Thanks for linking. I don't think that stands so strongly against what I've said, but rather supports it. His conclusion is that with minor tweaks to tools we could better achieve matching compiles from source. So, he substantiates what I've said as the goal, and says that we have a few issues - but they can be fixed. Sounds simple enough to me.
Because I am most familiar with using md5 for this purpose. I am sure that "I'm doing it wrong", and there are more inspired/better ways to do this. I only speka from what I've done.
This is incorrect. Again. For the same reasons given to you above, you can compare compiled binaries to the source and verify that they're identical via hashing.
That's a pretty harsh strawman you've put together there. There's a minute a mile between "this isn't working" and "the opposite must be true." It's the realm of rational debate.
On the off chance you're not trolling, but actually looking for a response, here it is: No, I don't think that a single public company turned private would solve the Greek crisis. Nor do I think that the public sector is entirely to blame. But there are two approaches to dealing with revenue shortages. One of them is spending less money. A public television network is hardly the greatest need in a country torn apart by riots - literally the poster child of a EU-style failure. Is that a bash against socialism? Not unless you're contending that public television is the essential form of socialist infrastructure.
So no, not magic. Just common sense. When you're poor, stop spending money on non-essentials. A few people have pointed out that there was/is corruption of an insane degree, cutting into tax collection and undermining the budget. That's not really a counter to my OP. Saying that you've failed in enforcing the law isn't an argument against a free market. It's an argument against continuing to employ your inept police force.
I didn't bring the argument of capitalism into this. The blog post linked in TFA did. Further, the public channels are described as nothing more than a mouth-piece for propaganda - blacklisting voices of dissent - how does this even come close to the picture you paint of "more objective"/"more integrity"? Lastly, no. The Greek crisis was not an issue of rampant capitalism.
Even with his last words on the subject Yanis Varoufakis' blog worships the statist centralism of ERT that was exploited, used as a propaganda machine, and silenced critics. What would it take to break his delusions and help him realize that the entire infrastructure was beyond saving? Way to hop on the Murdoch-hate bandwagon, Yanis.
Call be cynical, but maybe a little capitalism would have been good in Greece. You know, for the ol' economy.
As a site is blocked, it adapt. Like TPB, it will move, change, and persist. You can't eliminate torrenting by attacking the practice - so long as there's a drive to do it, it'll find a way.
"...no reasonable person..." -- Well, that escalated quickly.
It's entirely possible that the exploit occurred entirely in RAM and your original post would be true. I'm merely looking at the choice of words here, and making an educated guess. I've worked on exploits before that used process editing in RAM to defeat the exact kind of checksum noted here.
Here's my train of thought, based on this quote from the article:
According to Hetzner, the attackers displayed an unusually high level of sophistication: apparently, they used a previously unknown rootkit that doesn't touch any hard disk files. "Instead, it patches processes that are already running on the system and injects its malicious code directly into the target process image", explained Martin Hetzner. The executive said that the rootkit seamlessly manipulated the OpenSSH daemon and Apache in RAM, apparently without the need to restart the services. According to Hetzner, the rootkit is probably also able to manipulate ProFTPD. The number of reported incidents during which attackers manipulated the daemons of important programs is currently increasing. What appears to be a new approach is that the manipulation was carried out exclusively in RAM.
They mention that the exploit attacked sshd / apache (httpd?), and rewrote parts to introduce a backdoor. This requires a local process running to edit the memory of those daemons. The introduction of a foreign process requires that it first be transferred to the local machine, and then run. This leads me to believe that the rootkit process itself isn't the "RAM only" portion of this hack, but that the rootkit's injection happens to the process that's already running.
I could be totally off, but that's how it makes sense to me. There's really no need to be hostile about it though.
I was comparing English as a language to exact (programming) languages, not to other spoken languages; but to answer your question, no. I don't have any information that you don't. I see touch as a verb, as used above in the example with the man. The rootkit didn't 'touch' the files on the disk. That doesn't speak to the rootkit's location, only to its actions.
The rootkit itself was most likely not in RAM only, but the way it exploited daemon processes was. Restarting would just have the rootkit re-infect your daemons at launch.
You can walk-though and dump a running process' memory to file to analyze it later. Just reference the pid+offset and read. This style of patching a process (CREATE_SUSPENDED flag / Edit / ResumeThread) rather than editing the file itself is really popular when trying to defeat a CRC check, so methods to analyze it shouldn't surprise anyone.
It's shitty when Apple does this, and it's shitty when Samsung does this. With that said I'm astounded. A good share of those iPhone internals are Samsung parts; isn't this biting the hand that feeds a bit for Samsung - indirectly blocking the import of their own parts? When you have your finger in every pie...
The fact that some people already know something doesn't negate the Streisand effect here - the added publicity from this lawsuit will effectively inform more people - lobbing insults at those people also doesn't make much sense; your argument is non-sequitur and basely inflammatory.
Slashdot Mirror
Quiet! If you deny all inherent fault then the basis for the argument of privilege will crumble! Think of the children, why don't you?
Could we just get the list of who the NSA isn't spying on? It seems to be much shorter.
Thanks for linking. I don't think that stands so strongly against what I've said, but rather supports it. His conclusion is that with minor tweaks to tools we could better achieve matching compiles from source. So, he substantiates what I've said as the goal, and says that we have a few issues - but they can be fixed. Sounds simple enough to me.
I'm just happy to be corrected / learn something new.
Because I am most familiar with using md5 for this purpose. I am sure that "I'm doing it wrong", and there are more inspired/better ways to do this. I only speka from what I've done.
This is incorrect. Again. For the same reasons given to you above, you can compare compiled binaries to the source and verify that they're identical via hashing.
No. As BSD is a Unix branch, and the GNU/* only applies to the Linux branch.
It does when you compile, compare md5 hash, and verify that they're bit-for-bit identical. Jeez, it's like someone already thought of this.
The use of a computer didn't remove it from reality. The internet is part of 'real life.' You mean face-to-face / away from the keyboard.
Things don't mimic reality in video games. For example, shotguns.
That's a pretty harsh strawman you've put together there. There's a minute a mile between "this isn't working" and "the opposite must be true." It's the realm of rational debate.
On the off chance you're not trolling, but actually looking for a response, here it is: No, I don't think that a single public company turned private would solve the Greek crisis. Nor do I think that the public sector is entirely to blame. But there are two approaches to dealing with revenue shortages. One of them is spending less money. A public television network is hardly the greatest need in a country torn apart by riots - literally the poster child of a EU-style failure. Is that a bash against socialism? Not unless you're contending that public television is the essential form of socialist infrastructure.
So no, not magic. Just common sense. When you're poor, stop spending money on non-essentials. A few people have pointed out that there was/is corruption of an insane degree, cutting into tax collection and undermining the budget. That's not really a counter to my OP. Saying that you've failed in enforcing the law isn't an argument against a free market. It's an argument against continuing to employ your inept police force.
I didn't bring the argument of capitalism into this. The blog post linked in TFA did. Further, the public channels are described as nothing more than a mouth-piece for propaganda - blacklisting voices of dissent - how does this even come close to the picture you paint of "more objective"/"more integrity"? Lastly, no. The Greek crisis was not an issue of rampant capitalism.
Disagreeing with a mod is trolling. Ha.
Even with his last words on the subject Yanis Varoufakis' blog worships the statist centralism of ERT that was exploited, used as a propaganda machine, and silenced critics. What would it take to break his delusions and help him realize that the entire infrastructure was beyond saving? Way to hop on the Murdoch-hate bandwagon, Yanis.
Call be cynical, but maybe a little capitalism would have been good in Greece. You know, for the ol' economy.
That farmer couldn't even quickscope. lol, what a noob.
As a site is blocked, it adapt. Like TPB, it will move, change, and persist. You can't eliminate torrenting by attacking the practice - so long as there's a drive to do it, it'll find a way.
Can't argue with fanboys. :)
"...no reasonable person..." -- Well, that escalated quickly.
It's entirely possible that the exploit occurred entirely in RAM and your original post would be true. I'm merely looking at the choice of words here, and making an educated guess. I've worked on exploits before that used process editing in RAM to defeat the exact kind of checksum noted here.
Here's my train of thought, based on this quote from the article:
According to Hetzner, the attackers displayed an unusually high level of sophistication: apparently, they used a previously unknown rootkit that doesn't touch any hard disk files. "Instead, it patches processes that are already running on the system and injects its malicious code directly into the target process image", explained Martin Hetzner. The executive said that the rootkit seamlessly manipulated the OpenSSH daemon and Apache in RAM, apparently without the need to restart the services. According to Hetzner, the rootkit is probably also able to manipulate ProFTPD. The number of reported incidents during which attackers manipulated the daemons of important programs is currently increasing. What appears to be a new approach is that the manipulation was carried out exclusively in RAM.
They mention that the exploit attacked sshd / apache (httpd?), and rewrote parts to introduce a backdoor. This requires a local process running to edit the memory of those daemons. The introduction of a foreign process requires that it first be transferred to the local machine, and then run. This leads me to believe that the rootkit process itself isn't the "RAM only" portion of this hack, but that the rootkit's injection happens to the process that's already running.
I could be totally off, but that's how it makes sense to me. There's really no need to be hostile about it though.
I was comparing English as a language to exact (programming) languages, not to other spoken languages; but to answer your question, no. I don't have any information that you don't. I see touch as a verb, as used above in the example with the man. The rootkit didn't 'touch' the files on the disk. That doesn't speak to the rootkit's location, only to its actions.
"The man doesn't touch x, but rather y." vs. "The man doesn't exist in x."
No. It's not misleading. English is just a really shitty language to convey specific information. This is a common problem.
No, you're misreading the article.
"The rootkit does not touch files on storage but patches running processes in memory."
The rootkit isn't in RAM only. The way that it attacks the daemon processes is done entirely in RAM.
The rootkit itself was most likely not in RAM only, but the way it exploited daemon processes was. Restarting would just have the rootkit re-infect your daemons at launch.
You can walk-though and dump a running process' memory to file to analyze it later. Just reference the pid+offset and read. This style of patching a process (CREATE_SUSPENDED flag / Edit / ResumeThread) rather than editing the file itself is really popular when trying to defeat a CRC check, so methods to analyze it shouldn't surprise anyone.
It's shitty when Apple does this, and it's shitty when Samsung does this. With that said I'm astounded. A good share of those iPhone internals are Samsung parts; isn't this biting the hand that feeds a bit for Samsung - indirectly blocking the import of their own parts? When you have your finger in every pie...
The fact that some people already know something doesn't negate the Streisand effect here - the added publicity from this lawsuit will effectively inform more people - lobbing insults at those people also doesn't make much sense; your argument is non-sequitur and basely inflammatory.