In the UK all operators have now expanded the inclusive minutes to include other networks, I know that Orange has now included other networks and all 'normal' landline calls (by normal I mean local and national call, not so called lo-call or permeim rate numbers) in it's free calls and adjusted the charges on them so as there is now only 2 'normal' tarrifs. They have done this to almost all there talk plans
no one seems to have mentioned the tevo sergestions feature. where it says you like the simpsons and king of the hill and... so i'll record dilbert just incase you like it or you like buffy and xena so i'll record dark angel that is why i wont get rid of my tivo i can come home and i know there will be stuff on the tivo even if i havent told it to record anything that day.
On a mac every file has a file type which is difficult to change short of re-saving the file.( but then why would you want to. a text file will always be a text file and saying it is a rich text document it doesn't make any different.)
thay also have a creator code witch is easy to change if programmer write it into there programs. and just saving the file in any program changes the code.
it seems to me that far too much processing and logging is needed to get a small amount of information which only narrows down the list of posibilities. Also how many people run su or sudo on a machine? For security it should be only one. And also for security you shouldn't re-ssh off an exposed machine, but if you want to allow this you should use RSA keys.
Then we have the fact that the evesdropper has no clear way of knowing that anyone has input a password, so he has to analyse every keystroke and every response and try to find the input 's u' followed by return and then he has to take it on blind faith that it is 'su' and not 'di', 'sj', 'sn', 'd8', 'ab' or even 'u2' as these are all about the same spacing apart on the keyboard (for us non-touchtypists out there).
But then just suppose thay did get a password for say an ssh connection or even narrow down the posibilities what good would it do. They would have no idea where the connection was going to, but he could try the same thing with the ip/domain name, still on faith, so he now has to try and brute-force his way through different items first find the server, then find the username, then find the right password. Now there is the posibility that the username and password would be the same on both servers but that is why you would use the RSA keys to authenticate.
All in all no real information is gained. All you gain is data that if coupled with sociological, personality and typing profilles could lead to a security breach but would need to be focused on the client end of the connection and so would have much further reaching consequences as this is analisys on the Bletchly Park scale of things
NASA have some serious problems take for example one time NASA had a buget $8 billion and thay managed to spend the intire of it without making a single peace of equipment, whereas the soviat union put mir into orbit and keeped it there 30 years i think it wasand thy did it with a couple of hundred thousand dollars.
another time NASA designed a launch that was to cost one billion dollars, but thay were told that thay couldent get that much funding so thay went away and reused parts of provious abandond launches and got that cost down to 200 million dollars and than thay got funding. now why couldent thay just do that in the first place, the soviat union put the first dog,monkey and person into orbit it the same craft.
Now if those are not MAJOR problems i would like to know what are
(Note: i am using a standard billion as in a million million not the american billion wheich is a thousand million)
Slashdot Mirror
In the UK all operators have now expanded the inclusive minutes to include other networks, I know that Orange has now included other networks and all 'normal' landline calls (by normal I mean local and national call, not so called lo-call or permeim rate numbers) in it's free calls and adjusted the charges on them so as there is now only 2 'normal' tarrifs. They have done this to almost all there talk plans
no one seems to have mentioned the tevo sergestions feature. where it says you like the simpsons and king of the hill and ... so i'll record dilbert just incase you like it or you like buffy and xena so i'll record dark angel that is why i wont get rid of my tivo i can come home and i know there will be stuff on the tivo even if i havent told it to record anything that day.
On a mac every file has a file type which is difficult to change short of re-saving the file.( but then why would you want to. a text file will always be a text file and saying it is a rich text document it doesn't make any different.)
thay also have a creator code witch is easy to change if programmer write it into there programs. and just saving the file in any program changes the code.
how about we just ignore it.
it seems to me that far too much processing and logging is needed to get a small amount of information which only narrows down the list of posibilities. Also how many people run su or sudo on a machine? For security it should be only one. And also for security you shouldn't re-ssh off an exposed machine, but if you want to allow this you should use RSA keys.
Then we have the fact that the evesdropper has no clear way of knowing that anyone has input a password, so he has to analyse every keystroke and every response and try to find the input 's u' followed by return and then he has to take it on blind faith that it is 'su' and not 'di', 'sj', 'sn', 'd8', 'ab' or even 'u2' as these are all about the same spacing apart on the keyboard (for us non-touchtypists out there).
But then just suppose thay did get a password for say an ssh connection or even narrow down the posibilities what good would it do. They would have no idea where the connection was going to, but he could try the same thing with the ip/domain name, still on faith, so he now has to try and brute-force his way through different items first find the server, then find the username, then find the right password. Now there is the posibility that the username and password would be the same on both servers but that is why you would use the RSA keys to authenticate.
All in all no real information is gained. All you gain is data that if coupled with sociological, personality and typing profilles could lead to a security breach but would need to be focused on the client end of the connection and so would have much further reaching consequences as this is analisys on the Bletchly Park scale of things
NASA have some serious problems take for example one time NASA had a buget $8 billion and thay managed to spend the intire of it without making a single peace of equipment, whereas the soviat union put mir into orbit and keeped it there 30 years i think it wasand thy did it with a couple of hundred thousand dollars.
another time NASA designed a launch that was to cost one billion dollars, but thay were told that thay couldent get that much funding so thay went away and reused parts of provious abandond launches and got that cost down to 200 million dollars and than thay got funding. now why couldent thay just do that in the first place, the soviat union put the first dog,monkey and person into orbit it the same craft.
Now if those are not MAJOR problems i would like to know what are
(Note: i am using a standard billion as in a million million not the american billion wheich is a thousand million)