And again, since you're running under the hypervisor, if it spotted you looking at it in that kind of detail, suddenly everything's Perfectly Normal, and clearly Somebody Else's Problem. If necessary, the rootkit can unload itself cleanly from memory, and then nothing is any the wiser.
Yeah, because those damned root kits with their 2400 SAT scores and their poetry, songwriting, and painting are just too damned intelligent and creative!
Oh wait. It's code. It's not smart. It's not creative. It won't look at code and determine that this piece of code is just your bog standard SQL engine and, AHA!, that piece of code is a loop to detect performance degredation. It can only do what it was programmed to do. It just might reset the TSC to hide the cycles it uses. It might trap accesses to the 18 ms timer and instead return fake results. It might do the same to the high speed timer. Of course once you start doing all this your system's idea of the time of day will start to drift in a persistent direction.
The overhead of a hypervisor whose whole purpose is stealth patches (to spawn a hidden process which even the kernel doesn't know it knows about, because the memory reads - including DMA - one thing, but executes another) and corresponding cloaking of DMA is very much less than that of a fully-fledged virtual machine.
No. The memory reads exactly what it's supposed to read. Always. Either you didn't understand the slides from the presentation or you are just making shit up based on incomplete understanding. There are two tricks being pulled by the malware in this discussion: 1) hiding from DMA transfers by incompletely programming MMIO on AMD CPUs, 2) virtualizing the virtual memory and I/O systems. No, not virtualizing your NIC, but yes, virtualizing the instructions that allow you to talk to your NIC. Capturing every DMA setup so that you don't overwrite the hidden malware. Capturing every interrupt.
Don't forget too that current hardware virtualization is slow. So slow that VMware only uses it if you specifically request that it does so because their software solution is faster.
As far as you know, it's idle time - and your processor spends a lot of time idle, doesn't it? Even when it's at "100% CPU". You'd be amazed.
Unless of course I control the scheduler. I have physical access. I know the passwords that will allow me to run software that can prevent the OS's normal scheduler from operation for a short duration. Then there's no idle time. Then I can go ring-0 or emulated ring-0 (or virtualized if you prefer that language, but either way, the malware has to emulate the correct functioning of the system, failure to do so would be a huge hint that something is going on.) Then I can go into a tight little loop with a fixed number of iterations and start executing a bunch of privileged instructions, like say, modifying page tables or MTRR entries or MMIO settings. Suddenly a lot of CPU cycles are being spent in the malware (servicing the required faults and emulating instructions.) My code is doing a tiny bit of work. So the ratio of cycles can be something like 10% my loop, 90% malware. A loop that may have previously taken 1 second now takes 10. Even with just a plain old stop watch for timing that will be really easy to see.
I'm not saying that OS vendors are going to be implementing this kind of thing as your day-to-day security practice. No more than someone will be running around in your datacenter hooking up hardware memory sniffers. But if you suspect there is a problem, you can detect these kinds of things.
Amazing. It must suck to be your employer. It's frightening that someone could be a server admin and either lack basic problem solving skills, or be completely ignorant of common computing hardware. Your finding these ideas fantastical says more about you than it does about me.
Don't worry, us smarty-pants imaginative types will come up with solutions for this for you like we have for every other problem where the solution was nicely canned for you. As long as you can type words into Google, you'll be ok. Here's a freebie: if the thought that your servers don't have sound cards gives you the cold sweats, it's trivial to get a valid timestamp from a trusted source over the network.
Oh, and fyi the US has pretty low unemployment right now. You might want to consider the fact that people you come across probably are employed. While your mommy told you you were special and unique, she didn't mean in that sense.
This would work great, if your system was running *no software*. Unfortunately, the scheduler's job is to run software as quickly as possible - not give you consistent timing numbers. When it comes to actual computers running actual applications, a 1% timing change is well within normal variance.
It's my system. I can make it idle if I want to. I can dedicate 100% of the CPU to a single thread per execution unit if I want to. I can establish a baseline of behaviors. I can run the test 100 times and eliminate the typical background noise.
As for being able to tell *anything* about timing across a network - bullshit. Utter bullshit.
Um. Really? You mean my stratum-1 radio based ntp server can't let my system know what time it is supposed to be? And thus my system can't detect changes in it's clock drift? Or are you saying that I wouldn't be able to detect changes in keepalive intervals over time? What you say is generally true if you are taking a single sample. But if you take 100 samples or 1000 samples you most certainly can detect systemic changes.
Given that private key recovery has been demonstrated by timing CPU cache misses remotely across a network, I would be more careful with your claims of bullshit.
I think you miss my point. People frequently dive into things they have very little interest in because that subject is the means to an end. Someone may not give a shit about thread scheduling but they might learn everything there is to know and extend the state of the art because their simulations of automobile traffic patterns require it.
An "ultrathin hypervisor" as some call it is a very tiny OS wrapper. The wrapper does indeed have negligible effect on the system - about as much effect as, say, running a small background process.
Like I said, if you are going to do nothing, then sure, you'll have a hard time detecting it. But if it does something, like keylogging or sending spam, then it'll have measurable effects.
Wrong -- "measurable" in this sense may not be so measurable. The clever malware could fool the system timer to be a little bit off (say, 0.1%), so that it hides its tiny footprint in the timer. Thus, any attempt to query the timer would just return the expected result.
Not wrong. My timer is on my wrist. There's another one on the wall. Neither one is attached to my computer. There is another on my network for the specific purpose of keeping track of the slew in my various systems' clocks. Additionally if you start screwing with my system clock, other systems on my network would see this behavior in fucked up timings in the local system's network stack. If your hypothetical malware is slowing my system timer to hide its consumption of system resources, then keepalives would be arriving at remote hosts late. Also there would be drift in the system clock vs. my gps receiver.
Then there are devices that have physical clock rates. Serial ports, PS/2 ports, sound cards, video cards, etc. You can go into a tight loop for X number of intervals of playing a known number of 44.1 Khz samples to your sound card. If you used to be able to get through 250 million interations of the loop and now you can get through 247 million iterations of the loop, then you know something is consuming resources on your system. And if you really want to measure the impact of the malware then make your loop perform privileged operations so that they must be virtualized.
And there is the fact that you could compare two clocks, the mobo's time of day clock and the CPU's cycle clock. If you screw with them both you'll see all sorts of bad behaviors. If you don't, then you can compare the relative speed of the two to see the loss due to malware.
Finally the malware has to live somewhere in system RAM. It can't allow itself to be over written. The original OS knows how much RAM is supposed to be there, so just consume all memory. When it attempts to swap out to a local hard drive, go ahead and fill that up too.
There's a lot of hyperbole and sensationalism about virtualized root-kits.
...an above-average passion for computing, abstract thinking and maths. (or if they don't they don't belong in CompSci regardless of sex)...
Yeah. Because the only valid reason for anyone to have anything to do with CompSci is because they love the art of it. Anyone pursuing CompSci for any other reason should be kicked out and scoffed. Let's forget the fact that maybe they see CompSci as a way to make the world better.
There's an exceptionally easy way to detect this types of root kits. At least there is if the root kit does anything. If it just installs itself, virtualizes the host, and then does nothing at all, then you can't detect it. But in that case who cares? In other cases, ie. where something is going on, you can detect them by their impact on system performance. All virtualizations technologies on x86 based systems have a measurable overhead.
I think he is fully aware. Neither him nor the RIAA lawyers are responsible for the people who choose to violate copyright. Do you also blame the victims of murders and accuse judges and DAs of destroying lives?
It's entirely possible to write "engineering" quality software. Fundamentally the issue with the vast majority of software is the lack of strict design and requirements before execution. The entire trick to software that works is knowing it's limitations.
John Kerry's exceptionally rich wife pays about 10% of her income in taxes. What's your rate?
You know there's a difference between being rich and having a large income? If I earn $100,000 dollars this year and pay my > 30% total tax, live on $20,000 and put the remaining $50,000 in a non-interest bearing checking account. The next year I don't work but live on the money I have, why do you think I should pay taxes on that $50,000? I've already paid taxes on it. It sounds like you want to tax people's savings.
In Teresa Heinz' case, her income is based on tax free municipal bonds. Which is to say that she is lending the money that is paying for everyone else's public projects to be built. In exchange the city pays her back, tax free. You could do the same thing if you had the brains to do it.
No. He got his record cleared. Ie. he can apply for jobs of a sensitive nature. They haven't declared him innocent. Jesus people, get a clue. He was convicted of a crime. He was punished. Now he's received a pardon after his sentence was fulfilled. It's fairly common at the state level. At the federal level, it depends on the president. Clinton was fairly liberal with his pardons. Bush is tight with his. Whoop dee do.
There is nothing remotely resembling "copyright piracy" in any of the cases the RIAA has brought against consumers.
Only because you will disingeniously define consumer as someone who fits your argument and everyone who doesn't fit your argument you will define as a non-consumer. The majority of the people who have been served by the RIAA have uploaded numerous copywritten works. The fact that some people are so ignorant of what goes on in their homes, and on the services (cable/dsl/etc) they subscribe to, that they are truly dumbfounded when they are caught up in the net doesn't validate your argument that consumers are not committing massive numbers of copyright violations.
What planet are you from? Cause, I'd like to avoid it if it's full of idiots like yourself.
Otherwise no copy has been made, copyright law deals in the right to copy.
Someone who has a right to make a copy receiving a copy from someone who doesn't have a right to copy does not automatically grant a license to copy. Even if the copyright holder asks for it. If Bob Dylan went down to the area where the people who commit copyright violations hang out and asks them one by one of they have such and such a CD, and they whip out their trusty CD burner to make him a quick dupe, he most certainly would be able to litigate.
You're making that up. To pass video through your VCR, it will not attempt to recognize the signal, decompose it, recompose it, and send it to your television. It'll just be a little switch that passes the signal directly through to your TV. Additionally every television built during your lifetime has multiple inputs. Stop lying.
Stupid idea, stupid writing. First, what exactly gives him the idea that he can set some arbitrary date on anything? "By May 1, 2007" or what? Bryan Peters is going to write some more shitty English and talk down to someone who makes more in a year than Bryan Peters will make in his life? Second, it's not Microsoft's responsibility to help "you" keep your software non-infringing. If Bryan Peters is so fucking confident that Linux (not the kernel, but what everybody means when they say Linux) is non-infringing, then why not form a company to distribute Linux, give 100% of Bryan Peters' assets to that company and then write Microsoft's legal department a letter letting them know that he's ready to be sued. Put your money where your mouth is.
This guy is a loser. He's trying to gain self-esteem and validation by getting up in Microsoft's face. Showing how tough he is. Waiting for the applause from all the other GPL weenies. Except not a single person at Microsoft will care.
Too bad free software has developed unassailable alternatives like ogg.
I'd be interested in seeing the study published by the team of audio codec professionals, IP lawyers, and software engineers that supports your claim. Making a new container and clean rooming the psycho-acoustical models isn't going to help them much if they ever get to the point of annoying someone who owns one of the relevant patents.
Why doesn't someone grow a pair testicles and forcibly tell all the businesses in the world that your SSN is not secret. It is not to be used as a strong credential. Treat it just as fucking public as something like your name. If the law said, it's not secret and any business that uses it as "proof" of someone's identity has to bear the burden of any losses that business incures. If they sign a contract with some scam artist and that person takes off with a brand new ferarri, too fucking bad, they can't come after the person who's name was used. They can't file a bad credit report.
$98,000 is not practical. Nor have they actually built a production model car that meets their specs. See the note on their front page:
"* We are currently in the midst of the important and time-consuming safety and durability testing for the Tesla Roadster. While we are confident of our numbers, this testing may require design changes that affect the final specifications. Mpg is for the EPA highway driving cycle. Conversion from electric consumption to gallons of gasoline equivalent is calculated using the EPA conversion factor documented in the Federal Register: June 12, 2000 (Volume 65, Number 113), Rules and Regulations, Pages 36985-36992. Cost calculated using PG&E Schedule E-9 off-peak rate."
When they've got several thousand cars on the road with their 135 mpg equiv. and 250 miles per charge, then I'll be impressed. Otherwise you might as well be pointing at the solar cars that students are building for their annual solar races.
It's stupid for the same reason that you don't want a grocery store to only stock Pepsi in the soft drink aisle. You need a dedicated carrier to make this stuff available. I've seen way to often in the public domain area where the trendy shit gets mirrored all over the place and stuff that is of lesser interest gets deleted from the mirrors due to a need for space. After a while you just can't find stuff. The vast majority of people can't be trusted to think into the future or to think of greater variety being enriching.
Faster download of the core mainstream HD content. Won't do shit if you aren't glued to Lost, 24, or Heroes. Democracy is a stupid mechanism to decide how much leverage this kind of thing gets.
You are particularily weak at arguing. To answer your first question, perhaps those people look at their lives and think "I could certainly use a vehicle that I can occasionally haul stuff in" (maybe not trash they've collected from dumpster diving), and they think "but other times, I'd like to be comfortable". So they add up 1+1 and get 2, ie. buy as luxurious SUV as they can reasonably afford. Afford being defined as payments, gas, insurance and maintenance. Maybe it makes no sense for them to purchase both a comfortable car and a utilitiarian vehicle.
Now you show any actual scientific reference to little dicks and flashy/expensive cars. I mean other than bitchy whining from losers who can't afford to indulge a whim once in a while.
Also, I'd be fascinated to see your citation for guys who buy Navigators have $10,000 in credit card debt. I don't think you have one. I think you are a liar.
Each one with one person in it, usually a 30-something with a small dick.
You know this fact how? Instead of working a job, so you could afford paying for the resources you consume, do you just hang out on the side of the Kennedy Expessway offering free blowjobs?
Slashdot Mirror
Yeah, because those damned root kits with their 2400 SAT scores and their poetry, songwriting, and painting are just too damned intelligent and creative!
Oh wait. It's code. It's not smart. It's not creative. It won't look at code and determine that this piece of code is just your bog standard SQL engine and, AHA!, that piece of code is a loop to detect performance degredation. It can only do what it was programmed to do. It just might reset the TSC to hide the cycles it uses. It might trap accesses to the 18 ms timer and instead return fake results. It might do the same to the high speed timer. Of course once you start doing all this your system's idea of the time of day will start to drift in a persistent direction.
No. The memory reads exactly what it's supposed to read. Always. Either you didn't understand the slides from the presentation or you are just making shit up based on incomplete understanding. There are two tricks being pulled by the malware in this discussion: 1) hiding from DMA transfers by incompletely programming MMIO on AMD CPUs, 2) virtualizing the virtual memory and I/O systems. No, not virtualizing your NIC, but yes, virtualizing the instructions that allow you to talk to your NIC. Capturing every DMA setup so that you don't overwrite the hidden malware. Capturing every interrupt.
Don't forget too that current hardware virtualization is slow. So slow that VMware only uses it if you specifically request that it does so because their software solution is faster.
Unless of course I control the scheduler. I have physical access. I know the passwords that will allow me to run software that can prevent the OS's normal scheduler from operation for a short duration. Then there's no idle time. Then I can go ring-0 or emulated ring-0 (or virtualized if you prefer that language, but either way, the malware has to emulate the correct functioning of the system, failure to do so would be a huge hint that something is going on.) Then I can go into a tight little loop with a fixed number of iterations and start executing a bunch of privileged instructions, like say, modifying page tables or MTRR entries or MMIO settings. Suddenly a lot of CPU cycles are being spent in the malware (servicing the required faults and emulating instructions.) My code is doing a tiny bit of work. So the ratio of cycles can be something like 10% my loop, 90% malware. A loop that may have previously taken 1 second now takes 10. Even with just a plain old stop watch for timing that will be really easy to see.
I'm not saying that OS vendors are going to be implementing this kind of thing as your day-to-day security practice. No more than someone will be running around in your datacenter hooking up hardware memory sniffers. But if you suspect there is a problem, you can detect these kinds of things.
Amazing. It must suck to be your employer. It's frightening that someone could be a server admin and either lack basic problem solving skills, or be completely ignorant of common computing hardware. Your finding these ideas fantastical says more about you than it does about me.
Don't worry, us smarty-pants imaginative types will come up with solutions for this for you like we have for every other problem where the solution was nicely canned for you. As long as you can type words into Google, you'll be ok. Here's a freebie: if the thought that your servers don't have sound cards gives you the cold sweats, it's trivial to get a valid timestamp from a trusted source over the network.
Oh, and fyi the US has pretty low unemployment right now. You might want to consider the fact that people you come across probably are employed. While your mommy told you you were special and unique, she didn't mean in that sense.
It's my system. I can make it idle if I want to. I can dedicate 100% of the CPU to a single thread per execution unit if I want to. I can establish a baseline of behaviors. I can run the test 100 times and eliminate the typical background noise.
Um. Really? You mean my stratum-1 radio based ntp server can't let my system know what time it is supposed to be? And thus my system can't detect changes in it's clock drift? Or are you saying that I wouldn't be able to detect changes in keepalive intervals over time? What you say is generally true if you are taking a single sample. But if you take 100 samples or 1000 samples you most certainly can detect systemic changes.
Given that private key recovery has been demonstrated by timing CPU cache misses remotely across a network, I would be more careful with your claims of bullshit.
I think you miss my point. People frequently dive into things they have very little interest in because that subject is the means to an end. Someone may not give a shit about thread scheduling but they might learn everything there is to know and extend the state of the art because their simulations of automobile traffic patterns require it.
Like I said, if you are going to do nothing, then sure, you'll have a hard time detecting it. But if it does something, like keylogging or sending spam, then it'll have measurable effects.
Not wrong. My timer is on my wrist. There's another one on the wall. Neither one is attached to my computer. There is another on my network for the specific purpose of keeping track of the slew in my various systems' clocks. Additionally if you start screwing with my system clock, other systems on my network would see this behavior in fucked up timings in the local system's network stack. If your hypothetical malware is slowing my system timer to hide its consumption of system resources, then keepalives would be arriving at remote hosts late. Also there would be drift in the system clock vs. my gps receiver.
Then there are devices that have physical clock rates. Serial ports, PS/2 ports, sound cards, video cards, etc. You can go into a tight loop for X number of intervals of playing a known number of 44.1 Khz samples to your sound card. If you used to be able to get through 250 million interations of the loop and now you can get through 247 million iterations of the loop, then you know something is consuming resources on your system. And if you really want to measure the impact of the malware then make your loop perform privileged operations so that they must be virtualized.
And there is the fact that you could compare two clocks, the mobo's time of day clock and the CPU's cycle clock. If you screw with them both you'll see all sorts of bad behaviors. If you don't, then you can compare the relative speed of the two to see the loss due to malware.
Finally the malware has to live somewhere in system RAM. It can't allow itself to be over written. The original OS knows how much RAM is supposed to be there, so just consume all memory. When it attempts to swap out to a local hard drive, go ahead and fill that up too.
There's a lot of hyperbole and sensationalism about virtualized root-kits.
Yeah. Because the only valid reason for anyone to have anything to do with CompSci is because they love the art of it. Anyone pursuing CompSci for any other reason should be kicked out and scoffed. Let's forget the fact that maybe they see CompSci as a way to make the world better.
Lame.
There's an exceptionally easy way to detect this types of root kits. At least there is if the root kit does anything. If it just installs itself, virtualizes the host, and then does nothing at all, then you can't detect it. But in that case who cares? In other cases, ie. where something is going on, you can detect them by their impact on system performance. All virtualizations technologies on x86 based systems have a measurable overhead.
It's been clearly demonstrated that they drop cases when it becomes apparent that they are going after the wrong person.
I think he is fully aware. Neither him nor the RIAA lawyers are responsible for the people who choose to violate copyright. Do you also blame the victims of murders and accuse judges and DAs of destroying lives?
It's entirely possible to write "engineering" quality software. Fundamentally the issue with the vast majority of software is the lack of strict design and requirements before execution. The entire trick to software that works is knowing it's limitations.
You know there's a difference between being rich and having a large income? If I earn $100,000 dollars this year and pay my > 30% total tax, live on $20,000 and put the remaining $50,000 in a non-interest bearing checking account. The next year I don't work but live on the money I have, why do you think I should pay taxes on that $50,000? I've already paid taxes on it. It sounds like you want to tax people's savings.
In Teresa Heinz' case, her income is based on tax free municipal bonds. Which is to say that she is lending the money that is paying for everyone else's public projects to be built. In exchange the city pays her back, tax free. You could do the same thing if you had the brains to do it.
No. He got his record cleared. Ie. he can apply for jobs of a sensitive nature. They haven't declared him innocent. Jesus people, get a clue. He was convicted of a crime. He was punished. Now he's received a pardon after his sentence was fulfilled. It's fairly common at the state level. At the federal level, it depends on the president. Clinton was fairly liberal with his pardons. Bush is tight with his. Whoop dee do.
Only because you will disingeniously define consumer as someone who fits your argument and everyone who doesn't fit your argument you will define as a non-consumer. The majority of the people who have been served by the RIAA have uploaded numerous copywritten works. The fact that some people are so ignorant of what goes on in their homes, and on the services (cable/dsl/etc) they subscribe to, that they are truly dumbfounded when they are caught up in the net doesn't validate your argument that consumers are not committing massive numbers of copyright violations.
Someone who has a right to make a copy receiving a copy from someone who doesn't have a right to copy does not automatically grant a license to copy. Even if the copyright holder asks for it. If Bob Dylan went down to the area where the people who commit copyright violations hang out and asks them one by one of they have such and such a CD, and they whip out their trusty CD burner to make him a quick dupe, he most certainly would be able to litigate.
Astonishingly stupid.
You're making that up. To pass video through your VCR, it will not attempt to recognize the signal, decompose it, recompose it, and send it to your television. It'll just be a little switch that passes the signal directly through to your TV. Additionally every television built during your lifetime has multiple inputs. Stop lying.
Stupid idea, stupid writing. First, what exactly gives him the idea that he can set some arbitrary date on anything? "By May 1, 2007" or what? Bryan Peters is going to write some more shitty English and talk down to someone who makes more in a year than Bryan Peters will make in his life? Second, it's not Microsoft's responsibility to help "you" keep your software non-infringing. If Bryan Peters is so fucking confident that Linux (not the kernel, but what everybody means when they say Linux) is non-infringing, then why not form a company to distribute Linux, give 100% of Bryan Peters' assets to that company and then write Microsoft's legal department a letter letting them know that he's ready to be sued. Put your money where your mouth is.
This guy is a loser. He's trying to gain self-esteem and validation by getting up in Microsoft's face. Showing how tough he is. Waiting for the applause from all the other GPL weenies. Except not a single person at Microsoft will care.
I'd be interested in seeing the study published by the team of audio codec professionals, IP lawyers, and software engineers that supports your claim. Making a new container and clean rooming the psycho-acoustical models isn't going to help them much if they ever get to the point of annoying someone who owns one of the relevant patents.
Why doesn't someone grow a pair testicles and forcibly tell all the businesses in the world that your SSN is not secret. It is not to be used as a strong credential. Treat it just as fucking public as something like your name. If the law said, it's not secret and any business that uses it as "proof" of someone's identity has to bear the burden of any losses that business incures. If they sign a contract with some scam artist and that person takes off with a brand new ferarri, too fucking bad, they can't come after the person who's name was used. They can't file a bad credit report.
Why would you suggest the city provide power to commercial trucks for free? You run some kind of trucking company?
When they've got several thousand cars on the road with their 135 mpg equiv. and 250 miles per charge, then I'll be impressed. Otherwise you might as well be pointing at the solar cars that students are building for their annual solar races.
It's stupid for the same reason that you don't want a grocery store to only stock Pepsi in the soft drink aisle. You need a dedicated carrier to make this stuff available. I've seen way to often in the public domain area where the trendy shit gets mirrored all over the place and stuff that is of lesser interest gets deleted from the mirrors due to a need for space. After a while you just can't find stuff. The vast majority of people can't be trusted to think into the future or to think of greater variety being enriching.
Faster download of the core mainstream HD content. Won't do shit if you aren't glued to Lost, 24, or Heroes. Democracy is a stupid mechanism to decide how much leverage this kind of thing gets.
You are particularily weak at arguing. To answer your first question, perhaps those people look at their lives and think "I could certainly use a vehicle that I can occasionally haul stuff in" (maybe not trash they've collected from dumpster diving), and they think "but other times, I'd like to be comfortable". So they add up 1+1 and get 2, ie. buy as luxurious SUV as they can reasonably afford. Afford being defined as payments, gas, insurance and maintenance. Maybe it makes no sense for them to purchase both a comfortable car and a utilitiarian vehicle.
Now you show any actual scientific reference to little dicks and flashy/expensive cars. I mean other than bitchy whining from losers who can't afford to indulge a whim once in a while.
Also, I'd be fascinated to see your citation for guys who buy Navigators have $10,000 in credit card debt. I don't think you have one. I think you are a liar.
There's more HTML and Javascript on this page than there is actual content. Don't kid yourself that slashdot is some simple text based site.
You know this fact how? Instead of working a job, so you could afford paying for the resources you consume, do you just hang out on the side of the Kennedy Expessway offering free blowjobs?