I really dont see a problem with carnivore anyway. I mean, this is what encryption is for. If its not the US. gov't, its a script kiddie. Or the guy in the dorm down the hall. Or as bored sysadmin at your ISP. Your supposed to assume all internet traffic is sniffed. Why do you think VPNs exsist? This is the biggest non-issue i've ever seen. AOL uses web proxies, you dont think they have detailed statistics for all of their 20 million customers?
http://www.gnupg.org if you want private communication.
I've read the article, and all comments... I dont see how this is a security issue. The form caching is client side, to my understanding...how does this tell the remote web server anything? I don't get it...
i dont see how this would be possible without the modification of every name server in the world to support multibyte domains... since BIND 9 is in feature freeze... this might get in to BIND 10... look for betas in about 10 years.
wouldn't this choke most applications? im not entirerly sure how CJK are handled... doesnt seem to me like it would be a pop-in transition.
I dont have anything against other cultures, and dont mind other languages exsisting, in writing or on web pages... but DNS is NOT the place for them.
a domain name i supposed to be universally accessable. this is going to make a great many pains in the asses.
old browsers wont work
english keyboards lack accented characters
its not fun changing your charset, then punching in random alt+XXX codes until you match the CJK symbol your looking at.
ok, i checked the man page, the password is only requested when booting with args...
BUT EVERYTHING ELSE IN THE ARTICLE WAS WRONG...
except about the stuff in inetd.conf, but EVERY DISTRO has that... its not like debian is out on a limb enabling those services... yeah theyre security risks, yeah theyre obsolete... yeah, even distro insists on enabling them...
holy crap, is that kurt guy an idiot. what a waste of slashdot space. some bogus 'security' article by a kiddie.
anyone with half a clue reading that article knows what im talking about. bitching default home directory is mode 755 but then bitching after he 'fixed' it, ~/public_html didnt work.
and the clincher... the one i completly stoped reading at... suggesting all installs should set a lilo password... HELLO? UNATTENDED REBOOTS? idiots...
Uhhh, no... distrubuted.net has not cracked a RSA key, ever. They've cracked DES keys, in contests sponsored by RSA Labs. Get your facts straight before spreading them on slashdot and having idiot moderators mod you up.
you cant firewall it, it binds to random ports...whatever is available. So you'd be having to add a firewall rule everytime you launch any gnome app ('glines &; ipchains -A...)...
fun!
p.s. speaking of glines, can anyone beat my 714 score? I think thats pretty good...
This was the major reason I stoped using gnome, every program opens up a publicly accessable tcp port. While im sure you can/(will be able to) do some neat remote stuff with a system like that, its just not secure, at all. Software under as much development as gnome is, being hacked together by god knows who, and listening on 15 ports...theres gotta be a bunch of overflows in there somewhere.
I use plain sawfish now, and 'gkrellm' gives me all the pretty cpu/mem/net graphs i had on my panel, plus the weather too, WITHOUT opening up 5 backdoors.
Ya know, i'd definatly pick up a G3 Powerbook when the price comes down, except for the fact that you're completly stuck with a 1 button mouse, unlike a desktop where you can at least replace the hockeypuck.
> Secondly, there are 2^8*2^8*2^8*2*8=2^32 > possible IP addresses [...] 34 years of scanning
34 years with 1 machine. 17 with 2. 0.68 years with 50 machines, which im sure this company can afford, seeing as a perfectly suitable x86 clone goes for about $400 now.
they have a section that discusses current UCE ligislation being considered. anyone know why we just dont revise the 'unsolicited fax' laws to apply to email as well? it's practically the same thing, specially if you recieve your email with PPP over a phone line.
Well, we're up to 1200 comments... and moving on up to 5th place in the slashdot hall of fame. Only 822 comments left to go to pass up The Star Fraction... cmon gang, keep the Hot Gritz and Natalie Portman posts coming!
Slashdot Mirror
> Why am I buying Linux?
I dunno. It's been my experiance that people who actually buy linux don't know how to use a UNIX, anyway.
well, i didn't see that one coming.
someone DROPED legal actions for once? what's going on here?
Maybe they should have hosted it on linux?
Microsoft OLE DB Provider for ODBC Drivers error '80004005'
[Microsoft][ODBC Microsoft Access Driver] Could not update; currently lo
/groupchat/assigngroups.asp, line 26
I really dont see a problem with carnivore anyway. I mean, this is what encryption is for. If its not the US. gov't, its a script kiddie. Or the guy in the dorm down the hall. Or as bored sysadmin at your ISP. Your supposed to assume all internet traffic is sniffed. Why do you think VPNs exsist? This is the biggest non-issue i've ever seen. AOL uses web proxies, you dont think they have detailed statistics for all of their 20 million customers?
http://www.gnupg.org if you want private communication.
I've read the article, and all comments... I dont see how this is a security issue. The form caching is client side, to my understanding...how does this tell the remote web server anything? I don't get it...
dont fscking assume
the purpose of a domain is global accessibility, not so users with keyboard type x and input method y can access it.
Way to spread false information!
mutt pases the phrase via stdin, not on the command line... great research... really!
i dont see how this would be possible without the modification of every name server in the world to support multibyte domains... since BIND 9 is in feature freeze... this might get in to BIND 10... look for betas in about 10 years.
wouldn't this choke most applications? im not entirerly sure how CJK are handled... doesnt seem to me like it would be a pop-in transition.
I dont have anything against other cultures, and dont mind other languages exsisting, in writing or on web pages... but DNS is NOT the place for them.
a domain name i supposed to be universally accessable. this is going to make a great many pains in the asses.
old browsers wont work
english keyboards lack accented characters
its not fun changing your charset, then punching in random alt+XXX codes until you match the CJK symbol your looking at.
the internet is really becoming dumb.
Maybe, it's because if they're convicted, they wern't good enough and got caught?
> may now also include certain uses of 'streaming'
> technologies from the Internet."
them internet pirates be smart, they be...
arrrr...
SSL... yeah... what about SSL? SSL? SSL...
jeeze, read before you post... half the freaking comments are 'BUT SSL!'
why havent they sued all the search engines? they link to DeCSS, and information on it.
ok, i checked the man page, the password is only requested when booting with args...
BUT EVERYTHING ELSE IN THE ARTICLE WAS WRONG...
except about the stuff in inetd.conf, but EVERY DISTRO has that... its not like debian is out on a limb enabling those services... yeah theyre security risks, yeah theyre obsolete... yeah, even distro insists on enabling them...
holy crap, is that kurt guy an idiot. what a waste of slashdot space. some bogus 'security' article by a kiddie.
anyone with half a clue reading that article knows what im talking about. bitching default home directory is mode 755 but then bitching after he 'fixed' it, ~/public_html didnt work.
and the clincher... the one i completly stoped reading at... suggesting all installs should set a lilo password... HELLO? UNATTENDED REBOOTS? idiots...
Uhhh, no... distrubuted.net has not cracked a RSA key, ever. They've cracked DES keys, in contests sponsored by RSA Labs. Get your facts straight before spreading them on slashdot and having idiot moderators mod you up.
Oh, i forgot to mention...
...)...
people here have suggested firewalls.
you cant firewall it, it binds to random ports...whatever is available. So you'd be having to add a firewall rule everytime you launch any gnome app ('glines &; ipchains -A
fun!
p.s. speaking of glines, can anyone beat my 714 score? I think thats pretty good...
This was the major reason I stoped using gnome, every program opens up a publicly accessable tcp port. While im sure you can/(will be able to) do some neat remote stuff with a system like that, its just not secure, at all. Software under as much development as gnome is, being hacked together by god knows who, and listening on 15 ports...theres gotta be a bunch of overflows in there somewhere.
I use plain sawfish now, and 'gkrellm' gives me all the pretty cpu/mem/net graphs i had on my panel, plus the weather too, WITHOUT opening up 5 backdoors.
Ya know, i'd definatly pick up a G3 Powerbook when the price comes down, except for the fact that you're completly stuck with a 1 button mouse, unlike a desktop where you can at least replace the hockeypuck.
Give me 3 buttons or give me death.
I second this comment.
Developing good open source software definatly is a good cause. Not quite Mother Teressa work, but more then most people contribute to humanity.
> Secondly, there are 2^8*2^8*2^8*2*8=2^32
> possible IP addresses [...] 34 years of scanning
34 years with 1 machine. 17 with 2. 0.68 years with 50 machines, which im sure this company can afford, seeing as a perfectly suitable x86 clone goes for about $400 now.
Doesn't look like it does anything new, besides the fact that it has a Transmeta inside. Color, mp3 playin', web surfin' PDAs are old news.
Anyone know the pricing on these puppies? I'm waiting for the price to drop dramitically on similar devices, before I give up my US$150 Palm3...
If gnutella isn't, how about FTP?
Napster doesn't make trading copyrighted material possible, it just makes it slightly more convienient.
they have a section that discusses current UCE ligislation being considered. anyone know why we just dont revise the 'unsolicited fax' laws to apply to email as well? it's practically the same thing, specially if you recieve your email with PPP over a phone line.
Well, we're up to 1200 comments... and moving on up to 5th place in the slashdot hall of fame. Only 822 comments left to go to pass up The Star Fraction... cmon gang, keep the Hot Gritz and Natalie Portman posts coming!