None of the weaknesses that have been discovered in common hashes allow reversing them (which is in general impossible anyway since an infinite number of inputs could lead to the same hash, it's just infeasible to find them).
The "crack" is just high-speed testing of possible passwords. Modern cracking software is actually fairly sophisticated about trying substitutions on dictionary words.
Use a passphrase unless there's some stupid limit on password length.
An Israeli security expert, maybe Rafi Sela, said it's a mistake to put threat assessment and security implementation in the same organization. Do that, and it starts inventing reasons why it should grow.
Adam Smith, who made the case for market economies creating public good without meaning to, also worried about businessmen conspiring to gouge the public. At a guess, he would have approved of antitrust laws.
>If we lived back then I'm sure we'd be hearing about Anthropogenic Tectonic Drift.
The difference is that there's a physical mechanism for human effect on climate and that observations are matching calculations based on that physics.
A quick touchstone for any alternative hypothesis for explaining global temperature rises is to ask, "Does it predict stratospheric cooling?" If CO2 is trapping heat in the lower atmosphere, then we'd predict that it won't reach the stratosphere, which will then cool down. Warming due to orbital changes, solar activity, or whatnot, would warm up the stratosphere.
In 2008 fossil fuel burning adding 8.7 gigatons of carbon to the atmosphere, land use changes another 1.2 gigatons. Where did it go? Unless all anthropogenic CO2 is disappearing in a way that natural CO2 isn't, then we're contributing to the increase.
Phones get lost and stolen All The Time. Then the bad guy has unfettered physical access to the device. Normally that means Game Over. Suppose they try to make it tamperproof, ignoring the lessons of history. A targeted pickpocket will deliver it into the hands of a national intelligence agency.
You'd have to have a design that makes local storage impossible, which would make for a very strange smartphone.
But test your browser to make sure the setting is actually honored. One closed-source browser, configured to reject third-party and advertising cookies, keeps downloading a cookie from doubleclick.net.
In a world where picture frames come preinstalled with malware, in a world where simply visiting the wrong website can infect you if Flash has an unpatched vulnerability, that's too simplistic.
I blame people for running Trojans, I blame people for not doing updates (but come on, what other industry would tolerate having a recall on the second Tuesday of every month), but this is still a world in which drive-by downloads are possible. I run Noscript, of course, but don't expect anyone else to live with the problems it causes.
>but why do so many people feel that they're being misled by scientists? is it just that they don't want to believe what science says?
The people who make their living or get their authority from telling other people what to think are directly threatened by science, so they tell the people under their control not to trust science and scientists.
SELinux addresses that. I like the idea of capabilities-based OSes, but worry that there may be a reason that projects like CapROS haven't caught on in the market.
You get 239Pu from power plants, along with 240Pu in high-burnup fuel. 238 is a small fraction and impractical to separate.
238 requires custom production, for example by separating and irradiating Neptunium 238. Which means reprocessing infrastructure, which is seriously expensive to build, and not exactly cheap to operate if you've already built it for other purposes.
Slashdot Mirror
Imagine boards of directors giving ultimatums like this to underperforming CEOs.
No, each one is an independent problem.
None of the weaknesses that have been discovered in common hashes allow reversing them (which is in general impossible anyway since an infinite number of inputs could lead to the same hash, it's just infeasible to find them).
The "crack" is just high-speed testing of possible passwords. Modern cracking software is actually fairly sophisticated about trying substitutions on dictionary words.
Use a passphrase unless there's some stupid limit on password length.
"Almost impossible"?
It's a more complicated problem than determining whether the program will halt.
For extra paranoia, seal the envelope containing your master password with tamper-evident tape.
Think through whether changing passwords every month is a good idea. I could give you my opinion but Bruce Schneier published a brief analysis on the subject:
http://www.schneier.com/blog/archives/2010/11/changing_passwo.html
Which has an environmental impact, though certainly nothing like putting coal exhaust in our breathing air.
I don't understand why they're doing it this way. Green power is cheap in Iceland, there are three fiber trunks to the island, and cooling is easy.
It's legal tender, so numismatists would call it a coin. Krugerrands don't have a denomination on them either.
An Israeli security expert, maybe Rafi Sela, said it's a mistake to put threat assessment and security implementation in the same organization. Do that, and it starts inventing reasons why it should grow.
In that case they would have attacked Iceland.
Put a "Like" button on every page they visit and store the Referrer field when the button gets downloaded.
Adam Smith, who made the case for market economies creating public good without meaning to, also worried about businessmen conspiring to gouge the public. At a guess, he would have approved of antitrust laws.
>If we lived back then I'm sure we'd be hearing about Anthropogenic Tectonic Drift.
The difference is that there's a physical mechanism for human effect on climate and that observations are matching calculations based on that physics.
A quick touchstone for any alternative hypothesis for explaining global temperature rises is to ask, "Does it predict stratospheric cooling?" If CO2 is trapping heat in the lower atmosphere, then we'd predict that it won't reach the stratosphere, which will then cool down. Warming due to orbital changes, solar activity, or whatnot, would warm up the stratosphere.
It's easy to find out which is happening.
In 2008 fossil fuel burning adding 8.7 gigatons of carbon to the atmosphere, land use changes another 1.2 gigatons. Where did it go? Unless all anthropogenic CO2 is disappearing in a way that natural CO2 isn't, then we're contributing to the increase.
Ten percent of the glaciers in the world are growing. Draw your own conclusions.
> I absolutely categorically do not believe that the protesters are civil. Their cause alone proves that they are violence-prone and violence-minded.
I, on the other hand, believe or disbelieve things based on the evidence.
Phones get lost and stolen All The Time. Then the bad guy has unfettered physical access to the device. Normally that means Game Over. Suppose they try to make it tamperproof, ignoring the lessons of history. A targeted pickpocket will deliver it into the hands of a national intelligence agency.
You'd have to have a design that makes local storage impossible, which would make for a very strange smartphone.
It used to be that education was the way to "survive and adapt". If that changes we'll have to come up with something to substitute for it.
But test your browser to make sure the setting is actually honored. One closed-source browser, configured to reject third-party and advertising cookies, keeps downloading a cookie from doubleclick.net.
In a world where picture frames come preinstalled with malware, in a world where simply visiting the wrong website can infect you if Flash has an unpatched vulnerability, that's too simplistic.
I blame people for running Trojans, I blame people for not doing updates (but come on, what other industry would tolerate having a recall on the second Tuesday of every month), but this is still a world in which drive-by downloads are possible. I run Noscript, of course, but don't expect anyone else to live with the problems it causes.
>but why do so many people feel that they're being misled by scientists? is it just that they don't want to believe what science says?
The people who make their living or get their authority from telling other people what to think are directly threatened by science, so they tell the people under their control not to trust science and scientists.
Multiple published books (useful ones) aren't credentials?
Anyway, an AV engineer wouldn't necessarily be the person to listen to about SDLC.
SELinux addresses that. I like the idea of capabilities-based OSes, but worry that there may be a reason that projects like CapROS haven't caught on in the market.
You get 239Pu from power plants, along with 240Pu in high-burnup fuel. 238 is a small fraction and impractical to separate.
238 requires custom production, for example by separating and irradiating Neptunium 238. Which means reprocessing infrastructure, which is seriously expensive to build, and not exactly cheap to operate if you've already built it for other purposes.
> Would love to be able to fly without being treated like a criminal though.
If they get CNN in Hell, watching Americans getting bad-touched is making Osama bin Laden laugh.
The major browsers support OCSP. The technology exists, whatever the practical problems are in using it.
If you can't copy a quantum state ...