Re:Thank God that wouldn't happen in the US
on
China Censoring Flickr
·
· Score: 0, Offtopic
There was a woman who was complaining about either some water contamination or mold problem... a semi famous woman that a movie was made in her honor. The big corporations she was complaining about, started harassing her phone anonymously - telling her about her husband's cheating ways. I wish I remembered her name, or the movie. I'd like to say it was Erin Brockovich but I'm not sure.
Tyrants can be even more subtle than that. They can blacklist you from employment or fire you without reason (in California, at least). Employers also now google you. Which is bad because someone who really hates you can impersonate you and say crap like "I say we strangle all managers".
Imagine being a state restaurant inspector stopping over for a bite at IHOP...
Re:Thank God that wouldn't happen in the US
on
China Censoring Flickr
·
· Score: 2, Insightful
Bad mouth a corporation and you can get hit with a SLAPP lawsuit.
That's how it's done in America: they don't use guns. They use lawyers.
Where I came from, that led to more than one drive-by shooting, stabbing, or serious injury (of the bully or the bullied, in equal ratio).
The solution is to identify the bully and apply parental control upon his butt. You know, like we do with adults. Felony assault/stalking/etc. = jail time and all that.
I'm just a crypto noob who indeed did say "rip it to pieces", lol.
I figured I might take a crack at beating some fairly vexing encryption and security problems with some old fashioned American innovation-ism.
I'm pleased as punch that so many people have examined my idea. Maybe someone will improve on it given the flaws that have been pointed out... which was my real intent.
First, what do you mean by a file "without signature"? Take a zip archive as an example--even if you strip off the zip header, any forensicist worth his or her salt can figure out it's a zip archive, just because of the way the data is structured. Encrypted filesystems have structure, too. A data forensicist can recognize an encrypted container on the basis of its structure. (Some people have recommended to you TrueCrypt in hidden volume mode. This is bogus. I'll explain that if you want.)
That's true, I understand your point about how encrypted filesystems have structure. Why do you think hidden-volume mode TrueCrypt is bogus?
Second, you appear to not understand how crypto works. Two layers are better than one, right? So double ROT13 encryption is stronger than single ROT13, right? You're running smack into a major, well-known area of crypto. A lot of ciphers do not composite themselves well. You are almost always better off just picking one algorithm with a strong keysize than a composition of multiple algorithms.
Can you explain more of this please? I'm not sure I agree with this.
Third, how do you plan on managing all of your keys? Key management is a thorny enough problem in the best of times. By relying on multiple keys you're multiplying the problem immensely.
I for one put my passwords on a sticky note by the monitor.
Just kidding. Sorry, couldn't help that!
No, really, I'm good at keeping those "three keys" in my head.:)
Ok you've got me thinking... speaking of stored passwords, what if you've entered the passwords and they're still stored in RAM when the cops nab your machine?
The problem here is if you do not store the passwords in RAM, you'll be asked for the password every time you, say, access a jpg file or delve into the webcache. That potentially means retyping in 3 passwords a million bajillion times. If you do store it in volatile RAM, you could leave open a narrow window of opportunity for the cops which becomes a gaping fjord of opportunity if they bring forensics with them to obtain a ramdump.
Leaving the machine running when you're gone, drastically exponentiates the risk, and I pity the rocket scientist who puts their PC in hibernate mode (thereby freezing all data in RAM onto a virtual file on the disk which means even if you delete it, forensics can come and recover the dump). D'oh!!!
Imagine a filesystem that is encrypted 3 times, in "headerless" fashion. What I mean by headerless is, whereas a zip file leaves reliable signatures identifying it as a zip file, this scheme would be a naked 128 or 256 or 1024 bit encrypted file (bear with me here) with no signature. There would be no way to even identify this file unless you managed to decrypt it with the right password and the exact corresponding decryption scheme. (It could be a zip file or a rar file or an arj file but you'd have to guess.)
That's for the first layer. Then you use the same (or different) scheme to scramble that already encrypted file again. With the same or different password.
Then you do it a third time.
Granted this would take a hell of a lot of computing power and a single bit of data corruption would screw you royally (which calls for more advanced recovery techniques which leads to some weaknesses...), but the effect is this.
First, you get the hard drive and the whole filesystem is encrypted. It's utterly garbage to you. You don't know which scheme was used to encrypt it. You certainly don't know the password. But you may know it's triple layer encrypted. Or double, or quad.
What is certain is, if you get the correct encryption scheme AND the password for that first layer, the decrypted file is STILL GARBAGE. You don't really know if you got the correct information or not, because you're still looking at a "headerless" pile of garbage data. Good luck guessing that second layer because no matter what, you still get a pile of incoherent garbage.
If you've done this to all your files on your hard drives, DVDs and CDs, this is where you demand your Constitutional right (in the United States) to a SPEEDY trial and then plead the Fifth Amendment in court when asked for your password/encryption schemes. Why? Because if I'm right, the police and their descendants down to the 7th generation will have died of old age before they figure out the 2nd layer, much less the 3rd.
Mind you, the cops may have slapped a keylogger on your system ahead of time. If that's the case, you're screwed.
Lawyers and hackers, please rip my idea to pieces and tell me what you think...
Open borders? What, so Al Qaeda can freely come in and nuke Democratic countries at will? Even your great leader Rush Limbaugh would question your sanity if he could read this.
Oh and BTW, if no one has a right to a job, then no corporation has a right to do business here.
We don't need multi nationals in America. We can throw them out and start over. As America's job scene continues to de-evolve from high paying technical work, to a superproliferation of low paying service crap, you may find that Americans will decide enough is enough and that it's prudent to start over.
Then it is true - you would send our jobs to countries who are attacking us.
The Free Market inherently undermines the credibility of Democracy and human rights. America will never be competitive in the Free Market until we remove all pollution controls, human rights laws, and reduce ourselves to the prison labor infested, pollution-choked hell holes that are undercutting us like steroid players in major league baseball.
There is one and only one conclusion to any Free Market argument you have - Democracy and freedom must go away if your country is to remain competitive for jobs. Any other conclusion is pure delusion.
My post contained nothing but documented facts. I guess that must have offended the neo con free-trade-with-our-enemies crowd that's selling out our country.
Maybe your job will get outsourced to your country's enemies next?
Exactly. Since I was a kid I was warning people that the Tower of Babel was more of a warning against "ein volk, ein reich, ein fuhrer (corporation?)" than anything else.
1) the only way we're going to see the infrastructure expand is by a) Government funding; or b) Corporate funding (which leads to them holding the net hostage to whatever suits their current business model)
I like a) because it's far more democratic. Sorry, laissez-faire utopianists, we've had too much horrible experience with post-ARPA corporate dominance to go with b)
2) enforcing network neutrality will deal with the ATT problem.
3) IPTV will bring about the threat of per-gig consumption charges no matter what happens. Bend over and grab them ankles, users...
Slashdot Mirror
There was a woman who was complaining about either some water contamination or mold problem ... a semi famous woman that a movie was made in her honor. The big corporations she was complaining about, started harassing her phone anonymously - telling her about her husband's cheating ways. I wish I remembered her name, or the movie. I'd like to say it was Erin Brockovich but I'm not sure.
Tyrants can be even more subtle than that. They can blacklist you from employment or fire you without reason (in California, at least). Employers also now google you. Which is bad because someone who really hates you can impersonate you and say crap like "I say we strangle all managers".
Imagine being a state restaurant inspector stopping over for a bite at IHOP...
Bad mouth a corporation and you can get hit with a SLAPP lawsuit.
That's how it's done in America: they don't use guns. They use lawyers.
Where I came from, that led to more than one drive-by shooting, stabbing, or serious injury (of the bully or the bullied, in equal ratio).
The solution is to identify the bully and apply parental control upon his butt. You know, like we do with adults. Felony assault/stalking/etc. = jail time and all that.
It's politically unlikely because of all the corruption and bribery going on by big business.
Pity, that the truth is modded down as a troll, or flamebait, redundant, whatever. It's still the truth.
that money can buy.
No matter who wins this fight, we all lose.
I'm just a crypto noob who indeed did say "rip it to pieces", lol.
I figured I might take a crack at beating some fairly vexing encryption and security problems with some old fashioned American innovation-ism.
I'm pleased as punch that so many people have examined my idea. Maybe someone will improve on it given the flaws that have been pointed out... which was my real intent.
That's true, I understand your point about how encrypted filesystems have structure. Why do you think hidden-volume mode TrueCrypt is bogus?
Can you explain more of this please? I'm not sure I agree with this.
I for one put my passwords on a sticky note by the monitor.
Just kidding. Sorry, couldn't help that!
No, really, I'm good at keeping those "three keys" in my head.
Ok you've got me thinking... speaking of stored passwords, what if you've entered the passwords and they're still stored in RAM when the cops nab your machine?
The problem here is if you do not store the passwords in RAM, you'll be asked for the password every time you, say, access a jpg file or delve into the webcache. That potentially means retyping in 3 passwords a million bajillion times. If you do store it in volatile RAM, you could leave open a narrow window of opportunity for the cops which becomes a gaping fjord of opportunity if they bring forensics with them to obtain a ramdump.
Leaving the machine running when you're gone, drastically exponentiates the risk, and I pity the rocket scientist who puts their PC in hibernate mode (thereby freezing all data in RAM onto a virtual file on the disk which means even if you delete it, forensics can come and recover the dump). D'oh!!!
And if you know just enough to demand the speedy trial and to plead the 5th when asked for access codes? Why not just bulldog it?
BTW this tactic won't work in civil court right? No speedy trial, no 5th amendment and all that?
Imagine a filesystem that is encrypted 3 times, in "headerless" fashion. What I mean by headerless is, whereas a zip file leaves reliable signatures identifying it as a zip file, this scheme would be a naked 128 or 256 or 1024 bit encrypted file (bear with me here) with no signature. There would be no way to even identify this file unless you managed to decrypt it with the right password and the exact corresponding decryption scheme. (It could be a zip file or a rar file or an arj file but you'd have to guess.)
That's for the first layer. Then you use the same (or different) scheme to scramble that already encrypted file again. With the same or different password.
Then you do it a third time.
Granted this would take a hell of a lot of computing power and a single bit of data corruption would screw you royally (which calls for more advanced recovery techniques which leads to some weaknesses...), but the effect is this.
First, you get the hard drive and the whole filesystem is encrypted. It's utterly garbage to you. You don't know which scheme was used to encrypt it. You certainly don't know the password. But you may know it's triple layer encrypted. Or double, or quad.
What is certain is, if you get the correct encryption scheme AND the password for that first layer, the decrypted file is STILL GARBAGE. You don't really know if you got the correct information or not, because you're still looking at a "headerless" pile of garbage data. Good luck guessing that second layer because no matter what, you still get a pile of incoherent garbage.
If you've done this to all your files on your hard drives, DVDs and CDs, this is where you demand your Constitutional right (in the United States) to a SPEEDY trial and then plead the Fifth Amendment in court when asked for your password/encryption schemes. Why? Because if I'm right, the police and their descendants down to the 7th generation will have died of old age before they figure out the 2nd layer, much less the 3rd.
Mind you, the cops may have slapped a keylogger on your system ahead of time. If that's the case, you're screwed.
Lawyers and hackers, please rip my idea to pieces and tell me what you think...
EMI's approach to copyright will be based more on Terra Firma than from planet Obsolete?
You can keep your name & address UNLISTED if you want. Big difference.
This stuff makes scoping out someone's house soooo much easier.
Be careful, his cousin is a friggin mod.
Open borders? What, so Al Qaeda can freely come in and nuke Democratic countries at will? Even your great leader Rush Limbaugh would question your sanity if he could read this.
Oh and BTW, if no one has a right to a job, then no corporation has a right to do business here.
We don't need multi nationals in America. We can throw them out and start over. As America's job scene continues to de-evolve from high paying technical work, to a superproliferation of low paying service crap, you may find that Americans will decide enough is enough and that it's prudent to start over.
Then it is true - you would send our jobs to countries who are attacking us.
The Free Market inherently undermines the credibility of Democracy and human rights. America will never be competitive in the Free Market until we remove all pollution controls, human rights laws, and reduce ourselves to the prison labor infested, pollution-choked hell holes that are undercutting us like steroid players in major league baseball.
There is one and only one conclusion to any Free Market argument you have - Democracy and freedom must go away if your country is to remain competitive for jobs. Any other conclusion is pure delusion.
Do you take care of the family across the street while neglecting your own kid's rumbling belly?
Megaditto? Figures. Your knowledge about the USSR is crappy as usual. They shot people who didn't work.
Here, in the US, if you don't work, you starve - at least that's how you dittoheads would have it.
Here, in the US, you appease foreign aggressors like China by sending them our jobs.
You'd have traded with Nazi Germany if they'd offered you cheap lamp shades. Oh no wait, George Bush Sr's GRANDPA did trade with Nazi Germany!
Let's revisit the practical meaning of nationalism:
n., the idea that taking care of the needs of your people/country is as important or more so than taking care of the needs of others.
My post contained nothing but documented facts. I guess that must have offended the neo con free-trade-with-our-enemies crowd that's selling out our country.
Maybe your job will get outsourced to your country's enemies next?
Before they launch cyber-attacks against the US.
Oops, too late!
So I guess that means they lost Congress, eh?
No, wait, these "anti-Americans"
(read: anti-Bush, anti corporate state, anti pave-the-world) just elected a DEMOCRATIC Congress.
Sillyme. You're an idiot!
What he said was true.
The RIAA does it all the time.
Exactly. Since I was a kid I was warning people that the Tower of Babel was more of a warning against "ein volk, ein reich, ein fuhrer (corporation?)" than anything else.
To amend your post...
1) the only way we're going to see the infrastructure expand is by
a) Government funding; or
b) Corporate funding (which leads to them holding the net hostage to whatever suits their current business model)
I like a) because it's far more democratic. Sorry, laissez-faire utopianists, we've had too much horrible experience with post-ARPA corporate dominance to go with b)
2) enforcing network neutrality will deal with the ATT problem.
3) IPTV will bring about the threat of per-gig consumption charges no matter what happens. Bend over and grab them ankles, users...