I like your ideas, so tell me if mine is valid. I use sort of security by obscurity method:
First, I pick something. For the sake of the argument, I'll say it's 'car'. A obscure, specific piece of said car, say 'hogring'. That's the root of my passwords. (note: in reality, my root word is more obscure and does not appear in any dictionary.)
Due to password constraints, I'm required to have a capital letter, a numeric, and a symbol, with no characters repeating in a row.
Next, I put the referral, 'car' in a text file.
Lastly, I spell out the password. So the final version in the text file may look like: www.msn.com myuserid Car01!
Niiiice. I didn't mean to infer that you didn't hide/mask your stuff. When it comes to personal security, I'm a fan of 'security through obscurity'.
Why frozen paintballs? Wouldn't that be like a high-powered BB gun? What would be interesting is obtaining a mold for paintballs, and making them from ice. Well, assuming that the gun itself could handle them without smashing them.
Heard at the autopsy: "Interesting. There's an entrance hole but no exit hole, with no particles. I can't specify what weapon was used."
"Like writing down on leaflets PINs and passwords or communicating them via email."
Here's how my passwords at work have to be modeled:
1. at least 8 characters. 2. at least on capital 3. at least on numeric 4. at least one symbol 5. the same digit/numeric/symbol cannot be used consecutively 6. pasword must go through 99 iterations to prevent repeats 7. no two passwords, for any system, can be the same
I have a (security through obscurity) method for keeping track of my passwords. How would YOU keep track, while staying in line with the above mandates?
As long as humans are part of the solution, they'll be part of the problem. And having solutions as part of the problem inicates a point of failure. So no, a 'perfectly secure' system is not possible, as there will always be someone smarter / more resourceful / better equiped / etc.
Social engineering (to pick but the most glaring of security issues), regardless of policies and procedures, will always prevent perfection.
Having had a couple of classic cars stollen, I toyed with several anti-theft ideas myself. The first was a set of needles underneath the driver's seat that would contain (at least) a major sedative. If the car were put in motion without a secondary security system having been satisfied...sproing! And you've got all the evidence needed to hand the guy over to the cops. An alternative is to electrify all metal in the car, or possibly spray out a noxious/toxic substance.
We both know these ideas are (mostly) in jest, as there are some risks. A friend of mine installed razorblades behind his head unit in the dash. When the would-be theif tried to yank it out, he lost 2.5 fingers. As a result, my buddy's insurance company got sued for a large sum, and settled.
These days, I use the security-by-obscurity method; I simply hide anything of value, or at least take it with me. For example, I have an old Ipaq with a wireless card that I use as a head unit in one of my cars. Yeah, I have to plug it in every time, and I only get to listen to a gigabyte worth of stuff, but it's small and won't be a big loss even if I lose it.:)
From the huge fatasses I see using the grocery store version, the ones with a box of twinkies AND a box of Ho-Hos, I'd say they could be construed as a tool of the lazy.
"They can buy merchanise over the internet, using each of their collected numbers until one works."
I've never understood how this could work... If they ordered something (assuming physical) online, they'd have to get it shipped to an address. And that's the first place the police would show up. I once had some crack-heads put together an old (closed account) shredded check and order pizza with it. Police caught them in three days.
I had similar circumstances regarding my HELOC. I was debating on a refinance option, and my potential loan-owner asked my current HELOC owner (CIT) for a total amount (payoff-demand) so that I could get an accurate quote. Three months later, I wrote a check off of the account. Boing!
So I called CIT. They said everything was fine, and that they should re-submit the check. ANOTHER overdraft charge later, they saw that it was because the account was 'frozen', due to the payoff-demand.
Much contract-reading later, I see that there's NO provision for said freezing of my account. So CIT reimbursed me for all of my expenses and I made them write a letter of appology to the company I wrote the check to.
Unfortunately, even the letter of appology won't get the offended company from ever excepting another check from me, as I now have a 'two bounced checks' record with them. So it wasn't really a 'win.'
To quote the parent AC post, in case you somehow missed it:
"So, in other words, you find illegal methods of copying the games, forcing the publishers to find even more effective measures of preventing people from ILLEGALLY COPYING THEIR HARD WORK. Then you complain about the enhanced measures...
Maybe if people like you would STOP COPYING GAMES they wouldn't have to resort to these methods."
He did not defraud the publisher of one red cent. He bought a copy, THEN downloaded a pirated copy so that he could actually play the game. Explain how that could possibly cause any monetary harm to the publisher, as well as how the parent AC made any valid point whatsoever.
True story: Back in the days when ATM cards were first being issued, my buddy got one. The lady in the bank asked him to choose a PIN code for it, and "it had to be at least 4." So that was his PIN...the number 4.
Needless to say, he wasn't able to use the card.
Moral to the story? My friend was perfectly willing to use the minimum amount of security for his hard-earned money.
I recall haveing even more fun trying to install Rogue Spear:
1. Install game 2. "To complete installation, you must reboot" 3. Reboot 4. "Driver changed, reboot needed" 5. Reboot 6. BSOD 7. Reboot 8. BSOD 9. Reboot 10. Safe mode 11. Research WTF is going on 12. Delete starforce crap 13. Try to return game 14. "Request denied, as game has been opened" 15. CRAP!
Turns out, the StarForce drivers did not like my new DVD burner and would enter en endless reboot cycle. Numerous emails to both the publisher and StarForce folks were pointless, as they both blamed the other. I never did get my money back.
I have no medical resources to back me up, but I've always heard that you're at the top of your game at age 18. Everything after that is down hill.
There is an upside, though, as experience counts. If you have an idea of what's coming next (whether it be in life (driving, for example) or games) then you still may have an advantage over the whippersnappers.
Re:Something the Review Missed:It Bloody Well Cras
on
Review - Full Auto
·
· Score: 1
To add to what tepples said, is there more than one version of the game being sold? If, for example, your first purchase (on release day) was version 1.0, did the version that you exchanged the disc for have a later version, like 1.2?
The environment itself is static, to the extent that you can't blow up buildings and other hardware, but when it comes to cars Burnout:Revenge is awsome in my opinion. I've had the game for a month or so, and I think I'm almost 70% done. I can't really speak to 'racing mechanics' but I can tell different cars by the way the 'feel' when I excellerate/corner in them, if that's what you mean. There aren't any cars in Burnout that I can compare to real-world cars.
The single-box multi-player (I don't subscribe to Live) is pretty good. Most driving modes are represented and I think it's done fairly well, but I'd like to see, well, more. Like perhaps a co-operative mode.
I'd highly recomend this game.
Re:I'm unemployed, you insensitive clod!
on
Review - Full Auto
·
· Score: 1
"possibly because of some unstated conclusion that I am overqualified"
Yeah, that's a hot-button of mine. I don't believe in the term 'overqualified' and think that HR and other hiring resources in companies should not be able to disqualify candidates based on that notion. Example: If you have 40 years of experience, imagine how much you could teach my team in the three years that I may get to keep you?? You'd have seen software/hardware errors that my team hadn't ever experienced, and could relate that experience first-hand. *sigh*
That said, I have the same no-response problem that you've experienced, and I don't know how to get around it. I write resumes and cover letters that *I'd* want to receive, but I guess I'm not writing it to the appropriate level, and I'd rather not query my VP as to the resume that he'd like to see.
Slashdot Mirror
SecureID would be an example. Memorize a four-digit PIN, then input the number from the card.
I like your ideas, so tell me if mine is valid. I use sort of security by obscurity method:
First, I pick something. For the sake of the argument, I'll say it's 'car'. A obscure, specific piece of said car, say 'hogring'. That's the root of my passwords. (note: in reality, my root word is more obscure and does not appear in any dictionary.)
Due to password constraints, I'm required to have a capital letter, a numeric, and a symbol, with no characters repeating in a row.
Next, I put the referral, 'car' in a text file.
Lastly, I spell out the password. So the final version in the text file may look like:
www.msn.com
myuserid
Car01!
While the real-world password is Hogring01!
Make sense?
So am I on crack?
To be honest, I'm not sure whether it's traded publicly or privately.
Maybe I just don't get it, but why would that be an oxymoron?
My neighbor, for example, has a small, public business with 3 full-time employees. He runs a print shop.
Niiiice. Hahaha!
My particular problem is that I have 38 passwords. Without duplication, how do I keep track of them without violating any of the policies?
Niiiice. I didn't mean to infer that you didn't hide/mask your stuff. When it comes to personal security, I'm a fan of 'security through obscurity'.
Why frozen paintballs? Wouldn't that be like a high-powered BB gun? What would be interesting is obtaining a mold for paintballs, and making them from ice. Well, assuming that the gun itself could handle them without smashing them.
Heard at the autopsy: "Interesting. There's an entrance hole but no exit hole, with no particles. I can't specify what weapon was used."
"Like writing down on leaflets PINs and passwords or communicating them via email."
Here's how my passwords at work have to be modeled:
1. at least 8 characters.
2. at least on capital
3. at least on numeric
4. at least one symbol
5. the same digit/numeric/symbol cannot be used consecutively
6. pasword must go through 99 iterations to prevent repeats
7. no two passwords, for any system, can be the same
I have a (security through obscurity) method for keeping track of my passwords. How would YOU keep track, while staying in line with the above mandates?
As long as humans are part of the solution, they'll be part of the problem. And having solutions as part of the problem inicates a point of failure. So no, a 'perfectly secure' system is not possible, as there will always be someone smarter / more resourceful / better equiped / etc.
Social engineering (to pick but the most glaring of security issues), regardless of policies and procedures, will always prevent perfection.
You had a remote? We had to use pieces of string and paperclips. Yeah, and some bellybutton lint! Man, we blew his doors cleeean off.
First off, you rock.
:)
Having had a couple of classic cars stollen, I toyed with several anti-theft ideas myself. The first was a set of needles underneath the driver's seat that would contain (at least) a major sedative. If the car were put in motion without a secondary security system having been satisfied...sproing! And you've got all the evidence needed to hand the guy over to the cops. An alternative is to electrify all metal in the car, or possibly spray out a noxious/toxic substance.
We both know these ideas are (mostly) in jest, as there are some risks. A friend of mine installed razorblades behind his head unit in the dash. When the would-be theif tried to yank it out, he lost 2.5 fingers. As a result, my buddy's insurance company got sued for a large sum, and settled.
These days, I use the security-by-obscurity method; I simply hide anything of value, or at least take it with me. For example, I have an old Ipaq with a wireless card that I use as a head unit in one of my cars. Yeah, I have to plug it in every time, and I only get to listen to a gigabyte worth of stuff, but it's small and won't be a big loss even if I lose it.
But what to do about problem 'leakage?' I'm still trying to get some of the stains out!
From the huge fatasses I see using the grocery store version, the ones with a box of twinkies AND a box of Ho-Hos, I'd say they could be construed as a tool of the lazy.
"They can buy merchanise over the internet, using each of their collected numbers until one works."
I've never understood how this could work... If they ordered something (assuming physical) online, they'd have to get it shipped to an address. And that's the first place the police would show up. I once had some crack-heads put together an old (closed account) shredded check and order pizza with it. Police caught them in three days.
I had similar circumstances regarding my HELOC. I was debating on a refinance option, and my potential loan-owner asked my current HELOC owner (CIT) for a total amount (payoff-demand) so that I could get an accurate quote. Three months later, I wrote a check off of the account. Boing!
So I called CIT. They said everything was fine, and that they should re-submit the check. ANOTHER overdraft charge later, they saw that it was because the account was 'frozen', due to the payoff-demand.
Much contract-reading later, I see that there's NO provision for said freezing of my account. So CIT reimbursed me for all of my expenses and I made them write a letter of appology to the company I wrote the check to.
Unfortunately, even the letter of appology won't get the offended company from ever excepting another check from me, as I now have a 'two bounced checks' record with them. So it wasn't really a 'win.'
As someone above mentioned, go to the issuing party's website and view their 'contact' information there. Just make sure you are on the right page. :)
To quote the parent AC post, in case you somehow missed it:
"So, in other words, you find illegal methods of copying the games, forcing the publishers to find even more effective measures of preventing people from ILLEGALLY COPYING THEIR HARD WORK. Then you complain about the enhanced measures...
Maybe if people like you would STOP COPYING GAMES they wouldn't have to resort to these methods."
He did not defraud the publisher of one red cent. He bought a copy, THEN downloaded a pirated copy so that he could actually play the game. Explain how that could possibly cause any monetary harm to the publisher, as well as how the parent AC made any valid point whatsoever.
True story: Back in the days when ATM cards were first being issued, my buddy got one. The lady in the bank asked him to choose a PIN code for it, and "it had to be at least 4." So that was his PIN...the number 4.
Needless to say, he wasn't able to use the card.
Moral to the story? My friend was perfectly willing to use the minimum amount of security for his hard-earned money.
He's saying he buys it and then downloads a pirated copy. Nice trolling attempt.
I recall haveing even more fun trying to install Rogue Spear:
1. Install game
2. "To complete installation, you must reboot"
3. Reboot
4. "Driver changed, reboot needed"
5. Reboot
6. BSOD
7. Reboot
8. BSOD
9. Reboot
10. Safe mode
11. Research WTF is going on
12. Delete starforce crap
13. Try to return game
14. "Request denied, as game has been opened"
15. CRAP!
Turns out, the StarForce drivers did not like my new DVD burner and would enter en endless reboot cycle. Numerous emails to both the publisher and StarForce folks were pointless, as they both blamed the other. I never did get my money back.
I have no medical resources to back me up, but I've always heard that you're at the top of your game at age 18. Everything after that is down hill.
There is an upside, though, as experience counts. If you have an idea of what's coming next (whether it be in life (driving, for example) or games) then you still may have an advantage over the whippersnappers.
Very interesting. Thank you!
To add to what tepples said, is there more than one version of the game being sold? If, for example, your first purchase (on release day) was version 1.0, did the version that you exchanged the disc for have a later version, like 1.2?
RE: enjoying blowing stuff up
The environment itself is static, to the extent that you can't blow up buildings and other hardware, but when it comes to cars Burnout:Revenge is awsome in my opinion. I've had the game for a month or so, and I think I'm almost 70% done. I can't really speak to 'racing mechanics' but I can tell different cars by the way the 'feel' when I excellerate/corner in them, if that's what you mean. There aren't any cars in Burnout that I can compare to real-world cars.
The single-box multi-player (I don't subscribe to Live) is pretty good. Most driving modes are represented and I think it's done fairly well, but I'd like to see, well, more. Like perhaps a co-operative mode.
I'd highly recomend this game.
"possibly because of some unstated conclusion that I am overqualified"
Yeah, that's a hot-button of mine. I don't believe in the term 'overqualified' and think that HR and other hiring resources in companies should not be able to disqualify candidates based on that notion. Example: If you have 40 years of experience, imagine how much you could teach my team in the three years that I may get to keep you?? You'd have seen software/hardware errors that my team hadn't ever experienced, and could relate that experience first-hand. *sigh*
That said, I have the same no-response problem that you've experienced, and I don't know how to get around it. I write resumes and cover letters that *I'd* want to receive, but I guess I'm not writing it to the appropriate level, and I'd rather not query my VP as to the resume that he'd like to see.
Quibble: Why do most modern receiver makers insist on assigning negative values to volume controls? Why is that the new standard?
I think I've had my receiver up to a positive number a few times in the year that I've had it.