It is better than a keylogger in the sense that it can not be detected, as it is not installed on the Operating System, or a installed program. The partition is clean. That is the main point of the tool. I don't know if this has been around for a while.
You could also change the installed TrueCrypt software to decrypt the partition on the next boot, and not tell the user anything about it.:-)
I think there is a plan behind it. A project was founded to find out how much surveillance people will endure until seriously, unavoidable riots occur in a well-off society. I also think the reason the project was started so that people, after revolting against cuts into their privacy, have a better foundation and understanding for freedom and privacy.
However, the Brits didn't react according to the expectations of project coordinators. Unfortunately, no end date was agreed upon for the project.
This exploit really is more comparable to a software keylogger. It lies between OS and Truecrypt Bootloader, catching the disk access requests. For infection, you need admin rights on the running machine (TFA says so).
So, with the full system encryption, you are of course safe. This is just a way of listening to Truecrypt requests.
Kudos to Peter, hope to meet him in the Metalab sometime.
I'm not sure it is that unlikely. IIRC, the sun & solar system has properties that make them a very early habitable system, where more of the kind are expected to be formed later.
Anyone recall the episode of Star Trek NG where they find out why all Star Trek species look very much the same? Someone was first.
Creating thousands of splinter civilizations with no emotional investment in the species homeworld is a recipe for galactic war if I've ever heard one.
But OTOH, some planet would always carry on life. Also, I imagine it would be hard to keep up a war for hundreds of years. No wait, that worked before.
I actually found this argument of the GP more hilarious:
I wonder why should one consider a colonisation of the whole Galaxy? Because someone else might have the same idea, and you need to beat them to it.
I enjoyed the confidence of this SETI researchers that there is intelligence "out there", that we will find in the next decades. However, he is talking about the universe, not our galaxy.
Wouldn't it make more sense that if the Dutch jurisdiction doesn't want the traffic to/from X to tell providers to not allow connections to X rather than to tell X "we don't want your service".
Either way, as mentioned above proxy servers refute the quest. I like the word quest.
That is an interesting interrogation technique. Maybe more efficient than torture: "Who wants a cookie! Now tell me where the your terrorist colleagues are"
We have to get the telecommunication providers to be just infrastructure providers connecting us, like for the Internet, being neutral of the content. Or someone should create a 3G network (or something similar) that just allows painless twitter, blogging, im, email and maybe skype/voip. I mean, obviously we need text-messaging, email and IM more than anything else?
I get an awful lot of Spam in Russian and quite a bit in Chinese.
If you use SpamAssessin, there is an solution: It implements language detection. If mail is in a language you can't read anyway, just give it a higher score!
You assume that the results are incorporated automatically. I doubt that. I think there is a person on the other side tinkering with the algorithm so that it covers more of the search terms.
I don't even understand why there is a question mark in the title. Everyone in Astronomy should know that this is well-acknowlegded theory in the formation of the planetary system. Generally, for habitable systems it is assumed that a body like Jupiter is necessary to keep away incoming objects, asteroids and comets.
I think it depends on the "noise" a user is used to. If they see warning boxes all day, and the stuff works somehow anyway, they will ignore them.
Other example: I've seen linux sysadmins installing software and immediately afterwards reading the readme and manpage. If you were a windows user, you wouldn't bother reading the application readmes, because they contain nothing but crap. An these sysadmins were much faster at getting things to work than if they would just start tinkering with the software to find out how it works.
Bottom line: Warnings stop the user from his workflow, you should only do that if the message it is critical. The top-bar pop-down tackles this problem in Firefox.
Another aspect we should keep in mind is that https with a invalid or forged signature is not less secure than http.
I was asking this as I heard about Germany wanting or doing wiretapping Skype, but this article says it isn't possible except by breaking AES. German police uses a trojan.
Probably the reason why China has its own version of Skype, TOM-Skype.
apropos wiretapping: Can someone enlighten me how Skype can be wiretapped although it uses AES? Does Skype have an additional key it gives away to governments? Did they add that in later versions? Since some people at Blackhat conference disassembled and analyzed the code, couldn't people offer 'clean' and secure versions of Skype?
Slashdot Mirror
Windows Drains MacBook's Battery; Who's to blame?
This and many other questions can be settled with a simple googlefight.
PS: That's also how I resolve all my spelling issues.
It would be so cool if the Centaur sceletons of Volos were real
It is better than a keylogger in the sense that it can not be detected, as it is not installed on the Operating System, or a installed program. The partition is clean.
That is the main point of the tool. I don't know if this has been around for a while.
You could also change the installed TrueCrypt software to decrypt the partition on the next boot, and not tell the user anything about it. :-)
I think there is a plan behind it. A project was founded to find out how much surveillance people will endure until seriously, unavoidable riots occur in a well-off society. I also think the reason the project was started so that people, after revolting against cuts into their privacy, have a better foundation and understanding for freedom and privacy.
However, the Brits didn't react according to the expectations of project coordinators. Unfortunately, no end date was agreed upon for the project.
This exploit really is more comparable to a software keylogger. It lies between OS and Truecrypt Bootloader, catching the disk access requests.
For infection, you need admin rights on the running machine (TFA says so).
So, with the full system encryption, you are of course safe. This is just a way of listening to Truecrypt requests.
Kudos to Peter, hope to meet him in the Metalab sometime.
I'm not sure it is that unlikely. IIRC, the sun & solar system has properties that make them a very early habitable system, where more of the kind are expected to be formed later.
Anyone recall the episode of Star Trek NG where they find out why all Star Trek species look very much the same? Someone was first.
Creating thousands of splinter civilizations with no emotional investment in the species homeworld is a recipe for galactic war if I've ever heard one.
But OTOH, some planet would always carry on life. Also, I imagine it would be hard to keep up a war for hundreds of years. No wait, that worked before.
I actually found this argument of the GP more hilarious:
I wonder why should one consider a colonisation of the whole Galaxy?
Because someone else might have the same idea, and you need to beat them to it.
I enjoyed the confidence of this SETI researchers that there is intelligence "out there", that we will find in the next decades. However, he is talking about the universe, not our galaxy.
http://www.youtube.com/watch?v=qyai5IyO-8E
Wouldn't it make more sense that if the Dutch jurisdiction doesn't want the traffic to/from X to tell providers to not allow connections to X rather than to tell X "we don't want your service".
Either way, as mentioned above proxy servers refute the quest. I like the word quest.
Feds May Soon Be Allowed To Use Cookies
That is an interesting interrogation technique. Maybe more efficient than torture: "Who wants a cookie! Now tell me where the your terrorist colleagues are"
We have to get the telecommunication providers to be just infrastructure providers connecting us, like for the Internet, being neutral of the content.
Or someone should create a 3G network (or something similar) that just allows painless twitter, blogging, im, email and maybe skype/voip.
I mean, obviously we need text-messaging, email and IM more than anything else?
I also look forward to sinking oil tankers and garbage swirls.
I get an awful lot of Spam in Russian and quite a bit in Chinese.
If you use SpamAssessin, there is an solution: It implements language detection. If mail is in a language you can't read anyway, just give it a higher score!
http://email.about.com/cs/spamassassintips/qt/et032504.htm
http://www.yrex.com/spam/spamconfig.php
Most of the Spam is coming from the US or US-based companies. Thank you CAN-SPAM :-(
I like "Anyone" the best.
for dns caching, dnsmasq is nice too, but I'm not certain that it has a good security history.
An interesting approach, using IP addresses as version numbers
Imagine your paper is published on /., the first 10 minutes you are all excited and everything; then you can only facepalm ...
You assume that the results are incorporated automatically. I doubt that. I think there is a person on the other side tinkering with the algorithm so that it covers more of the search terms.
I don't even understand why there is a question mark in the title. Everyone in Astronomy should know that this is well-acknowlegded theory in the formation of the planetary system. Generally, for habitable systems it is assumed that a body like Jupiter is necessary to keep away incoming objects, asteroids and comets.
I think it depends on the "noise" a user is used to. If they see warning boxes all day, and the stuff works somehow anyway, they will ignore them.
Other example: I've seen linux sysadmins installing software and immediately afterwards reading the readme and manpage. If you were a windows user, you wouldn't bother reading the application readmes, because they contain nothing but crap. An these sysadmins were much faster at getting things to work than if they would just start tinkering with the software to find out how it works.
Bottom line: Warnings stop the user from his workflow, you should only do that if the message it is critical. The top-bar pop-down tackles this problem in Firefox.
Another aspect we should keep in mind is that https with a invalid or forged signature is not less secure than http.
Years and years they were complaining about the lack of progress in AI. Now that there is progress they are frightened?
I on the other hand would start by reading the EULA/Terms of Service. Maybe twice.
I was asking this as I heard about Germany wanting or doing wiretapping Skype, but this article says it isn't possible except by breaking AES. German police uses a trojan.
Probably the reason why China has its own version of Skype, TOM-Skype.
apropos wiretapping: Can someone enlighten me how Skype can be wiretapped although it uses AES? Does Skype have an additional key it gives away to governments? Did they add that in later versions?
Since some people at Blackhat conference disassembled and analyzed the code, couldn't people offer 'clean' and secure versions of Skype?