When it was scientifically believed accurate none of those cases should be eligable for review if it ever comes to that. We as a society cannot make it to easy for criminals to get away with crimes or the crime rate will rise. Right now the crime rate is high because infractions have not been punished harsh enough from parents and law.
So based on this, your position is that we must continue to punish people who were possibly innocent?
There's a difference between "tough on crime" and "tough on criminals". One of them is merely institutionalized revenge.
So what you're saying is that if you provide a fake certificate, HTTPS is insecure.
What I'm saying is that what the other poster said isn't "horse****". If you jack into my ethernet hub, and it turns out that my ethernet hub is connected to a firewall like this, I can read your HTTPS traffic, if not most of your encrypted traffic. SSH is only protected because it keeps a list of known fingerprints and alerts you if something changed. If you get a completely different certificate for https://www.paypal.com/ tomorrow, as long as the browser can confirm that it was signed by someone it was configured to trust (for instance Microsoft, or AT&T), it won't even bat an eye.
Maybe the other guy was confused, or just confusing, but everything that he said is fully possible.
Hm, excuse me, but that sounds like total horse****. In HTTPS, you have a public key for the server, and use it to perform an exchange of a symmetric key.
The problem is that you don't have "a public key for the server", you have the public key the server just gave you. If I set up a man-in-the-middle machine that answers your query with a fake public key, then forwards your request on to the real server, then your only defense is that the public key I created on the fly was not signed by one of the "trusted" certificate issuers... or was it?
The system is only as trustworthy as your list of trusted cert issuers. Do you trust every company on that list not to produce SSL-inspection hardware that creates trusted signed certs on the fly? Did you check to see if the list changed after you ran the installation disc your ISP gave you to see if it had installed the public key for their SSL-inspection hardware into the trust list?
think that the ''big government databases'' are a good thing and that we should approve their continued use. What is buried are the stories where these databases have screwed up and inconvenienced (or worse) innocent people.
Agreed. That some escaped convict was caught is certainly good news. The bigger question, since the database "caught" her for using an SSN that was "close" to her old one, is what happened to the other few hundred people whose SSN was a digit off as well?
You mean like websites where you can look to see if your neighbor is a rapist? Or where you can look to see if the guy you're hiring "forgot" to pay his alimony check... for the past few years?
I didn't see anything about phone lines in the Bill of Rights. Did I miss something?
Yeah, I didn't see anything in there about phone lines either. Did find this though:
The powers not delegated to the United States by the Constitution, nor prohibited by it to the States, are reserved for the States respectively, or to the people.
If it's not in the Constitution, the federal government's not allowed to do it, fancy that.
What about automatically recurring bills, like web hosting.
They would demand that their CC processors issue them an encrypted token after the initial transaction that identifies the pair (company,creditcard) and can only be used for transactions involving that pair?
You don't? Then you probably shouldn't discuss kicking puppies, stealing candy bars and downloading music on the phone. You don't do any of that? Well, I've got a wiretap transcript that says you do, but you're not allowed to see it because of national security reasons. Who are they going to believe, you or the government?
I have yet to see any store not sell a rated M game to someone who wants to buy one.
Of course you haven't. "Minimum wage clerk obeys store policy and doesn't sell an M-rated game to a minor!" doesn't exactly scream for front page news.
I was talking about mapping the MenuLeft, MenuRight, MenuUp, MenuDown, MenuOpen, MenuEnter, and MenuBack commands. If the player screws up mapping those commands to buttons
I've only seen two ways to remap controls in games: Select one of N pre-made maps, or "press the key/button/footpedal to map to Foo". Either of which makes it really, really hard to map MenuRight to something the user cannot push.
#4. Stupid admin problem. Yeah, like there's anything Canonical or Dell can do to prevent that.
That seems to be what the GP is talking about in terms of support. On the desktop you'll get questions like "I bought this computer with this newfangled leenooks thingy, how do I play my card game?"
On the server, you get questions that have nothing at all to do with the stupidity of the admin. Like "When the database has written 1 GB of data to the drive, the system stops responding and has to be powercycled causing a lot of data corruption, what's going on?" (true story, the answer is "plug in a PS/2 mouse") Multiply that by however many Dell sells, and the grandparent has a point: can they handle it?
The other one was about a kid who befriends a neighbor working in 4-D stuff. The kid (because he's young and has an open mind or something) learns to move about in that dimension as well, and communicate with creatures living in other dimensions. Don't remember the title of that one, thoguh.
all they could really leave running is a php script
Of course, PHP these days has all of the network goodies needed to make "just a php script" still a serious problem. A good idea is to make sure that anything the webserver can serve can't be written from the webserver's user, i.e. uploaded data goes outside the docroot. Of course then we'll get tears about how hard it is for everyone to install forum software and their blog since they can't just unzip/untar their code and mark it all writable.
person a "Oh, ok. I won't go there then. There's only 14 million other hosting copmanies and plenty of ISP's"
Yeah, I was thinking of switching back to dialup too. There just isn't that much need for me to have websites display in less than a couple of minutes, and online gaming was kind of overrated.
Of course, my dialup would be going over AT&T's phonelines, so I suppose they could send some guy out with the wirecutters if they don't like what I have to say.
When it was scientifically believed accurate none of those cases should be eligable for review if it ever comes to that. We as a society cannot make it to easy for criminals to get away with crimes or the crime rate will rise. Right now the crime rate is high because infractions have not been punished harsh enough from parents and law.
So based on this, your position is that we must continue to punish people who were possibly innocent?
There's a difference between "tough on crime" and "tough on criminals". One of them is merely institutionalized revenge.
trying to subvert our election process and nationalize it. This is BAD.
HAVA nice day.
So what you're saying is that if you provide a fake certificate, HTTPS is insecure.
What I'm saying is that what the other poster said isn't "horse****". If you jack into my ethernet hub, and it turns out that my ethernet hub is connected to a firewall like this, I can read your HTTPS traffic, if not most of your encrypted traffic. SSH is only protected because it keeps a list of known fingerprints and alerts you if something changed. If you get a completely different certificate for https://www.paypal.com/ tomorrow, as long as the browser can confirm that it was signed by someone it was configured to trust (for instance Microsoft, or AT&T), it won't even bat an eye.
Maybe the other guy was confused, or just confusing, but everything that he said is fully possible.
Hm, excuse me, but that sounds like total horse****. In HTTPS, you have a public key for the server, and use it to perform an exchange of a symmetric key.
The problem is that you don't have "a public key for the server", you have the public key the server just gave you. If I set up a man-in-the-middle machine that answers your query with a fake public key, then forwards your request on to the real server, then your only defense is that the public key I created on the fly was not signed by one of the "trusted" certificate issuers... or was it?
The system is only as trustworthy as your list of trusted cert issuers. Do you trust every company on that list not to produce SSL-inspection hardware that creates trusted signed certs on the fly? Did you check to see if the list changed after you ran the installation disc your ISP gave you to see if it had installed the public key for their SSL-inspection hardware into the trust list?
I hope the rest of you have called your Congressmen.
I called their offices several times, but every time I started talking about this immunity stuff, they kept hanging up on me, the bastards!
think that the ''big government databases'' are a good thing and that we should approve their continued use. What is buried are the stories where these databases have screwed up and inconvenienced (or worse) innocent people.
Agreed. That some escaped convict was caught is certainly good news. The bigger question, since the database "caught" her for using an SSN that was "close" to her old one, is what happened to the other few hundred people whose SSN was a digit off as well?
but equally important in the business world is paying attention to things that aren't an orgy of colors
Like a powerpoint presentation?
I can see only good things for military planning and warmaking coming from this.
So, should the story be tagged endersgame or laststarfighter?
Bring back ostracism http://en.wikipedia.org/wiki/Ostracism
You mean like websites where you can look to see if your neighbor is a rapist? Or where you can look to see if the guy you're hiring "forgot" to pay his alimony check... for the past few years?
Torture, like any other tool, is effective if used in the correct situations.
The only time you can use the game of "Uncle" to determine a person's genealogy is when you are twisting the arm of your nephew or niece.
The Congress shall have Power...To make Rules for the Government and Regulation of the land and naval Forces;
Such as FISA, which the executive branch openly flaunted with their wiretaps.
Yeah, I didn't see anything in there about phone lines either. Did find this though:If it's not in the Constitution, the federal government's not allowed to do it, fancy that.
The program REQUIRES that they go to court if an American is involved.
If AT&T has done nothing wrong, what do they have to hide?
Or is that argument only to be used against the peons when they get uppity about big brother looking down on them?
I was just following orders!
What about automatically recurring bills, like web hosting.
They would demand that their CC processors issue them an encrypted token after the initial transaction that identifies the pair (company,creditcard) and can only be used for transactions involving that pair?
I have nothing to hide
You don't? Then you probably shouldn't discuss kicking puppies, stealing candy bars and downloading music on the phone. You don't do any of that? Well, I've got a wiretap transcript that says you do, but you're not allowed to see it because of national security reasons. Who are they going to believe, you or the government?
I have yet to see any store not sell a rated M game to someone who wants to buy one.
Of course you haven't. "Minimum wage clerk obeys store policy and doesn't sell an M-rated game to a minor!" doesn't exactly scream for front page news.
I was talking about mapping the MenuLeft, MenuRight, MenuUp, MenuDown, MenuOpen, MenuEnter, and MenuBack commands. If the player screws up mapping those commands to buttons
I've only seen two ways to remap controls in games: Select one of N pre-made maps, or "press the key/button/footpedal to map to Foo". Either of which makes it really, really hard to map MenuRight to something the user cannot push.
#4. Stupid admin problem. Yeah, like there's anything Canonical or Dell can do to prevent that.
That seems to be what the GP is talking about in terms of support. On the desktop you'll get questions like "I bought this computer with this newfangled leenooks thingy, how do I play my card game?"
On the server, you get questions that have nothing at all to do with the stupidity of the admin. Like "When the database has written 1 GB of data to the drive, the system stops responding and has to be powercycled causing a lot of data corruption, what's going on?" (true story, the answer is "plug in a PS/2 mouse") Multiply that by however many Dell sells, and the grandparent has a point: can they handle it?
The other one was about a kid who befriends a neighbor working in 4-D stuff. The kid (because he's young and has an open mind or something) learns to move about in that dimension as well, and communicate with creatures living in other dimensions. Don't remember the title of that one, thoguh.
I believe that's The Boy Who Reversed Himself. I remember having read that when I was in highschool.
Hope this helps
;)
Well, it did convince me to google up the actual original quote, which turned out to be different from what I remembered after all
all they could really leave running is a php script
Of course, PHP these days has all of the network goodies needed to make "just a php script" still a serious problem. A good idea is to make sure that anything the webserver can serve can't be written from the webserver's user, i.e. uploaded data goes outside the docroot. Of course then we'll get tears about how hard it is for everyone to install forum software and their blog since they can't just unzip/untar their code and mark it all writable.
Anyone who can enable the feature can mount the volume.
The million dollar question: If the volume is mounted, can anyone enable the feature, or do you need to re-enter the passphrase?
You don't like working conditions at company X? Go work for company Y!
Why do you believe company Y is different?
person a "Oh, ok. I won't go there then. There's only 14 million other hosting copmanies and plenty of ISP's"
Yeah, I was thinking of switching back to dialup too. There just isn't that much need for me to have websites display in less than a couple of minutes, and online gaming was kind of overrated.
Of course, my dialup would be going over AT&T's phonelines, so I suppose they could send some guy out with the wirecutters if they don't like what I have to say.