The continuing development of OpenBSD security will have to move out of the US to somewhere that is friendly to it. Can we say Europe? I'm sure the ideology of some European nations, and governments would be more than willing to carry on funding support. The OpenBSD team should start looking at these sort of options. There are bound to be opportunities their for the taking... just look for them.
Re:Sling shot was better.
on
T-Shirt Cannon
·
· Score: 1
Yeah well we get the best of both worlds buddy. They fire out t-shirts from a launcher similar to this, WHILST the scantily clad dancers jump around in near freezing conditions. Interesting to see people jump for the tshirts. A couple of nights ago one dropped his kid whilst trying to catch a tshirt! D'oh!
if you are using a relatively common binary. Then you just have to compare the MD5 checksums against a known-good (known-bad in MSFT's case;P ) to identify a binary that could possibly contain encrypted data. Would it then be too much harder to go back through and disassemble the two and pick out the differences and hence identify the bits?
We should invent encrypted people. That way not only would data be safe, but it's so secure the guy next to you has no idea what you're talking about!
What a random idea! But why not just use (future) technology. Imagine if everyone used a voicebox implant and you had the option of speaking in plainvoice or cryptvoice. You can negotiate an encrypted channel with another voicebox, and not hear any other encrypted chats nearby and they don't hear you. Plainvoice would still come through depending on how you had the voicebox configured.
What I would like to see developed is Google Research, a search engine of papers only. Yes, your milage would vary as some would, and some would not have had peer review. But it would still be a very useful research tool.
I spent half this year living in Washington DC. As a foreigner, I came over to get work experience in emergency management, and spent most of my time doing terrorism related work. And yes, I am from one of these friendly countries, I like to think of myself as educated, and yet I could not get the appropriate visa to get paid - so I've got first hand experience with the visa point. But I digress.
What I really wanted to say is that the US is not alone in this situation, nor does it apply solely to technology - it may just be one manefestation. It is eroding the very fabric of society, and not just the United States.
I read these points and a large number (probably 75%+) of them apply to my own country. So whilst the article was written with US-centricity, don't think for a moment that you are alone, or are even leading the bigger societal trends. You're not.
The corollary is that the solution is not likely to be developed by one country, but multiple as we are all facing very similar problems. Only the specific solutions to each country may require tweaking because of legislative and other details.
"You make the network more secure because infrared energy is contained within a room and doesn't leak out through the walls and windows. You can equip the windows to reflect infrared energy," said Green.
You could have some serious fun with companies depending on the configuration of the reflective surface. If boths sides are IR reflective you lose solar heating benefits but gain security. If only the inside is IR reflective to keep the signal trapped, whilst IR is allowed in from the outside, then a fun attack would be some IR beams from afar aimed at the windows to heat up the room and fry the marketdroids and PHB's!!
is rather scared of the spreading of free wireless networks. Long term what could cellular-like mobile VoIP do to Nokia and their clients? I'd have to agree that is in the same class as MSFT complaining about OSS. I think they're scared.
Rather than incorporating expensive high-margin hardware into a proprietary cellular network - such as Nokia provides, people can develop a wireless IP network instead. In NZ our telecom is working towards only becoming a wholesaler. What if people used their wholesale bandwidth, put up their own wireless drops, and some electronic company develops a VoIP mobile phone. Instant community mobile network. Oppps, no resellers either. Just wholesalers and users. This is definitely not a bad thing;)
I have to disagree. Getting further tertiary education will open new opportunities and expand possibilities that never existed before. You _will_ learn stuff. Best of all, you can expand on what you've already learnt in life and in business.
I had no idea what I wanted to do when I left school, so I went to uni for 5 years, not knowing what I wanted to do and got around 1.9 bachelors degrees (I just couldn'r bring myself to finish COSC;). I left for a business opportunity and started a web development company with two others and worked at that for a year before a family crisis, set me up for a few down years - this was around '97. A couple of years ago I discovered what I really wanted to do. Some of my friends knew this when they started uni, and have 10 years behind them in their chosen field already - I was so envious of them as I had nothing, or thought I had nothing. No direction, no motivation.
Eighteen months ago I decided that I would finish my BSc and start some more study in an area that I had rapidly become very interested in. Last year was about 1.25 of a full time load, a mixture of undergrad to finsih the BSc, and a postgrad diploma (1 year), and I wasn't working or consulting through my business (different one) at that time.
It was a long year, but has created opportunities that I would never have believed or dreamed of. I'm now on the other side of the world doing an internship at 30, in an absolutely fascinating environment (Emergency Management in Washington DC). And you know what? The recent studies have added to and built on what I had done previously and created these opportunities, so my time was not wasted. In fact it is becoming more and more valuable all the time. Yes my social life has sucked, but that is on the mend slowly, and now I am mixing travel, life, work and study together somewhat succesfully and loving every minute of it.
You never know when you're going to find what really spins your monkey, but when you do, spin it hard - after all, you're not ever going to get another chance when you're dead!! Cheers Gav
Wrong wrong wrong. Check out what your law enforcement agency in charge of terrorism says. You'll note that it explicitly says 'the unlawful use of force and violence'. Waving a grenade around is not terrorism; it is threatening , will promote fear in the crowd, and probably illegal, but it is not terrorism. Now if they were to pull out the pin, throw it into the crowd, and claim to be doing it to promote a some agenda, then yes that would be terrorism. It doesn't become terrorism until a violent or forceful act takes place.
Perhaps one of the best current applications of software radio is to act as a bridge between multiple radio systems.
Take for example an event, such as a terrorist attack, that warrants the use of many agencies that span a wide spectrum of roles and budgets. In the US, this means from local fire, EMS, law enforcement, response teams, HazMat, right on up to FBI, US Marshalls, Secret Service, FEMA and across to public works and everyone else involved in the response effort.
Communications in these situation has always been a big problem. It was highlighted nearly a year ago in New York and Arlington.
What a software radio unit would allow you to do is set up on site and when in operation the unit allows all the different radio systems of the agencies - who of course have different budgets, and hence equipment - to communicate relatively easily with each other as the software radio does the transformations from one radio signal and channel to another. And this can be done without reprogramming the frequencies on the radios, as you can use agencies predesiginated channels.
Perhaps the coolest thing is that it can be set up to work with current equipment, so apart from the bridge, and associated hardware, agencies preexisting radios will work. This is all good especially when you consider that people at the Pentagon were carrying around combos like 2 radios, 3 cell phones, and 3 pagers just to keep on top of everything.
By moving it to software, you can target everything to nearly one device - to the point where you plug phone lines (could be cable/sattelite/rf) into the bridge, and people on radios can make phone calls.
Another benefit is that it could be used in radio dense environments to bridge radio communications as radio devices increase in popularity by allowing them to use frequencies they weren't originially designed for. I think thats pretty cool.
Attacks on the IT infrastructure are at most going to yield either localised effects, inconvenience, or a loss of confidence for most people. The proper way to incorporate IT in attacks would be the following...
Identify some critical infrastructure to attack. Find IT related systems that if hacked can slow the response and recovery effort. Set us up the bomb;) attack the IT systems identified in an appropriate manner, and then release some general malicious software to the net to bog it down so people and responders are hindered yet again. If you really want to have fun, target ASP's providing web-based emergency management solutions specifically - there are a few out there.
Virtual attacks currently seem to work best when used in conjunction with physical attacks - it acts as a catalyst or force multiplier. I wouldn't be too scared about standalone virtual attacks. What is scary is a combined physical and virtual attack on the power grid in Winter using bombs and taking down control networks via the SCADA's.
Cheers Gav
PS and check most definitions of terrorism - they usually single out the use of violence to create fear to achieve political or social objectives. Hacking is non-violent generally.
You do, of course, realise that Australia and New Zealand are two different countries? Two completely separate places, man.
Doesn't the.nz in my email address give it away?:) As a Kiwi living in Washington, DC who has many friends in Australia, and has been back and forwards across the Tasman at least 10 times in the past 3 years, I've got a reasonable understanding of our countries place in the world. And from what I've seen, I know that Australians like our sheep better, because we treat them nicely!
Can't you just tie a sheep to a pole in the center of your yard and have him eat the grass for you?
Cause sheep have a habit of shitting on the lawn:) Oh, and tied to a pole, your sheep would be easy pickings for any passing Australian, especially that Crocodile Hunter bloke...
And I'm quite impressed. I watched Phantom Menace on DVD before going, and followed it up with AOTC. It was rather impressive and made Phantom look rather shallow. Yes, it may make you cringe in a couple of places, but overall, it seems more like the Star Wars of old, and it is cool to finally have the story coming together, something that didn't really happen with Phantom (of course it was mainly used as a movie to introduce characters and themes).
I went in with an open mind, not really knowing what to expect, just hoping it was going to be better than Phantom. I personally think it has well outdone Phantom. It is much deeper, more emotive, and certainly darker. I really enjoyed this movie, and overall I think the audience did too, especially Yoda's scene - you'll know it when you see it;)
Does anyone else think that this is in return for the US stance on imported steel? I just saw an article on CNN about trade issues between the EU and the US, and thought hey, this makes sense from an EU perspective, if they are going to up barriers to exporting EU products to the US, then lets make it harder for US companies to make money from the EU - by removing the pricing advantage by addition of tax. I don't think this is really a taxation issue, I think its partial retaliation for the US imposing restrictions on imports into the US from the EU.
In NZ, we have a law firm taking Microsoft to the commerce commission for issues related to Software Assurance. He has writen a very nice brief outlining many of the issues, and it is well worth a read. Click here to read more. There are links to various letters and news articles covering this issue.
One big point that the Commerce Commission raised, is that if SA is such a big issue, why aren't bigger companies and countries picking it up?!
Also, there is a free GIS that I have downloaded and installed, but not really looked at yet called Grass. Go here for more... And yes, it is released under the GNU GPL.
I too have been getting up to speed on GIS this year. I'm doing a Postgrad Dip in it at the moment. From all accounts ESRI is the defacto standard amongst most governmental bodies - councils, states, defense etc. Here in NZ ESRI is very strong - about 11 from 14 regional councils use ESRI. And yes it is windows only, the internal scripting which used to be Avenue, now uses Visual Basic. You also have objects that you can chuck in other VB applications to provide instant access to maps. This is not so bad when you consider that as a proportion of the total cost of the GIS, the hardware and software represent a small percentage of the total outlay - most of the expense comes back to data collection and management.
For a good theoretical background on GIS, Burrough et al (1998) Principles of Geographical Information Systems is proving quite good. For practical experience try ESRI's campus where a number of free and/or cheap (compared to training courses) practical courses in GIS are provided. Hope this helps! Cheers Gav
If you want a pretty windoze gui for doing the same thing, and free as in 'beer' / nagware, try Mailwasher. The ability to bounce spam and delete virii from POP boxs before downloading, not to mention dickheads who send huge emails is very useful. It has saved me numerous times.
Once, around christmas time, one of our cats had seen us stashing presents under the tree. I was upstairs and heard my mum scream "Ginger's got a bird, come quick." Knowing full well it was my duty to get the bird off him. I came down the stairs and saw him wandering around the corner into the living room where the xmas tree was, and just caught a glimpse of something big and black in his mouth. I rushed down and through into the living room, and low and behold Ginger had deposited a 3/4 size _duck_ still alive on top of the presents under the tree. Luckily the duck wasn't too shaken so we gave Ginger lots of attention (cuddles, councilling...:) and I took the duck over to the neighbours stream and released, twas just shocked I think.
Slashdot Mirror
the RIAA, then business cannot complain when it happens to them. One rule for all thanks.
The continuing development of OpenBSD security will have to move out of the US to somewhere that is friendly to it. Can we say Europe? I'm sure the ideology of some European nations, and governments would be more than willing to carry on funding support. The OpenBSD team should start looking at these sort of options. There are bound to be opportunities their for the taking... just look for them.
Yeah well we get the best of both worlds buddy. They fire out t-shirts from a launcher similar to this, WHILST the scantily clad dancers jump around in near freezing conditions. Interesting to see people jump for the tshirts. A couple of nights ago one dropped his kid whilst trying to catch a tshirt! D'oh!
if you are using a relatively common binary. Then you just have to compare the MD5 checksums against a known-good (known-bad in MSFT's case ;P ) to identify a binary that could possibly contain encrypted data. Would it then be too much harder to go back through and disassemble the two and pick out the differences and hence identify the bits?
Novel idea though!
We should invent encrypted people. That way not only would data be safe, but it's so secure the guy next to you has no idea what you're talking about!
What a random idea! But why not just use (future) technology. Imagine if everyone used a voicebox implant and you had the option of speaking in plainvoice or cryptvoice. You can negotiate an encrypted channel with another voicebox, and not hear any other encrypted chats nearby and they don't hear you. Plainvoice would still come through depending on how you had the voicebox configured.
10. Lets collect tax from wireless networking vendors
What I would like to see developed is Google Research, a search engine of papers only. Yes, your milage would vary as some would, and some would not have had peer review. But it would still be a very useful research tool.
I spent half this year living in Washington DC. As a foreigner, I came over to get work experience in emergency management, and spent most of my time doing terrorism related work. And yes, I am from one of these friendly countries, I like to think of myself as educated, and yet I could not get the appropriate visa to get paid - so I've got first hand experience with the visa point. But I digress.
What I really wanted to say is that the US is not alone in this situation, nor does it apply solely to technology - it may just be one manefestation. It is eroding the very fabric of society, and not just the United States.
I read these points and a large number (probably 75%+) of them apply to my own country. So whilst the article was written with US-centricity, don't think for a moment that you are alone, or are even leading the bigger societal trends. You're not.
The corollary is that the solution is not likely to be developed by one country, but multiple as we are all facing very similar problems. Only the specific solutions to each country may require tweaking because of legislative and other details.
"You make the network more secure because infrared energy is contained within a room and doesn't leak out through the walls and windows. You can equip the windows to reflect infrared energy," said Green.
You could have some serious fun with companies depending on the configuration of the reflective surface. If boths sides are IR reflective you lose solar heating benefits but gain security. If only the inside is IR reflective to keep the signal trapped, whilst IR is allowed in from the outside, then a fun attack would be some IR beams from afar aimed at the windows to heat up the room and fry the marketdroids and PHB's!!
is rather scared of the spreading of free wireless networks. Long term what could cellular-like mobile VoIP do to Nokia and their clients? I'd have to agree that is in the same class as MSFT complaining about OSS. I think they're scared.
;)
Rather than incorporating expensive high-margin hardware into a proprietary cellular network - such as Nokia provides, people can develop a wireless IP network instead. In NZ our telecom is working towards only becoming a wholesaler. What if people used their wholesale bandwidth, put up their own wireless drops, and some electronic company develops a VoIP mobile phone. Instant community mobile network. Oppps, no resellers either. Just wholesalers and users. This is definitely not a bad thing
I have to disagree. Getting further tertiary education will open new opportunities and expand possibilities that never existed before. You _will_ learn stuff. Best of all, you can expand on what you've already learnt in life and in business.
;). I left for a business opportunity and started a web development company with two others and worked at that for a year before a family crisis, set me up for a few down years - this was around '97. A couple of years ago I discovered what I really wanted to do. Some of my friends knew this when they started uni, and have 10 years behind them in their chosen field already - I was so envious of them as I had nothing, or thought I had nothing. No direction, no motivation.
I had no idea what I wanted to do when I left school, so I went to uni for 5 years, not knowing what I wanted to do and got around 1.9 bachelors degrees (I just couldn'r bring myself to finish COSC
Eighteen months ago I decided that I would finish my BSc and start some more study in an area that I had rapidly become very interested in. Last year was about 1.25 of a full time load, a mixture of undergrad to finsih the BSc, and a postgrad diploma (1 year), and I wasn't working or consulting through my business (different one) at that time.
It was a long year, but has created opportunities that I would never have believed or dreamed of. I'm now on the other side of the world doing an internship at 30, in an absolutely fascinating environment (Emergency Management in Washington DC). And you know what? The recent studies have added to and built on what I had done previously and created these opportunities, so my time was not wasted. In fact it is becoming more and more valuable all the time. Yes my social life has sucked, but that is on the mend slowly, and now I am mixing travel, life, work and study together somewhat succesfully and loving every minute of it.
You never know when you're going to find what really spins your monkey, but when you do, spin it hard - after all, you're not ever going to get another chance when you're dead!! Cheers Gav
Wrong wrong wrong. Check out what your law enforcement agency in charge of terrorism says. You'll note that it explicitly says 'the unlawful use of force and violence'. Waving a grenade around is not terrorism; it is threatening , will promote fear in the crowd, and probably illegal, but it is not terrorism. Now if they were to pull out the pin, throw it into the crowd, and claim to be doing it to promote a some agenda, then yes that would be terrorism. It doesn't become terrorism until a violent or forceful act takes place.
Perhaps one of the best current applications of software radio is to act as a bridge between multiple radio systems.
Take for example an event, such as a terrorist attack, that warrants the use of many agencies that span a wide spectrum of roles and budgets. In the US, this means from local fire, EMS, law enforcement, response teams, HazMat, right on up to FBI, US Marshalls, Secret Service, FEMA and across to public works and everyone else involved in the response effort.
Communications in these situation has always been a big problem. It was highlighted nearly a year ago in New York and Arlington.
What a software radio unit would allow you to do is set up on site and when in operation the unit allows all the different radio systems of the agencies - who of course have different budgets, and hence equipment - to communicate relatively easily with each other as the software radio does the transformations from one radio signal and channel to another. And this can be done without reprogramming the frequencies on the radios, as you can use agencies predesiginated channels.
Perhaps the coolest thing is that it can be set up to work with current equipment, so apart from the bridge, and associated hardware, agencies preexisting radios will work. This is all good especially when you consider that people at the Pentagon were carrying around combos like 2 radios, 3 cell phones, and 3 pagers just to keep on top of everything.
By moving it to software, you can target everything to nearly one device - to the point where you plug phone lines (could be cable/sattelite/rf) into the bridge, and people on radios can make phone calls.
Another benefit is that it could be used in radio dense environments to bridge radio communications as radio devices increase in popularity by allowing them to use frequencies they weren't originially designed for. I think thats pretty cool.
Cheers
Attacks on the IT infrastructure are at most going to yield either localised effects, inconvenience, or a loss of confidence for most people. The proper way to incorporate IT in attacks would be the following...
;) attack the IT systems identified in an appropriate manner, and then release some general malicious software to the net to bog it down so people and responders are hindered yet again. If you really want to have fun, target ASP's providing web-based emergency management solutions specifically - there are a few out there.
Identify some critical infrastructure to attack. Find IT related systems that if hacked can slow the response and recovery effort. Set us up the bomb
Virtual attacks currently seem to work best when used in conjunction with physical attacks - it acts as a catalyst or force multiplier. I wouldn't be too scared about standalone virtual attacks. What is scary is a combined physical and virtual attack on the power grid in Winter using bombs and taking down control networks via the SCADA's.
Cheers Gav
PS and check most definitions of terrorism - they usually single out the use of violence to create fear to achieve political or social objectives. Hacking is non-violent generally.
You do, of course, realise that Australia and New Zealand are two different countries? Two completely separate places, man.
.nz in my email address give it away? :) As a Kiwi living in Washington, DC who has many friends in Australia, and has been back and forwards across the Tasman at least 10 times in the past 3 years, I've got a reasonable understanding of our countries place in the world. And from what I've seen, I know that Australians like our sheep better, because we treat them nicely!
Doesn't the
Can't you just tie a sheep to a pole in the center of your yard and have him eat the grass for you?
Cause sheep have a habit of shitting on the lawn :) Oh, and tied to a pole, your sheep would be easy pickings for any passing Australian, especially that Crocodile Hunter bloke...
And I'm quite impressed. I watched Phantom Menace on DVD before going, and followed it up with AOTC. It was rather impressive and made Phantom look rather shallow. Yes, it may make you cringe in a couple of places, but overall, it seems more like the Star Wars of old, and it is cool to finally have the story coming together, something that didn't really happen with Phantom (of course it was mainly used as a movie to introduce characters and themes).
;)
I went in with an open mind, not really knowing what to expect, just hoping it was going to be better than Phantom. I personally think it has well outdone Phantom. It is much deeper, more emotive, and certainly darker. I really enjoyed this movie, and overall I think the audience did too, especially Yoda's scene - you'll know it when you see it
Does anyone else think that this is in return for the US stance on imported steel? I just saw an article on CNN about trade issues between the EU and the US, and thought hey, this makes sense from an EU perspective, if they are going to up barriers to exporting EU products to the US, then lets make it harder for US companies to make money from the EU - by removing the pricing advantage by addition of tax. I don't think this is really a taxation issue, I think its partial retaliation for the US imposing restrictions on imports into the US from the EU.
In NZ, we have a law firm taking Microsoft to the commerce commission for issues related to Software Assurance. He has writen a very nice brief outlining many of the issues, and it is well worth a read. Click here to read more. There are links to various letters and news articles covering this issue.
One big point that the Commerce Commission raised, is that if SA is such a big issue, why aren't bigger companies and countries picking it up?!
Also, there is a free GIS that I have downloaded and installed, but not really looked at yet called Grass. Go here for more... And yes, it is released under the GNU GPL.
Cheers Gav
I too have been getting up to speed on GIS this year. I'm doing a Postgrad Dip in it at the moment. From all accounts ESRI is the defacto standard amongst most governmental bodies - councils, states, defense etc. Here in NZ ESRI is very strong - about 11 from 14 regional councils use ESRI. And yes it is windows only, the internal scripting which used to be Avenue, now uses Visual Basic. You also have objects that you can chuck in other VB applications to provide instant access to maps. This is not so bad when you consider that as a proportion of the total cost of the GIS, the hardware and software represent a small percentage of the total outlay - most of the expense comes back to data collection and management.
For a good theoretical background on GIS, Burrough et al (1998) Principles of Geographical Information Systems is proving quite good. For practical experience try ESRI's campus where a number of free and/or cheap (compared to training courses) practical courses in GIS are provided.
Hope this helps!
Cheers Gav
If you want a pretty windoze gui for doing the same thing, and free as in 'beer' / nagware, try Mailwasher. The ability to bounce spam and delete virii from POP boxs before downloading, not to mention dickheads who send huge emails is very useful. It has saved me numerous times.
next they'll want to tax crypto products to fund the NSA!
I thought 'AMD Monopoly Dependent' would be more appropriate in this forum ;)
Once, around christmas time, one of our cats had seen us stashing presents under the tree. I was upstairs and heard my mum scream "Ginger's got a bird, come quick." Knowing full well it was my duty to get the bird off him. I came down the stairs and saw him wandering around the corner into the living room where the xmas tree was, and just caught a glimpse of something big and black in his mouth. I rushed down and through into the living room, and low and behold Ginger had deposited a 3/4 size _duck_ still alive on top of the presents under the tree. Luckily the duck wasn't too shaken so we gave Ginger lots of attention (cuddles, councilling... :) and I took the duck over to the neighbours stream and released, twas just shocked I think.