I was not doing well and would have been homeless or worse but I was able to sell some code I had written for $1000.
From that $1000, I was able to buy a car which then allowed me get a job with UPS loading trucks while going back to school which led me to a good job which led me to a better job and so forth.
I suppose if you are an expert in crypto this might be true.
If you are not a crypto expert, you are going to rely on libraries or APIs or continue on to roll your own anyway. Crypto from scratch is hard to do correctly... look at all of the SSL vulnerabilities over the years. The math may be perfectly understood by this hypothetical person, but implementing that knowledge perfectly is another matter entirely.
So when encryption is illegal, where are you going to get your crypto libraries from? Not everyone knows how to get access to illegal goods. I would imagine the vast majority of do-it-yourself app writers in this dystopian future would end up with a system they thought (for all they knew) was secure, but was trivially attacked by state sponsored actors.
By stating that this is a global issue. Completely true. The Internet is global and knows no borders....
This is why I expect that in the not-too-distant future, electronic borders will be just as heavily (if not more so) guarded as national borders.
That is really the only "solution" here for countries that want the Internet but also want to be able to legislate it.
The likely fallout of this will be an "instanced" Internet. Where Google in France is a completely separate network than Google in Spain (for example).
Then, the country-to-country interlinks are locked down and only authorized packets will be able to cross the borders.
Huge cost, which is why there will be push back, but it will happen eventually.
I am somewhat of a professional drinker and I still get tipsy off of 2 American lagers. Anything beyond that is getting drunk...
On the other hand, when I have smoked pot in the past with any regularity, my tolerance for it goes way up and I have to smoke exponentially more in order to achieve the same effect.
I could *maybe* see where they were coming from if alcohol was only beer, wine, mead, cider, etc. But how would that explain hard liquor? I am pretty sure that nobody would drink anything over 30 proof for the taste...
You don't have to be addicted to drugs to want to buy drugs...
Drugs can be a very inexpensive vacation for a couple of days.
The problem is when it starts to interfere with other's lives.
But even then, I am not sure I would call it a bad thing necessarily.
People are addicted to all kinds of things and no matter what it is (exercising, world of warcraft, kids, etc) it will incur a cost on others. It is just that we are conditioned to accept the cost for some "addictions" and not others.
It seems most upgrading today is done solely due to FUD.
Here are the main drivers for updating (in my opinion), in order:
- Support (While I may be able to deal with 99% of issues, those 1% issues can be show stoppers. Software support is a much needed life line) - Hardware compatiblity (drivers....) - Security (operating systems that receive continued patches is a really good thing) - Management (better deployment options, group policy changes, etc) - Software needs (newer software requires a current OS*)
* Most of the time, this is probably arbitrary installer settings which won't install unless it detects a certain OS version. Presumably, this is for the benefit of the software maker and not the end user. Still... if you are out of spec at all and try to get support... you will fail flowchart step one on any tier one support call.
Possible answer to your question. From the article;
"Once installed, the main Project Sauron modules start working as 'sleeper cells,' displaying no activity of their own and waiting for 'wake-up' commands in the incoming network traffic," Kaspersky researchers wrote in a separate blog post. "This method of operation ensures Project Sauron’s extended persistence on the servers of targeted organizations."
Having to take unpaid time off from work (if your employer even lets you) to go vote pretty much guarantees that a certain portion (working poor) of the electorate will not vote.
But in that case they only get the public key which is almost useless to them.
Sure, they could encrypt stuff using it, but only you and the government (having the private key) can decrypt it. Worst case I can think of is that the keys would be used to spoof identification in various ways. But that is already the case if they steal your ID.
Correct me if I am wrong, but don't many states require a valid government issued ID in order to vote currently?
I know that nothing perfectly ties a particular vote with a particular person, but the government has the time of day that you showed up and also knows when certain votes are entered into the system. If the terminals are electronic, even better. So, while they may not have a perfect correlation, they have a pretty good guess.
But, yeah, I see your point. It would seem to be an insurmountable problem.
Still, perhaps voting from your personal or corporate computer may be out of the question, but what about an already existing secure computer system like an ATM network? If I could pop out during lunch and hit up the nearest ATM in order to vote, I absolutely would. As it is, there are way too few voting centers... it's almost as if they are designed to be out of the way for nearly everyone.
what you are essentially doing is talking about your new car, but refusing to call it a car, saying instead that it is a "motorized conveyance device".
<Pedantic>I think a better analogy would be: You got a new "motorized conveyance device", which is what they are called now. But you continue to call it a "car" even though the definition of "car" has changed to mean something slightly different.</Pedantic>
Slashdot Mirror
Haven't you ever done something for the "cool" factor? How about because you wanted to know how something was done?
To only read about other people doing stuff and choosing not to do it because it has already been done seems like a pretty boring way to live life...
I believe it because it happened to me.
I was not doing well and would have been homeless or worse but I was able to sell some code I had written for $1000.
From that $1000, I was able to buy a car which then allowed me get a job with UPS loading trucks while going back to school which led me to a good job which led me to a better job and so forth.
I really attribute everything to that $1000.
They are run by Congress?
You never buy a car with power windows.... every convenience is either an attack surface and/or a money sink when it needs to be repaired.
I suppose if you are an expert in crypto this might be true.
If you are not a crypto expert, you are going to rely on libraries or APIs or continue on to roll your own anyway. Crypto from scratch is hard to do correctly... look at all of the SSL vulnerabilities over the years. The math may be perfectly understood by this hypothetical person, but implementing that knowledge perfectly is another matter entirely.
So when encryption is illegal, where are you going to get your crypto libraries from? Not everyone knows how to get access to illegal goods. I would imagine the vast majority of do-it-yourself app writers in this dystopian future would end up with a system they thought (for all they knew) was secure, but was trivially attacked by state sponsored actors.
He will protect... his food bowl.
We all protect our food bowls...
It takes a LOT of TPS reports, pointless memos, impotent meetings and middle management to make come about...
By stating that this is a global issue. Completely true. The Internet is global and knows no borders....
This is why I expect that in the not-too-distant future, electronic borders will be just as heavily (if not more so) guarded as national borders.
That is really the only "solution" here for countries that want the Internet but also want to be able to legislate it.
The likely fallout of this will be an "instanced" Internet. Where Google in France is a completely separate network than Google in Spain (for example).
Then, the country-to-country interlinks are locked down and only authorized packets will be able to cross the borders.
Huge cost, which is why there will be push back, but it will happen eventually.
It could make for some nice sandy beaches...
That is assuming that the system is sane.
If the people that have power to alter your life don't believe you, then you are just as screwed.
I am somewhat of a professional drinker and I still get tipsy off of 2 American lagers. Anything beyond that is getting drunk...
On the other hand, when I have smoked pot in the past with any regularity, my tolerance for it goes way up and I have to smoke exponentially more in order to achieve the same effect.
I could *maybe* see where they were coming from if alcohol was only beer, wine, mead, cider, etc. But how would that explain hard liquor? I am pretty sure that nobody would drink anything over 30 proof for the taste...
You don't have to be addicted to drugs to want to buy drugs...
Drugs can be a very inexpensive vacation for a couple of days.
The problem is when it starts to interfere with other's lives.
But even then, I am not sure I would call it a bad thing necessarily.
People are addicted to all kinds of things and no matter what it is (exercising, world of warcraft, kids, etc) it will incur a cost on others. It is just that we are conditioned to accept the cost for some "addictions" and not others.
You, sir or madam, have a very bleak outlook on life.
I was thinking the same thing.
Sounds like this is a whole new level of fingerprint-ability
It seems most upgrading today is done solely due to FUD.
Here are the main drivers for updating (in my opinion), in order:
- Support (While I may be able to deal with 99% of issues, those 1% issues can be show stoppers. Software support is a much needed life line)
- Hardware compatiblity (drivers....)
- Security (operating systems that receive continued patches is a really good thing)
- Management (better deployment options, group policy changes, etc)
- Software needs (newer software requires a current OS*)
* Most of the time, this is probably arbitrary installer settings which won't install unless it detects a certain OS version. Presumably, this is for the benefit of the software maker and not the end user. Still... if you are out of spec at all and try to get support... you will fail flowchart step one on any tier one support call.
I think you are assuming that every Windows release has different code.
I would be willing to bet that Windows 10 is basically Windows 2000 with updated UI and a few more drivers baked in to the kernel.
When a Windows vulnerability affects all previous versions of the OS, it's a strong indicator that this is true.
This is why we (in general) are moving to a whitelist arrangement for software.
At the very least, disable execution of code from any user writable area.
Possible answer to your question. From the article;
"Once installed, the main Project Sauron modules start working as 'sleeper cells,' displaying no activity of their own and waiting for 'wake-up' commands in the incoming network traffic," Kaspersky researchers wrote in a separate blog post. "This method of operation ensures Project Sauron’s extended persistence on the servers of targeted organizations."
I am not lazy either.
I just really enjoy doing nothing.
I will take vacation time and just sit at home.
Exactly this.
Having to take unpaid time off from work (if your employer even lets you) to go vote pretty much guarantees that a certain portion (working poor) of the electorate will not vote.
But in that case they only get the public key which is almost useless to them.
Sure, they could encrypt stuff using it, but only you and the government (having the private key) can decrypt it. Worst case I can think of is that the keys would be used to spoof identification in various ways. But that is already the case if they steal your ID.
Correct me if I am wrong, but don't many states require a valid government issued ID in order to vote currently?
I know that nothing perfectly ties a particular vote with a particular person, but the government has the time of day that you showed up and also knows when certain votes are entered into the system. If the terminals are electronic, even better. So, while they may not have a perfect correlation, they have a pretty good guess.
But, yeah, I see your point. It would seem to be an insurmountable problem.
Still, perhaps voting from your personal or corporate computer may be out of the question, but what about an already existing secure computer system like an ATM network? If I could pop out during lunch and hit up the nearest ATM in order to vote, I absolutely would. As it is, there are way too few voting centers... it's almost as if they are designed to be out of the way for nearly everyone.
Apt-get upgrade works just fine in my windows 10 bash.
what you are essentially doing is talking about your new car, but refusing to call it a car, saying instead that it is a "motorized conveyance device".
<Pedantic>I think a better analogy would be: You got a new "motorized conveyance device", which is what they are called now. But you continue to call it a "car" even though the definition of "car" has changed to mean something slightly different.</Pedantic>