The best part is that you actually brought Bush into the conversation.
Do you honeslty think Bush had proof of WMD? Do you honestly think that they could deliver them to US soil? Do you honestly think that gives him the right to invade Iraq?
If so, why were the 9/11 attacks bad? We have WMD and we've been boming the middle east for the last decade (no fly zones in kurdish iraq).
I'll tell you why 9/11 was bad: It was the murder of 2000 innocenct people. People who were trying to live their lives and got a fucking PLANE crashed into their building.
Why do you think it was right to invade Iraq? Because lots of people would have died with the WMD that weren't there?
Guess what?
Over 25,000 Iraqis have died in the last TWO YEARS from the USA. Guess what? That's not even including the deaths from the Shock and Awe bullshit.
Iraq has had a fucking number of deaths equal to 9/11 over 10 times in the last two years. More if you ask the Iraqis that have fucking lost their entire family.
Guess what? I did ask them when I was recently there and I have video interviews that talk about the deaths to a great extent.
Get a fucking clue already.
I'm a conservative and you're making us look like a bunch of retards. Use some common sense and shut the fuck up already. Our president is corrupt and full of lies. His lies are killing our soldiers. Be honest with yourself and the bullshit you're posting online..
Jesus, what do you need? A personal confession so you can write it off as Bush being truly sorry?
It's not about liberals versus conservatives. It's about FUCKING LIES THAT KILL AMERICANS and *EVERYONE ELSE*.
I think that if it wasn't possible to have it taint the area, it could be a good idea. But I don't think it's that great of an idea if that's not the case. You can't take it back, you know?
The CIA is still being semi-passive here. It's shady seeming, but I think if you can join freely, they can as well.
This surpasses basic monitoring of clear text protocols like irc but it still doesn't have the ability to monitor where you must actually be a part of a community. If you use irc over SSL, you're in the clear from passive and undetectable monitoring. This obviously gets around that but it means that they will have some interesting people poking around with people who normally do the poking on networks.
The rand corp goes one step further and seeks to hire people to become members of groups by being an outright spy. Pretty interesting stuff. It was on cypherpunks a while back.
It should be assumed that if you don't use encryption, it can be monitored. If you use encryption (irc over ssl, silc, etc) in a broadcast medium (for an entire room), you should assume it's monitored also. It would just have to be monitored by an agent of some sort.
It's all about the threat model you're up against.
Loop-aes isn't vulnerable to this because it can be used to encrypt swap in a way that's not *as* vulnerable to encryption implementation attacks.
Unless you can encrypt your swap, mlock() and other attempts to secure it, cannot work 100% of the time.
It's also worth noting that this is basically a must have part of any disk crypto stuff. loop-aes does this and it talks about this quite extensively. It hasn't been implemented by apple yet but I heard that tiger may have a fix for it.
What makes me worried is that it seems since it's passphrased based (and the passphrase is whats in the swap file) it's not hashing the password with any sort of salt. That worries me.
Loop-aes isn't vulnerable to this, where as other linux implementations are very vulnerable to this.
If someone lives there, it takes major work to get them out legally, even if they don't pay rent. If you try to shut of power, water or anything else, you're breaking the law.
You have to walk a thin line or you will end up paying damages by the day.
Debian already has a security project, a few of them actually.
I looked at google for either of these guys names and unless I am mistaken, this is what I got: developer one and developer two.
Interesting that anyone else that they haven't ever used those names to contribute to say at least a single debian security mailing list, or say ANY debian lists?
Even more interesting is that they don't seem to have much but a slashdot plug and they are accepting donations.
I am not impressed. Working with the debian security team is the way to go.
Steve Kemp is one of the main guys heading up the debian audit project, these guys should be working with him. Not for some other project.
Funny thing actually, I don't really like defcon, but for a different reason than what you said entirely. In real life hackers are all just people that slave away in front of computers all day. Some of them drink, some of them are into bondage stuff, some of them are into just socializing. Defcon is different from many conferences in just the right ways, you get to know people on a social level in addition to a policial and technical level. You quickly learn who is a total jackass drunk loser and who knows their flocks() from their printf()s.
Yes it's not needed to go to defcon, duh. There are much better conferences, cansecwest, hope, IEEE meetings, LUGs even! However it's stupid to just be so general about everyone. I mean it's tantamount to being one of the people at defcon that's not worth talking to.
But anyway, I digress. Yes it's a fun party, it's known as the after party for blackhat. But it's more than a party. Many of the talks show you information before you would find it on the internet.
Slashdot Mirror
Don't forget that Japan actually attacked America. That's an important part to leave out.
You're aware that Iraq didn't attack us, right?
Watch this movie regardless of the parent poster.
The best part is that you actually brought Bush into the conversation.
Do you honeslty think Bush had proof of WMD?
Do you honestly think that they could deliver them to US soil?
Do you honestly think that gives him the right to invade Iraq?
If so, why were the 9/11 attacks bad? We have WMD and we've been boming the middle east for the last decade (no fly zones in kurdish iraq).
I'll tell you why 9/11 was bad: It was the murder of 2000 innocenct people. People who were trying to live their lives and got a fucking PLANE crashed into their building.
Why do you think it was right to invade Iraq?
Because lots of people would have died with the WMD that weren't there?
Guess what?
Over 25,000 Iraqis have died in the last TWO YEARS from the USA. Guess what? That's not even including the deaths from the Shock and Awe bullshit.
Iraq has had a fucking number of deaths equal to 9/11 over 10 times in the last two years. More if you ask the Iraqis that have fucking lost their entire family.
Guess what?
I did ask them when I was recently there and I have video interviews that talk about the deaths to a great extent.
Get a fucking clue already.
I'm a conservative and you're making us look like a bunch of retards. Use some common sense and shut the fuck up already. Our president is corrupt and full of lies. His lies are killing our soldiers. Be honest with yourself and the bullshit you're posting online..
Jesus, what do you need? A personal confession so you can write it off as Bush being truly sorry?
It's not about liberals versus conservatives. It's about FUCKING LIES THAT KILL AMERICANS and *EVERYONE ELSE*.
Why do you hate freedom?
Why do you assume that IM keeps logs?
That's really interesting.
I think it's safter to learn from someone who knows, not just people who are "certified."
Good timing, Deltron was just shuffling on.
It's only funny becuase it's true.
Put Another Dollar In.
:-(
Total bullshit
Did you just say encrypted RAM?
San Francisco.
How much is a steak dinner in, say Tokyo verses London?
From what I know of traveling to England first hand and trying to travel to Japan, Japan costs more.
I think that if it wasn't possible to have it taint the area, it could be a good idea. But I don't think it's that great of an idea if that's not the case. You can't take it back, you know?
What happens when the ship crashes?
Way to not understand PKI dude.
That's true. Irc over SSL is a dirty hack anyway.
I think silc is much better. No nicks need collide when you're identified by pub/private key.
The CIA is still being semi-passive here. It's shady seeming, but I think if you can join freely, they can as well.
This surpasses basic monitoring of clear text protocols like irc but it still doesn't have the ability to monitor where you must actually be a part of a community. If you use irc over SSL, you're in the clear from passive and undetectable monitoring. This obviously gets around that but it means that they will have some interesting people poking around with people who normally do the poking on networks.
The rand corp goes one step further and seeks to hire people to become members of groups by being an outright spy. Pretty interesting stuff. It was on cypherpunks a while back.
It should be assumed that if you don't use encryption, it can be monitored. If you use encryption (irc over ssl, silc, etc) in a broadcast medium (for an entire room), you should assume it's monitored also. It would just have to be monitored by an agent of some sort.
It's all about the threat model you're up against.
No. Actuallly that would still be bullshit.
Kerry or bush or someone else, I want a paper trail to audit the election.
Why is that unreasonable?
Loop-aes isn't vulnerable to this because it can be used to encrypt swap in a way that's not *as* vulnerable to encryption implementation attacks.
Unless you can encrypt your swap, mlock() and other attempts to secure it, cannot work 100% of the time.
It's also worth noting that this is basically a must have part of any disk crypto stuff. loop-aes does this and it talks about this quite extensively. It hasn't been implemented by apple yet but I heard that tiger may have a fix for it.
What makes me worried is that it seems since it's passphrased based (and the passphrase is whats in the swap file) it's not hashing the password with any sort of salt. That worries me.
Loop-aes isn't vulnerable to this, where as other linux implementations are very vulnerable to this.
Sounds like you're just a consumer anyway.
If you're not making any difference in the world, positive or negative, do try to shut up.
It's people like you that let shit like this slide through.
It's not about having something to hide. It's a stupid idea.
Read this article.
That's not the case in California.
If someone lives there, it takes major work to get them out legally, even if they don't pay rent. If you try to shut of power, water or anything else, you're breaking the law.
You have to walk a thin line or you will end up paying damages by the day.
How?
This is one of those cases where it's an entirely fucked judgement.
Think about it for a moment. A corrupt cop breaks the law, he gets off because you have proof. Nonsense.
First off, who are these guys?
Debian already has a security project, a few of them actually.
I looked at google for either of these guys names and unless I am mistaken, this is what I got: developer one and developer two.
Interesting that anyone else that they haven't ever used those names to contribute to say at least a single debian security mailing list, or say ANY debian lists?
Even more interesting is that they don't seem to have much but a slashdot plug and they are accepting donations.
I am not impressed. Working with the debian security team is the way to go.
Steve Kemp is one of the main guys heading up the debian audit project, these guys should be working with him. Not for some other project.
The official debian project for this is the debian audit project.
Hell advertising that they use SSP enabled GCC! Steve makes those packages for use with debian already!
Hi,
You're wrong.
2001 called, they want you to shut up.
Vendors make mistakes outside of WEP that directly affect WEP. A system isn't strong simply because it uses AES or because it doesn't have weak IVs.
Many systems still send weak frames, you're wrong.
I have cracked WEP many many times and there are multiple methods.
You don't know what you're talking about.
Funny thing actually, I don't really like defcon, but for a different reason than what you said entirely. In real life hackers are all just people that slave away in front of computers all day. Some of them drink, some of them are into bondage stuff, some of them are into just socializing. Defcon is different from many conferences in just the right ways, you get to know people on a social level in addition to a policial and technical level. You quickly learn who is a total jackass drunk loser and who knows their flocks() from their printf()s.
Yes it's not needed to go to defcon, duh. There are much better conferences, cansecwest, hope, IEEE meetings, LUGs even! However it's stupid to just be so general about everyone. I mean it's tantamount to being one of the people at defcon that's not worth talking to.
But anyway, I digress. Yes it's a fun party, it's known as the after party for blackhat. But it's more than a party. Many of the talks show you information before you would find it on the internet.