Basically it all boils down to.. if you want real accountable security for your computer systems then you must use Open Source Os's and software. MS could put any dam thing to want in windows and we would NEVER know. Who the hell knows what is going on in those binaries. An extreme example is MS money, Maybe bill gates has the bank info for every user of this software thats on the net. Now I know thats a wacked out example but with closed source products it is really easy to do.
Using MS products to run banks, goverment agencys, etc.. IMHO amounts to placing way to much trust in some nameless and faceless coders from redmond.
Ok, here, I'm seeing a lot of crap about this, so here it is:
The Microsoft CryptoAPI is a complete set of tools for creating secure Internet and intranet applications. Microsoft distributes the Cryptographic Service Provider Developer?s Kit (CSPDK) to authorized recipients located in the United States and Canada, and to persons and entities outside the United States or Canada authorized to receive the CSPDK under specific license from the U.S. State Department, Office of Defense Trade Controls.
That's it, it's a way to make programs to send secure data over networks. It's NOT a way to authorize loading of DLL's and such. In fact, CryptoAPI is loaded via System Services (which must be done by Administrator).
What this means, is that even IF the NSA has a key to CSP's, that means nothing. It means they have authorized DLL's, nothing more. It doesn't mean they can insert them and run them from remotely.
Wrong, The presence of the NSA key (if it is the nsa's key) would allow the nsa to add additional modules into the cryptographic subsystem without breaking the system. This possibly could allow the nsa to hack in via another means or access the system at the console, and compromise all security measures by replacing your current cryptographic software with its own versions. Abit, less secure ones. The key (ms's key) is to prevent outside developers from adding crypto modules in windows without approval from MS. Hence that nice 128 bit connection your browser is making may be plain text to an nsa spoof.
Why don?t you read the document, all that this ?NSAKEY? lets the NSA do is build cryptographic plugins for Windows, it doesn?t give them the equivalent of root on your system at all! (This if what I got from the article). The *most* that the NSA could do would be to get you to install there component, then they could read information you encrypted with it. And there is *no* reason to think that the NSA even has anything to do with this! Remember, the NSA *does* make encryption products. Remember DES? Microsoft might have put that there to allow easy incorporation of new NSA algorithms
What is to stop the nsa from getting you to download a popular package that replaces current crypto plugins with ones that are vulnerable? If plugins can be replaced using this method then all crypto software is suspect on your system. The next time you use your private key to decrypt something you may be handing it to the nsa.
Are their any other open source HIGH encryption products out there like 2k bits + that will work with windows and linux? Something that me an my friends can use to exchange files and email without concern of it being intercepted and cracked. Also possibly encrypting files locally on the hard drive? I am not sending gov secrets out or anything but My privacy is mine damit. If this story is true then I suppose even pgp is vulnerable in a windows platform? Is this a correct assumption?
i personally know that i owe a good 90% of my life to the internet.
I owe my career to it. My first break in computers (real job) was a job to build an internet service provider for a business man (30k a year). And of course I used linux which probably wouldn't exist beyond Linus's hard drive without the Internet. From there I have worked on dozens of internet related projects over the years and built myself a VERY nice lifestyle out of it. Beyond just the job I have learned so much by others sharing their knowledge over the net.
Thanks to the guys who created the Net. We all owe you a debt of gratitude! I'll drink a beer for ya tonight!
Happy Birthday Internet. Did ya every think you would become this huge? Heh! Any really OLD timers using slashdot? I've been on since 1990, anyone want beat that and chat about the good old days? No graphical browsers, just lynx gopher, telnet, usenet, and irc back then. Never crowded, netcitizens were generally nice. Ahh the good old days. Lets hear how it was in the old days to give these kids some perspective.
Wow, they find cheap technicians. Around here (only about 3 hours from KC) you can't touch a decent tech for less than about $45-$50k. That also doesn't figure in benefits or expenses (a computer, a phone, a desk, etc) related to having an employee. The salary is just one factor (albiet a large one) in the cost of an employee.
Heh here in NJ you cant touch a decent Unix admin for under 70k:) And being a Unix Admin I like it that way:) But yes there are a lot more expenses that go into an employee then salary. You need to pay the other 1/2 of social security, Workers Comp..etc. About 20k of my per hour income goes into paying those things and benefits for myself. (I am a contractor). And then I get the remainder as a paycheck which gets hit with income taxes, social security, etc.. figure in just salary alone it cost a company 20-25% more then what you get. and as the previous poster pointed out. there are the other associated expenses to help you do your job. Unfortunatly I have a bad feeling that if linux becomes prevolent and replaces OS's like solaris and HP in the corporate environment we may see a reduction in admin salaries. "Why do I have to pay a senior unix admin 80k-110k admin a free os?" (NY/NJ pay scale). Of course I could be wrong:) Not like it hasnt happened before:)
Everytime a cell divides a piece of telomere is lost off the end of each genetic strand. Once there is no more telomere the dna begins to get damaged and the cell dies. At least this is one theory of how cells have programmed death.
Cancer cells do not lose telomeres thus they can replicate forever. There are cancer cells that have been replicating for the past 50 years. A substance known as telomerase can remove telomere's but the problem is getting it to act on a specific set of cells and not all. Once we can create viral agents that do our bidding we will knock out a LOT of diseases quickly.
Malice95
Hero Worship? Bla.. Role model maybe?
on
The Life of Linus
·
· Score: 1
Linus is my hero.. well so is batman but we wont get into that. I dont see anything wrong with looking up to linus and what he has accomplished. If it gets on kid into programming or someone to contribute a line of good code to the kernel, then its the best this since sliced bread. Linus deserves a little hero worship... Let him enjoy his fame and good fortune.
If you take his estimated 100k cards and 2 million in profit then you are each giving 20 bucks a year to support linux. Why not just send 20 bucks to linus and not deal with all the interest. You are gonna pay at least hundreds in intrest if you keep a balance. There are cards lower then 12.99 out there with no anual fee. Is there a REAL non profit org setup that helps linux expand and grow? I would be all willing to donate to a real non profit org that has a track record of doing good things for linux.
It states right in the article that this guy is a for profit company that is looking to make a decent living off this card. Yes he is gonna fund some projects but I am sure less then a million would make it to those. And thats less then 10 bucks a year..
I wonder what apartment he lives in. It would be interesting to have a chat with him about this whole mess he has gone through. Not that I don't think he deserves every bit of it, but it would be interesting to get his real perspective.
Yes win9X will run on this setup. I bought this abit bp6 motherboard with 2x 366mhz celerons overclocked to 550mhz. Yes I am well aware that 98 cant use dual procs.. This setup was bought in the anticipation of win2k coming out in the next couple months. So far its rock solid!
It will be interesting to see how this affects the pirate community. If they are clued in enough to notice this news I imagine it will get quite a bit tougher to get WaReZ and movies and such. Heck the cops just need to go to oth.com to bust hundreds of people. Most things would probably move to private ftp sites that require user/passwd's and addresses will get passed around via private channels on irc, icq..etc. Its just so open right now.. oth.com.. web searches to get movies, irc dcc servers advertising in the open channel..etc. I will admit I have snagged a few things in my time, but I have also gone to see them/bought them as well. I basically grabbed them as a novelty or to try them out.
Now that I am kicking myself for not getting in on a piece of this redhat ipo action..
What other linux ipos are coming up or rumors of ipos? I got some money to burn.. would be nice to make a few bucks off it instead of having it sit in an account.
Anyone remember the original website for these things? Those dogs astetically (sp?) looked a lot better then these newer ones. Although if sony was able to get the price down to 1k and built in some sort of charging system that the dog will go to when low on juice I would pick up one in a heartbeat. I think robotics will be very big in the future.. AI technology needs to be advanced and costs come down big time before it becomes mainstream IMHO.
I had a guy i work with at my last gig that is in this same boat. He working for a consulting company thats basically screwing him over good. He is getting paid squat but he is worth quite a bit more. Unfortunatly he cant switch companies because supposedly it will set back his green card application to the beginning. Kinda crappy for him although I am also happy that the market isn't flooded by low cost imported labor. I like my comfy high american salary:)
I have gotten plenty of spam from these guys... IMHO I think they deserve to be blacklisted. They'll back down and stop sending out bulk email as soon as their listed.. Either that or they drag it out in court forever and that hurts even more.
Go to sendmail.org.. they have a document there about building large mail systems that gives you a lot of the ins and outs. Sendmail.com has a nice gui that makes managing everything easy.. and definatly setup a HA solution with 25k users. I have a friend in Microsoft's Messaging group, His response was.. "25k on exchange? Heheheheh" open source is the way to go with this size system. I have set up several 5 and 10k user mail systems and open source has never failed me yet:) IMHO I would go with a sun product for reliability. Uptime will be your number 1 concern.
I am really envious of these guys.. sure it sounds like they work hard but, they have fun at the same time! How the hell do people find these great gigs? I would love to work for a place like southpark or similar place. Anyone hiring? Senior Admin (solaris/linux/ultrix/irix). Dam there must be a cool job list out there somewhere! Working at the phone company (current job) is easy as cake but boring as all hell. I'll take hard over boring anyday.
Slashdot Mirror
Basically it all boils down to.. if you want real
accountable security for your computer systems
then you must use Open Source Os's and software.
MS could put any dam thing to want in windows
and we would NEVER know. Who the hell knows what
is going on in those binaries. An extreme example
is MS money, Maybe bill gates has the bank info
for every user of this software thats on the net.
Now I know thats a wacked out example but with
closed source products it is really easy to do.
Using MS products to run banks, goverment agencys,
etc.. IMHO amounts to placing way to much trust in some nameless and faceless coders from redmond.
Ok, here, I'm seeing a lot of crap about this, so here it is:
The Microsoft CryptoAPI is a complete set of tools for creating secure Internet and intranet applications. Microsoft distributes the
Cryptographic Service Provider Developer?s Kit (CSPDK) to authorized recipients located in the United States and Canada, and to
persons and entities outside the United States or Canada authorized to receive the CSPDK under specific license from the U.S. State
Department, Office of Defense Trade Controls.
That's it, it's a way to make programs to send secure data over networks. It's NOT a way to authorize loading of DLL's and such. In fact,
CryptoAPI is loaded via System Services (which must be done by Administrator).
What this means, is that even IF the NSA has a key to CSP's, that means nothing. It means they have authorized DLL's, nothing more. It
doesn't mean they can insert them and run them from remotely.
Wrong, The presence of the NSA key (if it is the nsa's key) would allow the nsa to add additional modules into the cryptographic subsystem without
breaking the system. This possibly could allow the
nsa to hack in via another means or access the system at the console, and compromise all security measures by replacing your current cryptographic software with its own versions. Abit, less secure ones. The key (ms's key) is to prevent outside developers from adding crypto modules in windows without approval from MS. Hence that nice 128 bit
connection your browser is making may be plain text to an nsa spoof.
Why don?t you read the document, all that this ?NSAKEY? lets the NSA do is build cryptographic plugins for Windows, it doesn?t give
them the equivalent of root on your system at all! (This if what I got from the article). The *most* that the NSA could do would be to
get you to install there component, then they could read information you encrypted with it. And there is *no* reason to think that the
NSA even has anything to do with this! Remember, the NSA *does* make encryption products. Remember DES? Microsoft might have put
that there to allow easy incorporation of new NSA algorithms
What is to stop the nsa from getting you to
download a popular package that replaces current
crypto plugins with ones that are vulnerable?
If plugins can be replaced using this method then
all crypto software is suspect on your system.
The next time you use your private key to decrypt
something you may be handing it to the nsa.
Are their any other open source HIGH encryption
products out there like 2k bits + that will work
with windows and linux? Something that me an my
friends can use to exchange files and email without concern of it being intercepted and cracked. Also possibly encrypting files locally
on the hard drive? I am not sending gov secrets
out or anything but My privacy is mine damit.
If this story is true then I suppose even pgp
is vulnerable in a windows platform? Is this a
correct assumption?
Malice95
Wired's been wrong before... it will be wrong again. If ucla says its today (where the net was born) then its today.
Malice95
i personally know that i owe a good 90% of my life to the internet.
I owe my career to it. My first break in computers
(real job) was a job to build an internet service
provider for a business man (30k a year). And of
course I used linux which probably wouldn't exist
beyond Linus's hard drive without the Internet.
From there I have worked on dozens of internet
related projects over the years and built myself a
VERY nice lifestyle out of it. Beyond just the job
I have learned so much by others sharing their
knowledge over the net.
Thanks to the guys who created the Net. We all owe
you a debt of gratitude! I'll drink a beer for ya
tonight!
Malice95
Happy Birthday Internet. Did ya every think
you would become this huge? Heh! Any really
OLD timers using slashdot? I've been on since
1990, anyone want beat that and chat about the
good old days? No graphical browsers, just lynx
gopher, telnet, usenet, and irc back then. Never
crowded, netcitizens were generally nice. Ahh
the good old days. Lets hear how it was in the
old days to give these kids some perspective.
Wow, they find cheap technicians. Around here (only about 3 hours from KC) you can't touch a decent tech for less than about $45-$50k. That also doesn't figure in benefits or expenses (a computer, a phone, a desk, etc) related to having an employee. The salary is just one factor (albiet a large one) in the cost of an employee.
Heh here in NJ you cant touch a decent Unix admin
for under 70k:) And being a Unix Admin I like it
that way:) But yes there are a lot more expenses
that go into an employee then salary. You need to
pay the other 1/2 of social security, Workers
Comp..etc. About 20k of my per hour income goes
into paying those things and benefits for myself.
(I am a contractor). And then I get the remainder
as a paycheck which gets hit with income taxes,
social security, etc.. figure in just salary alone
it cost a company 20-25% more then what you get.
and as the previous poster pointed out. there are
the other associated expenses to help you do your
job. Unfortunatly I have a bad feeling that if
linux becomes prevolent and replaces OS's like
solaris and HP in the corporate environment we may
see a reduction in admin salaries. "Why do I have
to pay a senior unix admin 80k-110k admin a free
os?" (NY/NJ pay scale). Of course I could be
wrong:) Not like it hasnt happened before:)
Malice95
While I am not that person I am just using a
simple script on a fat pipe to load pages from all
over the new site.
#!/bin/sh
While $I
do
lynx -dump http://
lynx -dump http://
lynx -dump http://
etc.. etc..
done
Of course you wouldnt use the same address over and over. You want to pick different articles and
links and such throughout the new site.
I am adding at least a page or two a second
by doing this..
Mike
You are talking about telomeres
Everytime a cell divides a piece of telomere
is lost off the end of each genetic strand.
Once there is no more telomere the dna begins
to get damaged and the cell dies. At least this
is one theory of how cells have programmed death.
Cancer cells do not lose telomeres thus they can
replicate forever. There are cancer cells that
have been replicating for the past 50 years.
A substance known as telomerase can remove
telomere's but the problem is getting it to act
on a specific set of cells and not all. Once
we can create viral agents that do our bidding
we will knock out a LOT of diseases quickly.
Malice95
Linus is my hero.. well so is batman but we
wont get into that. I dont see anything wrong
with looking up to linus and what he has
accomplished. If it gets on kid into programming
or someone to contribute a line of good code to
the kernel, then its the best this since sliced
bread. Linus deserves a little hero worship...
Let him enjoy his fame and good fortune.
Malice
If you take his estimated 100k cards and 2 million
in profit then you are each giving 20 bucks a year
to support linux. Why not just send 20 bucks
to linus and not deal with all the interest. You
are gonna pay at least hundreds in intrest if you
keep a balance. There are cards lower then 12.99
out there with no anual fee. Is there a REAL non
profit org setup that helps linux expand and grow?
I would be all willing to donate to a real non
profit org that has a track record of doing good
things for linux.
It states right in the article that this guy is a
for profit company that is looking to make a
decent living off this card. Yes he is gonna fund
some projects but I am sure less then a million
would make it to those. And thats less then 10
bucks a year..
Something to think about..
Mike
heh..someone just had to say it..
hehehe
I wonder what apartment he lives in. It would be
interesting to have a chat with him about this whole mess he has gone through. Not that I don't
think he deserves every bit of it, but it would
be interesting to get his real perspective.
Yes win9X will run on this setup.
I bought this abit bp6 motherboard with 2x 366mhz
celerons overclocked to 550mhz. Yes I am well aware that 98 cant use dual procs.. This setup
was bought in the anticipation of win2k coming out
in the next couple months. So far its rock solid!
It will be interesting to see how this affects
the pirate community. If they are clued in
enough to notice this news I imagine it will get
quite a bit tougher to get WaReZ and movies and
such. Heck the cops just need to go to oth.com
to bust hundreds of people. Most things would
probably move to private ftp sites that require
user/passwd's and addresses will get passed
around via private channels on irc, icq..etc.
Its just so open right now.. oth.com.. web
searches to get movies, irc dcc servers
advertising in the open channel..etc.
I will admit I have snagged a few things in
my time, but I have also gone to see them/bought
them as well. I basically grabbed them
as a novelty or to try them out.
I read you could just ftp to
ftp.x10.com and get it from their ftp site.
Might be worth looking into.
Now that I am kicking myself for not getting
in on a piece of this redhat ipo action..
What other linux ipos are coming up or rumors
of ipos? I got some money to burn.. would
be nice to make a few bucks off it instead
of having it sit in an account.
Mike
Now that I am kicking myself for not getting
in on a piece of this redhat ipo action..
What other linux ipos are coming up or rumors
of ipos? I got some money to burn.. would
be nice to make a few bucks off it instead
of having it sit in an account.
Mike
Anyone remember the original website for these
things? Those dogs astetically (sp?) looked a lot
better then these newer ones. Although if sony
was able to get the price down to 1k and built
in some sort of charging system that the dog will
go to when low on juice I would pick up one in
a heartbeat. I think robotics will be very big
in the future.. AI technology needs to be advanced
and costs come down big time before it becomes
mainstream IMHO.
I had a guy i work with at my last gig that is in
this same boat. He working for a consulting
company thats basically screwing him over good.
He is getting paid squat but he is worth quite
a bit more. Unfortunatly he cant switch companies
because supposedly it will set back his green card
application to the beginning. Kinda crappy for him
although I am also happy that the market isn't
flooded by low cost imported labor. I like my
comfy high american salary:)
I have gotten plenty of spam from these guys...
IMHO I think they deserve to be blacklisted.
They'll back down and stop sending out bulk
email as soon as their listed.. Either that or
they drag it out in court forever and that hurts
even more.
Go to sendmail.org.. they have a document
there about building large mail systems that gives
you a lot of the ins and outs. Sendmail.com has
a nice gui that makes managing everything easy..
and definatly setup a HA solution with 25k users.
I have a friend in Microsoft's Messaging group,
His response was.. "25k on exchange? Heheheheh"
open source is the way to go with this size
system. I have set up several 5 and 10k user mail
systems and open source has never failed me yet:)
IMHO I would go with a sun product for
reliability. Uptime will be your number 1 concern.
Malice95
I am really envious of these guys.. sure it sounds
like they work hard but, they have fun at the same
time! How the hell do people find these great gigs?
I would love to work for a place like
southpark or similar place. Anyone hiring? Senior
Admin (solaris/linux/ultrix/irix). Dam there must
be a cool job list out there somewhere! Working
at the phone company (current job) is easy as cake
but boring as all hell. I'll take hard over boring
anyday.
Malice95
> ALl you pansies who think that is exciting.
Heh.. Who are you kidding? Motorcycles sucks. Come
Skydiving in NJ on Saturday.. You don't know
what a rush is..
(and yes I love roller coasters, just hate trolls:)
malice95