The point is: Neither you nor the employer can really decide what's the truth. They do not know all facts and they should not know all the facts. We need to trust courts, because if we don't, we cannot resolve anything in any non-anarchic way. So, let's trust a court and let the court decide. And then we accept the decision, if he's guilty or innocent. And we say he's innocent until proven to be guilty. When somebody obviously avoids to go to court, you could suspect, that they have nothing which would stand in court. This does not mean, it is that way, there can be a lot more reasons. But if they do not go to court, they cannot demand that the case is treated as if a court would have decided they are right. If you do not go to court, you are voluntary giving up your rights. Which is okay. But then you cannot demand anything, which would result from a positive decision. And a clear decision would benefit everyone. Either he's proven guilty and we can move on and tell people supporting him, that the should go away and he's in jail, preventing any further harm, or he's proven innocent and we can at least tell people attacking him to fuck off with their witch hunt. This will not get him his job back and i guess he doesn't want it back (not sure for appelbaum, though...), but he at least can tell "All the rumors haven been proven to be wrong" and get work somewhere else without being "the rapist". And finally, and that's the big problem here, we have two big parts of the community, which are opposing each other instead of working together. With a clear decision every sane person can continue to work together and only the trolls remain claiming this must be a false decision (and they are probably not contributing anyway, but using this as an example for "their cause").
Best resolution of the Appelbaum case? Let a court decide.
If the victims don't go to court, they decide themself not to do so and should not accuse him publicly for something they do not want to have in court. If they go to court, we will get a fair trial with some result. Possibly that appelbaum is a rapist. The court will find out. But afterwards we have a decision we can trust on and shut up with rumors from the one or the other side.
We need tor. Tor needs developers. Tor needs developers, which work together. The best case for any agency is when the developers distrust each other and work against each other. Whatever Appelbaum did or did not do, it's not in our interest, that this stops the work for tor.
Read this: https://cryptome.org/2012/07/g... Really read this. This list contains some of the things you're seeing here. How to disturb groups and prevent them from working efficicently, how to get them to fight each other instead of fighting their enemy.
Keep your personal conflicts personal and continue to work against the threats we're facing.
Most the time this is IMPORTANT. But too often, it just tells me "somebody did not setup the right CA certificates for you".
And try to root your nexus phone. On every boot you get a "This device is inscure, read more at goo.gl/blablub" warning, because i have an unlocked bootloader. Fuck you, i choose to have one. Please notice me, when something actually replaced something without my command.
They try to store as much energy as possible at least space as possible.
That's the problem, why batteries are always dangerous. There is just a lot of stored energy in there. For example enough to start a fire or to explode.
Which would be a good thing, if they would write for their own usage. Maybe one person is really into "i always wanted a nice screenshot function", but not all of mozillas devs. So there must be more a "We like to build this feature as an interesting challenge" thing than a "i always wanted it!" thing.
I've seen a lot of devices with preinstalled thirdparty stuff like facebook or dropbox. one even had increased dropbox size when the user logged into the dropbox app with his account. Not only the "install app" bonus, but some bonus for using this exact device.
Yeah, but that's the point. Of course a secure enclave does not hurt. But Kerckhoff's Law says, if your scheme isn't secure if everything but the password is known, it's not secure at all. So use a damn passphrase which is secure and you do not need to worry about hardware implementations. With a fingerprint sensor, the iphone has everything which is needed to have convenience AND security with a long passphrase. Otherwise you can use an android phone with SnooperStopper to have different passcodes for the lockscreen and the disk encryption (and shutdown on 3 wrong codes).
> After a few days, we had determined yes, we could. Enough. What can be done, eventually will be done. Others try to secure their software, so not even they can crack it. That's the way to go, because otherwise there just need to be enough bribe or pressure and it will be done. Look at your anonymous vpn provider. They will most likely cooperate as well, turning over all their logs, which means nothing at all. That's useful security for you and for them. Now suppose they have logs but store them strongly encrypted. Then it's just a matter of a good argument to convince them to turn over the logs. And once they did it one time it's a slippery slope.
It's called security theater. You need to entertain your audience in the show, not to tell the truth. So you need to have End-to-End encryption to have marketing keyword, but you do not need to have a secure implementation for marketing, because very few people will notice and the non-nerds won't care at all, even when they were impressed by the keyword when buying the stuff.
When there were ggautoblocker and sjwautoblocker from the two parties, both available at github, i made a pullrequest with my nickname for both. Who thinks (s)he should block people (s)he doesn't even know does not deserve my tweets.
You're only missing out the most troublesome people. On the one side the SJW driven by their usual motives, on the other side the part of gamer gate people, which are really haressing someone. Who just wrote about gamergate but harassed nobody is on the ggautoblocklist, but doesn't participate by blocking people via sjwautoblocker.
So, why care? Because they mark you as spam via the twitterapi? I didn't even notice and their bot got banned from twitter for reporting people as spam, who weren't spamming.
I think the guy is mixing up two different invulnerabilities. The one is about intercepting connections by sending a lot of ack packets, the other one is about faulty resolution of the dns-name for the wpad server.
There are two variants: a) via DHCP. Then your os needs to do stuff b) Via DNS. Then your browser implements it. (Or your OS could do stuff, like setting environment variables). I think the attack is about the DNS variant only.
It just leads to the top selling product of the digital to analog converter. And as long as this exists (and it will exist for a long time, because most headphones are analog) there is no DRM on this.
I don't like networks, which try to tie my real identity to my "blog". I would prefer people to use gnusocial (quitter.se for a twitter like version, gnusocial.de and some others (same with higher character limit) for a facebook version). It's federated and pseudonymous. I still see some technical challenges there, but at the current level it works okay. If you're talking about nerd circles, you're right there. If you want to reach the masses you still need twitter or facebook.
Slashdot Mirror
The point is: Neither you nor the employer can really decide what's the truth. They do not know all facts and they should not know all the facts. ...), but he at least can tell "All the rumors haven been proven to be wrong" and get work somewhere else without being "the rapist".
We need to trust courts, because if we don't, we cannot resolve anything in any non-anarchic way.
So, let's trust a court and let the court decide. And then we accept the decision, if he's guilty or innocent.
And we say he's innocent until proven to be guilty.
When somebody obviously avoids to go to court, you could suspect, that they have nothing which would stand in court. This does not mean, it is that way, there can be a lot more reasons. But if they do not go to court, they cannot demand that the case is treated as if a court would have decided they are right. If you do not go to court, you are voluntary giving up your rights. Which is okay. But then you cannot demand anything, which would result from a positive decision.
And a clear decision would benefit everyone. Either he's proven guilty and we can move on and tell people supporting him, that the should go away and he's in jail, preventing any further harm, or he's proven innocent and we can at least tell people attacking him to fuck off with their witch hunt.
This will not get him his job back and i guess he doesn't want it back (not sure for appelbaum, though
And finally, and that's the big problem here, we have two big parts of the community, which are opposing each other instead of working together. With a clear decision every sane person can continue to work together and only the trolls remain claiming this must be a false decision (and they are probably not contributing anyway, but using this as an example for "their cause").
Best resolution of the Appelbaum case?
Let a court decide.
If the victims don't go to court, they decide themself not to do so and should not accuse him publicly for something they do not want to have in court.
If they go to court, we will get a fair trial with some result. Possibly that appelbaum is a rapist. The court will find out. But afterwards we have a decision we can trust on and shut up with rumors from the one or the other side.
Stop the Bullshit.
We need tor. Tor needs developers. Tor needs developers, which work together.
The best case for any agency is when the developers distrust each other and work against each other.
Whatever Appelbaum did or did not do, it's not in our interest, that this stops the work for tor.
Read this: https://cryptome.org/2012/07/g...
Really read this. This list contains some of the things you're seeing here. How to disturb groups and prevent them from working efficicently, how to get them to fight each other instead of fighting their enemy.
Keep your personal conflicts personal and continue to work against the threats we're facing.
TLS certificate not trusted.
Most the time this is IMPORTANT.
But too often, it just tells me "somebody did not setup the right CA certificates for you".
And try to root your nexus phone. On every boot you get a "This device is inscure, read more at goo.gl/blablub" warning, because i have an unlocked bootloader.
Fuck you, i choose to have one. Please notice me, when something actually replaced something without my command.
They try to store as much energy as possible at least space as possible.
That's the problem, why batteries are always dangerous. There is just a lot of stored energy in there. For example enough to start a fire or to explode.
Which would be a good thing, if they would write for their own usage. Maybe one person is really into "i always wanted a nice screenshot function", but not all of mozillas devs. So there must be more a "We like to build this feature as an interesting challenge" thing than a "i always wanted it!" thing.
I've seen a lot of devices with preinstalled thirdparty stuff like facebook or dropbox. one even had increased dropbox size when the user logged into the dropbox app with his account. Not only the "install app" bonus, but some bonus for using this exact device.
Yeah, but that's the point. Of course a secure enclave does not hurt. But Kerckhoff's Law says, if your scheme isn't secure if everything but the password is known, it's not secure at all. So use a damn passphrase which is secure and you do not need to worry about hardware implementations. With a fingerprint sensor, the iphone has everything which is needed to have convenience AND security with a long passphrase. Otherwise you can use an android phone with SnooperStopper to have different passcodes for the lockscreen and the disk encryption (and shutdown on 3 wrong codes).
(no further text)
* disk encryption passphrase.
To be fair: A normal computer doesn't have this at all and a strong passphrase protects it just fine.
> After a few days, we had determined yes, we could.
Enough. What can be done, eventually will be done. Others try to secure their software, so not even they can crack it. That's the way to go, because otherwise there just need to be enough bribe or pressure and it will be done. Look at your anonymous vpn provider. They will most likely cooperate as well, turning over all their logs, which means nothing at all. That's useful security for you and for them. Now suppose they have logs but store them strongly encrypted. Then it's just a matter of a good argument to convince them to turn over the logs. And once they did it one time it's a slippery slope.
It's called security theater. You need to entertain your audience in the show, not to tell the truth.
So you need to have End-to-End encryption to have marketing keyword, but you do not need to have a secure implementation for marketing, because very few people will notice and the non-nerds won't care at all, even when they were impressed by the keyword when buying the stuff.
Because not everybody installed it, yet?
And nothing is wiped on a read-only image of your drive.
That are not the people, you want as followers.
When there were ggautoblocker and sjwautoblocker from the two parties, both available at github, i made a pullrequest with my nickname for both. Who thinks (s)he should block people (s)he doesn't even know does not deserve my tweets.
You're only missing out the most troublesome people. On the one side the SJW driven by their usual motives, on the other side the part of gamer gate people, which are really haressing someone. Who just wrote about gamergate but harassed nobody is on the ggautoblocklist, but doesn't participate by blocking people via sjwautoblocker.
So, why care? Because they mark you as spam via the twitterapi? I didn't even notice and their bot got banned from twitter for reporting people as spam, who weren't spamming.
I think the guy is mixing up two different invulnerabilities. The one is about intercepting connections by sending a lot of ack packets, the other one is about faulty resolution of the dns-name for the wpad server.
It probably is in your browser.
There are two variants:
a) via DHCP. Then your os needs to do stuff
b) Via DNS. Then your browser implements it. (Or your OS could do stuff, like setting environment variables).
I think the attack is about the DNS variant only.
It just leads to the top selling product of the digital to analog converter. And as long as this exists (and it will exist for a long time, because most headphones are analog) there is no DRM on this.
Don't watch your children too much, it's not good for them.
http://www.salon.com/2016/07/2...
By the way, seems that the anonymous "a google user" reviews are still not possible, your "Full Name" is displayed over your review.
I don't like networks, which try to tie my real identity to my "blog".
I would prefer people to use gnusocial (quitter.se for a twitter like version, gnusocial.de and some others (same with higher character limit) for a facebook version). It's federated and pseudonymous. I still see some technical challenges there, but at the current level it works okay. If you're talking about nerd circles, you're right there. If you want to reach the masses you still need twitter or facebook.
still an even better point ;-).
But Google+ is going nowhere.
google+ does not block adblocking. Point for them.
a linux distribution ships a new kernel release ...
Wayne?