"Found some more[23]Here This is the site of Rachel W. I belive she is the one that was intervied in the article.:)"
The seco nd story linked tothere quotes Eric L. Green, the consultant the school had hired who had advised against using SSNs. I wonder if this happens to be the same Eric Green who is the frequent denizen of sci.crypt? Imagine that, a privacy-minded person being into crypto.;)
"Get them to accept this when they're young so they don't think anything of it..."
I hate to post a "what he said" but this bears repeating. As long as these erosions occur in contexts where they go unquestioned, they are (gag) "accepted" by the populus at large. The earlier the process happens, the less likely it will be challenged of course, and the more ingrained the (gag) "acceptance" will become.
The real solution is for violations of this sort to be well-publicized, whenever possible. Since this involves "children" (that category that local media love to mention) it has a greater potential to be picked up. I recommend that everyone here forward the link to the base story to their local television and print media so *they* can cover the story as well as just/. and related media. The mainstream media needs to cover the issue before significant results will be acheived.
(It is too bad this is a reply to an AC, since that means many won't see this, and therefore many won't think to follow the above suggestion. Moderators: consider moderating the parent up?, consider moderating me up?, consider some other solution?)
The problem behind this is, as long as (any) "they" are not confronted about their unacceptable policies, "they" won't change those unacceptable policies. It is only by refusal-to-disclose that "they" even think about changing the policy.
While inaccurate data has an understandable element of appeal, it does nothing to educate the PTB about the objectionable practices being anything other than "accepted" by the masses. Hence, the problem continues to grow, not just in this instance, but all in the future.
This is an example when the mantra "Just Say No" actually has some relevance, imo.
Ironically, I just posted about privacy issues to a predominantly Linux-based mailing list. It's sad to think that even Linux users are unaware of basic principles. (Not referring to you there.)
Where are my moderator points when I need them?:) This post truly needs to be a 5 minimum.
However, this isn't solely a "me too" post, since I disagree with one point the AC made. An MTA is needed for most installations. Not only is it needed for outbound mail, but fetchmail sends to "localhost" by default.
Hint: there is a reason RTFM became a cliche in the *nix world. People unwilling to learn shoudn't be on a powerful OS, they should remain in their various sandboxen.
Largely because "certain" countries don't want it that way, hence make it illegal to "export" reasonable crypto-enabled apps.
Most distros attempt to appease these "certain" countries so they can be distributed from there, so they suck up by removing anything with reasonable crpyto. You want secure computing to be the norm?... Write your legislator regularly to get ridiculous legislation changed.
Forget not the following important fact... Not all coders are up on "today's" newest compiler releaase features, and many still use "old" habits in coding. (I suspect that fact will be a truism for a long time.)
Another example of MS and scalability.:) No wonder Rob doesn't run/. on MS.:) (What follows is what I got from the link.)
Microsoft Security Advisor Program: Microsoft Security Bulletin error 'ASP 0113' Script timed out/security/bulletins/backdoor.asp The maximum amount of time for a script to execute was exceeded. You can change this limit by specifying a new value for the property Server.ScriptTimeOut or by changing the value in the IIS administration tools.
"Sign up already!" isn't an option for those of us behind proxies that filter cookies or have other restrictions on cookies between us and the NYT site. (Why must some people ass-u-me their configuration is universal among slashdotters anyway?)
There is a HUGE problem with using NYT articles that some here seem to forget. People who read slashdot from sites behind proxies which filter cookies can NOT access NYT articles, account or not. Many of us do not have access to reconfiguring the proxies. (I am behind such a proxy myself on occasion.)
I am normally not one to advocate "up"(?)grading just to have the largest available version number, but this isn't a case of something that is "not broken."
"
It fixes security holes in the kernel so should seriously be considered as an important update for all Linux 2.2 systems."
"By definition anyone who is uploading huge amounts of information is adding content to the web."
While I agree that adding content is a positive, why do you make the assumption that the World Wide Web has anything to do with the subscribers' usage? There is much much more to the Internet than "the web."
"It would be really nice to legally use the 128bit Netscape (flame me if you hate it, but I really don't like transferring personal stuff over 40 bits;-)"
.
Then go download it and use it! USE has never been illegal in the U.S., only EXPORT of the software itself.
It's comments like yours that make me wonder just how many people really understand the issues involved.
A billion years ago, when I was in high school,:) most of the people in my social circle did exactly this. I assume that's part of why we were attracted to one another (apart from a love of computers long before such things were prevalent.)
I also remember that it was a source of entertainment for others, who did not believe we could do such things. I can't help but notice the parallels with the term "geek" as used in "circus geek," someone whose uncommon attributes the shills are amazed by. We occasionally would "show off" those skills for their amusement.
"if you think you know the difference then please explain it to us."
TIME.
Since you're an AC, you wouldn't be filtering out AC comments, so I'll not include a pointer to my other replies. A password buys time, nothing more. If that time is sufficient, it is acceptable.
I wrote a reply to an Anonymous Coward who did not seem to know the definition of "dictionary attack." Thinking about it, I realized that those filtering out AC's might want to read it as well, so I am including a link to it here.
Slashdot Mirror
"if you ask"
"simply tell the BMV clerk"
It's sad that the *default* in both settings is the privacy-disabled version.
"Found some more[23]Here This is the site of Rachel W. I belive she is the one that was intervied in the article. :)"
The seco nd story linked to there quotes Eric L. Green, the consultant the school had hired who had advised against using SSNs. I wonder if this happens to be the same Eric Green who is the frequent denizen of sci.crypt? Imagine that, a privacy-minded person being into crypto. ;)
[23]http://tyranny.portlandporcupine.com/ who.html
"Get them to accept this when they're young so they don't think anything of it..."
I hate to post a "what he said" but this bears repeating. As long as these erosions occur in contexts where they go unquestioned, they are (gag) "accepted" by the populus at large. The earlier the process happens, the less likely it will be challenged of course, and the more ingrained the (gag) "acceptance" will become.
The real solution is for violations of this sort to be well-publicized, whenever possible. Since this involves "children" (that category that local media love to mention) it has a greater potential to be picked up. I recommend that everyone here forward the link to the base story to their local television and print media so *they* can cover the story as well as just /. and related media. The mainstream media needs to cover the issue before significant results will be acheived.
(It is too bad this is a reply to an AC, since that means many won't see this, and therefore many won't think to follow the above suggestion. Moderators: consider moderating the parent up?, consider moderating me up?, consider some other solution?)
"you don't need to give them your real SSN."
The problem behind this is, as long as (any) "they" are not confronted about their unacceptable policies, "they" won't change those unacceptable policies. It is only by refusal-to-disclose that "they" even think about changing the policy.
While inaccurate data has an understandable element of appeal, it does nothing to educate the PTB about the objectionable practices being anything other than "accepted" by the masses. Hence, the problem continues to grow, not just in this instance, but all in the future.
This is an example when the mantra "Just Say No" actually has some relevance, imo.
Ironically, I just posted about privacy issues to a predominantly Linux-based mailing list. It's sad to think that even Linux users are unaware of basic principles. (Not referring to you there.)
What is a DST notification?
Where are my moderator points when I need them? :) This post truly needs to be a 5 minimum.
However, this isn't solely a "me too" post, since I disagree with one point the AC made. An MTA is needed for most installations. Not only is it needed for outbound mail, but fetchmail sends to "localhost" by default.
Hint: there is a reason RTFM became a cliche in the *nix world. People unwilling to learn shoudn't be on a powerful OS, they should remain in their various sandboxen.
"World Domination" is NOT a goal! The term arose from a comment Linus made *in jest* and some humor-impaired persons took it as gospel. :(
"Why don't distros install ssh by default ?"
Largely because "certain" countries don't want it that way, hence make it illegal to "export" reasonable crypto-enabled apps.Most distros attempt to appease these "certain" countries so they can be distributed from there, so they suck up by removing anything with reasonable crpyto. You want secure computing to be the norm? ... Write your legislator regularly to get ridiculous legislation changed.
Forget not the following important fact ... Not all coders are up on "today's" newest compiler releaase features, and many still use "old" habits in coding. (I suspect that fact will be a truism for a long time.)
"Sign up already!" isn't an option for those of us behind proxies that filter cookies or have other restrictions on cookies between us and the NYT site. (Why must some people ass-u-me their configuration is universal among slashdotters anyway?)
There is a HUGE problem with using NYT articles that some here seem to forget. People who read slashdot from sites behind proxies which filter cookies can NOT access NYT articles, account or not. Many of us do not have access to reconfiguring the proxies. (I am behind such a proxy myself on occasion.)
Three Letter AGENCY! Where did you get "acronym" from?
I am normally not one to advocate "up"(?)grading just to have the largest available version number, but this isn't a case of something that is "not broken."
Anyone considering not upgrading to this kernel should go read http://www.linux.org.uk/VERSION/ relnotes.2211.html and reconsider.
I looked all over last night for this, but didn't find it until tonight.
Apparently there are some significant SECURITY UPDATES in this one.
Take a look at http://www.linux.org.uk/VERSION/ relnotes.2211.html for details.
"By definition anyone who is uploading huge amounts of information is adding content to the web."
While I agree that adding content is a positive, why do you make the assumption that the World Wide Web has anything to do with the subscribers' usage? There is much much more to the Internet than "the web."
"if you use @HOme like a modem"
Not all modem users are AOLusers in nature. This article makes me glad I am not an @Home customer.
Please back up your assertion that *.rpm predates *.deb.
(The rest of your post seems concerned with GUIs such as GNOME.)
Why? Because it requires no brain power. Passive == lazy brains.
Pretty pathetic, eh?
.
Then go download it and use it! USE has never been illegal in the U.S., only EXPORT of the software itself.
It's comments like yours that make me wonder just how many people really understand the issues involved.
A billion years ago, when I was in high school, :) most of the people in my social circle did exactly this. I assume that's part of why we were attracted to one another (apart from a love of computers long before such things were prevalent.)
I also remember that it was a source of entertainment for others, who did not believe we could do such things. I can't help but notice the parallels with the term "geek" as used in "circus geek," someone whose uncommon attributes the shills are amazed by. We occasionally would "show off" those skills for their amusement.
I just tried it. How does one send? Lynx doesn't offer me anything other than a "send.htm" link at the top, which appears to be an infinite loop.
TIME.
Since you're an AC, you wouldn't be filtering out AC comments, so I'll not include a pointer to my other replies. A password buys time, nothing more. If that time is sufficient, it is acceptable.
Unless the source is open, you've inspected it and trust it, and ...
... you somehow know they're using the source you have inspected. I'm not sure how to ensure the last part though.
(BTW, these people don't appear to be *selling* anything other than advertising.)
The difference. Pay attention this time
And if that doesn't work, paste the following into your browser heheh.http://slashdot.org/comments.pl?sid=99/05/14/125 2215&pid=488#803
(Perhaps I shouldn't attempt to educate ignorant AC's in the future? Nah, that's no solution.)