First off, there are plenty of cases where a person would want to hide their text, even though it is perfectly legal. Such as stating opinions about co-workers, bosses, government, and such, that, while falling under free-speach, if the originator of the text is discovered, it could jepordize his or her job among other things.
The whole point of this system is to HIDE the origin of the material. That's all. It allows people to distribute their feelings with the knowledge that it will not be traced back to them. That's all this system is out to accomplish. And it very well might be able to do just that.
- "There is no off position on the genius switch." --Dave Letterman -
The point of this system is to hide the origin of the data. Not to secure it in any way. There is no need to even argue about keyspace.
Your comment about padding with 0's has a point, although not the one you inteded.
To know whether or not you have the last pad in a sequence, P, which is used to create Q, you must have a copy of Q to begin with in order to perform the comparison. This does allow "key" pads to be identified. Thus companies could identify these key pads and ask that they be removed. However, you would need to know IF padding was used in the first place. Otherwise what might appear as P might really be part of a different sequence or an "innocent" pad.
But even if key pads are identified, as long as the origin of that key pad is somehow kept anonymous, then the system still holds its purpose.
- "There is no off position on the genius switch." --Dave Letterman -
Unfortunately, you cannot do this. For part of the idea behind this is that you have millions of pads to choose from when creating the the list of 3 to 7 pads you XOR against your own data. This is not about creating 3 to 7 pads, XORing them, and uploading them all. It's about using EXISTING pads that, when XOR'd together with the data you wish to hide, creates a single "key" pad if you will. and only that pad need be uploaded.
By hiding all existing pads on the pad distribution sites, you would not be able to choose from existing pads, to use in the encoding process.
I would suggest that distribution sites create a method by which 100 or maybe even 1000 pads are randomly selected and displayed for use. Since the whole idea behind this also states that you should only use one pad from each site, having 1000 separate pads to choose from shouldn't be a problem.
AND this will also block any attempts to "monitor" pad distribution sites for new pads.
- "There is no off position on the genius switch." --Dave Letterman -
...as the majority of bugs, it would seem, resolves around bad programming of the finished product, not bad programming of the generic libs used in the various programs out there.
What I mean is that, their solution plainly states that they do _NOT_ touch both the source code NOR the binaries of these programs. Rather, it's just a lib wrapper that catches all lib calls.
Well not all exploits... in fact IMHO i think very few exploits revolve around calls to libc and other such generic, public libraries.
The exploitable code is in the source, in the binaries, static, not dynamically linked. All those bad sprintf() calls... can't fix those with a lib wrapper. Same with bad pointer handling, ect.. ect...
BLAH!
-Bug
-
"There is no off position on the genius switch." --Dave Letterman
-
First off, I'm not particularly impressed with this last season of the Simpsons. I think they're trying too hard to be more crude, but in a semi-smart way, to take back the viewership that South Park stole. And it just isn't working.
A lot of the writing, IMO, for the past season, has been horrible. I think the series run has been great, but stop beating a dead horse. The show is over. Let it continue in reruns. Let us enjoy the fond memories. But it's over. The longer they drag the series on, the more viewers they're going to loose.
That said. The movie is a horrible idea. It can only get worse. Half-hour TV shows don't move to the big screen well. There hasn't be a successful move yet. And don't anyone try to bring up the Transformers as a counter to that.
I say, let this be the last season, then, if they must, do a final farewell movie.
But if the show must stoop to the level of killing of a second-rate character and hype it up JUST to get people interested... well that should be a signal to us all.
- "There is no off position on the genius switch." --Dave Letterman -
It's now 47 minutes into the show. and this DJ is SHIT! He's done a couple cheap political satire bits. he's currently singing about masturbation. BUT NO LINUS?! Ugh. Was this a goof? A hoax to get us listening or what? Off the Hook is on this station?! I'll be damned if I'm ever gonna listen to it again. This station SUCKS!
- "There is no off position on the genius switch." --Dave Letterman -
i'm a student worker in my college's IS department and this very topic has just recently come up. there's talk about taking active interests in seeing who is transfering what over school lines. it's even been requested that the admin of the network setup a sniffer to try and find out exactly what kind of content is being transfered over the network.
this isn't just looking at college web sites or local shares, anything and EVERYTHING will be open to audit here.
and all this simply because there was some abnormal traffic loads on the network between 7pm and 5am. (which, personally, isn't abnormal hours for me. it's when i do my best work!)
but it's kinda sick now that i'm going to wind up having to take extra precautions on all my work. i've even turned over the idea of setting up a dam tunnel to a friend with a cable modem. that way the college won't see crap of what i'm doing.
before long, it's going to turn into a situation where the colleges go door to door inspecting every student's machine or getting all the machins running SMS or similar to keep tabs on what students use their computers for.
since when the hell did the students become the enemy?
- "There is no off position on the genius switch." --Dave Letterman -
Slashdot Mirror
The whole point of this system is to HIDE the origin of the material. That's all. It allows people to distribute their feelings with the knowledge that it will not be traced back to them. That's all this system is out to accomplish. And it very well might be able to do just that.
-
"There is no off position on the genius switch." --Dave Letterman
-
Your comment about padding with 0's has a point, although not the one you inteded.
To know whether or not you have the last pad in a sequence, P, which is used to create Q, you must have a copy of Q to begin with in order to perform the comparison. This does allow "key" pads to be identified. Thus companies could identify these key pads and ask that they be removed. However, you would need to know IF padding was used in the first place. Otherwise what might appear as P might really be part of a different sequence or an "innocent" pad.
But even if key pads are identified, as long as the origin of that key pad is somehow kept anonymous, then the system still holds its purpose.
-
"There is no off position on the genius switch." --Dave Letterman
-
By hiding all existing pads on the pad distribution sites, you would not be able to choose from existing pads, to use in the encoding process.
I would suggest that distribution sites create a method by which 100 or maybe even 1000 pads are randomly selected and displayed for use. Since the whole idea behind this also states that you should only use one pad from each site, having 1000 separate pads to choose from shouldn't be a problem.
AND this will also block any attempts to "monitor" pad distribution sites for new pads.
-
"There is no off position on the genius switch." --Dave Letterman
-
...as the majority of bugs, it would seem, resolves around bad programming of the finished product, not bad programming of the generic libs used in the various programs out there. What I mean is that, their solution plainly states that they do _NOT_ touch both the source code NOR the binaries of these programs. Rather, it's just a lib wrapper that catches all lib calls. Well not all exploits... in fact IMHO i think very few exploits revolve around calls to libc and other such generic, public libraries. The exploitable code is in the source, in the binaries, static, not dynamically linked. All those bad sprintf() calls... can't fix those with a lib wrapper. Same with bad pointer handling, ect.. ect... BLAH! -Bug
-
"There is no off position on the genius switch." --Dave Letterman
-
A lot of the writing, IMO, for the past season, has been horrible. I think the series run has been great, but stop beating a dead horse. The show is over. Let it continue in reruns. Let us enjoy the fond memories. But it's over. The longer they drag the series on, the more viewers they're going to loose.
That said. The movie is a horrible idea. It can only get worse. Half-hour TV shows don't move to the big screen well. There hasn't be a successful move yet. And don't anyone try to bring up the Transformers as a counter to that.
I say, let this be the last season, then, if they must, do a final farewell movie.
But if the show must stoop to the level of killing of a second-rate character and hype it up JUST to get people interested... well that should be a signal to us all.
-
"There is no off position on the genius switch." --Dave Letterman
-
It's now 47 minutes into the show. and this DJ is SHIT! He's done a couple cheap political satire bits. he's currently singing about masturbation. BUT NO LINUS?! Ugh. Was this a goof? A hoax to get us listening or what? Off the Hook is on this station?! I'll be damned if I'm ever gonna listen to it again. This station SUCKS!
-
"There is no off position on the genius switch." --Dave Letterman
-
this isn't just looking at college web sites or local shares, anything and EVERYTHING will be open to audit here.
and all this simply because there was some abnormal traffic loads on the network between 7pm and 5am. (which, personally, isn't abnormal hours for me. it's when i do my best work!)
but it's kinda sick now that i'm going to wind up having to take extra precautions on all my work. i've even turned over the idea of setting up a dam tunnel to a friend with a cable modem. that way the college won't see crap of what i'm doing.
before long, it's going to turn into a situation where the colleges go door to door inspecting every student's machine or getting all the machins running SMS or similar to keep tabs on what students use their computers for.
since when the hell did the students become the enemy?
-
"There is no off position on the genius switch." --Dave Letterman
-