But this doesn't EVEN WORK. If you can get around this by switching the bootloader temporarily, then re-installing grub - then TPM is failing to detect the altered chain of trust, correct?
While I agree with you in principle... some algorithms are NOT SIMPLE. Yes, we can write great code that handles "single instance" things like fetch web pages or dump report. We can write "distributed" solution systems using threads - like chess simulations, raytracers and nuclear physics.
But if an algorithm has linear dependencies for forward state then threading it is much, much more difficult.
My great grandfather was born in 1830's... in the middle of a BFE Texas settlement. There were less than 1000 people in the entire western state at that time.
He's got a birth certificate. Can you believe it?
AND... if you don't have a birth certificate - you can actually get one made by the state (varies by requirements... but it's certainly possible!!)
You don't even need a birth certificate to register to vote usually... just a social security number!!
Getting a voter registration requires a SSN and a signature... not money. Hell, you can register at the library, the county courthouse, nearly any election office or political official's office, the DMV.
The point it - get registered to vote. It's soo freakin easy.
Why? Because there's just tons of references to the Bible in almost all literature... even if you're agnostic it'll help you know when to run away when someone mentions "the road to Damascus" or "the prodigal son."
Start with the brutal gen-o-cide page-turner (Genesis) and skip Numbers and Deuteronomy. (posted anonymously because I try to avoid flames... both virtual and spiritual!!) (PS... lame-n e s s filters suck...)
It's those crazy people that believe that any goofball should be able to walk into a room and vote without ANY ID here in the US that should be blamed.
I'm sorry... getting an ID card is not a big hurdle.
Call your district attorney's office. They love this kind of stuff, honestly - and they'll be happy to track down thieves with the assistance of law enforcement.
If the computers have been taken across state lines - you may be able to contact the FBI as well.
If they can get on the front page with a table full of stolen gear - they'll be really happy.
My biggest grudge against these places is the "life suckage" they employ...
I mean.. I want to do something other than code 12 hours a day (ya know... sometimes?)
I've been coding since I was 10 years old... I find it fun and enjoyable. That's why I contract... let me decide how to live my life, and I'll provide you timely, reasonable service.
I still relish the thought of doing massive parallel systems dev... I do small clusters now, and I really love it.
I believe he's talking about a client-side implementation. It's a simple deal to track upload progress - the hard work involves communicating that value up the chains into the UI code, and designing a UI that makes sense for the user.
"One big POST" is ignorant of the fact that we write chunks of data to the network socket, one piece at a time.
And yes, I've written numerous web servers and clients - though I've never written a web browser.
This is basically want to make a usermode GoogleFS. Their biggest problem is reducing reads - which are hampered by Posix file standards (inodes, metadata, etc...)
Instead they use a database-like index/data file arrangement. The index stays in memory and files are stored together in large contiguous spaces on a single file. It's possible to utilize a LUN for storage - but not there yet.
There... where's my cookie?
(Oddly enough - I'm writing the exact same code they are... bazaar world, eh??)
Absolutely correct!! Device-type Encryption does JACK SQUAT in this case. Even mitigating it with per-file pgp encryption is no good with a rootkit keylogger.
Perhaps running a dual-pc setup or VM is the only way to go (one on a secure network, the other internet enabled). Even then I'm not convinced as to the safety of VM's against attack.
I don't think Apple is going to abandon the Leopard stability release cycle... but they want to avoid another Leopard by getting developers to work on the next version.
If I've got the code and can develop for 10.6 while supporting 10.5 - my deployment is going to be a lot easier when 10.6 comes out.
It's a lot like consoles in a way - you need your "platformers" ready to drive sales - but you can't expect them without significant development time before release.
The rules need to be more flexible. A tank is a tank. The other rule that blew chunks was using X-Prize approved camera designs. If this is about innovation - why not make ground rules that everyone can work within?
Slashdot Mirror
Better get crackin... VMWare supports DirectX 9 (on appropriate hardware).
But this doesn't EVEN WORK. If you can get around this by switching the bootloader temporarily, then re-installing grub - then TPM is failing to detect the altered chain of trust, correct?
So why all the mirrors and smoke?
BRAVO!!! Fine piece of writing!
While I agree with you in principle... some algorithms are NOT SIMPLE. Yes, we can write great code that handles "single instance" things like fetch web pages or dump report. We can write "distributed" solution systems using threads - like chess simulations, raytracers and nuclear physics.
But if an algorithm has linear dependencies for forward state then threading it is much, much more difficult.
Sooo pathetic.
He was the network admin - given permission to design and setup the system. If the management doesn't have the passwords then who's to blame here?
You get fired when you don't do your job... not arrested. Until today.... apparently.
Born before birth certificates? Are you serious?
My great grandfather was born in 1830's... in the middle of a BFE Texas settlement. There were less than 1000 people in the entire western state at that time.
He's got a birth certificate. Can you believe it?
AND... if you don't have a birth certificate - you can actually get one made by the state (varies by requirements... but it's certainly possible!!)
You don't even need a birth certificate to register to vote usually... just a social security number!!
Getting a voter registration requires a SSN and a signature... not money. Hell, you can register at the library, the county courthouse, nearly any election office or political official's office, the DMV.
The point it - get registered to vote. It's soo freakin easy.
Why? Because there's just tons of references to the Bible in almost all literature... even if you're agnostic it'll help you know when to run away when someone mentions "the road to Damascus" or "the prodigal son."
Start with the brutal gen-o-cide page-turner (Genesis) and skip Numbers and Deuteronomy.
(posted anonymously because I try to avoid flames... both virtual and spiritual!!) (PS... lame-n e s s filters suck...)
My children love Olympians books by Percy Jackson. Very witty, and they learn a bit of greek as well.
The Redwall series by Brian Jacques is great fiction as well.
My own favorite experiences were from reading lots of HHGTTG and Arthur C Clarke... I enjoyed lots of classics as well.
I write crypto code every day... the very presence of a large contiguous random block of data is certainly a big "lookie here!!" in my book.
Oh, and the fact that TrueCrypt is installed would be right up there too...
Forensics isn't just going to look at described volume tables - oftentimes the "empty space" is most important anyway.
Uhm... it's the same here in my precinct.
It's those crazy people that believe that any goofball should be able to walk into a room and vote without ANY ID here in the US that should be blamed.
I'm sorry... getting an ID card is not a big hurdle.
Call your district attorney's office. They love this kind of stuff, honestly - and they'll be happy to track down thieves with the assistance of law enforcement.
If the computers have been taken across state lines - you may be able to contact the FBI as well.
If they can get on the front page with a table full of stolen gear - they'll be really happy.
My biggest grudge against these places is the "life suckage" they employ...
I mean.. I want to do something other than code 12 hours a day (ya know... sometimes?)
I've been coding since I was 10 years old... I find it fun and enjoyable. That's why I contract... let me decide how to live my life, and I'll provide you timely, reasonable service.
I still relish the thought of doing massive parallel systems dev... I do small clusters now, and I really love it.
That's why God invented Calculus?
Heheheh
We've got big balls in cowtown... for sure.
I believe he's talking about a client-side implementation. It's a simple deal to track upload progress - the hard work involves communicating that value up the chains into the UI code, and designing a UI that makes sense for the user.
"One big POST" is ignorant of the fact that we write chunks of data to the network socket, one piece at a time.
And yes, I've written numerous web servers and clients - though I've never written a web browser.
(summarizing the big long presentation)
This is basically want to make a usermode GoogleFS. Their biggest problem is reducing reads - which are hampered by Posix file standards (inodes, metadata, etc...)
Instead they use a database-like index/data file arrangement. The index stays in memory and files are stored together in large contiguous spaces on a single file. It's possible to utilize a LUN for storage - but not there yet.
There... where's my cookie?
(Oddly enough - I'm writing the exact same code they are... bazaar world, eh??)
Was it an iSlide?
Sorry... couldn't resist!!
Blog is HERE
Absolutely correct!! Device-type Encryption does JACK SQUAT in this case. Even mitigating it with per-file pgp encryption is no good with a rootkit keylogger.
Perhaps running a dual-pc setup or VM is the only way to go (one on a secure network, the other internet enabled). Even then I'm not convinced as to the safety of VM's against attack.
Exactly... unless we're talking millions of infections here - why should we all pitch in for this?
Breaking an RC4 key may be "fairly simple" if they reused the same initialization or encrypted a lot of data.
After all - this is the same algorithm in WPA v1 that everyone moans about being insecure, n'est pas?
Why waste time factoring RSA?? The RSA simply wraps an RC4 key.
RC4 brute force is far easier. There are several known problems with RC4 which may possibly work to our advantage in cracking the data as well..
My copy of Lego Starwars does this when the disk is dirty... perhaps it is on purpose... or perhaps the data is just corrupted.
I don't think Apple is going to abandon the Leopard stability release cycle... but they want to avoid another Leopard by getting developers to work on the next version.
If I've got the code and can develop for 10.6 while supporting 10.5 - my deployment is going to be a lot easier when 10.6 comes out.
It's a lot like consoles in a way - you need your "platformers" ready to drive sales - but you can't expect them without significant development time before release.
Unfortunately... I can't give it too you or even describe how I did it... that would be breaking our American DMCA law...
The rules need to be more flexible. A tank is a tank. The other rule that blew chunks was using X-Prize approved camera designs. If this is about innovation - why not make ground rules that everyone can work within?