If like me, you were wondering what the "Generally Recognised as Safe" reference was referring to, here's an excerpt of the executive summary of the report.
This list would provide quick official recognition of FOSS (Free and Open-Source Software) applications that are:
(a) commercially supported
(b) widely used and
(c) have proven track records of security and reliability (eg. as measured by speed of closures of CERT reports in comparision to closed-source alternatives)
I would comment that SingerCorp would sue for actual damages plus lost opportunities, and this would be in the form of money.
I think SingerCorp would sue the biggest 'fish', in order to maximise their possible payout? What would they gain from sueing the zlib developers; besides possible bad press?
Umm... what about not putting lives at risk by future use of UCAV technologies?
The direction of these technologies has never been to _replace_ manned platforms, but to supplement the manned fighter and bomber force, particularly in the context of dangerous missions.
Geez, it was painful reading down to here, and this is the first post I saw that seemed on topic. Did any of the posters above, *points*, read the linked article[s]?
It's not talking about 'unbreakable' in the security sense.
I initially laughed too, but then I remembered something.
Keyloggers are not new, and are mentioned here. Besides simply logging cleartext traffic (telnet), encrypted traffic can be logged on the host side before it is sent back over the wire (ssh) using a replacement shell (forwarding traffic to syslogd), ttywatchers or the *trace tools.
I believe this is the technique used to log outgoing ssh traffic from a compromised machine, particularly but not limited to the case of common rootkits which drop replacement sshd[s].
The zdnet text is sensationalist, but that doesn't mean it isn't technically possible.
A few weeks after Altnet's launch, Brilliant plans to introduce an Altnet "rewards program," enticing customers to swap PC bandwidth and hard drive space for points that can be redeemed by e-merchant partners, Bermeister says. If you agree to let Altnet's partners download to your hard drive multimedia-rich advertisements for later playback, you can earn points redeemable at e-merchants toward purchases.
I found this interesting, although not surprising... If companies such as Brilliant and Sharman Networks were to release 'clean' versions of their products, and they were totally upfront in an easy to read EULA (who reads those anyway right?), would you use it? Would you swap bandwidth and disk for the privilege?
Furthermore, would the 'average' person? Spyware, what's that? etc...
No problem.
If you actually use it like it recommends, and albeit a hassle, generate a unique sneakemail email alias for each web site (and only use it for that web site), you'll be able to determine which one is spamming you. Cool huh.
Gmanske.
Oh yeah... In the old days, I'd always sniff around for an ftp server (eg. ftp.company.com); something you might be able to glean from the page source or form action.
More often then not, you'd be able to directly dl the software without form registrations. This seems to be less and less possible now.
I've always doen it like this...
1. Go to the download form requiring information
2. Enter bogus information, one field at a time until the form validation is satisfied. If an email _is_ required, I always use a one time sneakemail address or something I can kill/trace if there's spam.
3. Read email/dl the software.
So they buy out the more popular brands of the alternatives, such that no matter the choice, the average consumer will be buying a Coke or Pepsi brand (eg. water or juice).
Slashdot Mirror
This list would provide quick official recognition of FOSS (Free and Open-Source Software) applications that are:
(a) commercially supported
(b) widely used and
(c) have proven track records of security and reliability (eg. as measured by speed of closures of CERT reports in comparision to closed-source alternatives)
Gmanske.
Gmanske.
Gmanske.
Gmanske.
Also, can anyone confirm if OSA is the name of the referenced ADA software project (1.7 million lines etc...)
Gmanske.
Gmanske.
This hints at no, but this seems to suggest it's packaged.
Anyone with evidence?
Gmanske.
I think SingerCorp would sue the biggest 'fish', in order to maximise their possible payout? What would they gain from sueing the zlib developers; besides possible bad press?
Gmanske.
Gmanske.
Gmanske.
The direction of these technologies has never been to _replace_ manned platforms, but to supplement the manned fighter and bomber force, particularly in the context of dangerous missions.
Gmanske.
It's not talking about 'unbreakable' in the security sense.
Gmanske.
Gmanske.
Gmanske.
Keyloggers are not new, and are mentioned here. Besides simply logging cleartext traffic (telnet), encrypted traffic can be logged on the host side before it is sent back over the wire (ssh) using a replacement shell (forwarding traffic to syslogd), ttywatchers or the *trace tools.
I believe this is the technique used to log outgoing ssh traffic from a compromised machine, particularly but not limited to the case of common rootkits which drop replacement sshd[s].
The zdnet text is sensationalist, but that doesn't mean it isn't technically possible.
Gmanske.
They're still getting their content, and some of them couldn't care less.
I found this interesting, although not surprising... If companies such as Brilliant and Sharman Networks were to release 'clean' versions of their products, and they were totally upfront in an easy to read EULA (who reads those anyway right?), would you use it? Would you swap bandwidth and disk for the privilege?
Furthermore, would the 'average' person? Spyware, what's that? etc...
alt="micosoft"
Sigh....
Gmanske.
No problem.
If you actually use it like it recommends, and albeit a hassle, generate a unique sneakemail email alias for each web site (and only use it for that web site), you'll be able to determine which one is spamming you. Cool huh.
Gmanske.
More often then not, you'd be able to directly dl the software without form registrations. This seems to be less and less possible now.
Gmankse.
1. Go to the download form requiring information
2. Enter bogus information, one field at a time until the form validation is satisfied. If an email _is_ required, I always use a one time sneakemail address or something I can kill/trace if there's spam.
3. Read email/dl the software.
Gmanske.
Are they still relevant in the US against Dell, Compaq, IBM, etc... ?
Gmanske.
Here with a link to sales info outside the US here.
So they buy out the more popular brands of the alternatives, such that no matter the choice, the average consumer will be buying a Coke or Pepsi brand (eg. water or juice).
Round and round she goes, where she stops nobody knows...
7008,3970,3124,2579,2174,1861,1596,1383
Too many pictures... ;)