If you're really in love with Windows, then buy a Surface. It's basically Windows-to-go, and that slogan should be the core of the Surface marketing campaign.
If you love apps that don't quite work right, get an android tablet. Tier 1 apps work mostly as well as iOS apps. Everything else is sort of half-baked.
For everyone else there's the iPad, the only device that actually holds its value over time.
The funny thing is that this is one of the two things that Obama can't blame Bush for, the other one being ObamaCare. So it'll be interesting to see what happens when the administration loses.
Reading their comments makes me want to install OpenBSD for more of my machines down the road. These guys seem to be thinking the right way about things.
One of the probably reasons they store the key on the box is because it's easier than having it on a remote server. A remote server can be taken out, unreachable, and you have the extra added problem of associating the decryption key with a specific box. That's a pain if the box isn't connected to the public network (i.e. it was infected through another vector).
If the key is local it's easier. You can even mail them a USB stick with the decryption application if you wanted to.
With these sort of weapons, how does the navy effectively target something? It's ridiculous to think the Navy would be targeting say, a truck. Would they just stay offshore and throw these at a building or something?
If you have something else front-ending the SSL for your process on a compromised system, only that SSL process should be vulnerable. However, that still compromises your root cert and key, AFAIK, unless your SSL handler encrypts that stuff in-RAM.
Unfortunately, some people use SSL on tomcat or the app server directly, which means that whole app is vulnerable.
It's too late to mitigate now, but it's something to think about down the road.
Any data kept in RAM on an open-ssl box has probably been compromised. It sounds like that includes private keys, root certs, passwords, etc.
This is why passwords etc should be encrypted in RAM. It's funny, there's a Security Technical Implementation Guides (STIG) on that very item. It always sounded sort of ridiculous, but now I know why it was there.
Exactly. Something that's dismissed out of hand as ridiculous without any data may actually be an effect that nobody understands. The "unfalsifiable" poster is essentially a priori dismissing something which they believe to be false, even though that belief is really just as unscientific as the people who believe in whatever that phenomenon is.
It's actually really a hard problem to design tests for this sort of thing, and yeah, that would be what a lot of the classes would degenerate into. But it's a real life process that would make their lives better. It's like a backdoor way of introducing critical thinking, which almost guarantees it won't be part of any normal curriculum.
The point of bringing these into the classroom is not to prove they are bogus - the point would be for kids to think how they would go about proving that the belief(s) in question are right or wrong.
What if you find that 98% of the people who buy magnetic bracelets feel better, and have a significant effect on back pain? If three double-blind studies said so, would you believe it, even if it makes no sense?
How would you test to see if ghosts exist? Magic? Gnomes? What would you actually test for? You could start getting into signatures, etc.
It's actually really entertaining to think about, and would be a great curriculum addition if you handle it right.
If TCP/IP had encryption way back when, it never would have worked because it's too slow. Shit, stuff was so slow that people turned off checksumming. Imagine having to do something exciting, like actual encryption. It'd be worse than running a 300 baud modem.
Have you heard the good news about Das Kapital? I actually should re-read this, as it's one of the better treatises on money, capital, etc ever. Ignore that communist part if you want, since that part from what I remember was pitched as a logical conclusion but is more of a future prediction.
Slashdot Mirror
If you're really in love with Windows, then buy a Surface. It's basically Windows-to-go, and that slogan should be the core of the Surface marketing campaign.
If you love apps that don't quite work right, get an android tablet. Tier 1 apps work mostly as well as iOS apps. Everything else is sort of half-baked.
For everyone else there's the iPad, the only device that actually holds its value over time.
According to B612 they were all airbursts. I wish they'd make their data public, so people could take a look and see.
The funny thing is that this is one of the two things that Obama can't blame Bush for, the other one being ObamaCare. So it'll be interesting to see what happens when the administration loses.
Reading their comments makes me want to install OpenBSD for more of my machines down the road. These guys seem to be thinking the right way about things.
It's been decades, and that thing is still going strong. When we're all gone, phones will be making calls by mapping whatever you're doing to:
ATDT your_number
Note: does ADTP still work? What if you did that on a 4G modem?
The thing still turns on and runs. Unfortunately Iost my ADB keyboard and mouse so I can't use it.
Anyone talking on a sat phone is by definition interesting to the government - any government. Why would you think that these would be secure?
General Magic's and Sony's PIC-1000 had a graphical web browser back in 1995. Even back then nobody wanted one.
I recently spent $35,000 on a peripheral for my phone, but I forgot to check if the peripheral worked with my phone.
Can someone write a law that says that all peripherals have to work with my phone?
Thank you very much.
Signed, ignorant consumer.
One of the probably reasons they store the key on the box is because it's easier than having it on a remote server. A remote server can be taken out, unreachable, and you have the extra added problem of associating the decryption key with a specific box. That's a pain if the box isn't connected to the public network (i.e. it was infected through another vector).
If the key is local it's easier. You can even mail them a USB stick with the decryption application if you wanted to.
With these sort of weapons, how does the navy effectively target something? It's ridiculous to think the Navy would be targeting say, a truck. Would they just stay offshore and throw these at a building or something?
If you have something else front-ending the SSL for your process on a compromised system, only that SSL process should be vulnerable. However, that still compromises your root cert and key, AFAIK, unless your SSL handler encrypts that stuff in-RAM.
Unfortunately, some people use SSL on tomcat or the app server directly, which means that whole app is vulnerable.
It's too late to mitigate now, but it's something to think about down the road.
Any data kept in RAM on an open-ssl box has probably been compromised. It sounds like that includes private keys, root certs, passwords, etc.
This is why passwords etc should be encrypted in RAM. It's funny, there's a Security Technical Implementation Guides (STIG) on that very item. It always sounded sort of ridiculous, but now I know why it was there.
Exactly. Something that's dismissed out of hand as ridiculous without any data may actually be an effect that nobody understands. The "unfalsifiable" poster is essentially a priori dismissing something which they believe to be false, even though that belief is really just as unscientific as the people who believe in whatever that phenomenon is.
It's actually really a hard problem to design tests for this sort of thing, and yeah, that would be what a lot of the classes would degenerate into. But it's a real life process that would make their lives better. It's like a backdoor way of introducing critical thinking, which almost guarantees it won't be part of any normal curriculum.
The point of bringing these into the classroom is not to prove they are bogus - the point would be for kids to think how they would go about proving that the belief(s) in question are right or wrong.
What if you find that 98% of the people who buy magnetic bracelets feel better, and have a significant effect on back pain? If three double-blind studies said so, would you believe it, even if it makes no sense?
How would you test to see if ghosts exist? Magic? Gnomes? What would you actually test for? You could start getting into signatures, etc.
It's actually really entertaining to think about, and would be a great curriculum addition if you handle it right.
If TCP/IP had encryption way back when, it never would have worked because it's too slow. Shit, stuff was so slow that people turned off checksumming. Imagine having to do something exciting, like actual encryption. It'd be worse than running a 300 baud modem.
I wish they'd put the raw footage online, just so we could watch the show collapse.
It'd be a meta reality show: "how our reality show crapped out and we all lost money."
As an aside, it shows how one person can make a difference - whether that difference is negative (in this case) or positive.
I'm only about a third of the way into the article, and it's already hilarious.
You generally don't read a lot of crash and burn stories, so this is great. The author needs more drugs, though, and some speed.
Have you heard the good news about Das Kapital? I actually should re-read this, as it's one of the better treatises on money, capital, etc ever. Ignore that communist part if you want, since that part from what I remember was pitched as a logical conclusion but is more of a future prediction.
Next up: CowCatchers on the Tesla X!
Luckily for most Android users Android is almost never updated, so in real life there's no real vulnerability.
Still a classic
http://youtu.be/YRg6CgxM0T8
Dude you're fucking retarded. Oregon is run by Democrats and has been for decades.
Wow, that'll be a great session title for the next BlackHat conference.