Knowledge of the existence of SIPRNET and JWICS in itself isn't classified. Even the DoE's ESN network is public knowledge. The cat is already out of the bag anway, it's detailed extensively in Wikipedia and other websites. You're really out of the loop. That's probably why they haven't extended their networks to your facility.
You sir, are wrong. You have startling amount of misinformation on sensitive document handling. You scare me.
There is no "Classified or higher". It is either classified or it is not. "Classified" is not a classification.
Personally Identifiable Information (PII) is unclassified but considered sensitive, and an official incident is filed when there is possibility that PII has been disclosed. There is also Unclassified Controlled Nuclear Information (UCNI), which by definition is unclassified but sensitive and subject to the Atomic Energy Act. Plus there is FOUO, SBU and CUI- all "unclassified", but considered sensitive.
If the document was declassified, then there will be a paper trail as to who declassified it an when. Should be easy since there are few people in the document chain that can legally declassify documents.
Hmpf. Looks like someone got a hold of Windows2008.
OK, it's like this: Win2k8 has a nice little Network Policy and Access services that is basically Network Admission control. One of the ways it can be configured is to have an agent on the client's machine verify that that the client is configured according to policy: Automatic updates, firewall, antivirus current, etc... the client is then issued a health certificate and the switch is configured to place you in the normal vlan rather than a quarantine vlan. they may be running an isolation policy further upstream so that only healthy computers can talk to their servers. There's not that many NAP agents out there, and I doubt they've written a custom one.
Overall it's not a bad thing, but some people want to keep the aluminum foil industry in business... So what can you do? Well, likely they have a process for handling non-NAP-capable computers. Or you can run a guest XP OS in VMware, Xen, KVM or what have you, and see if you can run it in NAT mode so the same MAC and IP always appears as the source...
Or you can just not go visiting those websites that make you worried about someone finding out.
I see tons of posts every day here of how censorship sucks and how information wants to be free. People piss and moan whenever they're delayed 5 seconds at the airport, or aren't able to climb on their soapbox whenever they want and scream to the masses. But these same people who cry foul when silenced actually cheer when a group of (unpopular) people are silenced...
You're all a bunch of hypocrites and engineers of your own doom. Freedom means taking the bad with the good. It's not all unicorn farts and rainbows.
IIRC, one of the methods we use to measure the distance to a pulsar is to look at the effects the interstellar medium has on the latency of the pulse. Assuming the ISM is uniform, I suppose this wouldn't be an issue, but wouldn't this cause accuracy problems if there was an area where the ISM was denser?
Big difference between Exchange 5 and Exchange of today. I've had issues with Exchange 5.5 servers and their quirkiness. I've also been running Exchange 2003 clusters that have been absolutely rock solid and almost completely bulletproof.
You're going to have a choice of what to put in your collective backyards: Nuclear power stations, which cause cancer when they go wrong. Coal power stations, which cause cancer. Or wind turbines which... go round and round.
I use some Netgear adapters at home. They've been rock solid for almost two years, after abandoning wireless for these due to my neighbors flooding the airwaves. The ones I have will encrypt the signal. Since they're older units, I believe they do DES, possibly TripleDES. The newer units are claiming to do 128-bit AES.
Q: We use TrueCrypt in a corporate/enterprise environment. Is there a way for an administrator to reset a volume password or pre-boot authentication password when a user forgets it (or loses a keyfile)?
A: Yes. Note that there is no "back door" implemented in TrueCrypt. However, there is a way to "reset" volume passwords/keyfiles and pre-boot authentication passwords. After you create a volume, back up its header to a file (select Tools -> Backup Volume Header) before you allow a non-admin user to use the volume. Note that the volume header (which is encrypted with a header key derived from a password/keyfile) contains the master key with which the volume is encrypted. Then ask the user to choose a password, and set it for him/her (Volumes -> Change Volume Password); or generate a user keyfile for him/her. Then you can allow the user to use the volume and to change the password/keyfiles without your assistance/permission. In case he/she forgets his/her password or loses his/her keyfile, you can "reset" the volume password/keyfiles to your original admin password/keyfiles by restoring the volume header from the backup file (Tools -> Restore Volume Header).
Similarly, you can reset a pre-boot authentication password. To create a backup of the master key data (that will be stored on a TrueCrypt Rescue Disk and encrypted with your administrator password), select 'System' > 'Create Rescue Disk'. To set a user pre-boot authentication password, select 'System' > 'Change Password'. To restore your administrator password, boot the TrueCrypt Rescue Disk, select 'Repair Options' > 'Restore key data' and enter your administrator password. Note: It is not required to burn each TrueCrypt Rescue Disk ISO image to a CD/DVD. You can maintain a central repository of ISO images for all workstations (rather than a repository of CDs/DVDs). For more information see the section Command Line Usage (option/noisocheck).
Slashdot Mirror
I saw his presentation at Black Hat. He was easily one of the better speakers there.
Knowledge of the existence of SIPRNET and JWICS in itself isn't classified. Even the DoE's ESN network is public knowledge. The cat is already out of the bag anway, it's detailed extensively in Wikipedia and other websites. You're really out of the loop. That's probably why they haven't extended their networks to your facility.
You sir, are wrong. You have startling amount of misinformation on sensitive document handling. You scare me.
There is no "Classified or higher". It is either classified or it is not. "Classified" is not a classification.
Personally Identifiable Information (PII) is unclassified but considered sensitive, and an official incident is filed when there is possibility that PII has been disclosed. There is also Unclassified Controlled Nuclear Information (UCNI), which by definition is unclassified but sensitive and subject to the Atomic Energy Act. Plus there is FOUO, SBU and CUI- all "unclassified", but considered sensitive.
If the document was declassified, then there will be a paper trail as to who declassified it an when. Should be easy since there are few people in the document chain that can legally declassify documents.
Why would you want to buy a jailborken iPod?
Hmpf. Looks like someone got a hold of Windows2008.
OK, it's like this: Win2k8 has a nice little Network Policy and Access services that is basically Network Admission control. One of the ways it can be configured is to have an agent on the client's machine verify that that the client is configured according to policy: Automatic updates, firewall, antivirus current, etc... the client is then issued a health certificate and the switch is configured to place you in the normal vlan rather than a quarantine vlan. they may be running an isolation policy further upstream so that only healthy computers can talk to their servers. There's not that many NAP agents out there, and I doubt they've written a custom one.
Overall it's not a bad thing, but some people want to keep the aluminum foil industry in business... So what can you do? Well, likely they have a process for handling non-NAP-capable computers. Or you can run a guest XP OS in VMware, Xen, KVM or what have you, and see if you can run it in NAT mode so the same MAC and IP always appears as the source...
Or you can just not go visiting those websites that make you worried about someone finding out.
Get an Android G1 phone, turn on the GPS and install Pintail on it.
You SMS the phone, it replies with its location. Integrates with Google Maps
I see tons of posts every day here of how censorship sucks and how information wants to be free. People piss and moan whenever they're delayed 5 seconds at the airport, or aren't able to climb on their soapbox whenever they want and scream to the masses. But these same people who cry foul when silenced actually cheer when a group of (unpopular) people are silenced...
You're all a bunch of hypocrites and engineers of your own doom. Freedom means taking the bad with the good. It's not all unicorn farts and rainbows.
How can it be neutral now? They're attempting to silence one side of the equation.
IIRC, one of the methods we use to measure the distance to a pulsar is to look at the effects the interstellar medium has on the latency of the pulse. Assuming the ISM is uniform, I suppose this wouldn't be an issue, but wouldn't this cause accuracy problems if there was an area where the ISM was denser?
I'd rather live on that block than in a jurisdiction where shoddy policy work and disregard for procedure and civil rights are encouraged.
You don't achieve justice by breaking the law.
Not to mention, Mr. He-man was able to lift a heavy safe all by himself and load it onto said dolly. Because he's cool like that.
Who owns the property. Not the gov't. The property owner. If my tax dollars pay for it, it's public.
Excuse me while I go over to the nearest Air Force base, fly one one of my F-15s to Washington DC, and put my feet up on my desk in my Oval Office.
Once I'm done, I'll stroll over to my CIA headquarters and read all of my documentation on Roswell.
So if I'm in there at 3AM, I won't get arrested for B&E? Great to know.
Big difference between Exchange 5 and Exchange of today. I've had issues with Exchange 5.5 servers and their quirkiness. I've also been running Exchange 2003 clusters that have been absolutely rock solid and almost completely bulletproof.
Exchange has had support for mailbox journaling for a while now. It's not a new feature. Maybe in 2010, they just prettied up the process.
Any medium will be used for advertising. It's pure naivety to believe that your precious Twitter will remain pure and unsullied.
You're going to have a choice of what to put in your collective backyards: ... go round and round.
Nuclear power stations, which cause cancer when they go wrong.
Coal power stations, which cause cancer.
Or wind turbines which
With love we'll find a way just give it time
What I'm wondering is what ever possessed her to try to light water on fire to begin with?
From the headline: " the Station will surpass Venus as the brightest object in the night sky"
Unless the Sun has taken to showing up at night.
How often do you see the sun in the night sky?
I use some Netgear adapters at home. They've been rock solid for almost two years, after abandoning wireless for these due to my neighbors flooding the airwaves. The ones I have will encrypt the signal. Since they're older units, I believe they do DES, possibly TripleDES. The newer units are claiming to do 128-bit AES.
Congratulations, you've managed to point out the problem with every cryptosystem that ever was or will be. You win 1 Internet.
A simple perusal of their website reveals:
Q: We use TrueCrypt in a corporate/enterprise environment. Is there a way for an administrator to reset a volume password or pre-boot authentication password when a user forgets it (or loses a keyfile)?
A: Yes. Note that there is no "back door" implemented in TrueCrypt. However, there is a way to "reset" volume passwords/keyfiles and pre-boot authentication passwords. After you create a volume, back up its header to a file (select Tools -> Backup Volume Header) before you allow a non-admin user to use the volume. Note that the volume header (which is encrypted with a header key derived from a password/keyfile) contains the master key with which the volume is encrypted. Then ask the user to choose a password, and set it for him/her (Volumes -> Change Volume Password); or generate a user keyfile for him/her. Then you can allow the user to use the volume and to change the password/keyfiles without your assistance/permission. In case he/she forgets his/her password or loses his/her keyfile, you can "reset" the volume password/keyfiles to your original admin password/keyfiles by restoring the volume header from the backup file (Tools -> Restore Volume Header).
Similarly, you can reset a pre-boot authentication password. To create a backup of the master key data (that will be stored on a TrueCrypt Rescue Disk and encrypted with your administrator password), select 'System' > 'Create Rescue Disk'. To set a user pre-boot authentication password, select 'System' > 'Change Password'. To restore your administrator password, boot the TrueCrypt Rescue Disk, select 'Repair Options' > 'Restore key data' and enter your administrator password. /noisocheck).
Note: It is not required to burn each TrueCrypt Rescue Disk ISO image to a CD/DVD. You can maintain a central repository of ISO images for all workstations (rather than a repository of CDs/DVDs). For more information see the section Command Line Usage (option
Seriously, a little research isn't hard.
So you're telling us you own no computers?
Some of us aren't developers. Not such a simple answer to a simple question, is it?