In the first case (they want security/privacy/...) they have to learn something. Without some knowlegge and good usage habits encryption is meaningless exercise/overhead (at least for them, but maybe also obstacles for those who care).
And in second case (they do not wont it) they have what they wanted: easy, careless life with all the consequences.
But maybe we can live even with poorly used encryption on massive scale - all we need is just "do not trust that key" and "do not trust that key signer" by default and be aware of warnings from encryption backend (i.e. assumption "it is encrypted/signed" should be clearly distinguished from "it is encrypted/signed by TRUSTED entity").
Where's the embedded webcam for girl snooping? I think (based on/. article summary) that this teddy is supposed to be in the room full of girls providing network connectivity for them (as official service) and pictures of girls in the room for those interested (as "unofficial" service).
:)
Re: There will be another election?
on
SSSCA Hearing
·
· Score: 1
Are you sure there will be another election ever?
(I do not mean election like here in Slovakia when we vere socialistic republic: 99% voters voted and 99% of them voted for comunist party; that 1% was for some proforma "competing" party just for the results not being suspicious to western countries)
Re: Hey, here's the police ...
on
SSSCA Hearing
·
· Score: 2, Insightful
"Hey, here's the police and Holywood Studios Special Forces Unit!
Either let us voluntarily search for non-compliant equipment, confiscate it if found or you'll be charged for being a pirate and will be terminated with your whole residence!"
IMO this law is not intended to fight pirates. It's goal is somewhere else (mentioned in a lot of other posts) and one of it's sideefects will be (sooner or later) police state where all "ordinary citizens" are at best suspects or (more likely) criminals right from their birdth.
It looks to me like government declaring war on ordinary citizens:
Instead of trying to keep peace and keep laws in public interest [they] (those who should work for us) are passing law after law of which (almost) each one make one more criminal from ('till now) good citizen. We'll end up in "areas" (a.k.a. democratic republics) where there are two basic groups of people: criminals (a.k.a. ordinary people) and law enforcement (police, politiacians, business,...).
"Criminals" will be trying to live (more or less) peacefull lives and "law enforcement" will be stealing from them (large portions of) fruits of their work. Because it is easier to "rightfully take away from criminals" than to "steal from good citizens".
So: Good citizens, please consider this as declaration of war (or at least preparation for war) against YOU! And act accordingly.
Maybe our fathers fought for out freedom but we have to still fight too otherwise our children will be criminals and/or slaves again.
If the software is purchased, seller and/or manufacturer should be liable for seurity (and also all other) bugs. Payment should include value of software plus value for bug fixes for say 3-4 years.
But of course, if bugfix is available but not installed buy customer, liability for that particular unadressed problem should be voided.
If the software is for free without any warranty (warranty should be paid "product"), then user and only user should be held liable for running buggy software.
That way people get what they paid for, who wish can sell software, who wish can give the software for free,... and freedom remains.
The Sphinx project launched by German authorities aims to improve secure email exchange. The projects technological base is the protocol 'TeleTrust e.V. MailTrusT Version 2'. This includes the standards S/MIME, X.509v3 and others.
Proprietary products are already on the way, but with the project Ägypten there is now also a Free Software solution going to be realized for popular mail user agents (sphinx-enabling KMail and mutt are essential goals).
The Free Software companies Intevation, g10 Code and Klarälvdalens Datakonsult AB are contracted by the German 'Bundesamt für Sicherheit in der Informationstechnik (BSI)' to incorporate the Sphinx protocols into Free Software MUAs. Background is to ensure availability of alternatives to proprietary desktops.
From what I saw at Symantec's page the E-mail sanitizer made by John D. Hardin may help you to deal with this worm. Sanitizer can be found at here and is designed for usage on mail servers with perl and either sendmail or qmail installed.
I'm using this sanitizer for about a year and I'm very content - it saved me a lot of headaches.
get some (or to some) UNIX like workstation and get accustomed to using it as regular user
- required: learning
get some (or to some) UNIX like server, preferably with some users others than you and get accustomed to let the users do as much of their stuff with as little limitations as possible
- requirements: learning
After all that, if someone considers you to be UNIX sysadmin either by telling you so or by paying you for such job, you are there.
Note: Learning is still required!
I have heard that it is pretty easy to set up a WAP service though.
Well, basicaly here is what you need to run wap server:
at least quite ordinary server
internet connection
But if you want to take full advantage of WAP features (like authentification or encryption) you have to either be a GSM operator or you have to make a deal with one and either setup dedicated connection (not TCP/IP but dedicated "phone" line with special modem AFAIK) to theire WAP gateway or setup your own WAP gateway with alike dedicated connection to GSM operator. If you do that, you (i.e. your users) are limited to WAP phones are set to use your WAP gateway otherwise all resources deployed for more features are lost.
Making dozen of applications use same library takes just good design decisions from library and app developers. User has to just make decision whether this brand new application is worth of updating also some libraries.
What is far more harder (and the true hell) is having avery application use bundled version of needed libraries - user can end up with system filled up with various instances (even same versions) of same library. Do the security updates in such situation!
Not mentioning the fact that such attitude completely misses the core point of SHARED libraries - being shared
Note: Of course there are some situations, where library bundling is good think - that's why we have also static linking.
IIRC Tesla was producing Tamara radars but the guy who bought whole Tesla was quickly put in jail - officialy because he was economic criminal. But rumors are it was just game of some secret services to shut down the Tamara project. Who wants billions of dolars spent on "stealth" planes to vanish into nowhere just because some "stupid" people from former eastern block outsmart people from western and come up with passive radar?
I'm asking, because on BugTrack I heard multiple times about for example Outlook or Word being vulnerable to script viruses even when scripting is turned off.
The wealth in the western countries are not made by giving everybodys work away for free.
Whatever is done in modern western countries brought not just the wealth but also some strange phenomenons like Microsoft domination caused by another phenomenon: pepole unwiling to THINK.
Btw, it looks like your top goal is wealth. Mine is to be content. While to be content I need some wealth, wealth is not everything I need to be content.
Do you really think it's that good that people who gets paid with tax money can rip off and release for free products that makes businesses die?
Yes, I do. Because "those people" are not ripping off.
If I'm the taxpayer who payed that development, than I'm avaiting free access to software developed using my money. I do not care about bisunesses "destroyed" by me using my software.
If I'm say Slovak, why should I care about say Amarican businesses destroyed by application developed using my money and released to the world for free? I alredy get what I wanted and paid for.
So taxpayers are benefiting - they get software for fraction of price because of a lot of people payed development.
Also point 2 can be taken even further:
I have software I wanted and paid for - I'm content.
I destroyed concurence (more precisely - those who wanted to release same software as proprietary product) in another country making software house in my country more succesfull.
What justifies someone to send me one message 4 times from 4 addresses?
From: "RegisterNewExtensions.net" <newregistrydomains@mail.com>
Subject: Important Information:.BIZ.INFO Domain Extensions
From: "RegisterNewExtensions.net" <newregistrydomains@mail.com>
Subject: Important Information:.BIZ.INFO Domain Extensions
From: Domain Registry <easy_domains@runbox.com>
Subject:.BIZ.INFO: New Developments (May 2001)
From: "NewRegistryExtensions.net" <newregext@lycos.com>
Subject: Important Information:.BIZ.INFO Domain Extensions
Transcript of message:
Attention: Internet Domain Registrant
The new top level domain names with extensions.BIZ,.INFO,.PRO,
and.NAME have just been approved by global internet authorities
and will be released soon, but don't wait until then to register.
These domains are available NOW for pre-registration at:
http://www.NewRegistryExtensions.com on a first come, first serve
basis.
"While.com names hold the most prestige, the next frontier is
the new suffixes -.info,.biz, and.pro -likely to become available
later this year..."
-BUSINESSWEEK MAGAZINE, April 16, 2001.
It is expected that over 3 million of these new domain names will be
registered in the first few minutes when registration officially opens
later this year. If your domain name is important to you, be prepared
and pre-register now. Protect your domain name from cybersquatters and
speculators. We have the premier pre-registration engine to help you
to secure the domain you want. Over 250,000 names have already been
queued into our list and good names are going fast. Do not wait until
the last minute. Go to http://www.NewRegistryExtensions.com now to
pre-register.
##...##
This message is sent in compliance with the new email bill section 301.
Per Section 301, Paragraph (a)(2)(C) of S. 1618 and is not intended
for residents in the State of WA, NV, CA & VA. If you have received
this mailing in error, or do not wish to receive any further mailings
pertaining to this topic, simply send email to: off_list_tld@yahoo.com.
We respect all removal requests.
##...##
IMO it is far better to explain the kid when he cross the line (explain that he crossed line, what is this line, what is this line for, why it is bad) then to scare him.
Of course in longterm.
Also explaining requires some understanding and knowledge from parents/teachers/... while scaring requires just strong words and/or loud voice.
Slashdot Mirror
In the first case (they want security/privacy/...) they have to learn something. Without some knowlegge and good usage habits encryption is meaningless exercise/overhead (at least for them, but maybe also obstacles for those who care).
And in second case (they do not wont it) they have what they wanted: easy, careless life with all the consequences.
But maybe we can live even with poorly used encryption on massive scale - all we need is just "do not trust that key" and "do not trust that key signer" by default and be aware of warnings from encryption backend (i.e. assumption "it is encrypted/signed" should be clearly distinguished from "it is encrypted/signed by TRUSTED entity").
Is that supported also by something else than Internet Explorer?
Or maybe from other end: Can I view such Flash page in ASCII text editor and actualy get some content texts from it?
Where's the embedded webcam for girl snooping? I think (based on /. article summary) that this teddy is supposed to be in the room full of girls providing network connectivity for them (as official service) and pictures of girls in the room for those interested (as "unofficial" service).
:)
(I do not mean election like here in Slovakia when we vere socialistic republic: 99% voters voted and 99% of them voted for comunist party; that 1% was for some proforma "competing" party just for the results not being suspicious to western countries)
"Hey, here's the police and Holywood Studios Special Forces Unit!
Either let us voluntarily search for non-compliant equipment, confiscate it if found or you'll be charged for being a pirate and will be terminated with your whole residence!"
IMO this law is not intended to fight pirates. It's goal is somewhere else (mentioned in a lot of other posts) and one of it's sideefects will be (sooner or later) police state where all "ordinary citizens" are at best suspects or (more likely) criminals right from their birdth.
Instead of trying to keep peace and keep laws in public interest [they] (those who should work for us) are passing law after law of which (almost) each one make one more criminal from ('till now) good citizen. We'll end up in "areas" (a.k.a. democratic republics) where there are two basic groups of people: criminals (a.k.a. ordinary people) and law enforcement (police, politiacians, business, ...).
"Criminals" will be trying to live (more or less) peacefull lives and "law enforcement" will be stealing from them (large portions of) fruits of their work. Because it is easier to "rightfully take away from criminals" than to "steal from good citizens".
So: Good citizens, please consider this as declaration of war (or at least preparation for war) against YOU! And act accordingly.
Maybe our fathers fought for out freedom but we have to still fight too otherwise our children will be criminals and/or slaves again.
But of course, if bugfix is available but not installed buy customer, liability for that particular unadressed problem should be voided.
That way people get what they paid for, who wish can sell software, who wish can give the software for free, ... and freedom remains.
Project Ägypten (Free Software Sphinx-Clients):
The Sphinx project launched by German authorities aims to improve secure email exchange. The projects technological base is the protocol 'TeleTrust e.V. MailTrusT Version 2'. This includes the standards S/MIME, X.509v3 and others.
Proprietary products are already on the way, but with the project Ägypten there is now also a Free Software solution going to be realized for popular mail user agents (sphinx-enabling KMail and mutt are essential goals).
The Free Software companies Intevation, g10 Code and Klarälvdalens Datakonsult AB are contracted by the German 'Bundesamt für Sicherheit in der Informationstechnik (BSI)' to incorporate the Sphinx protocols into Free Software MUAs. Background is to ensure availability of alternatives to proprietary desktops.
In general, it can be done but it looks to me like "playing by theire rules" which gives "them" advantage.
We should come up with our own rules and force "them" to play by our rules.
(Btw, we alredy have one rule: we are spending our money. So just do not spend them to someone you do not like: flawed CDs, MS software, ...)
From what I saw at Symantec's page the E-mail sanitizer made by John D. Hardin may help you to deal with this worm. Sanitizer can be found at here and is designed for usage on mail servers with perl and either sendmail or qmail installed.
I'm using this sanitizer for about a year and I'm very content - it saved me a lot of headaches.
http://www.eset.sk/ (page in slovak)
http://www.nod32.com/index.html (page in english)
- get some (or to some) UNIX like workstation and get accustomed to using it as regular user
- get some (or to some) UNIX like server, preferably with some users others than you and get accustomed to let the users do as much of their stuff with as little limitations as possible
After all that, if someone considers you to be UNIX sysadmin either by telling you so or by paying you for such job, you are there.- required: learning
- requirements: learning
Note: Learning is still required!
BTW, it would be interesting to read Galapagos in 1'002'001 :) .
Well, basicaly here is what you need to run wap server:
But if you want to take full advantage of WAP features (like authentification or encryption) you have to either be a GSM operator or you have to make a deal with one and either setup dedicated connection (not TCP/IP but dedicated "phone" line with special modem AFAIK) to theire WAP gateway or setup your own WAP gateway with alike dedicated connection to GSM operator. If you do that, you (i.e. your users) are limited to WAP phones are set to use your WAP gateway otherwise all resources deployed for more features are lost.
Well, this is supposed to be funny, but now I wonder whether it's joke or paranoia.
This should be:
Favorite editor: Word - No more editors should exist
What is far more harder (and the true hell) is having avery application use bundled version of needed libraries - user can end up with system filled up with various instances (even same versions) of same library. Do the security updates in such situation!
Not mentioning the fact that such attitude completely misses the core point of SHARED libraries - being shared
Note: Of course there are some situations, where library bundling is good think - that's why we have also static linking.
IIRC Tesla was producing Tamara radars but the guy who bought whole Tesla was quickly put in jail - officialy because he was economic criminal. But rumors are it was just game of some secret services to shut down the Tamara project. Who wants billions of dolars spent on "stealth" planes to vanish into nowhere just because some "stupid" people from former eastern block outsmart people from western and come up with passive radar?
I'm asking, because on BugTrack I heard multiple times about for example Outlook or Word being vulnerable to script viruses even when scripting is turned off.
Whatever is done in modern western countries brought not just the wealth but also some strange phenomenons like Microsoft domination caused by another phenomenon: pepole unwiling to THINK.
Btw, it looks like your top goal is wealth. Mine is to be content. While to be content I need some wealth, wealth is not everything I need to be content.
Those interested in details please read for example Neal Stephenson's "In the Beginning was the Command Line".
Note: it's quite a long article (it took me 3.5 hours to read) but it is very good.
Yes, I do. Because "those people" are not ripping off.
So taxpayers are benefiting - they get software for fraction of price because of a lot of people payed development.
Also point 2 can be taken even further:
So my country is also benefiting!
PinePGP provides Pine with "hooks" to GnuPG and various versions of PGP.
If I'm not mistaken, RedHat is bundling GnuPG hooks from PinePGP package in their Pine RPM package.
Subject: Important Information:
Subject: Important Information:
Subject:
Subject: Important Information:
Transcript of message:
Attention: Internet Domain Registrant
The new top level domain names with extensions .BIZ, .INFO, .PRO,
and .NAME have just been approved by global internet authorities
and will be released soon, but don't wait until then to register.
These domains are available NOW for pre-registration at:
http://www.NewRegistryExtensions.com on a first come, first serve
basis.
"While .com names hold the most prestige, the next frontier is
the new suffixes -.info, .biz, and .pro -likely to become available
later this year..."
-BUSINESSWEEK MAGAZINE, April 16, 2001.
It is expected that over 3 million of these new domain names will be registered in the first few minutes when registration officially opens later this year. If your domain name is important to you, be prepared and pre-register now. Protect your domain name from cybersquatters and speculators. We have the premier pre-registration engine to help you to secure the domain you want. Over 250,000 names have already been queued into our list and good names are going fast. Do not wait until the last minute. Go to http://www.NewRegistryExtensions.com now to pre-register.
##...##
This message is sent in compliance with the new email bill section 301. Per Section 301, Paragraph (a)(2)(C) of S. 1618 and is not intended for residents in the State of WA, NV, CA & VA. If you have received this mailing in error, or do not wish to receive any further mailings pertaining to this topic, simply send email to: off_list_tld@yahoo.com. We respect all removal requests.
##...##
Just why SPAMing?!?!
Well, and then representatives of such country come to Eastern Europe and want to teach us democracy talking loudly about freedom, rights, ...
Of course in longterm.
Also explaining requires some understanding and knowledge from parents/teachers/... while scaring requires just strong words and/or loud voice.