They will still need the original computer to decrypt the media files as they will not have the TPM modules and the hardware keys to their disposal.
Even if the password is recoverable they will still have to go through a considerably more complex forensic exercise.
I am saying if, because TPM can allow any OS (be it Vista, be it Linux with TPM) to lock down access to any data (and even booting) based on a combination of machine keys and credentials. I can bet that this will be used massively in corporate rollouts to prevent data theft and unauthorised access.
Many of these features are available even now. What scares the police is not the encryption, it is the fact that it all can be locked up and encrypted without user concent on the average machine of John Smith. Automagically...
The problem UK govt is having and US govt will have the moment they realise what is going on is that any media files on Vista PCs when distributed correctly via the supplied Vista Windows Media frameworks will be immediately encrypted and locked down using the TPM module to the specific machine. On top of that this will be determined by the people who distribute the files, not the users. This makes the current approach of taking disks out and hooking them to a forensic environment unfeasible. They will have to be decrypted on the machine after the user has logged in. It is sufficient for the user to refuse to log in on the machine and the police is stuffed.
As a result any attempt to collect proof of child pr0n and b00tleg movies/music will run into some serious difficulties as long as the providers of illegal goods have done their job of using Windows Vista right.
Frankly, the UK govt should whinge elsewhere. MPAA and the TP group is a good start. Whinging at MSFT is not going to get them anywhere because it will be not just MSFT, it will be everyone implementing this on every device in 5 years time.
Oracle used to be the primary database for building telephony and network equipment. If you take a switch from 5-7 years ago quite a few were carrying an Oracle install.
Nowdays it is either MySQL or BDB.
Granted, this is a low volume market it is still a market for Oracle where it directly competes with BDB and BDB won the competition hands down.
Also, on the heels of the telecoms industry other industries have started looking at using a backend like BDB and embedding it into applications instead of running everything over an SQL layer. Personally I do not like the approach, but it is gaining popularity. It definitely makes sense for a lot of stuff when combined with an object persistence layer.
You can add to that most sabotage and bomb making material being illegal in the UK and Germany to the point where it is impossible to write a truthfull article about the WWII resistance methods and post it on the web.
If put on my website a description of any of the devices used for train derailment by the Russian partisans or the French resistance my hosting company will get smacked by a takedown notice right away. And it will comply.
Same for a description of any of the biological weapons delivery systems pioneered by the Japanese in WWII (as they can be made in a basement), same for the methods used by Germans to distribute cholera in the civilian population on the Eastern front in 1917, so on so fourth.
It has been the game for me 15 years now starting from that day when I got kicked off the Uni Vax for compiling and installing it and till today. Other games came and went. Nethack remained. And it will stay.
You should make clear who is stupid. US and UK banking Security staff and security IT are the ones that should proudly carry this badge.
Out of all my accounts, the only one to use proper security using client side personal SSL certificates is in Eastern Europe (the US and UK use pins). Using client side SSL and taking the username out of the certificate is trivial to implement and it kills 99% of fishing outright because the SSL handshake between the client and the server will never complete for anything but the legitimate site.
The problem is that there is no UK or US bank to implement it.
With all due respect Asterisk is not an end-luser solution. Administering it and configuring it requires some mental effort. This limits it to a fraction of the Internet population.
Skype is a an end-luser-only solution. This makes it the solution of choice for the rest of the Internet end-luser population until a better alternative comes along.
As far as the "limit conferencing to 5" this is quite an interesting twist. Conferencing is clearly a business feature. Very few consumers are interested in it. At the same time the main complaint of AMD against Intel is about practices that deliberately lock out AMD from corporate markets (not the consumer ones). So by doing a restriction on a business related service Intel is not just shooting itself in the foot. It is doing it with a bazooka while looking at the exhaust funnel.
Skype is also shooting themselves in the foot. If they claim that this is for technical reasons (which sooner or later they will) AMD can take them to court and force them to enforce this limit on all AMD driven hypernodes. While the argument is clearly far fetched, there is still a fair chance that a good AMD lawyer may manage to get Skype smacked with a "limit to 5 for anything on AMD " injunction. Now this will be seriously entertaining. Most hypernodes are consumers and students. This is AMD land. Not Intel who is usually sitting behind the firewall. So, I like the smell of collapsed P2P networks in the morning. It smells like victory.
It will be also a good idea for AMD to buy a few congresscritters to force mandatory legal interception provisions on Skype.
I see great entertainment ahead. This is worth watching and following. Time to chose a front row seat.
That is not Your first computer. That is the first one you used. Different cattle of fish.
As far as mine I can possibly class a Harris 286 clone at 25MHz with a VLSI motherboard as the first really mine. I bought all the parts for it and assembled it the winter of 1992-1993. The thing was blazing fast. Faster than most 386-es at the time which were crawling at 16 or 20 MHz using multiple wait states to access memory.
Various ATs, XTs and Apple clones before that do not really count because they were not my precious.... Same for VM, VMS and Unix accounts. But my precious was the first computer I actually payed some of my own money for (my significant other put quite a bit of money towards it as well). In fact it is not fully dead. I still use the B/W VGA monitor from it from time to time.
They're simply not nearly as professional as letters were in the past.. Absobloodylutely. Flamebait is clearly not what it used to be. Once upon a time flamebait was proper flamebait.
Non-US countries have been quietly running this since 1997. Been there, done that.
It is just the US waking up and finally realising that instead of throwing good money after bad you can use your network intelligently. In fact not even US. Baby Bells. Homo Telephonicus. The scientists are unsure if it qualifies as a subspecies of Homo Sapiens. Most likely not.
Other US companies like Level3 and Global Crossing have had QoS and possibility to pay for QoS since 2001 or so.
All in all the Baby Bells are gatecrashing into a party after being late and do not have any clue what the party is all about. You cannot make money by using QoS to discriminate against someone if you are a carrier. You will get run into the ground by lawsuits. All major content providers have some form of contractual agreement and direct connection to all Tier 1 ISPs. As a result it is not even necessary to call the legislators. Google and Yahoo have more then enough contractual ammunition to unleash the lawyers of war without buying extra congresscritters.
At the same time you can make a shitload of money by providing improved QoS without specifically discriminating against someone within your spare resources and capacity. You can also save a shitload of money through improving network resource utilisation by quietly throttling P2P and bandwidth hogs. The majority of paying users are usually happy as a result. This is something the rest of the world have been doing quietly for a very long time. The further to the east and the further away from the fiber glut - the more prevalent QoS usage.
The problem with Baby Bells is that Homo Telephonicus does not see how to make money in the long term. It sees an opportunity to make "Easy Money" where it does not really exist.
But they do have a moral imperative and a duty not to promote dictatorship.
Excuse me... It is possibly my extremely short and volatile memory... But wasn't United Fruit an American company? How many dictatorships in Latin America were planted and maintained in its name in the last century?
So as far as historical precedent is concerned the answer is definitely and clearly NO. America promotes what is good for american business. In the 20th century it was "if it is necessary to promote a dictatorship so that there are no trade unions and fruit and oil prices are cheap than it shall be a dictatorship". Now it is "if it is necessary to promote a dictatorship so that there are no independent trade unions and toy, textile and electronics prices are cheap than it shall be a dictatorship".
Nothing has changed and nothing is going to change unless the fundamental nature of who pulls the strings on Capitol hill changes.
Even a mediocre company PBX can record any call nowdays. And if it is VOIP recording all traffic is so trivial that it is not even funny. So on your expectation of privacy in a corporate phone call I can say only one thing. Bwahahahaha...
Back then the bay of Venice was freezing every now and than, Black Sea in the north was freezing nearly every year, Boshporus was freezing several times a century, Greenland was Green and Iceland was Ice.
No thanks. While I do not care about Greenland and Iceland I clearly do not fancy the rest.
If historical data is to be believed when the climate in Europe gets warmer it also gets more continental. While the average temperature goes up the winter extremes go seriously down.
As far as America is concerned the climate there was also different. How much - we do not really know. There were several moderately developed civilisations in North America at the time. Pueblo Indians, some tribes along the Missisipi river and a few others. All of them went into decline before the white man came and we do not really know why. The question of why is really open.
Our current civilisation is closely related to our current climate. Crops, working habits, culture, society, the entire thing. Climate change is going to take its toll on all of that. Looking back in history definitely nothing to be happy about. No human civilisation so far has survived a massive climate change. In all cases it ended up with the Barbarians taking over...
This will mean the blackberry server talking to the operator which in practice means the customer talking to the operator. The operators will not like it.
The main reason for BB success is the fact that RIM talks to the operator, not the customer. As a result the operators have considerably less security hassle and most importantly no billing disputes. So no matter how much they dislike RIM they prefer to deal with them.
While at it, I have always asked myself the question - is the encryption end-to-end or the messages are stored at RIM unencrypted. Or what are the possibilities for RIM to successfully escrow a key? After all all registration, pins, etc goes through it... All of the governmentcritter email in cleartext (or easily decryptable)... Interesting thought...
Seconded - as one of my profs in high school in the days before the PC fad used to say: "Ya cannot clap with one hand and have your soul in paradise at the same time". The problem is that while you, me and everyone down the street do not want to see things like this happen none of us has the moral fiber to call our pension fund manager and in clear terms tell them to stop investing in any company that does business in China under the direct threat of taking your money elsewhere.
The people in charge at Yahoo! make the moral/ethical decisions and they've chosen profit.
Incorrect. It is not them. It is their shareholders. If Yahoo would have decided to miss this business opportunity on moral grounds it would have been eaten alive by the shareholders.
If you care that much about Chinese civil rights you should start elsewhere. You should start by taking the phone and calling your pension fund and asking them for their investment policy. Threaten to move your money elsewhere if they do not apply at least some minimal moral fiber. Even better coordinate your actions with a few more pension holders.
This worked 20 years ago for South Africa. No reason why it should not work now.
You do not debug a complex network application (or any other asynchronous application) via a debugger.
You log it.
Further on that, it is important to have selective logging. An example of good logging is recent sendmail whose logging can be selectively tuned and turned on and off for various parts of the application.
If all of your machines are synchronising versus the same server and they are on the same LAN - who cares. Their relative time difference will be in the sub 10ms range.
If you need to test network events never use a real network in the first instance. Do it with a simulated network like BSD DUMMYNET and configure NTP to pass through unmolested. This will allow you to introduce arbitrary delays, packet loss, jitter and bandwidth constraints while retaining nearly perfect synchronisation between systems.
Deutsch did not graduate college. The fact that he is not a college graduate does not in of itself eliminate him from a spokespersons job. However, the major issue is that he lied about his graduation and because of that lapse in integrity should not be trusted.
Nope, here you got it wrong pal. This is what uniquely qualifies him to be a governmental spokeperson. Just ask anyone on this side of the pond. He will be spot on amidst Bliars, Darlings and Blunketts.
Putting people in orbit? - nope. This is what Soyuz does considerably better. It can reach higher orbit, it has longer autonomy and considerably smaller cost
Putting payload into oribit? - nope. If you put only payload onto Soyuz (especially in the Soyuz/Fregat variety) it can blast it to escape velocity. Shuttle cannot. Soyuz launch cost is also considerably less.
The only thing the shuttle is good at is launching payload and people at the same time when the payload has to be delivered to the same place as people and possibly serviced prior to installation. In reality this is usefull only for space construction and nothing else which funnily enough is the program US insists on closing. Even in that case sending the payload on a proper heavy booster like Ariana, Proton, Energia or Delta 5 and people separately will end up being cheaper and safer.
The problem is that you after that pass that description past the company HR.
While HR usually are not going to edit a job spec they are lazy and incompetent and instead of getting their arse in gear and putting the advert on a job board themselves they call their "friends" from the agencies. Quite a few of the agencies will immediately convert everything that you spec-ed as desired into required.
Here is an example - 2 years ago I applied to a position advertised through an agency. When talking to the agent I was told that I need to have all of the following - a Red Hat certification, a Solaris Certification, a CCIE, a Juniper Certification and an MSCE. This was for a 45Kpounds operational job. I told them to f*** off.
1 year later I found out who put out the spec. They had to withdraw it because every single person they got had lied to get an interview and all of these were actually optional.
By the way as far as the subject of the article this is a very positive development. It is not often that I like something from across the ocean to filter to the UK, but this is something that I would like seeing here. This will make companies specify exactly what they want and will make more companies announce directly instead of using agencies to ensure that that the requirements are not altered.
This an experiment which has only a positive control group. There is no negative control group which means that this is not a scientific observation but a boatload of blah blah blah.
So the mere fact of publishing it in English will be more then enough.
The species of bird of paradise which was thought to be extinct and is found there should easily fetch a 5 figure to 6 figure sum from some bird collectors. Same for the other stuff.
Slashdot Mirror
Even if the password is recoverable they will still have to go through a considerably more complex forensic exercise.
I am saying if, because TPM can allow any OS (be it Vista, be it Linux with TPM) to lock down access to any data (and even booting) based on a combination of machine keys and credentials. I can bet that this will be used massively in corporate rollouts to prevent data theft and unauthorised access.
Many of these features are available even now. What scares the police is not the encryption, it is the fact that it all can be locked up and encrypted without user concent on the average machine of John Smith. Automagically...
Err... You did not understand the target.
The problem UK govt is having and US govt will have the moment they realise what is going on is that any media files on Vista PCs when distributed correctly via the supplied Vista Windows Media frameworks will be immediately encrypted and locked down using the TPM module to the specific machine. On top of that this will be determined by the people who distribute the files, not the users. This makes the current approach of taking disks out and hooking them to a forensic environment unfeasible. They will have to be decrypted on the machine after the user has logged in. It is sufficient for the user to refuse to log in on the machine and the police is stuffed.
As a result any attempt to collect proof of child pr0n and b00tleg movies/music will run into some serious difficulties as long as the providers of illegal goods have done their job of using Windows Vista right.
Frankly, the UK govt should whinge elsewhere. MPAA and the TP group is a good start. Whinging at MSFT is not going to get them anywhere because it will be not just MSFT, it will be everyone implementing this on every device in 5 years time.
It does.
Oracle used to be the primary database for building telephony and network equipment. If you take a switch from 5-7 years ago quite a few were carrying an Oracle install.
Nowdays it is either MySQL or BDB.
Granted, this is a low volume market it is still a market for Oracle where it directly competes with BDB and BDB won the competition hands down.
Also, on the heels of the telecoms industry other industries have started looking at using a backend like BDB and embedding it into applications instead of running everything over an SQL layer. Personally I do not like the approach, but it is gaining popularity. It definitely makes sense for a lot of stuff when combined with an object persistence layer.
The best way to beat competition is to buy it. Capitalism at work.
You can add to that most sabotage and bomb making material being illegal in the UK and Germany to the point where it is impossible to write a truthfull article about the WWII resistance methods and post it on the web.
If put on my website a description of any of the devices used for train derailment by the Russian partisans or the French resistance my hosting company will get smacked by a takedown notice right away. And it will comply.
Same for a description of any of the biological weapons delivery systems pioneered by the Japanese in WWII (as they can be made in a basement), same for the methods used by Germans to distribute cholera in the civilian population on the Eastern front in 1917, so on so fourth.
It is scary when history becomes illegal.
Second that
Nethack is the ultimate classic game.
It has been the game for me 15 years now starting from that day when I got kicked off the Uni Vax for compiling and installing it and till today. Other games came and went. Nethack remained. And it will stay.
Walk softly and carry a +7 Tsurugy of Muramasa.
You should make clear who is stupid. US and UK banking Security staff and security IT are the ones that should proudly carry this badge.
Out of all my accounts, the only one to use proper security using client side personal SSL certificates is in Eastern Europe (the US and UK use pins). Using client side SSL and taking the username out of the certificate is trivial to implement and it kills 99% of fishing outright because the SSL handshake between the client and the server will never complete for anything but the legitimate site.
The problem is that there is no UK or US bank to implement it.
With all due respect Asterisk is not an end-luser solution. Administering it and configuring it requires some mental effort. This limits it to a fraction of the Internet population.
Skype is a an end-luser-only solution. This makes it the solution of choice for the rest of the Internet end-luser population until a better alternative comes along.
As far as the "limit conferencing to 5" this is quite an interesting twist. Conferencing is clearly a business feature. Very few consumers are interested in it. At the same time the main complaint of AMD against Intel is about practices that deliberately lock out AMD from corporate markets (not the consumer ones). So by doing a restriction on a business related service Intel is not just shooting itself in the foot. It is doing it with a bazooka while looking at the exhaust funnel.
Skype is also shooting themselves in the foot. If they claim that this is for technical reasons (which sooner or later they will) AMD can take them to court and force them to enforce this limit on all AMD driven hypernodes. While the argument is clearly far fetched, there is still a fair chance that a good AMD lawyer may manage to get Skype smacked with a "limit to 5 for anything on AMD " injunction. Now this will be seriously entertaining. Most hypernodes are consumers and students. This is AMD land. Not Intel who is usually sitting behind the firewall. So, I like the smell of collapsed P2P networks in the morning. It smells like victory.
It will be also a good idea for AMD to buy a few congresscritters to force mandatory legal interception provisions on Skype.
I see great entertainment ahead. This is worth watching and following. Time to chose a front row seat.
As far as mine I can possibly class a Harris 286 clone at 25MHz with a VLSI motherboard as the first really mine. I bought all the parts for it and assembled it the winter of 1992-1993. The thing was blazing fast. Faster than most 386-es at the time which were crawling at 16 or 20 MHz using multiple wait states to access memory.
Various ATs, XTs and Apple clones before that do not really count because they were not my precious.... Same for VM, VMS and Unix accounts. But my precious was the first computer I actually payed some of my own money for (my significant other put quite a bit of money towards it as well). In fact it is not fully dead. I still use the B/W VGA monitor from it from time to time.
They're simply not nearly as professional as letters were in the past.. Absobloodylutely. Flamebait is clearly not what it used to be. Once upon a time flamebait was proper flamebait.
It is just the US waking up and finally realising that instead of throwing good money after bad you can use your network intelligently. In fact not even US. Baby Bells. Homo Telephonicus. The scientists are unsure if it qualifies as a subspecies of Homo Sapiens. Most likely not. Other US companies like Level3 and Global Crossing have had QoS and possibility to pay for QoS since 2001 or so.
All in all the Baby Bells are gatecrashing into a party after being late and do not have any clue what the party is all about. You cannot make money by using QoS to discriminate against someone if you are a carrier. You will get run into the ground by lawsuits. All major content providers have some form of contractual agreement and direct connection to all Tier 1 ISPs. As a result it is not even necessary to call the legislators. Google and Yahoo have more then enough contractual ammunition to unleash the lawyers of war without buying extra congresscritters.
At the same time you can make a shitload of money by providing improved QoS without specifically discriminating against someone within your spare resources and capacity. You can also save a shitload of money through improving network resource utilisation by quietly throttling P2P and bandwidth hogs. The majority of paying users are usually happy as a result. This is something the rest of the world have been doing quietly for a very long time. The further to the east and the further away from the fiber glut - the more prevalent QoS usage.
The problem with Baby Bells is that Homo Telephonicus does not see how to make money in the long term. It sees an opportunity to make "Easy Money" where it does not really exist.
But they do have a moral imperative and a duty not to promote dictatorship.
Excuse me... It is possibly my extremely short and volatile memory... But wasn't United Fruit an American company? How many dictatorships in Latin America were planted and maintained in its name in the last century?
So as far as historical precedent is concerned the answer is definitely and clearly NO. America promotes what is good for american business. In the 20th century it was "if it is necessary to promote a dictatorship so that there are no trade unions and fruit and oil prices are cheap than it shall be a dictatorship". Now it is "if it is necessary to promote a dictatorship so that there are no independent trade unions and toy, textile and electronics prices are cheap than it shall be a dictatorship".
Nothing has changed and nothing is going to change unless the fundamental nature of who pulls the strings on Capitol hill changes.
Even a mediocre company PBX can record any call nowdays. And if it is VOIP recording all traffic is so trivial that it is not even funny. So on your expectation of privacy in a corporate phone call I can say only one thing. Bwahahahaha...
Back then the bay of Venice was freezing every now and than, Black Sea in the north was freezing nearly every year, Boshporus was freezing several times a century, Greenland was Green and Iceland was Ice.
No thanks. While I do not care about Greenland and Iceland I clearly do not fancy the rest.
If historical data is to be believed when the climate in Europe gets warmer it also gets more continental. While the average temperature goes up the winter extremes go seriously down.
As far as America is concerned the climate there was also different. How much - we do not really know. There were several moderately developed civilisations in North America at the time. Pueblo Indians, some tribes along the Missisipi river and a few others. All of them went into decline before the white man came and we do not really know why. The question of why is really open.
Our current civilisation is closely related to our current climate. Crops, working habits, culture, society, the entire thing. Climate change is going to take its toll on all of that. Looking back in history definitely nothing to be happy about. No human civilisation so far has survived a massive climate change. In all cases it ended up with the Barbarians taking over...
This will mean the blackberry server talking to the operator which in practice means the customer talking to the operator. The operators will not like it.
The main reason for BB success is the fact that RIM talks to the operator, not the customer. As a result the operators have considerably less security hassle and most importantly no billing disputes. So no matter how much they dislike RIM they prefer to deal with them.
While at it, I have always asked myself the question - is the encryption end-to-end or the messages are stored at RIM unencrypted. Or what are the possibilities for RIM to successfully escrow a key? After all all registration, pins, etc goes through it... All of the governmentcritter email in cleartext (or easily decryptable)... Interesting thought...
Seconded - as one of my profs in high school in the days before the PC fad used to say: "Ya cannot clap with one hand and have your soul in paradise at the same time". The problem is that while you, me and everyone down the street do not want to see things like this happen none of us has the moral fiber to call our pension fund manager and in clear terms tell them to stop investing in any company that does business in China under the direct threat of taking your money elsewhere.
Incorrect. It is not them. It is their shareholders. If Yahoo would have decided to miss this business opportunity on moral grounds it would have been eaten alive by the shareholders.
If you care that much about Chinese civil rights you should start elsewhere. You should start by taking the phone and calling your pension fund and asking them for their investment policy. Threaten to move your money elsewhere if they do not apply at least some minimal moral fiber. Even better coordinate your actions with a few more pension holders.
This worked 20 years ago for South Africa. No reason why it should not work now.
Seconded.
You do not debug a complex network application (or any other asynchronous application) via a debugger.
You log it.
Further on that, it is important to have selective logging. An example of good logging is recent sendmail whose logging can be selectively tuned and turned on and off for various parts of the application.
If all of your machines are synchronising versus the same server and they are on the same LAN - who cares. Their relative time difference will be in the sub 10ms range.
If you need to test network events never use a real network in the first instance. Do it with a simulated network like BSD DUMMYNET and configure NTP to pass through unmolested. This will allow you to introduce arbitrary delays, packet loss, jitter and bandwidth constraints while retaining nearly perfect synchronisation between systems.
Nope, here you got it wrong pal. This is what uniquely qualifies him to be a governmental spokeperson. Just ask anyone on this side of the pond. He will be spot on amidst Bliars, Darlings and Blunketts.
The only thing the shuttle is good at is launching payload and people at the same time when the payload has to be delivered to the same place as people and possibly serviced prior to installation. In reality this is usefull only for space construction and nothing else which funnily enough is the program US insists on closing. Even in that case sending the payload on a proper heavy booster like Ariana, Proton, Energia or Delta 5 and people separately will end up being cheaper and safer.
The problem is that you after that pass that description past the company HR.
While HR usually are not going to edit a job spec they are lazy and incompetent and instead of getting their arse in gear and putting the advert on a job board themselves they call their "friends" from the agencies. Quite a few of the agencies will immediately convert everything that you spec-ed as desired into required.
Here is an example - 2 years ago I applied to a position advertised through an agency. When talking to the agent I was told that I need to have all of the following - a Red Hat certification, a Solaris Certification, a CCIE, a Juniper Certification and an MSCE. This was for a 45Kpounds operational job. I told them to f*** off.
1 year later I found out who put out the spec. They had to withdraw it because every single person they got had lied to get an interview and all of these were actually optional.
By the way as far as the subject of the article this is a very positive development. It is not often that I like something from across the ocean to filter to the UK, but this is something that I would like seeing here. This will make companies specify exactly what they want and will make more companies announce directly instead of using agencies to ensure that that the requirements are not altered.
Seconded.
This an experiment which has only a positive control group. There is no negative control group which means that this is not a scientific observation but a boatload of blah blah blah.
Maybe 3 million are not enough to prevent it being censored?
Come on, we are not talking whales here.
So the mere fact of publishing it in English will be more then enough.
The species of bird of paradise which was thought to be extinct and is found there should easily fetch a 5 figure to 6 figure sum from some bird collectors. Same for the other stuff.