I guess you've never been hit by an uninsured motorist, and been on the other side, just barely squeaking by, paying for your minimum liability insurance.
Guess what? You're outta luck, and no way to fix your broken vehicle.
I've been there, not able to afford to get a vehicle fixed (that someone else hit) and/or insure it. Guess what, I road the bus. It stunk, it always ran late (so I had to leave even earlier to make sure I was on the earlier bus than I needed to be), they didn't make the right stops near my house due to construction, so I had to ride 30 minutes out of the way and back on some evenings.
If you cannot afford insurance, you cannot afford to drive. Suck it up and get a bike and/or ride the bus and/or carpool.
Right now I'm in a tough spot as I've a salvage title vehicle, cannot afford to get something else, but at least I'm legal. It makes no sense for me to get full coverage right now as they won't pay out on a salvage title.
Having said that, your excuses for inability to afford insurance still does not give you a right to put my vehicle in jeopardy when you hit my car.
I did router work for a place with the same problem. No local cable company at the time, or at least didn't offer internet, so the only other option was dial-up. But this ISP was the telco, and any dial-up calls not to them were toll, so really there was no other option.
I don't know their actual terms, but if they found someone leaching like crazy, they gave them a warning, and if they kept doing it, they just cut them off.
I think the best policy is just transparency. State the ToS in plain English, and if you're going to have limits, let the users see where they're at (I hate that Comcast doesn't show my usage, yet there is a cap). Throttle them to nearly nothing once they cross that. Give them dns, email access, and local isp website access. Setup a squid proxy and once they've hosed themselves, tell them that's the only external "internet" access they have.
How about NDAs that are required for you to do your job at your employer? What if you don't want to agree to the NDA, but it is go along with the ride or starve?
That's why we have labor laws, to protect workers from employers who would take advantage of them.
Sounds like we need the same sort of law to protect patients from Doctors who want to take away rights they should not be able to take away.
I'm not a lawyer and all that, but if someone emails or snailmails me a letter, addressed to me, I can do whatever I want with it, including buying a page in the newspaper to republish it or put it on my website.
If the letter were not addressed to me, and I came across it by chance or accident, that wouldn't be legal.
Hauppauge PVR-1600 works great with Linux/MythTV already. It has one DTV input and one analog input (use it for your CableTV or CCTV cameras). $109 new from Hauppauge themselves, came with a great remote too.
That was the case with Comcast. In my area it was $61 for cable modem alone, or $59 for mini-basic cable + cable modem (that includes taxes/fees).
I recently moved, they offered me all the channels for "$6 more a month," but the bill came in at over $12 more ($72-ish), I complained, they said, "it's still a great deal!" I said no thanks, put me back, and then I found out I could get my original mini-basic cable + cable modem for $50. Really they weren't charging me $12, they were charging me $22 more than what the package I originally had now sold for.
Anyway, point is Comcast is now $50/month for cable modem (it's still like $.50 cheap to get it bundled with mini-basic cable, which I don't even have connected to anything).
They read that Microsoft's marketshare is down, and OS X is up. The more popular and OS is, the more viruses will be written. It's only a matter of time until OS X becomes a much bigger target due to increased marketshare. I think they just want their users prepared.
Of course, I think they should write the antivirus app for free and/or license it from whomever, and provide is as a form of regular support.
A: The base fine for the FIRST offense is $20 and $50 for subsequent convictions. With the addition of penalty assessments, the fine can be more than triple the base fine amount.
Q: Will I receive a point on my driver license if Iâ(TM)m convicted for a violation of the wireless telephone law?
A: No. The violation is a reportable offense; however, DMV will not assign a violation point.
Q: Will the conviction appear on my driving record?
A: Yes, but the violation point will not be added.
Pretty minor stuff, at least in the short run. If I was an insurance company and some moron got a ticket for this, I'd drop them or at least make their rates so high they cannot afford to keep coverage.
Depending on where you live, I'm sure there are plenty of people with unlimited data plans. Google Maps probably isn't too friendly on my unlimited plan Blackberry (but then neither is Facebook or MidpSSH). I love getting real-time traffic info in Google Maps as well. I just wish it would route better (like Mapquest). Google needs to buy Mapquest, that would solve it;-)
That's a riot. I ssh'd into my Wife's laptop and had some phone with her. She promptly hit the mute "idiot key" at the top of her keyboard and looked at me and said, "Take that!" I jumped into alsamixer and turned it off and hit the command again. *evil grin*
There is nothing your ISP can do about SSH over https ports. It is encrypted (as https always is) and fools every single proxy I have ever used (hundreds of customers). You can't just blanket block https.
While cable and wireless providers use shared media, DSL, T1, fiber providers do have a physical connection to each customer.
Cable and wireless providers filter by MAC address (granted, you could fake your neighbors' MAC addresses, but typically the cable modem or wireless device is controlled by your ISP and you're locked out of it).
Either way, the ISP should be filtering and only allowing the IP addresses it "owns" (assigned by ARIN, RIPE, etc.) to come back from customers. The exception to this is when you've got a BGP multi-homed situation, but even then the ISP should only allow the IPs that you've been assigned by ARIN, RIPE, etc. or your other ISP, and not just any IP.
For this reason, even if you had a cable and dsl connection at home, you cannot just use one public IP on both connections (the old days you could, but it would just come back via one path).
The problem of course comes at the big peering locations, as they ISPs cannot easily filter between each other. Each has to trust that the other side is filtering properly.
However, this would still solve things within a single well-connected country (such as the US). No US traffic should really ever leave and come back in. Because of this, and if all ISPs were required to filter traffic from their customers by law, then you could trust that all US traffic came from where it said it was, and that you could prosecute attacks (at a minimum for negligence of having an unpatched PC). All non-US netblocks you could filter and drop or have more stringent rules.
For the longest time, I just dropped all traffic from netblocks from many uncivilized countries (CN, etc.). 99% of hacking attempts stopped against my servers. The other 1% responded to abuse@ emails. Now I use other filtering means (3 strikes and your netblock is out and I share the info with others who share the info with me, all automated, all very fast, via DenyHosts).
If your ISP filters the traffic it receives from you to only be IPs that it has assigned you, you can spoof all day long and it's just going to get dropped at your ISP's GW.
Once you cannot spoof traffic, then you can always point a finger. ISPs are required to keep logs, so you can always know the end-customer (but with open wireless APs and such, the customer can claim innocent, but perhaps could still get in trouble for negligence).
If all ISPs charge metered bandwidth amounts, the amount of open APs will drop soon as well.
Yeah, no intimidation for the locals with an officer walking around. Could you imagine that at a public library or Starbucks in the US? Oh, wait, we do have to show ID before we can use the computer at our local library. But no police walking around.
No doubt you had full access due to your foreign ID/passport that I'm sure you were required to show before you were given access.
If you were in China during or up to the Olympics, you experienced a totally different internet than before and again now with things back to normal. Things were wide open at the internet cafes - but of course they still had all the IDs of whatever citizens were foolish enough to do something or try something they shouldn't. They needn't arrest them in the cafe, they'll just wait for them to go home and arrest them there.
Hmm, I don't think you get how OpenID works. I'm not an expert, but I've played with it a bit.
You enter your OpenID URL ("login"), and you are redirected to your OpenID provider to auth (or if you already authenticated earlier in your browser session, then you're all set), and your OpenID provider says, "Yup, this is "X"" (and supply whatever info you tell it to supply).
You never give your openid username/password to the website you're giving your openid URL to (although, usually the openid url is in some way your openid username, but there is nothing forcing it to be).
But the best thing is that your OpenID URL can point to your own domain, so you always control and own your OpenID. Then you just put a bit of html on your domain's webserver redirecting your OpenID to another place where you have another OpenID. Sounds complicated (it is a bit), but at any time I can switch where I redirect my OpenID on my domain to, so I can change from Verisign to anyone else I want (or even run my own OpenID server), but to all of the sites I use my OpenID URL at, I'm the same person.
What I like about Verisign's OpenID provider service is that they have one of those little keyfobs that verify you are you and have your keyfob. But the best thing is that you can get one for like $5 (?) from Paypal and it'll work on the Verisign site too (vs. $15 (?) for the Verisign fob that won't work at Paypal/eBay).
Now, all of the sudden I can login with my OpenID at a public terminal, type in my keyfob, and even if someone grabs all of that (key logger) it is only good for 30 seconds. After 30 seconds, my keyfob changes and you're can't auth to my OpenID provider again.
I understand there are other attack vectors, but overall, for non-financial uses (blogs, forum sites, etc.) it's just fine.
Slashdot Mirror
I guess you've never been hit by an uninsured motorist, and been on the other side, just barely squeaking by, paying for your minimum liability insurance.
Guess what? You're outta luck, and no way to fix your broken vehicle.
I've been there, not able to afford to get a vehicle fixed (that someone else hit) and/or insure it. Guess what, I road the bus. It stunk, it always ran late (so I had to leave even earlier to make sure I was on the earlier bus than I needed to be), they didn't make the right stops near my house due to construction, so I had to ride 30 minutes out of the way and back on some evenings.
If you cannot afford insurance, you cannot afford to drive. Suck it up and get a bike and/or ride the bus and/or carpool.
Right now I'm in a tough spot as I've a salvage title vehicle, cannot afford to get something else, but at least I'm legal. It makes no sense for me to get full coverage right now as they won't pay out on a salvage title.
Having said that, your excuses for inability to afford insurance still does not give you a right to put my vehicle in jeopardy when you hit my car.
I did router work for a place with the same problem. No local cable company at the time, or at least didn't offer internet, so the only other option was dial-up. But this ISP was the telco, and any dial-up calls not to them were toll, so really there was no other option.
I don't know their actual terms, but if they found someone leaching like crazy, they gave them a warning, and if they kept doing it, they just cut them off.
I think the best policy is just transparency. State the ToS in plain English, and if you're going to have limits, let the users see where they're at (I hate that Comcast doesn't show my usage, yet there is a cap). Throttle them to nearly nothing once they cross that. Give them dns, email access, and local isp website access. Setup a squid proxy and once they've hosed themselves, tell them that's the only external "internet" access they have.
What stops you from bringing in "fake" "prizes"?
How about NDAs that are required for you to do your job at your employer? What if you don't want to agree to the NDA, but it is go along with the ride or starve?
That's why we have labor laws, to protect workers from employers who would take advantage of them.
Sounds like we need the same sort of law to protect patients from Doctors who want to take away rights they should not be able to take away.
Remove your DNS server settings from your system. No DNS leakage. You just hard-code the SSH server IP either in your hosts file or the SSH client.
I'm not a lawyer and all that, but if someone emails or snailmails me a letter, addressed to me, I can do whatever I want with it, including buying a page in the newspaper to republish it or put it on my website.
If the letter were not addressed to me, and I came across it by chance or accident, that wouldn't be legal.
Hauppauge PVR-1600 works great with Linux/MythTV already. It has one DTV input and one analog input (use it for your CableTV or CCTV cameras). $109 new from Hauppauge themselves, came with a great remote too.
Huh? Then why does Verizon offer a tethered modem option? If I pay for that, they'd better expect me to use it.
I've used a BB8830 with VZ service for a year with no problems.
I've been using a BB8820 with AT&T service for a month. It's much slower that VZ's service, but VZ wasn't that fast anyway.
The biggest thing I had to do was edit the init strings in F9, but I had to do that even in Windows for AT&T.
That was the case with Comcast. In my area it was $61 for cable modem alone, or $59 for mini-basic cable + cable modem (that includes taxes/fees).
I recently moved, they offered me all the channels for "$6 more a month," but the bill came in at over $12 more ($72-ish), I complained, they said, "it's still a great deal!" I said no thanks, put me back, and then I found out I could get my original mini-basic cable + cable modem for $50. Really they weren't charging me $12, they were charging me $22 more than what the package I originally had now sold for.
Anyway, point is Comcast is now $50/month for cable modem (it's still like $.50 cheap to get it bundled with mini-basic cable, which I don't even have connected to anything).
They read that Microsoft's marketshare is down, and OS X is up. The more popular and OS is, the more viruses will be written. It's only a matter of time until OS X becomes a much bigger target due to increased marketshare. I think they just want their users prepared.
Of course, I think they should write the antivirus app for free and/or license it from whomever, and provide is as a form of regular support.
I still see plenty of folks driving all over California with cell phones up to their ears.
The problem is there is no bite to the law. $20 fine? Who cares. Even at $50 for the second offence, people are still going to ignore it.
It's not even a moving violation or anything of that nature:
California Cell Phone Law Q&A:
Q: What is the fine if Iâ(TM)m convicted?
A: The base fine for the FIRST offense is $20 and $50 for subsequent convictions. With the addition of penalty assessments, the fine can be more than triple the base fine amount.
Q: Will I receive a point on my driver license if Iâ(TM)m convicted for a violation of the wireless telephone law?
A: No. The violation is a reportable offense; however, DMV will not assign a violation point.
Q: Will the conviction appear on my driving record?
A: Yes, but the violation point will not be added.
Pretty minor stuff, at least in the short run. If I was an insurance company and some moron got a ticket for this, I'd drop them or at least make their rates so high they cannot afford to keep coverage.
How 'bout if they release it as a VC game via the Wii?
But they stop being legal as soon as you share them. No one downloading them has an legal or "fair use" rights to them.
Plenty of current phones have no cameras. The Blackberry 8830 World Edition is one of them.
I use the max 63 character passphrase length. My key actually has in it something such as "NO-UNAUTHORIZED-USE-PRIVATE-SYSTEM".
Depending on where you live, I'm sure there are plenty of people with unlimited data plans. Google Maps probably isn't too friendly on my unlimited plan Blackberry (but then neither is Facebook or MidpSSH). I love getting real-time traffic info in Google Maps as well. I just wish it would route better (like Mapquest). Google needs to buy Mapquest, that would solve it ;-)
Or use OpenSSH to a LAN host with the -D option ( -D 8080 ) and point your proxy to localhost:8080 for SOCKS.
s/phone/fun
That was an odd typo, eh?
cat /dev/urandom > /dev/dsp
That's a riot. I ssh'd into my Wife's laptop and had some phone with her. She promptly hit the mute "idiot key" at the top of her keyboard and looked at me and said, "Take that!" I jumped into alsamixer and turned it off and hit the command again. *evil grin*
There is nothing your ISP can do about SSH over https ports. It is encrypted (as https always is) and fools every single proxy I have ever used (hundreds of customers). You can't just blanket block https.
While cable and wireless providers use shared media, DSL, T1, fiber providers do have a physical connection to each customer.
Cable and wireless providers filter by MAC address (granted, you could fake your neighbors' MAC addresses, but typically the cable modem or wireless device is controlled by your ISP and you're locked out of it).
Either way, the ISP should be filtering and only allowing the IP addresses it "owns" (assigned by ARIN, RIPE, etc.) to come back from customers. The exception to this is when you've got a BGP multi-homed situation, but even then the ISP should only allow the IPs that you've been assigned by ARIN, RIPE, etc. or your other ISP, and not just any IP.
For this reason, even if you had a cable and dsl connection at home, you cannot just use one public IP on both connections (the old days you could, but it would just come back via one path).
The problem of course comes at the big peering locations, as they ISPs cannot easily filter between each other. Each has to trust that the other side is filtering properly.
However, this would still solve things within a single well-connected country (such as the US). No US traffic should really ever leave and come back in. Because of this, and if all ISPs were required to filter traffic from their customers by law, then you could trust that all US traffic came from where it said it was, and that you could prosecute attacks (at a minimum for negligence of having an unpatched PC). All non-US netblocks you could filter and drop or have more stringent rules.
For the longest time, I just dropped all traffic from netblocks from many uncivilized countries (CN, etc.). 99% of hacking attempts stopped against my servers. The other 1% responded to abuse@ emails. Now I use other filtering means (3 strikes and your netblock is out and I share the info with others who share the info with me, all automated, all very fast, via DenyHosts).
If your ISP filters the traffic it receives from you to only be IPs that it has assigned you, you can spoof all day long and it's just going to get dropped at your ISP's GW.
Once you cannot spoof traffic, then you can always point a finger. ISPs are required to keep logs, so you can always know the end-customer (but with open wireless APs and such, the customer can claim innocent, but perhaps could still get in trouble for negligence).
If all ISPs charge metered bandwidth amounts, the amount of open APs will drop soon as well.
What would they be cheated from? How is the "real ID" going to decrease them from being cheated?
Yeah, no intimidation for the locals with an officer walking around. Could you imagine that at a public library or Starbucks in the US? Oh, wait, we do have to show ID before we can use the computer at our local library. But no police walking around.
No doubt you had full access due to your foreign ID/passport that I'm sure you were required to show before you were given access.
If you were in China during or up to the Olympics, you experienced a totally different internet than before and again now with things back to normal. Things were wide open at the internet cafes - but of course they still had all the IDs of whatever citizens were foolish enough to do something or try something they shouldn't. They needn't arrest them in the cafe, they'll just wait for them to go home and arrest them there.
Hmm, I don't think you get how OpenID works. I'm not an expert, but I've played with it a bit.
You enter your OpenID URL ("login"), and you are redirected to your OpenID provider to auth (or if you already authenticated earlier in your browser session, then you're all set), and your OpenID provider says, "Yup, this is "X"" (and supply whatever info you tell it to supply).
You never give your openid username/password to the website you're giving your openid URL to (although, usually the openid url is in some way your openid username, but there is nothing forcing it to be).
But the best thing is that your OpenID URL can point to your own domain, so you always control and own your OpenID. Then you just put a bit of html on your domain's webserver redirecting your OpenID to another place where you have another OpenID. Sounds complicated (it is a bit), but at any time I can switch where I redirect my OpenID on my domain to, so I can change from Verisign to anyone else I want (or even run my own OpenID server), but to all of the sites I use my OpenID URL at, I'm the same person.
What I like about Verisign's OpenID provider service is that they have one of those little keyfobs that verify you are you and have your keyfob. But the best thing is that you can get one for like $5 (?) from Paypal and it'll work on the Verisign site too (vs. $15 (?) for the Verisign fob that won't work at Paypal/eBay).
Now, all of the sudden I can login with my OpenID at a public terminal, type in my keyfob, and even if someone grabs all of that (key logger) it is only good for 30 seconds. After 30 seconds, my keyfob changes and you're can't auth to my OpenID provider again.
I understand there are other attack vectors, but overall, for non-financial uses (blogs, forum sites, etc.) it's just fine.