I fully agree that that can happen. That is why I offered up the alternative of him stopping after installing the keylogger and then reporting that. He could report it anonymously and show an example of what he managed to capture. But, in my opinion, he went too far when he filtered out the account information and used that to access people's accounts.
Thnk about it for a second. You don't install a keylogger on a server and then capture logins from students from remote machines... the keyloggers were installed on the students' laptops. This is NOT "hacking" or "cracking" the university's computers. He installed keyloggers on up to 37 other students' laptops to capture their login info.
Not necessarily their laptops. A lot of universities have computers available for student use and that does not mean he set up a kelogger on a server. Contrary to popular belief, many students don't own or at least don't carry their laptop around campus with them.
But involving law enforcement where no significant damages have occurred shows a serious lack of judgment somewhere in the administration.
Ok so if someone gains entry to where you live by picking the lock, watches your tv, uses your toilet, reads your mail and personal papers, and then leaves you a note identifying themselves you would not involve the police?
Ya know, if he saw a flaw (and obviously there was something wrong since he installed a keylogger on at least one university computer) he should have reported it to the IT department. He decided to act and break the law so he should man up and face the consequences.
At the absolute most, he should have stopped after installing the keylogger and reported that to the IT department. He could have even reported it anonymously. The fact that he then took account information and accessed people's accounts goes way over the line.
And for the record, I did in fact have college text books written by the professors that taught the class, that ended up not using the very book they required.
First thing you learn after completing your first year of college is that you don't need to buy all the books on the professor's list.
What good is a perfected worded book that is four or more years old, and irrelevant compared to internet resources, as the summary informs?
About as good as 4 year old (or older) information on the internet. Not everything on the web is up to date. And at the very least, a book has a slightly better chance at presenting the material in a logical order as well as providing some suggestions for further reading. Yes, there is a lot of information on the web but a huge portion of it is noise that has to be sifted through.
That's a ridiculous comparison. The bible is fictional.
Oh if only it mainly was. The problem is that there is far too much factual info in there and well the fictional/scifi elements get drowned out. I've tried to explain to my wife that of course there are huge chucks of the bible that are very factual.
Given everything that is written in the bible, I would hardly describe the inclusion of the names of some towns and cities "huge chunks that are very factual". Everything else is just fantasy.
If you are checking your bank account from a publicly accessible computer then you have more issues than worrying about whether your bank has a self signed cert or not.
I love this $10 a year number floating around. You know not everyone has access to the $10 a year certificates right? I work in a department at a large company that signed up with Thawte. I have to go through a central department to get a cert and it is $100 a year. Right now I have 2 certs and I am looking at having to get a wildcard cert which is $500 a year. The only reason I am getting the wildcard cert is to replace a self signed cert because of Firefox 3's intimidating warning message. There is no other reason, the self signed cert works fine and has for years. I should send the bill to Mozilla and make them pay for the cert I need.
Agreed. The fact that they used a photograph of a key means that security already failed. How do you obtain a picture (to scale) of the key? You have access to the key. So the lock isn't the failure security and key control are the failures.
They really need to have their xray machines serviced. I don't think they are getting full strength xrays if they can't see through fabric or leather bags.
The problem is that cell carriers in Canada allow e-mails sent from outside their network to reach their customers. So sending an e-mail to 5551234567@telus.ca results in the person with that phone number receiving a message that they will now have to pay for. The sender isn't paying for anything (other than access to the internet through their ISP).
Luckily not many spammers have started exploiting this yet....but they will.
This behavior means that a public web site basically can't be encrypted unless they are willing to pay an approved vendor a yearly fee for a certificate.
Ummm...no it means that the site is encrypted, Firefox just has an odd bunch of hoops for the user to jump through.
I don't agree with the new Firefox behaviour in this regards, but the author of the article is completely wrong with that statement.
Or turn off Java in your browser. I don't think I have come across a web site using an applet in 3 years now. If a site is using Java it's in the backend where it doesn't really affect me (ie. I wouldn't know or care if they were using Java, perl, or even Pascal back there).
Well unless I am missing something entirely here or having a brain fart (it is Friday afternoon and all) you would still be at the whim of some type of ISP. I mean the fiber goes back and connects to someone's network somewhere, right? And someone somewhere has to give you an IP address.
My concern would be paying $3000 for this and then the company providing actual access to the rest of the internet going under. So where do I get my refund? Or am I stuck with a "dark" fiber cable in my yard that connects nowhere?
Ummm no I am not the target market. I'd rather not call the person if I don't want to talk to them than ninja a message into their voice mail.
It's not hard. If you don't want to talk to someone, either making the phone call or receiving the phone call, don't talk to them. Why do we need silly technology to overcome social phobias?
This, by helping people take control of whether and when to talk with their friends, family, and coworkers, just makes me think that most people react to a ringing phone without thinking about it. If you don't want to talk to people ignore the phone, it really is not that hard. Some times to live dangerously I leave the house without my cell phone!
When you get the Rogers search results page, click on the "learn more" link in the bottom right. Then click the link for no longer getting directed to the Rogers search results page.
Slashdot Mirror
Coincidence or not...too bad. He got there first. What happened to capitalism?
Oh I forgot, it is only allowed when the big company is screwing over the little guy. It is not allowed the other way around.
The people paying get a degree. The people taking the free courses don't.
Do you get angry when you buy a book and then find out your local library loans the same title out for free?
I fully agree that that can happen. That is why I offered up the alternative of him stopping after installing the keylogger and then reporting that. He could report it anonymously and show an example of what he managed to capture. But, in my opinion, he went too far when he filtered out the account information and used that to access people's accounts.
Thnk about it for a second. You don't install a keylogger on a server and then capture logins from students from remote machines ... the keyloggers were installed on the students' laptops. This is NOT "hacking" or "cracking" the university's computers. He installed keyloggers on up to 37 other students' laptops to capture their login info.
Not necessarily their laptops. A lot of universities have computers available for student use and that does not mean he set up a kelogger on a server. Contrary to popular belief, many students don't own or at least don't carry their laptop around campus with them.
But involving law enforcement where no significant damages have occurred shows a serious lack of judgment somewhere in the administration.
Ok so if someone gains entry to where you live by picking the lock, watches your tv, uses your toilet, reads your mail and personal papers, and then leaves you a note identifying themselves you would not involve the police?
Ya know, if he saw a flaw (and obviously there was something wrong since he installed a keylogger on at least one university computer) he should have reported it to the IT department. He decided to act and break the law so he should man up and face the consequences.
At the absolute most, he should have stopped after installing the keylogger and reported that to the IT department. He could have even reported it anonymously. The fact that he then took account information and accessed people's accounts goes way over the line.
And for the record, I did in fact have college text books written by the professors that taught the class, that ended up not using the very book they required.
First thing you learn after completing your first year of college is that you don't need to buy all the books on the professor's list.
What good is a perfected worded book that is four or more years old, and irrelevant compared to internet resources, as the summary informs?
About as good as 4 year old (or older) information on the internet. Not everything on the web is up to date. And at the very least, a book has a slightly better chance at presenting the material in a logical order as well as providing some suggestions for further reading. Yes, there is a lot of information on the web but a huge portion of it is noise that has to be sifted through.
That's a ridiculous comparison. The bible is fictional.
Oh if only it mainly was. The problem is that there is far too much factual info in there and well the fictional/scifi elements get drowned out. I've tried to explain to my wife that of course there are huge chucks of the bible that are very factual.
Given everything that is written in the bible, I would hardly describe the inclusion of the names of some towns and cities "huge chunks that are very factual". Everything else is just fantasy.
If you are checking your bank account from a publicly accessible computer then you have more issues than worrying about whether your bank has a self signed cert or not.
I love this $10 a year number floating around. You know not everyone has access to the $10 a year certificates right? I work in a department at a large company that signed up with Thawte. I have to go through a central department to get a cert and it is $100 a year. Right now I have 2 certs and I am looking at having to get a wildcard cert which is $500 a year. The only reason I am getting the wildcard cert is to replace a self signed cert because of Firefox 3's intimidating warning message. There is no other reason, the self signed cert works fine and has for years. I should send the bill to Mozilla and make them pay for the cert I need.
Agreed. The fact that they used a photograph of a key means that security already failed. How do you obtain a picture (to scale) of the key? You have access to the key. So the lock isn't the failure security and key control are the failures.
According to George Lucas, 'The franchise really depends on me coming up with a good idea.
Lucas hasn't had a good idea in decades so there is no fear that he'll produce another one of his cinematic abortions.
They really need to have their xray machines serviced. I don't think they are getting full strength xrays if they can't see through fabric or leather bags.
/sarcasm
The problem is that cell carriers in Canada allow e-mails sent from outside their network to reach their customers. So sending an e-mail to 5551234567@telus.ca results in the person with that phone number receiving a message that they will now have to pay for. The sender isn't paying for anything (other than access to the internet through their ISP).
Luckily not many spammers have started exploiting this yet....but they will.
This behavior means that a public web site basically can't be encrypted unless they are willing to pay an approved vendor a yearly fee for a certificate.
Ummm...no it means that the site is encrypted, Firefox just has an odd bunch of hoops for the user to jump through.
I don't agree with the new Firefox behaviour in this regards, but the author of the article is completely wrong with that statement.
Or turn off Java in your browser. I don't think I have come across a web site using an applet in 3 years now. If a site is using Java it's in the backend where it doesn't really affect me (ie. I wouldn't know or care if they were using Java, perl, or even Pascal back there).
Well unless I am missing something entirely here or having a brain fart (it is Friday afternoon and all) you would still be at the whim of some type of ISP. I mean the fiber goes back and connects to someone's network somewhere, right? And someone somewhere has to give you an IP address.
My concern would be paying $3000 for this and then the company providing actual access to the rest of the internet going under. So where do I get my refund? Or am I stuck with a "dark" fiber cable in my yard that connects nowhere?
There are websites still using Java applets? I thought those died years ago.
So people using Glider are paying a monthly fee to Blizzard to let their computer play WOW?
Is it just me or does that seem really stupid? If you are not going to play the game (and occasional grinding is part of the game) why pay?
I was just wondering if this will cause a ripple effect to the legality of penalties for early exit from any contract, not just a cell phone contract.
Any lawyers out there care to offer an opinion?
In the case of the OP make isn't compiling anything. Make can do much more than just run your compiler.
Ummm no I am not the target market. I'd rather not call the person if I don't want to talk to them than ninja a message into their voice mail.
It's not hard. If you don't want to talk to someone, either making the phone call or receiving the phone call, don't talk to them. Why do we need silly technology to overcome social phobias?
This, by helping people take control of whether and when to talk with their friends, family, and coworkers, just makes me think that most people react to a ringing phone without thinking about it. If you don't want to talk to people ignore the phone, it really is not that hard. Some times to live dangerously I leave the house without my cell phone!
When you get the Rogers search results page, click on the "learn more" link in the bottom right. Then click the link for no longer getting directed to the Rogers search results page.