Cryptographically they are just as secure as each other (why you need the libraries from OpenSSL for OpenSSH), but it's the implementation that suffers.
I know it can sometimes be more of a burden, but thanks for all the work you have done Theo. I use OpenSSH everyday, and I find it to be one of the most reliable, most secure (even with all the NSA revelations) pieces of software in daily use around the world.
That being said, the more I investigate how to increase security, I am increasingly struck by how borked SSL is as a whole. (CA messes, vulnerable to MITM, DPI, etc).
My question is this: do you think at some point we should start re-evaluating our fundamental kernel architectures to help alleviate some of the security issues recently revealed? I mean, with hard-drive and bios level rootkits, etc, even SSH is standing on a foundation of sand it seems. Thoughts?
I have had it running on a spare old boxen for a few months now, but I would say you aren't addressing the point, which is mostly in how the code is written. I'm not claiming it's ready for production at all, but I think it is making a lot of changes based on principles that Linux/BSD are too entrenched to rethink, and I feel like we need to rethink the early days of OS design a bit more. Eg, lets have a new debate on kernel architectures.
Hi, there is currently some debate about the many eyes theory over on HNews (https://news.ycombinator.com/item?id=7342352) about why it's a fallacious argument, but in my view they have it all wrong, in that a core component of Linus's Law is that the amount of code is directly inverse to the amount of eyes that can hit all of that code (or a significant percentage).
Therefore, in my eyes it is the problem of code bloat that is undermining the open source movement more than anything. For example, the Linux kernel is now at, what, 10mil+ lines of code? That's insane. Minix 3, on the other hand, is at ~15k?
Before I tell my anecdotal story, I want to touch on the fact that the current educational environment is not conducive to this kind of think for yourself learning. We could have a lengthy debate about why this is, and I would mostly refer you to the Reece Committee and Norman Dodd's investigation into tax-exempt foundations. Suffice to say, the fact of the matter is that TPTB don't want a mass influx of independent self-taught thinkers, they want people just smart enough to push the buttons and papers they want them to but not smart enough to go above that (unless they are part of the aristocratic oligarchic class). This is the result of the purposeful introduction of the Prussian education system as a tool of class warfare, but I digress.
I happened to be very lucky in this regard, my highschool was a middle of no-where Mormon-area HS full of hicks and religious people, but a local had been in industry and decided to come back and head the technology department of the school, and brought with him his industry contacts. It was one of the first high-schools to have the cisco networking academy, and I had my CCNA by the age of 17. Besides all that, it was the attitude of this man, who I called my mentor, (Barry Williams of Apache County, if anyone cares to look it up) which really encouraged this kind of thinking. He would encourage us to solve problems on our own, and mostly left us to our own devices. I will never forget the first year I was there, where he organized a wargame, and each of us hooked up our issued cisco routers to a network and the challenge was to be the first to take down everyone elses network. After a few minutes I had taken out two other guys, but then he told all of us to stop, walked over to all our boxen, and simply unplugged the cables.
For a 16 year old that really had an impact on me about thinking "outside the box" of given parameters. Of course this kind of teaching did have it's downsides. I was only a fringe member of the group that did it, but I will never forget the day that people in suits showed up and talked to everyone around the high-tech center but us, and then the FBI held an assembly for this school of hicks and religious people about hacking (of which maybe 15 of us knew what that even was), because, apparently "A" (a senior while I was a sophomore) wasn't joking when he told us he got into the FBI servers. (in his defense, he said he only changed a spreadsheet and then changed it right back just to see if he could). Last I heard "A" was still on the run from the FBI for crimes committed after HS, and I know I definitely was tempted a few times to do naughty blackhat things but resisted the urge. The point is that while teaching critical thinking and hacking is good for the thinking abilities of the student, there can indeed be farther reaching consequences especially if they are of a lower socioeconomic status.
Note: Wow, I haven't logged into/. in ages. Not sure how I feel about it these days, was just bored at work and saw this story.
SSH is what you should be using as your connection core, and then using VNC on top if you want a gui. On windows, I've found the cygwin based SSH servers superior (have tested almost every single windows SSH server that is FOSS).
Side note: Wow it's been a long time since I logged into/.
I've been meaning for a while to write a guide for friends/family about this. I thing that first you really have to have an understanding of why this is happening, what the goals (hidden and obvious) are for those engaging in the spying, and determine where you stand on the subject before you can't make any sort of plan for implementing the level of privacy you desire. From there the entire discussion is about capabilities and methods. I will forgo the first points in the hope that the hacker mentality still thrives at least somewhat on/.
First, there was metadata,
Metadata combined with modern algorithms and big data can give it's owner just about everything on you. Here is what I consider metadata (this assumes every point compromised except local, imagine NSL's etc) IP - Your ISP will always know this. Circumvention includes tor, i2p, other anonymizing technologies. VPN does not secure your metadata. Wardriving. Rooted boxes. MAC - Much less of an issue, can be spoofed easily. Usually not know outside of edge network devices or ISP. Time - Heavily used but not well understood. Correlation of login times to compromised activity elsewhere holds up pretty good in court. The longer they've been watching you, the more dangerous to security this is. Other machine identifiers (agent strings, cookies, DNS, etc) - mostly a software (and knowledge) issue. Have to be able to prevent DNS leakage, spoof agent strings, keep machine clean of cookies (including harder to find/remove cookie types like flash) If you are on windows... this is your most likely failure point.
Then, there was low hanging fruit. Low hanging fruit: cloud services (webmail providers, social networking, cloud apps, cloud storage/computing, voip/txt chat protocols, etc) If you use these services you must expect them to be compromised and not private. You can choose to not use these services, or compartmentalize use of them (which is my preferred method). Data poisoning becomes more relevant here. Now, you can attempt to be anonymous while using them (say tails(tor) for facebook), but the data is still compromised. But if they can't tie my identity to X, why does it matter. Two reasons: one, because if you are using a service like that, all it takes is one slip up to tie everything to you, and two, because there are other ways beyond even time-data correlation to do so (writing analysis for example)
So, assuming you have figured out how to be relatively anonymous and encrypt your data (ssh, tcplay, dm-crypt, gpg) You self host as many services as possible, and directly connect to people/sites you "trust". You have in intelligence terms "gone dark" or "dropped off". I'm going to ignore the issue of DPI for the moment.
This is where the majority of people who care about privacy want to be. They want to be just enough of a hard target that it's not easy to grab up their info. This is what the 90's cryptowars were about. The ability to go dark.
The problem with this state is twofold: First, your data can still be retroactively inspected. So that AES-256 you think is nice and secure is finally cracked by the NSA (if it isn't already). Then they run it on gobbled up data from the past, and suddenly your encryption is worth jack. (save discussion of storage feasibility for another time, some of the math has already been done over on Schneiers blog)
Second, once you become a target for other reasons, they will resort to other methods. First with off-site but close compromise. Usually ISP. Then escalated to remote compromise (trojans, keyloggers, etc through 0-days or backdoors) If for some reason you are still safe at this point, commence black bag operation. While you are at work, they break into your house and plant a physical keylogger, audio bug, copy HDD, install trojan (MBR not encrypted? evil maid!) or any other number of growing possibilities. This boils down to your physical security. Think your ADT alarm system works? Think again (well, this depends on who you pissed off, normal
Typically "cashiers" charge about 50 points. The culture of trust in the black market is very interesting but I haven't seen many recent papers about it (post 07ish).
Sidenote: I haven't logged into/. for years... it feels good!
Its not always about money. I recently (about a year ago) went from being a partner at an up and coming IT firm, to the number 2 IT guy for an agriculture company. Before, I was stressed out, always worrying about this client or that client, income, taxes, ticket systems, just in general had too much on my plate. I left due to business structure and strategy disagreements, but now I am working in a laid back environment where I do a good job, and can still take the time to study after hours. IT guys are far too often over-taxed, over-used, and under-appreciated. That is why I think there needs to be a shift in the work environment for IT people or else we will continue to see this constant migration to the always greener grass.
You touch on the main point but miss it a bit. Reza Aslan explains how if you are a Palestinian who lives in a trash heap, you are much less likely to be active in terrorism, poorer people are too busy just trying to survive. It is the middle and higher classes, who have the time to ponder the world, who begin to feel disaffected and then use cognitive dissonance to justify certain acts. The majority of real "terrorists" (minus the average brainwashed sunni suicide bombers, who are often minimally religious) are the middle class, which happens to usually be those who go to school. In the middle east, most middle class parents want their kids to be either a doctor, lawyer, engineer, or scientist.
Haystack and Tor do fundamentally different things, and actually complement each other.
Tor focuses on using onion routing to ensure that a user's communications cannot be traced back to him or her, and only focuses on evading filters as a secondary goal. Because Tor uses standard SSL protocols, it is relatively easily to detect and block, especially during periods when the authorities are willing to intercept all encrypted traffic.
On the other hand, Haystack focuses on being unblockable and innocuous while simultaneously protecting the privacy of our users. We do not employ onion routing, though our proxy system does provide a limited form of the same benefit.
To a computer, a user using Haystack appears to be engaging in normal, unencrypted web browsing, which raises far fewer suspicions than many encrypted connections. Authorities can block Haystack only by completely disabling access to the internet, which gives Haystack greater availability in crises, during which the authorities may be perfectly willing to block all obviously-encrypted traffic.
Translation: The Americans who are Neoconservatives, a political philosophy which supports using modern American economic and military power to bring liberalism, democracy, and human rights to other countries, and are also Facists, which advocates an authoritarian nationalist political ideology that seeks to organize a nation according to corporatist perspectives, values, and systems, including the political system and the economy, are at it again... Put that way, it really isn't that irrational, as those people in particular WERE the driving force for the invasions. **USMC Iraq Combat vet**
Forgot to finish-- I would actually argue that the brunt of their intention was representative of the very definition (which is in itself highly debatable) of terrorism: primarily being to inculcate fear.
No one with a lick of self respect or sense believes "they" really thought it would remove armies from foreign lands. Reza Aslan says they just use things like foreign military bases, palestine, etc, as an excuse, but the mistake many make is assuming those aren't valid concerns all on their own. The leaders of AQ are too smart to think such a dumb thing.
I've been aware of this for quite some time, and will probably be getting the book anyway. What those of you new to the story are failing to understand, is that they are not just purging names. I agree the names should be purged, but in their press release (too lazy to go find it), they state they want to sanitize names, AMONG OTHER THINGS. This is the key here, using the chance they have to go ahead and take care of any other passages that are a little too embarrassing.... Ideally, I hope someone gets the original, redacts only the names, and then publishes it. Comon wikileaks, get on it.
The potential for abuse is the key here. Do they have to provide any kind of solid evidence of their accusations? If not, they could theoretically (though it would raise flags) just randomly pick people whos info they want, make some shit up, and subpoena for their info. Now imagine that on a mass scale (the internet)
Allow me to jump if you will. Industrial, your original statement is a good one, where you basically ask for someone to explain why it feels "cowboyish" to you, but then I feel you misinterpret SmallFurry's intention, you even say "Don't pretend that my statement was about sticking my head in the sand suggesting that I don't want to know where corruption exists. My statement was that the manner in which this is being performed is irresponsible and is harming the cause in those that would normally support something like wikileaks." I feel SmallFurry misdirected his statements at you (he even says so) but what he/she is really saying is that it is a growing trend. Right off the bat there has just been some bad communication here. That aside, both of you in last few posts fall into argument mode and lose focus of the original subject, that being wikileaks methods. You jumped from asking questions with an open mind about wikileaks to firmly stating that you don't and will not support them, and I feel your conclusion a bit premature.
If I may, I feel wikileaks serves and will continue to serve a valuable purpose in the information age. They have made two major mistakes, that everyone has focused on, but I feel and hope they will learn their lesson from. These two major mistakes are IMHO a) the releasing of an edited and editorialized video of the apache shootings and b) not taking the extra time to fully purge names from the Afghan war diaries. If we put these two major things to the side, wikileaks generally does a good job, and is the one that they should stick to, of simply releasing documents with no editorializing. They will quickly undermine themselves otherwise, and that is why they have recently felt "cowboyish". I am a former USMC Iraq combat vet, and still have plenty of contacts in State and DoD, a couple of which are at high levels of intel. They all agree with me (and these are clearance holding guys that advise generals and above) that wikileaks has an important part to play here, mostly due to one of the points Small Furry makes, being the major over-classification of material that shouldn't be, and every single one of them actively acknowledges the US disinfo campaign against Wikileaks.
People only think its infrequent because the police are so good as covering their asses, from blatant cover up to having the most cutthroat lawyer in town as a DA, it is the exception, not the rule, that you actually hear about it. Pick 50 random police districts from a diverse selection of the US, and I bet you can find at least one report within the year of a blatant abuse of power, often followed by a "two month suspension".
Just have to point out, that Echelon makes the rest of what you talked about look like a.20 megapixel camera comared to a true HDR videocamera.. It is a AUSCANZUKUS program, but the real genius behind it is the NSA. The echelon program was started in about 71 as best as we can tell, but has evolved into a monster that no one person knows all about (including the oversight committee) and has technology that is years ahead of the rest of the world. One recent comparison on the matter that has stuck in my head, is that at the Spy Museam in DC, there is (not sure if it is still there) a dragonfly fitted with a microphone for spying on people without drawing attention. The catch? It was developed over 26 years ago... just imagine where they are today. It should also be noted that while the NSA gets a lot of attention, the CIA's office of Science and Technology is at about the same level, and they share a lot of projects and information.
TLDR : Echelon dwarfs just about everything else, and is already implemented....
Slashdot Mirror
https://www.ietf.org/rfc/rfc42...
Cryptographically they are just as secure as each other (why you need the libraries from OpenSSL for OpenSSH), but it's the implementation that suffers.
I know it can sometimes be more of a burden, but thanks for all the work you have done Theo. I use OpenSSH everyday, and I find it to be one of the most reliable, most secure (even with all the NSA revelations) pieces of software in daily use around the world.
That being said, the more I investigate how to increase security, I am increasingly struck by how borked SSL is as a whole. (CA messes, vulnerable to MITM, DPI, etc).
My question is this: do you think at some point we should start re-evaluating our fundamental kernel architectures to help alleviate some of the security issues recently revealed? I mean, with hard-drive and bios level rootkits, etc, even SSH is standing on a foundation of sand it seems. Thoughts?
I have had it running on a spare old boxen for a few months now, but I would say you aren't addressing the point, which is mostly in how the code is written. I'm not claiming it's ready for production at all, but I think it is making a lot of changes based on principles that Linux/BSD are too entrenched to rethink, and I feel like we need to rethink the early days of OS design a bit more. Eg, lets have a new debate on kernel architectures.
Hi, there is currently some debate about the many eyes theory over on HNews (https://news.ycombinator.com/item?id=7342352) about why it's a fallacious argument, but in my view they have it all wrong, in that a core component of Linus's Law is that the amount of code is directly inverse to the amount of eyes that can hit all of that code (or a significant percentage).
Therefore, in my eyes it is the problem of code bloat that is undermining the open source movement more than anything. For example, the Linux kernel is now at, what, 10mil+ lines of code? That's insane. Minix 3, on the other hand, is at ~15k?
What are your thoughts on this problem?
Before I tell my anecdotal story, I want to touch on the fact that the current educational environment is not conducive to this kind of think for yourself learning. We could have a lengthy debate about why this is, and I would mostly refer you to the Reece Committee and Norman Dodd's investigation into tax-exempt foundations. Suffice to say, the fact of the matter is that TPTB don't want a mass influx of independent self-taught thinkers, they want people just smart enough to push the buttons and papers they want them to but not smart enough to go above that (unless they are part of the aristocratic oligarchic class). This is the result of the purposeful introduction of the Prussian education system as a tool of class warfare, but I digress.
I happened to be very lucky in this regard, my highschool was a middle of no-where Mormon-area HS full of hicks and religious people, but a local had been in industry and decided to come back and head the technology department of the school, and brought with him his industry contacts. It was one of the first high-schools to have the cisco networking academy, and I had my CCNA by the age of 17. Besides all that, it was the attitude of this man, who I called my mentor, (Barry Williams of Apache County, if anyone cares to look it up) which really encouraged this kind of thinking. He would encourage us to solve problems on our own, and mostly left us to our own devices. I will never forget the first year I was there, where he organized a wargame, and each of us hooked up our issued cisco routers to a network and the challenge was to be the first to take down everyone elses network. After a few minutes I had taken out two other guys, but then he told all of us to stop, walked over to all our boxen, and simply unplugged the cables.
For a 16 year old that really had an impact on me about thinking "outside the box" of given parameters. Of course this kind of teaching did have it's downsides. I was only a fringe member of the group that did it, but I will never forget the day that people in suits showed up and talked to everyone around the high-tech center but us, and then the FBI held an assembly for this school of hicks and religious people about hacking (of which maybe 15 of us knew what that even was), because, apparently "A" (a senior while I was a sophomore) wasn't joking when he told us he got into the FBI servers. (in his defense, he said he only changed a spreadsheet and then changed it right back just to see if he could). Last I heard "A" was still on the run from the FBI for crimes committed after HS, and I know I definitely was tempted a few times to do naughty blackhat things but resisted the urge. The point is that while teaching critical thinking and hacking is good for the thinking abilities of the student, there can indeed be farther reaching consequences especially if they are of a lower socioeconomic status.
Note: Wow, I haven't logged into /. in ages. Not sure how I feel about it these days, was just bored at work and saw this story.
SSH is what you should be using as your connection core, and then using VNC on top if you want a gui. On windows, I've found the cygwin based SSH servers superior (have tested almost every single windows SSH server that is FOSS).
Side note: Wow it's been a long time since I logged into /.
I've been meaning for a while to write a guide for friends/family about this. I thing that first you really have to have an understanding of why this is happening, what the goals (hidden and obvious) are for those engaging in the spying, and determine where you stand on the subject before you can't make any sort of plan for implementing the level of privacy you desire. From there the entire discussion is about capabilities and methods. I will forgo the first points in the hope that the hacker mentality still thrives at least somewhat on /.
First, there was metadata,
Metadata combined with modern algorithms and big data can give it's owner just about everything on you. Here is what I consider metadata
(this assumes every point compromised except local, imagine NSL's etc)
IP - Your ISP will always know this. Circumvention includes tor, i2p, other anonymizing technologies. VPN does not secure your metadata. Wardriving. Rooted boxes.
MAC - Much less of an issue, can be spoofed easily. Usually not know outside of edge network devices or ISP.
Time - Heavily used but not well understood. Correlation of login times to compromised activity elsewhere holds up pretty good in court. The longer they've been watching you, the more dangerous to security this is.
Other machine identifiers (agent strings, cookies, DNS, etc) - mostly a software (and knowledge) issue. Have to be able to prevent DNS leakage, spoof agent strings, keep machine clean of cookies (including harder to find/remove cookie types like flash) If you are on windows... this is your most likely failure point.
Then, there was low hanging fruit.
Low hanging fruit: cloud services (webmail providers, social networking, cloud apps, cloud storage/computing, voip/txt chat protocols, etc) If you use these services you must expect them to be compromised and not private. You can choose to not use these services, or compartmentalize use of them (which is my preferred method). Data poisoning becomes more relevant here. Now, you can attempt to be anonymous while using them (say tails(tor) for facebook), but the data is still compromised. But if they can't tie my identity to X, why does it matter. Two reasons: one, because if you are using a service like that, all it takes is one slip up to tie everything to you, and two, because there are other ways beyond even time-data correlation to do so (writing analysis for example)
So, assuming you have figured out how to be relatively anonymous and encrypt your data (ssh, tcplay, dm-crypt, gpg) You self host as many services as possible, and directly connect to people/sites you "trust". You have in intelligence terms "gone dark" or "dropped off". I'm going to ignore the issue of DPI for the moment.
This is where the majority of people who care about privacy want to be. They want to be just enough of a hard target that it's not easy to grab up their info. This is what the 90's cryptowars were about. The ability to go dark.
The problem with this state is twofold: First, your data can still be retroactively inspected. So that AES-256 you think is nice and secure is finally cracked by the NSA (if it isn't already). Then they run it on gobbled up data from the past, and suddenly your encryption is worth jack. (save discussion of storage feasibility for another time, some of the math has already been done over on Schneiers blog)
Second, once you become a target for other reasons, they will resort to other methods. First with off-site but close compromise. Usually ISP. Then escalated to remote compromise (trojans, keyloggers, etc through 0-days or backdoors) If for some reason you are still safe at this point, commence black bag operation. While you are at work, they break into your house and plant a physical keylogger, audio bug, copy HDD, install trojan (MBR not encrypted? evil maid!) or any other number of growing possibilities. This boils down to your physical security. Think your ADT alarm system works? Think again (well, this depends on who you pissed off, normal
Typically "cashiers" charge about 50 points. The culture of trust in the black market is very interesting but I haven't seen many recent papers about it (post 07ish).
Sidenote: I haven't logged into /. for years... it feels good!
Its not always about money. I recently (about a year ago) went from being a partner at an up and coming IT firm, to the number 2 IT guy for an agriculture company. Before, I was stressed out, always worrying about this client or that client, income, taxes, ticket systems, just in general had too much on my plate. I left due to business structure and strategy disagreements, but now I am working in a laid back environment where I do a good job, and can still take the time to study after hours. IT guys are far too often over-taxed, over-used, and under-appreciated. That is why I think there needs to be a shift in the work environment for IT people or else we will continue to see this constant migration to the always greener grass.
So if you are a threat if you are an: obese imbecile who is content, an obese intellectual who loves whining, a skinny whining inbecile....
You touch on the main point but miss it a bit. Reza Aslan explains how if you are a Palestinian who lives in a trash heap, you are much less likely to be active in terrorism, poorer people are too busy just trying to survive. It is the middle and higher classes, who have the time to ponder the world, who begin to feel disaffected and then use cognitive dissonance to justify certain acts. The majority of real "terrorists" (minus the average brainwashed sunni suicide bombers, who are often minimally religious) are the middle class, which happens to usually be those who go to school. In the middle east, most middle class parents want their kids to be either a doctor, lawyer, engineer, or scientist.
Haystack and Tor do fundamentally different things, and actually complement each other.
Tor focuses on using onion routing to ensure that a user's communications cannot be traced back to him or her, and only focuses on evading filters as a secondary goal. Because Tor uses standard SSL protocols, it is relatively easily to detect and block, especially during periods when the authorities are willing to intercept all encrypted traffic.
On the other hand, Haystack focuses on being unblockable and innocuous while simultaneously protecting the privacy of our users. We do not employ onion routing, though our proxy system does provide a limited form of the same benefit.
To a computer, a user using Haystack appears to be engaging in normal, unencrypted web browsing, which raises far fewer suspicions than many encrypted connections. Authorities can block Haystack only by completely disabling access to the internet, which gives Haystack greater availability in crises, during which the authorities may be perfectly willing to block all obviously-encrypted traffic.
Translation: The Americans who are Neoconservatives, a political philosophy which supports using modern American economic and military power to bring liberalism, democracy, and human rights to other countries, and are also Facists, which advocates an authoritarian nationalist political ideology that seeks to organize a nation according to corporatist perspectives, values, and systems, including the political system and the economy, are at it again... Put that way, it really isn't that irrational, as those people in particular WERE the driving force for the invasions. **USMC Iraq Combat vet**
Forgot to finish-- I would actually argue that the brunt of their intention was representative of the very definition (which is in itself highly debatable) of terrorism: primarily being to inculcate fear.
No one with a lick of self respect or sense believes "they" really thought it would remove armies from foreign lands. Reza Aslan says they just use things like foreign military bases, palestine, etc, as an excuse, but the mistake many make is assuming those aren't valid concerns all on their own. The leaders of AQ are too smart to think such a dumb thing.
I've been aware of this for quite some time, and will probably be getting the book anyway. What those of you new to the story are failing to understand, is that they are not just purging names. I agree the names should be purged, but in their press release (too lazy to go find it), they state they want to sanitize names, AMONG OTHER THINGS. This is the key here, using the chance they have to go ahead and take care of any other passages that are a little too embarrassing.... Ideally, I hope someone gets the original, redacts only the names, and then publishes it. Comon wikileaks, get on it.
The potential for abuse is the key here. Do they have to provide any kind of solid evidence of their accusations? If not, they could theoretically (though it would raise flags) just randomly pick people whos info they want, make some shit up, and subpoena for their info. Now imagine that on a mass scale (the internet)
The fact that the "pool" in this case the internet, has a few billion people in it....
Really interest take on the subject that I had never considered. Thanks
Allow me to jump if you will. Industrial, your original statement is a good one, where you basically ask for someone to explain why it feels "cowboyish" to you, but then I feel you misinterpret SmallFurry's intention, you even say "Don't pretend that my statement was about sticking my head in the sand suggesting that I don't want to know where corruption exists. My statement was that the manner in which this is being performed is irresponsible and is harming the cause in those that would normally support something like wikileaks." I feel SmallFurry misdirected his statements at you (he even says so) but what he/she is really saying is that it is a growing trend. Right off the bat there has just been some bad communication here. That aside, both of you in last few posts fall into argument mode and lose focus of the original subject, that being wikileaks methods. You jumped from asking questions with an open mind about wikileaks to firmly stating that you don't and will not support them, and I feel your conclusion a bit premature.
If I may, I feel wikileaks serves and will continue to serve a valuable purpose in the information age. They have made two major mistakes, that everyone has focused on, but I feel and hope they will learn their lesson from. These two major mistakes are IMHO a) the releasing of an edited and editorialized video of the apache shootings and b) not taking the extra time to fully purge names from the Afghan war diaries. If we put these two major things to the side, wikileaks generally does a good job, and is the one that they should stick to, of simply releasing documents with no editorializing. They will quickly undermine themselves otherwise, and that is why they have recently felt "cowboyish". I am a former USMC Iraq combat vet, and still have plenty of contacts in State and DoD, a couple of which are at high levels of intel. They all agree with me (and these are clearance holding guys that advise generals and above) that wikileaks has an important part to play here, mostly due to one of the points Small Furry makes, being the major over-classification of material that shouldn't be, and every single one of them actively acknowledges the US disinfo campaign against Wikileaks.
Yeah because in the past false documents are so hard to notice.... *cough* yellow cake*cough*
I see what you are saying now, that having someone interpret it and make some summaries of the information therein would indeed be valuable.
Meant to say one report in each district...
People only think its infrequent because the police are so good as covering their asses, from blatant cover up to having the most cutthroat lawyer in town as a DA, it is the exception, not the rule, that you actually hear about it. Pick 50 random police districts from a diverse selection of the US, and I bet you can find at least one report within the year of a blatant abuse of power, often followed by a "two month suspension".
Just have to point out, that Echelon makes the rest of what you talked about look like a .20 megapixel camera comared to a true HDR videocamera.. It is a AUSCANZUKUS program, but the real genius behind it is the NSA. The echelon program was started in about 71 as best as we can tell, but has evolved into a monster that no one person knows all about (including the oversight committee) and has technology that is years ahead of the rest of the world. One recent comparison on the matter that has stuck in my head, is that at the Spy Museam in DC, there is (not sure if it is still there) a dragonfly fitted with a microphone for spying on people without drawing attention. The catch? It was developed over 26 years ago... just imagine where they are today. It should also be noted that while the NSA gets a lot of attention, the CIA's office of Science and Technology is at about the same level, and they share a lot of projects and information.
TLDR : Echelon dwarfs just about everything else, and is already implemented....