And by "Verizon disables the GPS capabilities of the MiFi" you mean "Verizon doesn't use it", since the hardware is still there, and can still be activated to retrieve the location of any Verizon MiFi.
You don't got to *do* hacking, you go to learn about hacking from people in the same building (thus requiring little to no B/W).
You have clearly never been to defcon, and/or miss the point of the con altogether. Sure, there are great speakers giving talks about important and relevant topics. Some of them are even useful...
But the larger part of con the for a lot of the attendees is to get together with like-minded individuals and...wait for it...hack.
Here are some examples of the hacking that went on at this year's defcon. The Lost@con Mystersy Challenge results aren't there, and as a participant I can tell you that it required breaking crypto, circumventing physical security measures, debugging code, hardware hacking skills, and trick-or-treating, among other things. I don't know what your definition of "hacking" is, but it should probably include a few of those.
This also doesn't mention some of the cool things going on in the lock-picking village, the hardware hacking village, the wi-fi village, etc...
And from what I have heard about Defcon you are best to not bring any of your own devices at all, lest you end up hacked yourself and on the wall of shame.
Most people I know wipe and reimage their machines after spending any time at all on the defcon network. They call it the most hostile network environment on the planet for good reasons. That being said, the Wall of Sheep has absolutely nothing to do with being "hacked", it simply displays usernames and (partial) passwords for people who are too stupid or lazy to use encrypted protocols. If you show up at a hacker convention and can't be bothered to use TLS or SSL for your email, you deserve to be shamed.
If you find this difficult to believe, then you've never lived in a community that has a (relatively) large mormon population. This is common practice, and the mormon students have to leave school for one or more classes per day to go get brainwashed across the street. I live in the Tri-Cities (about an hour and a half south of Moses Lake), and I seem to recall that all of the high schools here have these little mini-churches across the street. Of course, it's been 17 years since I was in high school, so things may have changed...
I've got one of these, and it's fantastic. My TV, amp, DVD player, Direct TV receiver, and PVR now all have the same remote. It has enough "extra" slots that I can get IR light switches and/or power outlets, and program it to work them as well. Best feature: Via the learning function, I don't have to switch back and forth between "TV", "PVR", and "AMP" to change the channel, start recording something, then turn the volume up, I can put them all on one screen. You can't program it via your computer, and it doesn't have a color screen, but it's the coolest birthday present I've gotten in years! And it was only $100...
Cisco Systems has released to the public notification of a vulnerability in many versions of Cisco IOS which can create a Denial of Service on an affected router. The details of the advisory can be viewed at the following link:
No exploits which target this vulnerability have yet been identified.
Prior to the public notification, Cisco had contacted their major NSP customers including Internap to inform us of this vulnerability. Internap has identified IOS versions with the appropriate fix for the platforms in our network and scheduled upgrades to our routers. Customers will receive notification shortly of the window in which the routers you are homed to will be upgraded. Due to the severity of this vulnerability these upgrades are being performed as emergency maintenance.
Customers with questions about the possible impact of this vulnerability on their own equipment are urged to read the notice at the link above or to contact Cisco directly.
AT&T had an OC192 (9.95Gb/s) between St. Louis and San Francisco down today for a while, caused some havoc with various providers who use them for transit.
...on NANOG most of the day today. It looks like Cisco discovered the vulnerability in their own testing, notified major backbone providers (AT&T, Qwest, Sprint, L3, etc), who then scheduled emergency maintenance, which in turn tipped off savvy network engineers all over the place, who started wondering what was up, which in turn generated enough interest that bits and pieces leaked, and I bet Cisco figured better to release the advisory now and end the speculation than to wait till tomorrow. As for the "no exploit available", I had a router with an uptime of many many moons hang for no apparent reason tonight...while working on that I found the cisco advisory in my inbox. Could be a coincidence, but it's a strange one.
Another reason DJBDNS doesn't get much airtime might be related to the fact that the author of that code appears to be a raving loon hellbent on defaming BIND in general, and ISC and it's employees in specific. Anyone who has followed the bind-users or bind9-users mailing lists can attest to the fact that he frequents those lists (or did fairly recently) with (apparently) the sole intention of stirring the shit every now and then. Our team was seriously considering moving all of our nameservers to DJBDNS, but after watching the antics of Mr. Bernstein, we changed our minds.
It's kind of late in the game for me to start commenting now, but I feel like I should get this out. As somone who *was* involved in a gun accident, I think I can speak authoritatively on the subject. Let me first say that while I do not currently own a gun, I would if I had the money to spare on it at the moment. Secondly, let me say that I am missing several digits on one of my hands because of irresponsibility with a weapon. What this taught me was: "Never listen to someone who says a weapon isn't loaded, always verify that for yourself". Rest assured that this will be the first lesson my children learn (and these are not theoretical children at some point in the future, I've got two wonderful sons). My father taught me to shoot at an early age, and I plan on teaching mine to shoot as soon as they are able to hold a rifle. I think that the important point in this debate is the fact that children who are educated about weapons (be they guns, knives, words, jelly donuts, whatever) will not try to show off to their friends about how cool they are cause they found dad's gun. They will (for the most part) show them the respect they deserve. Putting chips in weapons that only allow one person to fire them is not the answer. Properly educating the youth of today is one aspect of the answer, another is giving the kids something to do rather than run the streets looking for acceptance with the local gang, or sitting in their room stewing about how mistreated they were at school. Noone is going to stop criminals from killing people with guns by only allowing legitimate weapons to fire when handled by the correct operator, I can show you 15 ways to make a zip gun that is every bit as deadly as your average.45, and another 10 that would drop any human in one shot, regardless of whether it killed him. Legislating gun ownership (or functionality) away is not the right way to go, no matter what kind of spin you put on it
I have nothing to hide, but it still saddens me when civil liberties are taken away. I read "Mein Kampf" in high school because I was curious, and it got me labeled a skinhead. Later the same year I read "The Story of My Experiments With Truth", Ghandi's autobiography, and was labeled a hippie. So I'm a skinhead hippie, based only on the book I happened to have in my bag at the time. Now what if I had checked those books out from the local library? Sure it's a farfetched scenario, but history is full of farfetched scenarios.....
Because They Can. They rushed the patriot act through under the guise of "Fighting Terrorism!", and wound up taking away your rights. I don't know about anybody else, but it gives me a warm fuzzy feeling inside to know that my government is looking out for my best interests, no matter what the cost to my personal freedom.
"Okay. In short, we have transferred everything I did for the NSA and other services to a private company that then sells intelligence to businesspersons.
I'm sorry, but I don't think you'd be transferring ANYTHING you did *for* the NSA...you might take something you did for the NSA and implement a similar solution, but you're not just going to grab a project and run with it.
We get information on everything from local diseases, outbreaks of malaria epidemics and local unrest to strikes, the weather and traffic conditions. Our customers are large multinational companies like Prudential and Texas Instruments. We also work for institutions like the World Bank and the IMF."
And you need former KGB, NSA, etc agents to check the weather...?
This whole interview strikes me as a little off. Something's not right in Denamrk, here folks.
Why are the Federales allowing this "architect" to talk about it? Here's my best guess:
Since everybody with half a clue already knows about echelon/echelon II, they've developed a NEW system, so they're going to let information leak about echelon, thereby lulling people back into complacency. The sheep will be satisifed that echelon is somewhat out in the open, and go back about their lives, meanwhile the governament is implementing it's NEW, IMPROVED system. How's that for a conspiracy theory?
IMPORTANT-READ CAREFULLY: This End-User License Agreement ("EULA") is a legal agreement between you (either an individual person or a single legal entity, who will be referred to in this EULA as "You") and the Licensor for the Microsoft Frontpage Web components, including the MSNBC news headline component, the MSN MoneyCentral Stock Quote component, and the MSN Search component (the "Software"). The Software also includes any software updates, add-on components, Web services, and/or supplements that the Licensor may provide to You or make available to You after the date You obtain Your initial copy of the Software to the extent that such items are not accompanied by a seperate license agreement or terms of use.
I'm no lawyer, but I'd read that as "All of the software included in the package, and anything we decide to throw in later."
Dont' have a scanner here at work, and I left my digitial camera at home, but I do have a copy of the FP 2002 license sitting in front of me and that section says:
Restrictions. You may not edit or modify the Software in any manner whatsoever. You may not display any of the logos that appear in the Software in any manner that implies sponsorship, endorsement, or license of Your Web Site by the owners of such logos. If the Software contains any active links to other sites, You agree to maintain such active links and not redirect or modify them. You may not market, distribute, sublicense, lease, or rent the Software on a stand-alone basis. You may not use the Software in connection with any site that disparages Microsoft, MSN, MSNBC, Expedia, or their products or services, infringe any intellectual property or other rights of these parties, violate any state, federal, or international law, or promote racism, hatred, or pornography. You shall not convert the news headlines in the MSNBC component into an audio format for redistribution to audio users. You agree to immediately remove the Software from Your Web Site if You do not abide by any of these restrictions after notice. All rights not specifically granted herein to You are reserved.
Bold is mine, not theirs, that is the portion that disturbs me. It seems a clear violation of the first ammendment to me, and the piece about maintaining active links left there by the software? WTH is that? Thank god I only use this to provide functionality to customers who demand it....
start using Morpheus or edonkey2000. These networks are a little underpopulated now, but they seem to be gaining userbase. Both support the ability to download one file from many people at the same time, I've seen aggregates of 130k/s downloading from 5 different users. Steal your music just a little bit faster.
I'm sorry, but I do believe you are mistaken. DSL does NOT rely "completely on the absence of telephone company equipment between the DSL modems on each end of the line." Granted, each switch you touch degrades the signal by X, but there could be any number of switches betweeen your modem and the DSLAM.
Also, just because you have a fiber local loop does not mean you can't get DSL. Read this for a decent explanation of the hybrid network issue. IF your neighborhood has new enough equipment (read: installed in the last 4 years or so), you may be able to convince them. In my experience with Verizon (on the left coast) the tier 1 support staff often has NO idea of what services are offered, where a certain service is and is not offered, or even whether or not they actually have a pulse. As a for instance: The company I work for (a medium sized ISP) receives a fax from Verizon stating that they would be offering enhanced DSL services in our area, so our sales department happily started selling these services. When installation dates started popping up, the Verizon techs denied for weeks that the service the customer had been sold was available. After many hours of sitting on hold, arguing with rude technicians (IMNSHO), and finally speaking with someone far enough up the food chain to know what was going on, our customers did indeed get their service. </rant>
I don't know about anybody else, but quite frankly this scares the dickens out of me! If they can take previously registered domain names, what comes next? The whole etoy fiasco would be nothing compared to what this could lead to.
Sure, the comics are funny, most humor has to do with someone else's misfortune. Maybe it's not Right(TM) to laugh at someone else's ignorance of a certain subject, but it doesn't hurt anyone either. It's not like they're naming specific people in their strips. Lighten up a bit.
The complete lack of intellect in your post leads me to believe that you are exactly the kind of person who should be drug into the street, beaten with a stick filled with broken windows cd's, have alcohol poured into your seeping wounds, and then be forced to debug microsoft code for 15 days straight. go away, we don't like you.
Slashdot Mirror
And by "Verizon disables the GPS capabilities of the MiFi" you mean "Verizon doesn't use it", since the hardware is still there, and can still be activated to retrieve the location of any Verizon MiFi.
You don't got to *do* hacking, you go to learn about hacking from people in the same building (thus requiring little to no B/W).
You have clearly never been to defcon, and/or miss the point of the con altogether. Sure, there are great speakers giving talks about important and relevant topics. Some of them are even useful...
But the larger part of con the for a lot of the attendees is to get together with like-minded individuals and...wait for it...hack.
Here are some examples of the hacking that went on at this year's defcon. The Lost@con Mystersy Challenge results aren't there, and as a participant I can tell you that it required breaking crypto, circumventing physical security measures, debugging code, hardware hacking skills, and trick-or-treating, among other things. I don't know what your definition of "hacking" is, but it should probably include a few of those.
This also doesn't mention some of the cool things going on in the lock-picking village, the hardware hacking village, the wi-fi village, etc...
And from what I have heard about Defcon you are best to not bring any of your own devices at all, lest you end up hacked yourself and on the wall of shame.
Most people I know wipe and reimage their machines after spending any time at all on the defcon network. They call it the most hostile network environment on the planet for good reasons. That being said, the Wall of Sheep has absolutely nothing to do with being "hacked", it simply displays usernames and (partial) passwords for people who are too stupid or lazy to use encrypted protocols. If you show up at a hacker convention and can't be bothered to use TLS or SSL for your email, you deserve to be shamed.
If you find this difficult to believe, then you've never lived in a community that has a (relatively) large mormon population. This is common practice, and the mormon students have to leave school for one or more classes per day to go get brainwashed across the street. I live in the Tri-Cities (about an hour and a half south of Moses Lake), and I seem to recall that all of the high schools here have these little mini-churches across the street. Of course, it's been 17 years since I was in high school, so things may have changed...
I've got one of these, and it's fantastic. My TV, amp, DVD player, Direct TV receiver, and PVR now all have the same remote. It has enough "extra" slots that I can get IR light switches and/or power outlets, and program it to work them as well. Best feature: Via the learning function, I don't have to switch back and forth between "TV", "PVR", and "AMP" to change the channel, start recording something, then turn the volume up, I can put them all on one screen. You can't program it via your computer, and it doesn't have a color screen, but it's the coolest birthday present I've gotten in years! And it was only $100...
To all Internap customers:
0 03 0717-blocked.shtml
Cisco Systems has released to the public notification of a vulnerability
in many versions of Cisco IOS which can create a Denial of Service on an
affected router. The details of the advisory can be viewed at the
following link:
http://www.cisco.com/warp/public/707/cisco-sa-2
No exploits which target this vulnerability have yet been identified.
Prior to the public notification, Cisco had contacted their major NSP
customers including Internap to inform us of this vulnerability. Internap
has identified IOS versions with the appropriate fix for the platforms in
our network and scheduled upgrades to our routers. Customers will receive
notification shortly of the window in which the routers you are homed to
will be upgraded. Due to the severity of this vulnerability these
upgrades are being performed as emergency maintenance.
Customers with questions about the possible impact of this vulnerability on
their own equipment are urged to read the notice at the link above or to
contact Cisco directly.
AT&T had an OC192 (9.95Gb/s) between St. Louis and San Francisco down today for a while, caused some havoc with various providers who use them for transit.
...on NANOG most of the day today. It looks like Cisco discovered the vulnerability in their own testing, notified major backbone providers (AT&T, Qwest, Sprint, L3, etc), who then scheduled emergency maintenance, which in turn tipped off savvy network engineers all over the place, who started wondering what was up, which in turn generated enough interest that bits and pieces leaked, and I bet Cisco figured better to release the advisory now and end the speculation than to wait till tomorrow. As for the "no exploit available", I had a router with an uptime of many many moons hang for no apparent reason tonight...while working on that I found the cisco advisory in my inbox. Could be a coincidence, but it's a strange one.
Another reason DJBDNS doesn't get much airtime might be related to the fact that the author of that code appears to be a raving loon hellbent on defaming BIND in general, and ISC and it's employees in specific. Anyone who has followed the bind-users or bind9-users mailing lists can attest to the fact that he frequents those lists (or did fairly recently) with (apparently) the sole intention of stirring the shit every now and then. Our team was seriously considering moving all of our nameservers to DJBDNS, but after watching the antics of Mr. Bernstein, we changed our minds.
It's kind of late in the game for me to start commenting now, but I feel like I should get this out. As somone who *was* involved in a gun accident, I think I can speak authoritatively on the subject. Let me first say that while I do not currently own a gun, I would if I had the money to spare on it at the moment. Secondly, let me say that I am missing several digits on one of my hands because of irresponsibility with a weapon. What this taught me was: "Never listen to someone who says a weapon isn't loaded, always verify that for yourself". Rest assured that this will be the first lesson my children learn (and these are not theoretical children at some point in the future, I've got two wonderful sons). My father taught me to shoot at an early age, and I plan on teaching mine to shoot as soon as they are able to hold a rifle. I think that the important point in this debate is the fact that children who are educated about weapons (be they guns, knives, words, jelly donuts, whatever) will not try to show off to their friends about how cool they are cause they found dad's gun. They will (for the most part) show them the respect they deserve. Putting chips in weapons that only allow one person to fire them is not the answer. Properly educating the youth of today is one aspect of the answer, another is giving the kids something to do rather than run the streets looking for acceptance with the local gang, or sitting in their room stewing about how mistreated they were at school. Noone is going to stop criminals from killing people with guns by only allowing legitimate weapons to fire when handled by the correct operator, I can show you 15 ways to make a zip gun that is every bit as deadly as your average .45, and another 10 that would drop any human in one shot, regardless of whether it killed him. Legislating gun ownership (or functionality) away is not the right way to go, no matter what kind of spin you put on it
Apparently my tags fell off somewhere between my typing and your reading. Next time I'll be sure to include a disclaimer for flaming morons.
somebody mod this guy up, he's hit the nail on the head!
I have nothing to hide, but it still saddens me when civil liberties are taken away. I read "Mein Kampf" in high school because I was curious, and it got me labeled a skinhead. Later the same year I read "The Story of My Experiments With Truth", Ghandi's autobiography, and was labeled a hippie. So I'm a skinhead hippie, based only on the book I happened to have in my bag at the time. Now what if I had checked those books out from the local library? Sure it's a farfetched scenario, but history is full of farfetched scenarios.....
Because They Can. They rushed the patriot act through under the guise of "Fighting Terrorism!", and wound up taking away your rights. I don't know about anybody else, but it gives me a warm fuzzy feeling inside to know that my government is looking out for my best interests, no matter what the cost to my personal freedom.
Damn, I can't think of anything witty to post...
Will you be able to access the network of cameras that are all over the place over there? That would make for an interesting service....
"Okay. In short, we have transferred everything I did for the NSA and other services to a private company that then sells intelligence to businesspersons.
I'm sorry, but I don't think you'd be transferring ANYTHING you did *for* the NSA...you might take something you did for the NSA and implement a similar solution, but you're not just going to grab a project and run with it.
We get information on everything from local diseases, outbreaks of malaria epidemics and local unrest to strikes, the weather and traffic conditions. Our customers are large multinational companies like Prudential and Texas Instruments. We also work for institutions like the World Bank and the IMF."
And you need former KGB, NSA, etc agents to check the weather...?
This whole interview strikes me as a little off. Something's not right in Denamrk, here folks.
Why are the Federales allowing this "architect" to talk about it? Here's my best guess:
Since everybody with half a clue already knows about echelon/echelon II, they've developed a NEW system, so they're going to let information leak about echelon, thereby lulling people back into complacency. The sheep will be satisifed that echelon is somewhat out in the open, and go back about their lives, meanwhile the governament is implementing it's NEW, IMPROVED system. How's that for a conspiracy theory?
Text from the EULA:
IMPORTANT-READ CAREFULLY: This End-User License Agreement ("EULA") is a legal agreement between you (either an individual person or a single legal entity, who will be referred to in this EULA as "You") and the Licensor for the Microsoft Frontpage Web components, including the MSNBC news headline component, the MSN MoneyCentral Stock Quote component, and the MSN Search component (the "Software"). The Software also includes any software updates, add-on components, Web services, and/or supplements that the Licensor may provide to You or make available to You after the date You obtain Your initial copy of the Software to the extent that such items are not accompanied by a seperate license agreement or terms of use.
I'm no lawyer, but I'd read that as "All of the software included in the package, and anything we decide to throw in later."
Dont' have a scanner here at work, and I left my digitial camera at home, but I do have a copy of the FP 2002 license sitting in front of me and that section says:
Restrictions. You may not edit or modify the Software in any manner whatsoever. You may not display any of the logos that appear in the Software in any manner that implies sponsorship, endorsement, or license of Your Web Site by the owners of such logos. If the Software contains any active links to other sites, You agree to maintain such active links and not redirect or modify them. You may not market, distribute, sublicense, lease, or rent the Software on a stand-alone basis. You may not use the Software in connection with any site that disparages Microsoft, MSN, MSNBC, Expedia, or their products or services, infringe any intellectual property or other rights of these parties, violate any state, federal, or international law, or promote racism, hatred, or pornography. You shall not convert the news headlines in the MSNBC component into an audio format for redistribution to audio users. You agree to immediately remove the Software from Your Web Site if You do not abide by any of these restrictions after notice. All rights not specifically granted herein to You are reserved.
Bold is mine, not theirs, that is the portion that disturbs me. It seems a clear violation of the first ammendment to me, and the piece about maintaining active links left there by the software? WTH is that? Thank god I only use this to provide functionality to customers who demand it....
start using Morpheus or edonkey2000. These networks are a little underpopulated now, but they seem to be gaining userbase. Both support the ability to download one file from many people at the same time, I've seen aggregates of 130k/s downloading from 5 different users. Steal your music just a little bit faster.
I'm sorry, but I do believe you are mistaken. DSL does NOT rely "completely on the absence of telephone company equipment between the DSL modems on each end of the line." Granted, each switch you touch degrades the signal by X, but there could be any number of switches betweeen your modem and the DSLAM.
Also, just because you have a fiber local loop does not mean you can't get DSL. Read this for a decent explanation of the hybrid network issue. IF your neighborhood has new enough equipment (read: installed in the last 4 years or so), you may be able to convince them. In my experience with Verizon (on the left coast) the tier 1 support staff often has NO idea of what services are offered, where a certain service is and is not offered, or even whether or not they actually have a pulse. As a for instance: The company I work for (a medium sized ISP) receives a fax from Verizon stating that they would be offering enhanced DSL services in our area, so our sales department happily started selling these services. When installation dates started popping up, the Verizon techs denied for weeks that the service the customer had been sold was available. After many hours of sitting on hold, arguing with rude technicians (IMNSHO), and finally speaking with someone far enough up the food chain to know what was going on, our customers did indeed get their service. </rant>
flirzan
http://www.rotten.com the smell of putrifying garbage from the local landfill should do nicely..
Sure, the comics are funny, most humor has to do with someone else's misfortune. Maybe it's not Right(TM) to laugh at someone else's ignorance of a certain subject, but it doesn't hurt anyone either. It's not like they're naming specific people in their strips. Lighten up a bit.
The complete lack of intellect in your post leads me to believe that you are exactly the kind of person who should be drug into the street, beaten with a stick filled with broken windows cd's, have alcohol poured into your seeping wounds, and then be forced to debug microsoft code for 15 days straight. go away, we don't like you.