted does not mean that the rest of us should not use it. If you care about your freedom and you don't like what is going on then you can use it to safely make your complaints heard.
And thank God..... instead of trying to win a losing battle against privacy loss it would be better if we put our energies into making a completely transparent world. Information wants to be free, deal with it.
In Minnesota, just having PGP on your computer is evidence of criminal intent.
Welcome to the land of the free...
...Rob
The American Dream isn't an SUV and a house in the suburbs; it's Don't Tread On Me.
I was sympathetic when I read your post, but then I scanned up to your name, and I recognized you. I agree with the first AC in this. If I had never heard of you I would have agreed, but you're a minor celebrity on this site, and although that's something to be proud of, it is to some extent a bad thing for the community at large.
The value of this site, besides the rare funny joke, is that in a community of 500,000 or so geeks, for each small niche there is a geek for whom that is his focus. He then posts insightful comments and gets modded up.
Don't get me wrong, noteworthy posters on this site can be a good thing, but someone who has something to say about everything (I won't name names but you can check my foe list for names you recognize to see what I'm talking about) actually dilute the SNR on this site.
Again no offense, and I do appreciate your posts, this is just a generalization about this site.
Synergy is your friend
The idea that one might live one's life in private and without fear of molestation is a *very* recent phenomenon. It's not passing out of the mainstream, it never quite arrived there.
The right to privacy is a post-war interpolation from the set of Constitutional rights. It was hardly a consideration before single-family households became common beyond the elite classes consequent to industrialisation. The very idea of private life took meaning from the distinction to be drawn between the public and private duties of the landed gentry, whether he was acting as public judge or administrator of his chattel. The idea that citizens required more privacy than that demanded by Christian modesty simply did not occur. It is only in the last generation that anyone became actually interested in the details of your private life. Before the information age, such trivia had no value beyond the prurient, of interest only to busibodies and the beat cop; again, unless you were a name.
illegitimii non ingravare
Havent you heard? If you have nothing to hide, you shouldnt be hiding.
What are you, a terrorist or something?
---- Booth was a patriot ----
I'll believe it wen I see it.
Like, have they downloaded/posted credit card numbers, kiddy porn, terrost plots, maybe post a promise to kill the president, and customized ones for several western and radical countries? Maybe send death threats to the head of the CIA, FBI, and NSA? Maybe the russian mafia? Maybe the israli secret police?
If people start getting away with those kind of things, then I'll conisider it.
Since when does starbucks offer computers to use?
---- Booth was a patriot ----
The cypherpunk movement is dead. Just scanning the slashdot comments and reading all the "If you don't have anything to hide, why are you concerned?" posts makes that obvious.
At one point in Internet history, we (the libertarian/anarchists/cypherpunks) thought it might bring a new era of freedom. BBSs had given us a taste, and many people expected the Internet to be like a huge BBS, with everything you could imagine on it.
And it was, for a while.
Then some copyright lawyers started jumping on board, and harassing lyrics sites.
The Scientologists started suing people left and right.
Spam started snowballing.
MP3s cause the record companies to start wishing people were only trading lyrics.
Late 1998 though 1999 was the high point I think. Geeks were Gods. Stories of geek millionaires were all over the place. The US finally watered down the stupid crypto regulations. Things were looking up.
Then the Columbine shootings happened.
The 2000 elections brough all kinds of leftists out of the woodwork. Remember Nader? He sure got enough astroturfing here on Slashdot.
The so called "anarchists" get all over the news acting like total fuckwads at WTO "protests".
The WTC attack caused all the people with comfortable lives that liked to think they were cypherpunks to turn. Pull up some stories from Slashdot on 9/11 and 9/12 and see how many people were so willing to offer up the liberty for a slice of security. PATRIOT act flies through with little hassle.
News media reduced to saying things like "Some civil libertarians have concerns" instead of "What the fuck are they thinking?"
Scam artists hiding behind patent law started really milking it.
So you have left what you have today. An environment where you can't really do anything without the risk of lawsuit or arrest. I see things slowly shifting back toward the side of freedom, but it's been a slow recovery.
If Steve Jackson Games Raid happened today, would people be outraged enough to form something like the EFF? I doubt it.
I've had enough abrasive sigs. Kittens are cute and fuzzy.
And thank God..... instead of trying to win a losing battle against privacy loss it would be better if we put our energies into making a completely transparent world. Information wants to be free, deal with it.
Hey, can I have your Social Security and bank account numbers?
What do you mean, "no"? INFORMATION WANTS TO BE FREEEEE!!!
They know who has downloaded the LiveCD. That is unless you download it once, and then download it while running it. Yes, that's real simple. Let's do that.
into your own server somewhere else, then browse from there.
Oh well, what the hell...
It hasn't completely fizzled and it hasn't become 100% user friendly. But we at anoNet are trying to make it as newbie friendly as possible.
-- http://anonet.org -- The internet the way it was meant to be. Check it out, you may be surprised.
there is no text, there is only zul
Absolutely - who needs booth babes and Rob Enderle when you can just slap Bin Laden's endorsement on it?
The following was posted on the tor-dev list last week...
Versions affected: all stable versions, and all experimental versions
up through 0.1.1.10-alpha.
Impact: If you offer a Tor hidden service, an adversary who can run a
fast Tor server and who knows some basic statistics can find the location
of your hidden service in a matter of minutes to hours.
Solution: You have three options:
1) Upgrade to Tor 0.1.1.12-alpha from the Tor download page [1]. You're
all set, though be aware that this is an alpha release so there may
be other bugs. You may also want to look through the release notes [2].
2) Turn off your hidden service until the final 0.1.1.x release is out.
It may be several months.
3) Stick with Tor 0.1.0.16 and manually configure a half dozen
EntryNodes. See the FAQ entry [3] for some hints about how to do this.
For details, click on the original posting.
Untraceable Hardly. Pehaps a little quote from the Tor Project home page is in order to put things in perspective:
And remember that this is development code--it's not a good idea to rely on the current Tor network if you really need strong anonymity.
I would equate untraceable with some damn strong anonymity, which Tor clearly does not yet offer. Non-buyer beware! ;-P
foner.www.media.mit.edu/people/foner/Essays/Civil- Liberties/Project/supreme-court-upholds-anonymity. html
The supreme court says anonymous political speech is protected by the first ammendment.
Try my FireFox extension. It has DES encryption that can be used for email clients, forums, etc. Any text or binary actually. It is true that the other party has to know what password you used for encryption, but that can be agreed upon.
You can't handle the truth.
Another thing wrong with the story is that they didn't post a link to the CD: Anonym.OS LiveCD.
That's the first time I've ever known a Slashdot editor to be sloppy.
I stopped using TOR when I discovered the name of one of the common exit nodes. I forget exactly what it was, but I kid you not, it was something like "datapirates.org".
That's the remaining gotcha that can reliably get you ID'd.
--- Grow a pair, liberals... stop letting the Republicans bully you!
I still think "I took the initiative in creating the Internet" is more concise and more inept :)
I couldn't find a torrent link in the comments, so here is one:= anonymos-shmoo.iso.torrent
http://linuxtracker.org/download.php?id=1249&name
175seeds to 700peers as of 6:53PM MST
Mod parent (-1, Horrifying)!
I haven't actively sought these tools in a while, so maybe they've caught up. But I keep my ear to the wall, and I have yet to hear any murmers of good anonymizing technologies, nor do I ever see any passing references to people using them.
There's your problem. You are supposed to put the glass to the wall and your ear to the glass.
meh
All those numbers, and many more interesting ones, can be found in this number. You may wish to eliminate the unnecessary digits in order to make the information more useful.
"untracable" is a myth, anyone who has the money and the know how and the technology to waste on looking up someone down a long line of nodes can do it
portfolio
That is what the Mediacrats have been saying about the Republicans for years.
(One reason I stopped contributing to Wikipedia: members of that community love to use the word "neologism" but obviously have no idea what it actually means.)
Anyway, geekhood is hardly fringe. A geek is just somebody who has an unusual interest in technology. Geeks constitute a special community with their own interests, priorities and jargon, but the same can be said for Freemasons, Realtors, and NASCAR enthusiasts — none of whom count as "fringe".
Besides, a "privacy geek" isn't just somebody who cares about privacy, any more than anybody who uses a computer is a "computer geek".
I once had a story in "Pending" state for TWO MONTHS, until it was finally rejected. Your submission will probably be the dupe of this story in a few days.
Why it cannot d/l? It is anonymous in the net?
Just by running a tor node, you get the oppertunity to collect login+password information for any non-ssl site tor users log into. You also get to see cookie information to boot. Hey, at some point, the traffic has to exit the tor obfuscation network, and if you run a node, you're going to get a bunch of that traffic. It's only a matter of time.
That's why I refuse to use "anonymizer" networks like tor. You can't even login to your damn webmail, without giving away your account information.
Please help metamoderate.
Dude, you are taking this shit way too seriously.
Turn your computer off, get out of the house, have a martini and talk to someone. You'll feel a lot better when you realize that getting your slashdot submissions accepted (or getting first post or what have you) is really not very important.
Shouldn't you be doing something useful?
Steve Jackson Games
EFF's SJG Archive
SJG's Opinion of the whole thing
In short, the Secret Service knocks over a game publisher (micro-TSR-style games, such as Illuminati) and attempts to prove that D&D'ers taught David Lightman how to use a Shlitz pulltab to hack into the 911 system. Courts decide Secret Service was completely unjustified, award court fees to SJG. The legal team/computer activists that coalesced around the issue became the EFF.
Don't blame me, I voted for Baltar.
as well as the predictable bunch of random fuckwads, probaly deliberately and systematically undermined by just the types of well-organised fuckwads whose system of self-gratification is threatened by just the types of systems you mentioned.
You didn't mention the large amount of abuse of these systems by criminal elements, and the large amount of publicity some of these generate. This is likely to be well staged simulation by organised law enforcement -- who of course only remain in work if society continues to feel threatened. Law enforcement justifies this because they can't catch the real criminals, but society needs to know what's out there, so we'll stage something. (I incude stings in this).
Of course this is just the type of conspiracy rant that makes people reject privacy and anti-cencorship types, so by posting it I am defeating my own argument, being in the random fuckwad category. Trust me on this one, its no bs. Oh guys, if you come knocking, I was just stoned and this is crazy paranoid shit, so don't bother. I always relay my posts through some shuck anyway. The only anononimity is the one you make for yourself now. Get busy.
Who were the first people to be arrested and killed by the Nazis? The intellectuals.
How we know is more important than what we know.
[Grandma] Where's the blue E?
[me] There's no blue E grandma, click on the orange and blue ball.
[Grandma] What does "Server not found" mean?
[me, muttering...] fsck'ing TOR timeouts
[Grandma] What was that again, I couldn't hear you.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
Can't someone make this all a firefox plugin, please? And also put in some feature that blocks all those known trackers such as google-analytics. Currently I have to edit the host file and add:
127.0.0.1 ssl.google-analytics.com
127.0.0.1 www.google-analytics.com
But for sure there are others out there.
boo hoo, somebody might listen in on your messages informing others how '31337' you are, because you installed a Windows service pack.
r FAQ#head-5e18f8a8f98fa9e69ffac725e96f39641bec7ac1
Seriously, though, RTFM. This is answered in the Tor FAQ: http://wiki.noreply.org/noreply/TheOnionRouter/To
The fact that a bunch of sickos use this technology to be perverted does not mean that the rest of us should not use it.
And here is the problem.
There is one major reason for anonymity. It prevents the tyranny of the majority.
Without anonymity, it is possible for existing memes to suppress other memes before they have time to grow. The argument for anonymity is that these ideas may be worthwhile, but can be killed before having a chance to spread.
The cost to you, of course, is that even those memes that you carry that are *overwhelmingly* dominant in the general population cannot be outright suppressed by that general population. The typical American probably carries memes that oppose Nazi beliefs, oppose challenges to Christian values, oppose polygamy, and oppose pedophilia. All of those ideas, however, can grow in an anonymous environment, as long as they are convincing enough. Anonymity allows each person to make their own decisions about what memes they want to buy into, without society being able to simply suppress ideas.
Anonymity sounds good, but you have to consider that for this to necessarily be good, each person has to be rational and informed, which isn't the case -- the question is whether or not people approximate that closely enough.
There is one other problem it brings in. Government mostly exists to solve public good problems -- things like laws preventing people from littering. There are a number of public good problems associated with published information, such as how to fund the creation of that information. We currently have a concept of "intellectual property", where knowledge distribution is restricted, and knowledge creation gets funded by people who must pay for a copy of that knowledge. This is certainly not the only approach to solving the problem, but it has more-or-less worked for a number of decades. An anonymous environment allows redistribution of information, and puts a large hole in the concept of intellectual property.
If you want to have a practical arguments for widespread anonymity, you need to also answer some questions about how knowledge creation is going to be funded, and whether you are comfortable living without the suppression of challenges to mainstream memes. These are not unanswerable questions -- you can centrally fund the creation of knowledge, you can fund it with tips, you can fund it with grants. You can choose to simply accept never being able to completely quash ideas that you find distasteful. Anonymity has both helpful and harmful sides, and the two are inextricably linked.
Any program relying on (nontrivial) preemptive multithreading will be buggy.
The so called "anarchists" get all over the news acting like total fuckwads at WTO "protests".
As an anarchist, somebody who was at the WTO protests, and someone who strongly supports online privacy and the cypherpunk perspective, I'd like to ask what the hell you're talking about?
The WTO protests was one of the biggest events of the late 20th century, it was part of a snowballing effect against corporate globalization which stretched from all points on the globe, and culminated in events such as the uprisings in Argentina and the Zapatista march on Mexico City.
In what way are the WTO protests, which were centered around deconstructing corporate control of our lives, including information and it's free flow, counter to the cypherpunk position?
"The 2000 elections brough all kinds of leftists out of the woodwork. Remember Nader? He sure got enough astroturfing here on Slashdot."
leftists? nader?
this makes no sense
a malicious server can reveal that you are surfing for child porn while a malicious user can reveal that your site is distributing bomb-making recipes with no need for the points in between the two ends to break the communications encryption.
This only works if the tattle-tale knows how to find you.
With TOR, a malicious host doesn't know your IP so all it can do is reveal {someone exiting the TOR network at IP address x.x.x.x at time t accessed my site}.
With current web browsers, a malicious user CAN tattle on you because he knows your URL. However, you could theoretically design an "alternate internet" which forced all users from the "regular internet" to go through one of a relative-handful of entry points, with the "decoding" of the "address" done in such a way that having the "address" is useless to an adversary bent on taking the site offline. Sort of like what happens inside of Yahoo and other high-volume or firewalled sites except with subpeona-proof stealth: Which particular computer www.yahoo.com happens to be for you at a given moment in time is not "public" information, even if you do have the IP number.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
'So easy to use you can hand it to your grandmother and send her off on her own to the local Starbucks.'
I don't want my Grandmother using a computer.
doing things that anarchists do, such as disobeying authority (sometimes violently, which makes for good TV and bad press)
he's accusing people in your movement of undermining your own position by attracting negative press
Ok, I've tried Knoppix. I understand the appeal. And tonight, I booted up another CD-ROM based usable OS, Anonym.OS. It's a great idea. But it suffers from the same problems that every live CD I've used does: it's slow as molasses to load and every action foreces a read from the CD-ROM. Going to a web page? Cool, let me think about it for 45 seconds or so while I read from the CD. Oh, scrolling within a page? Wait, let me read. Starting an IM client? Ok, please wait about 2-3 minutes.
It'd probably be much better to put these live cd distributions on a USB 2.0 flash drive. It'd be faster, certainly.
cheers friend, same here. also hit a couple of the DC protests on anti-war, inauguration, staged some useful local protests. im an east coaster. check out "the world can't wait" http://www.worldcantwait.net/ which is the org im working with mainly these days.
What are you saying? Is this like... better than the "Post Anonymously" check box and stuff?
Does this rag smell like chloroform to you?
The WTO protests was one of the biggest events of the late 20th century
Sure. I am sure that in fifty years it will be right up there with two world wars, a cold war, various civil rights movements, the rise and fall of communism, and various middle-east conflicts. Anarchists of the early 20th century were more significant than you or or compatriots will ever be.
[...] it was part of a snowballing effect against corporate globalization which stretched from all points on the globe, and culminated in events such as the uprisings in Argentina and the Zapatista march on Mexico City.
Yeah, and how did that zapatista march turn out in the long run? I hear the subcommandante is out touring again now that he realized his fifteen minutes were up and that the turnout is rather pathetic so far...
As an anarchist, somebody who was at the WTO protests, and someone who strongly supports online privacy and the cypherpunk perspective, I'd like to ask what the hell you're talking about?
His point was that people who are interested in 'internet freedom' (I am not familiar with 'cypherpunks' although I assume they hold ideals similar to EFF) are not necessarily left leaning when it comes to globalization (I use the term 'left' loosely here).
In fact, I would go far enough to say that minimal-government types (libertarians, right wing economics etc.) are just as concerned over privacy as left leaning types are.
In conclusion, I am sure most of those on the right, who are typically pro-globalization, would not like to be associated with some of the rubbish that occurs during a typical WTO protest, whatsoever.
I've just updated the kaos.theory blog with some further information about Anonym.OS and some responses to blog, article, and comment criticism:
http://theory.kaos.to/blog/archives/2006/01/17/kao stheory-responds/
First of all, I'd like to take a moment to express, on behalf of kaos.theory, how excited and flattered we are by all of the attention that we and Anonym.OS have received. We always thought we were working on a cool project, but we really underestimated the overwhelming response that we've had. Scores of terabyte upon terrabytes of data have flowed and the hit counters keep on ticking. It appears that privacy is as big of a concern for a large segment of the population as it is for us.
That being said, there have been a few comments made and viewpoints published that we would like to address while we have the bully pulpit provided by the good folks at digg, Slashdot, Reddit, Wired News, and Ars Technica, among others.
USB
In the article written and posted at Wired News, Ethan Zuckerman makes the excellent point that rebooting really isn't an option for many living in oppressive, hostile regimes. Additionally, Mr. Zuckerman suggests the use of a bootable / emulated Anonym.OS environment available from a removable, USB key chain device. This is a feature that we have already incorporated into our road map and that we hope to release very soon.
For now, we need as many people as can reboot or run a session in VMWare / Virtual PC / QEMU to please please please test our release. We're not at 1.0 yet, contrary to some postings and articles. Our hope with this release is to solicit feedback from the community concerning features, bugs, and suggestions for everything from desktop wallpaper to file system optimization. Immediately after the Shmoocon talk, all of the members of the group happily fielded questions and comments from audience members that included many suggestions that we intend to incorporate quickly. This type of candid environment is one of the many traits that make Open Source a success and it's what we need in order to keep Anonym.OS growing and on a positive track.
The "China Problem"
Some have asked how we intend to deal with the "China Problem," which could be rephrased as, "What can Anonym.OS do to protect a user against a monitoring party who owns the entire network that the user is using?" Ultimately, this comes down to the ability of the user to utilize covert channels for escaping the network and reaching tor servers. If the party controlling the network is serious enough about its desires and goals in censoring its users, nothing can stop them from implementing a white-list only policy, effectively blocking all tor traffic as well as access to proxies and other tools used for evading filtering.
With those concerns in mind, kaos.theory will be working towards and automated egress filtering evasion script for use in conjunction with Anonym.OS. In terms of the "China Problem," this may not offer much as it will most likely require a "trusted friend" on the outside of the hostile network. In terms of a restrictive corporate network, this could be a viable solution. Again, however, these "covert channels" will likely lead to a ridiculous number of anomalous packets coming from a system (who really makes 25,000 DNS requests in an hour, anyway?) and thus are not a bullet-proof solution.
This is a staggering issue, and it's not one that's answerable entirely by technology. If a country or company chooses to restrict access for its users, and the entity is really serious in terms of throwing resources at the problem, there's not a lot we can do from the client-side.
The Naysayers
There have been two strains of objection to the project, one classical and the other uninformed. The former line of argument goes that we're simply enabling criminals to hide their illegal activities and, as suc
You're MAC address isn't used outside of your subnet.
I've heard (privacy-invasive) proposals for ramming it into the low bits in an IPv6 address.
Any program relying on (nontrivial) preemptive multithreading will be buggy.
Good comments. You only forgot one thing: "MP3s cause the record companies to start wishing people were only trading lyrics." Not anymore, the news lately has been that they are going after lyric sites now too. Threatening to sue unless they take down lyrics (dont ask me how a lyric site survives without lyrics).
And thank God..... instead of trying to win a losing battle against privacy loss it would be better if we put our energies into making a completely transparent world. Information wants to be free, deal with it.
That depends on the information. When I submit a post to Usenet or upload a page to a public web server, I realise that anyone is physically able to download, copy, plagiarize, comment on, or do anything else with that information. Fine.
However, when I send someone an e-mail or use my debit card to buy something from a secure web site, I'd rather it was sufficiently encrypted so that no one would be able to take that information and use it for their own purposes.
And when I'm posting something on a public system such as Usenet, there are still some situations where I'd rather do it anonymously, or using a pseudonym that I'd rather wasn't tracable to my regular identity. This would apply to citizens speaking out against oppressive governments, whistleblowers who don't want to get fired, consumers speaking out against lying corporations that constnatly sue over libel, abuse victims offering their empathy to others, and probably lots of other things I can't think of off the top of my head.
A preconfigured VM for this player would be nice. Then you could use the secure enviroment if you are e.g. at Starbucks and go the normal way, when you are in a secure enviroment. Does anybody know if this already exists?
I love the IDEA of Tor. I also love the idea of FreeNet. Neither one seems to work at all well (or quickly) in their current iterations however. Until these things are solved, for most people the trade-offs are just not worth it. Especially when so much is achievable under the mere guise of the millions of people involved. Until the RIAA hires MILLIONS of lawyers to sue MILLIONS of customers per year, people won't mind thumbing their nose at them and playing the numbers game. The same is CERTAINLY true for surfing and IM.
rhY
I hold very few opinions. I hold information based on observation and fact. If you wish to disagree, please use facts.
Wow! DES! I'm trembling in my boots!
I'm running it now. I can understand why it won't actually load any pages (we've slashdotted the tor network), but it makes my Athlon 3200+ feel like a 386-16 running windows 2000. It takes about 5 minutes to open a web browser, 2 more minutes to display the readme file from the HD, and another 2 minutes to let me select the address bar.
This thing is totally useless, not worth the CD media I burned it to.
To make things worse, it detected my Radeon card and said it's using a Radeon driver, but I've got a 640x480x16 display. Once again, useless for web browsing.
I was making a sarcastic joke. ( designed to make people think )
While i agree with you totally in concept, you didnt see the sarcasm in my post.
---- Booth was a patriot ----
Cypherpunk isn't dead - it just smells that way.
The video conferencing and internet voice programs back in the 90s didn't really take off (remember ICU?). This was not because it was a bad idea, but simply that bandwidth and communications technology still had some time to go before VoIP became feasible.
Anonymity software suffers from the same problems. There's a large bandwidth and latency overhead, and the technology is currently in a premature state. We're seeing a lull in anonymity networks, just like there was a lull in VoIP.
It might seem presumptious of me, but I have some solid reasons for believing this. Firstly, there are a number of online applications that have a theoretical upper limit on how much network resource are needed. Taking VoIP as an example, you could continue increasing the quality of the voice line, but beyond a certain point this gets less and less important. You don't need audiophile quality on your phoneline.
As bandwidth outstrips need, and VoIP technology becomes more widely available, anonymous VoIP networks will become more and more feasible. And, indeed, you can apply the same line of reasoning to any service limited by the resolution of human senses. This doesn't guarentee a rosy anonymous future, but it does make it more likely.
Judging by your low ID number, I look backward with fondness at a time when that sig was current. Speaking as one who built every computer in his house...
the system is designed to look like Windows XP SP1. "We considered part of what makes a system anonymous is looking like what is most popular, so you blend in with the crowd,"
SP2 is still not "the crowd"? Why, I'd never...
While the intent of this project is very good, and I hate to pick holes ....here's one for the ultra-paranoid:
..[whoops, maybe too late], but this is a significant problem that I've come across personally when considering a "privacy" geared livecd. You place a lot of trust in the person(s) packaging the distro unless you pretty much compile the whole thing yourself.
Do you trust the precompiled binaries on the livecd ?
Sure, the OpenBSD source is available for you to comb over for backdoors & sniffers etc, but how do you know that Anonym.OS was compiled using that exact same source code ?
Maybe comparing hashes of the binaries to the offical OpenBSD versions would be a good start, but there are various reasons why this will only get you half way to validating that the build is kosher
I'm not even beginning to suggest this work is trojaned or anything - the last thing I want to do is spread FUD about something this cool and useful
One solution (which is very time consuming, and already dated), is the Trusted Build Live CD (TB) by the Hacktivismo group. It is basically a cookbook for rolling your own Gentoo livecd, with some tailoring for anonymity related applications like Tor (AFAIK, it doesn't do the nice packet filtering that Anonym.OS does, however).
While you are correct that "the Internet" (by which I take that you mean TCP/IP) is an end-to-end protocol, email is not. It's a store-and-forward protocol, which means that you are potentially leaving a copy of your message at every intermediate point along the network, and assuming that the servers will purge that message later without allowing anyone to read it.
In fact I wouldn't liken email to regular 'snail mail' at all. It's much more like the old Western Union telegram service. You prepare your message and give it to someone who transmits it to someone else, who copies it down, and then passes it off for delivery to the recipient at some later time. People trust email because the machinery isn't very visible, and the whole thing seems very direct; the telegraph system in contrast is rather obviously not private even to someone unfamiliar with the technology because of the human interaction involved.
People have to divorce the idea of "no human interaction" from "privacy." Just because a system is automated doesn't mean that you should have or make any assumption of privacy. You have no way of knowing whether the recipient's mailserver is retaining copies of all their messages, or forwarding them to a third party, or many third parties. In fact in many corporate environments it's safe to assume that all email is being saved (although it's probably not being looked over immediately by a person) for a number of years -- yet because there's no obvious and constant reminder of the openness of the system (i.e. the telegraph clerk) people forget that it's not private.
As much as I despise the law in its current incarnation, I think the DMCA is an interesting model for the future of privacy in the digital age. If you send unencrpyted conversations over the wire, using any communication model where the messages do not flow directly from one client to the other over TCP/IP (or other network fabric which is commonly known to be end to end, or where the message is not stored and forwarded as a whole, e.g. only as packets), then there should not be any assumption of privacy. The exception is if the owners/operators of all the intermediate servers used in the communication (email servers, IM relays) have explicitly agreed not to retain copies or otherwise retain traffic. (In which case if they do retain copies, it becomes a breach-of-contract case.) If you desire any privacy, either use an end-to-end communication model, which could be as easy as clicking on the other person in AIM and choosing Direct Connect, or use some form of encrpytion on your messages. I don't care if your "encrpytion" is ROT-13, just something so that the person doing the interception has to expend some amount of directed effort to read your message, and that they know the contents were sent with the assumption of privacy.
By encrypting the message you as the communicator are attempting to create a more private channel of communication, and it means that to read your message, someone has to purposely decrypt the message and therefore cannot defend themselves by saying that the message was not sent as a private one. In the same way that the DMCA makes it illegal to circumvent a device meant to protect copyrighted data, a new privacy law could make it illegal for anyone to decrypt a communication that they are not the sender or intended recipient of, without due process and authority (e.g. warrant, or existing agreement with one party).
The point is that nobody with a basic understanding of the technology makes the assumption that email or instant messaging is private; although I understand the feelings of people who don't want privacy to be an "opt in" deal, it's also fair that people should have to take a certain amount of responsibility and consideration of how they communicate. If they desire privacy, it's easy enough to do. What we need to do is make sure that we have a legal framework for protecting people, once they make the decision to attempt to secure their channels of communication, so that there is not an open 'arms race' that will leave all but the most technically adept behind.
"Ladies and gentlemen, my killbot features Lotus Notes and a machine gun. It is the finest available."
known troll or not, if a comment is worthwhile, it should be modded up. Also, you can't really take fault in him being a Microsoft Apologist, i mean it's not like Bill's a Nazi or anything.
The Nazis went after intellectuals that they thought were not "useful" to the society they wanted to create, or who espoused views contrary to them.
If you were a philosopher with any sort of leftist tendencies, you were probably in trouble; if you were a philosopher who could somehow come up with a nice explanation of why the Aryan race was inherently superior to all others, you were probably safe.
As long as it was constrained within political doctrine, the Nazis tolerated -- some might even say encouraged -- 'intellectual' pursuits, although one could argue that they were motivated almost entirely for political or social reasons rather than the pursuit of knowledge. In particular, I'm thinking about Ernst Schäfer and the "anthropological" expedition to Tibet in 1938.
Although I'm not particularly familiar with the Bolsheviks and the Russian Revolution, I think it could be said that the Soviet Union throughout much of its existence was much the same way -- 'anti-intellectual' in the sense that only the explanations consistent with political doctrine were acceptable, and anyone espousing ideas other than that ran the risk of ending up in a gulag or a shallow hole, or at the very least of losing their position/tenure/etc.
When I think of true "anti-intellectualism," the most extreme example that comes to mind is the Khmer Rouge in Cambodia, and the wholesale liquidation of basically the entire educated populace.
"Ladies and gentlemen, my killbot features Lotus Notes and a machine gun. It is the finest available."
On the other hand, wandering the public internet is akin to strolling in the park or mall, where one would not expect privacy to be guaranteed... and the officers of the Ministry of Love happily exploit that expectation.
I don't know about you, but I always use the back paths at the parks so as to maintain secrecy. Like the old saying goes, "I've loved the same woman for twenty years. Hopefully, her husband never finds out." Depending on how your park is built (similar to how a particular network system is built), there may be different levels of available secrecy. Central Park in New York, there's sections of trees and the like where it's just you and the muggers. Central Park in Ashland, KY is all wide-open spaces with no real cover, so you'd have to go with the mask idea. Sure, you're extremely conspicuous, but no one knows it's you.
This sig has absolutely no significance and serves only to take up screen space and waste the time of the reader.
"your" is possessive.
"you're" is a contraction for "you are".
The Iridium system is for mobile voice and data usage, not fixed data service like the GP was speaking about.
You're correct that it's two-way, however it's a very different style of system. Iridium uses a constellation of 66 low-earth-orbit satellites (similar to how GPS works) and small handheld transcievers; satellite internet is much more like satellite television: "pizza box" dishes aimed at geosyncronous satellites (much higher orbits than the LEO Iridiums) that just bounce a signal from the remote earth station to a gateway somewhere else. The Iridium system by contrast features satellites that actually talk to each other, and relay a signal down to the ground station.
Iridium allows for very compact devices, typically battery powered, and worldwide availability, but low bandwidth. Satellite internet requires more hardware and requires a directional antenna (i.e. dish) but provides much more transfer.
Trust me: you wouldn't want to try and bittorrent the latest "24" episode via your Iridium phone. Neat as the system is -- and I think Iridium is cool as hell -- it's not high-speed internet.
Two-way, high speed internet via satellite is the stock in trade of Starband, you can read a very vague "how it works" article here:
http://www.starband.com/whatis/howdoesitwork.asp
"Ladies and gentlemen, my killbot features Lotus Notes and a machine gun. It is the finest available."
How do you think the police would react if you, a private citizen, set up cameras recording all of their officers as they left and returned to their station. You would deploy robotic cameras to follow them on the public roadways. You'd correlate this video with officer names and pictures and store it in a database, which you'd sell to anyone who would pay your price. I don't think they would permit you to do it for long
...
You mean like COPS??? Yeah, they dont like it a bit... Actually as long as you do not impead their work and not send robotic cameras(they are not legal on roads yet), I doubt they can possibly say anything. You would not be doing anything illegal.
This is essentially what they want to do to us. Why should we permit it, when they won't permit us the same privilege?
So if they let us do it to them, its ok for them to do it to us? Given above, you just given them full permission.
Are they the world's most perfect database administrators and programmers, who will never leave any flaws or bugs that would let someone steal this information? Are they free of bureaucracy and able to establish truly secure protocols for the management of this information?
So,given that NOBODY is perfect and there is not such thing as "trully secure protocol", there should be never any databases of any kind??? "Grab the pitchforks boys, we gonna burn down that whole evil internet bidness..."
Look, nobody saying "they" should have all the power, but the point the tin-foil-hat lunatic fringe usually misses is that "they" are US. Cops are just people so are the politicians and so are the judges (who for some reason CAN spy on you, if they feel like it) People that blindly separate everyone into "us" and "them" are usually feeling inadequate to participate in the process and choose instead to complain about "them" who "have all the power". I say if you want power, get off your ass and do something..... Oh,who am I kidding, I am telling this to an AC, whats the point
-Em
RelevantElephants: A Somatic WebComic...
No, they were pathetic circus shows that gave the mainstream population even more reason to dismiss you as a bunch of neo-hippies and college kids.
You want to have a REAL impact for your movement? Cut your hair, dress in business suits, and instead of throwing rocks, gather a huge corwd and march silently down the street. Make the cops beating you look like the shitheads, not the other way around.
And there is a historic lesson in why the desegreation movement suceeded and the anti-Vietnam movement failed.
-Eric
SJW: Someone who has run out of real oppression, and has to fake it.
Godamn, you are so fucking pathetic. Slashdot has become your only aspect in life. You are a Loser. Yes, you.
You SERIOUSLY need to go outside and meet other people (ie GET A LIFE)
I suppose I just take it for granted that the system isn't perfect, and that good stories that people put time into don't always get posted, and sometimes worse versions get posted from other people. I occasionally have submitted stories, and I don't think any of them have been posted, but .. no big deal. That's what BLOGs are for. I'm not saying that it doesn't suck when it happens, but the degree to which this bothers you seems extreme to me and suggests that there's a lot of ego involved.
For every problem, there is at least one solution that is simple, neat, and wrong.
Aww, poor baby monkey.
Taking it to Starbucks, (at least where I live) means using Wifi. It really isn't possible they've implemented usable Wifi support in their LiveCD is it? Usually getting wireless to work on linux means finding windows drivers, utilizing NDISWrapper, etc.
That being said, what would be required for the linux community to make Wifi drivers more accessible? Is this something that is reliant entirely on the manufacturers providing drivers or is there some other solution? It would surely aid linux adoption if it was easier to get your Laptop Wifi working.
For the linux-savvy, NDISWrapper is of course very slick, and I was able to get my HP Notebook Wifi card working in about 20 minutes, but the less techy people such as the Grandmother mentioned in the posting are not going to be able to sort their way through ndiswrapper and iwconfig, much less figure out newer encryption methods.
Big ones, small ones, some as big as yer 'ead!
Give 'em a twist, a flick o' the wrist...
You want to have a REAL impact for your movement? Cut your hair, dress in business suits, and instead of throwing rocks, gather a huge corwd and march silently down the street.
That would make you look like some kind of weird cult.
Nobody would take a protest like that seriously.
Here's a pointer: start by ditching that GMail account of yours.
There is something highly homosexual about the way TMM is always trying to get attention from the smelly, maladjusted, predominantly male, predominantly single Slashdot readership. That we admire him and notice him is clearly very important to him.
...I will be releasing a beta of Pseudonym.OS real soon now.
sub f{($f)=@_;print"$f(q{$f});";}f(q{sub f{($f)=@_;print"$f(q{$f});";}f});
Yeah, that's probably true.
-Eric
SJW: Someone who has run out of real oppression, and has to fake it.
Umm. Unless you hadn't noticed, they definitely didn't march silently, nor did they only just march, but marched directly into police lines and committed acts of civil disobedience.
And suits? In 2006? Come on, that shit played out forty years ago, but not today.
My own counsel I will keep as to whom I mod and which direction.
DES is actually a very good efficient algorithm with no known weaknesses per se after decades of cryptanalysis, the problem is the 56 bit keysize is far too small for adequate security these days. 3DES in appropriate modes still provides a pretty good level of "everyday" security and uses little CPU / memory, so if the plugin uses that and is implemented securely it's OK.
IMHO, the biggest problem with bootable distributions is getting WiFi to work automatically -- never mind for your "grandma". For desktop PC's this might work OK.