All of my sensitive information is encrypted. If my unpriv'd account gets owned all they can get out of it is some PHP code for a couple of projects I work on and a few illegally downloaded movies...
I don't even use the "remember password" feature in FF for this reason.
I'll probably get laughed at for this, but I thought I'd use this opportunity to get some advice, on something that I have been wondering about lately
I recently switched from XP to Win 7 after the XP got raped bad by a virus (my family did it!). I still decided against an anti-virus as I hate them, but to try and minimize the chance of this happening again I decided to use privilege separation this time around. i.e I'm writing this post from a non-privileged user account, and I type the admin password 50 times a day for all sorts of installations, configuration settings, etc.
My question is: how (un?)safe is a Windows 7 box running under a non-privileged account?
I was randomly grabbed out of a line in Heathrow, yet never happened to me in Ben-Gurion.
Either way security and customs are completely separated, and what you're saying is incorrect. Even if security do ask you to open your luggage, they couldn't care less about what products are there and they don't cooperate with customs in anyway. Customs are just a bunch of fat lazy guys sitting at the end of the route eyeballing people, and mostly doing nothing in the green route. All these cases of iPad confiscations happened to folks on the red route (i.e they declared the iPads).
Also security is tight when you are GETTING ON an airplane. After landing the most that can happen is asking you about your business abroad or in Israel if you look suspicious, but they wouldn't care much about your luggage - if you had a weapon or a bomb in there presumably you would have used it by then...
(I'm an Israeli living in London in case it wasn't clear)
The question is, how many slahsdot readers would it take for the probability of you not being alone becoming non-negligent. Given that, and the rate at which we find new slashdot readers all the time. It only follows that one day someone just like you will be found. but they might have tentacles.
I'm guessing the executives / board / owners of the BBC know people in the right places and are able to intercept initiatives to change the legislation.
The BBC has been around for a bit and like a lot old British dinosaurs - their contacts run deep and they don't want to change. But it won't last forever, they are just prolonging it as much as they can and squizzing it for all it's worth in the mean time.
If you want to add to the silliness: on their website they claim that you must pay the TV licensing even if you just watch DVDs or have the receiver at home but no TV set. But there you go.
I completely agree, but these products are supposed to be able to remove the malware.
The correct car analogy (unlike those above) is: the user expect certain things from the car (like going straight), if the user then misuses the correctly-behaving car (like going straight into a tree) -- that's a different question.
In this case after reading TFA I conclude that the the people who performed this test were being snobby. They expected all the AVs to remove all malware completely and without a reboot. In practice some of them require a reboot for some of the infections and some of them left behind non-malicious parts of the removed malware, possibly on purpose (it might prevent a future infection).
In other words those that removed "all 10 but..." worked fine. The rest is process.
I'm not confusing anything with anything. I'd like to have real OO syntax and proper error handling. Debugging JS or maintaining a large JS codebase is a nightmare.
Sure it's awesome for small things here and there, but the problem is exactly the fact that it's usage has grown way beyond that.
Let me guess: you're a non-web developer? A.K.A a "real" developer.
Well, in the current web world saying "why use Javascript??" is about a smart question as asking "Why use C??" or "Why use Java??" in the desktop world.
It may have 10,000 flaws in it, but that's the de-facto standard ATM.
Furthermore, unlike the desktop realm were you install your dependencies with an installer, in the web you have to wait 5 years for the crap old technologies to drain out after the new better one comes out.
None of us would use Javascript if we had a choice, but we don't. So toolkits like JQuery or this release by Google are life savers.
I wasn't trying to argue otherwise. I'm just saying that it's something fun to think about when you watch that scene.
An interesting side note though: I wonder how reliable those estimations are. I mean it's not like we've exposed human test subjects to outer space to check how long it takes them to die, right?
Also 0K is a theoretical state of absolutely no heat. i.e by definition there can't be anything colder than 0K. There is no -1K.
The closest thing to 0K is outer space, which is around 3K because of the background radation, without which it would probably be 0K.
3K is about -270C, which is very darn cold. Try to think about that the next time you watch the space-walking-without-a-suit scene from Sunshine(2007).
I don't understand one thing: If someone performs a man-in-the-middle attack, isn't it likely that they are also able to mangle other traffic between Wikileaks and the submitter, i.e they can present a different PGP key to the submitter? So doesn't this go back to the old "The system is as secure as its key" ?
Exactly my thoughts - sounds like horseshit.
So why "NASA confirms"? Simple - the more they scare the public the more funding they'll get to send Bruce Willis to blow up the damn thing.
Slashdot Mirror
That was just a figure of speech of course :-). I just meant that I accept the annoyance of that popup.
All of my sensitive information is encrypted. If my unpriv'd account gets owned all they can get out of it is some PHP code for a couple of projects I work on and a few illegally downloaded movies...
I don't even use the "remember password" feature in FF for this reason.
I'll probably get laughed at for this, but I thought I'd use this opportunity to get some advice, on something that I have been wondering about lately
I recently switched from XP to Win 7 after the XP got raped bad by a virus (my family did it!). I still decided against an anti-virus as I hate them, but to try and minimize the chance of this happening again I decided to use privilege separation this time around. i.e I'm writing this post from a non-privileged user account, and I type the admin password 50 times a day for all sorts of installations, configuration settings, etc.
My question is: how (un?)safe is a Windows 7 box running under a non-privileged account?
I was randomly grabbed out of a line in Heathrow, yet never happened to me in Ben-Gurion.
Either way security and customs are completely separated, and what you're saying is incorrect. Even if security do ask you to open your luggage, they couldn't care less about what products are there and they don't cooperate with customs in anyway.
Customs are just a bunch of fat lazy guys sitting at the end of the route eyeballing people, and mostly doing nothing in the green route. All these cases of iPad confiscations happened to folks on the red route (i.e they declared the iPads).
Also security is tight when you are GETTING ON an airplane. After landing the most that can happen is asking you about your business abroad or in Israel if you look suspicious, but they wouldn't care much about your luggage - if you had a weapon or a bomb in there presumably you would have used it by then...
(I'm an Israeli living in London in case it wasn't clear)
I wonder why nobody mentioned this, but wouldn't "teleportation"-based communication be impossible to eavesdrop on?
If that's the case, it would have applications even across distances where classical communication is still "instantaneous".
Bad news for cryptographers though...
I'm curious to see how long they can keep it going.
Until they screw up.
The question is, how many slahsdot readers would it take for the probability of you not being alone becoming non-negligent. Given that, and the rate at which we find new slashdot readers all the time. It only follows that one day someone just like you will be found. but they might have tentacles.
Corruption.
I'm guessing the executives / board / owners of the BBC know people in the right places and are able to intercept initiatives to change the legislation.
The BBC has been around for a bit and like a lot old British dinosaurs - their contacts run deep and they don't want to change. But it won't last forever, they are just prolonging it as much as they can and squizzing it for all it's worth in the mean time.
If you want to add to the silliness: on their website they claim that you must pay the TV licensing even if you just watch DVDs or have the receiver at home but no TV set. But there you go.
Security is a process, not a product.
I completely agree, but these products are supposed to be able to remove the malware.
The correct car analogy (unlike those above) is: the user expect certain things from the car (like going straight), if the user then misuses the correctly-behaving car (like going straight into a tree) -- that's a different question.
In this case after reading TFA I conclude that the the people who performed this test were being snobby. They expected all the AVs to remove all malware completely and without a reboot. In practice some of them require a reboot for some of the infections and some of them left behind non-malicious parts of the removed malware, possibly on purpose (it might prevent a future infection).
In other words those that removed "all 10 but..." worked fine. The rest is process.
How does that contradict my previous point?
I'm not confusing anything with anything. I'd like to have real OO syntax and proper error handling. Debugging JS or maintaining a large JS codebase is a nightmare.
Sure it's awesome for small things here and there, but the problem is exactly the fact that it's usage has grown way beyond that.
Let me guess: you're a non-web developer? A.K.A a "real" developer.
Well, in the current web world saying "why use Javascript??" is about a smart question as asking "Why use C??" or "Why use Java??" in the desktop world.
It may have 10,000 flaws in it, but that's the de-facto standard ATM.
Furthermore, unlike the desktop realm were you install your dependencies with an installer, in the web you have to wait 5 years for the crap old technologies to drain out after the new better one comes out.
None of us would use Javascript if we had a choice, but we don't. So toolkits like JQuery or this release by Google are life savers.
No no, this is legalese for STFU. legalese for SHUT THE FUCK UP spans 23 pages.
Something to leave for the grandchildren.
I wasn't trying to argue otherwise. I'm just saying that it's something fun to think about when you watch that scene.
An interesting side note though: I wonder how reliable those estimations are. I mean it's not like we've exposed human test subjects to outer space to check how long it takes them to die, right?
Or did we...?
LI...
Also 0K is a theoretical state of absolutely no heat. i.e by definition there can't be anything colder than 0K. There is no -1K.
The closest thing to 0K is outer space, which is around 3K because of the background radation, without which it would probably be 0K.
3K is about -270C, which is very darn cold. Try to think about that the next time you watch the space-walking-without-a-suit scene from Sunshine(2007).
Yes I got it wrong... but you could have pointed that out less enthusiastically... :-)
Thanks anyway.
They got the title wrong. It should read: U.S finally joins "The League of Big Brother Regimes"
I don't understand one thing: If someone performs a man-in-the-middle attack, isn't it likely that they are also able to mangle other traffic between Wikileaks and the submitter, i.e they can present a different PGP key to the submitter? So doesn't this go back to the old "The system is as secure as its key" ?
That's the perfect excuse: "It's not me! It's my robotic arm!
...Would you like to try my joystick?"
Yes but that way they won't be able to do any research about mind control techniques.
Exactly my thoughts - sounds like horseshit. So why "NASA confirms"? Simple - the more they scare the public the more funding they'll get to send Bruce Willis to blow up the damn thing.