What Anonymous did was wrong. Make no mistake about it.
...
That is your opinion.
I think what they did was right.
No, that is YOUR opinion. Breaking into systems not owned by you, destroying data, and other forms of vandalism is wrong. Regardless of the motives.
HBGary talked the talk, but couldn't walk the walk. Who better but anonymous to show us whats up?
anonymous is the public. It's mobs. Mob justice. It's the reminder that you might not be all that and a bag of chips if your doing something people might not like.
If you have nothing to hide, you shouldn't be worried.
Talk about mob justice to all the victims of lynchings in the American south and southwest. A mob is a mob. Justice is not the first thing on it's mind.
Aaron Barr at HBGary. He's not law enforcement and as far as I know wasn't under contract by any law enforcement agency to root out the members of Anonymous.
Yet he's threatening to name names. To accuse people of participating in disruptive, possibly criminal activities.
Not in a court of law. But in public.
He's going all "Wild West" on people here and threatening to "pull his gun".
In this case, Anonymous responded in kind and Aaron Barr, shootist, is now laying in the street in a puddle of his own blood.
Unfortunately, Anonymous brought a gatling gun to a pistol fight. So lots of other people have huge bullet holes blown in them too.
Now I deplore "hacktivism" as the WORST possible way to convey one's message to people.
But I'm VERY familiar with the notion of making it painful for people who're harassing you to continue to do so.
What Anonymous did was wrong. Make no mistake about it.
But what did these jackholes THINK was going to happen?
No, we who have four digit IDs do not need to read the article, we already know what it will say. I was really just messing with OverloardQ, who obviously wanted everyone to guess "Teh ebil Gubermint!" Some people can't resist an opportunity to express their hatred of democracy and collective action.
I didn't know they were prescribing psychotropics to the extremely elderly here.
Soon, people will say, "Why buy a Blackberry when I'm just running Android apps?"
I've said it twice in this thread so far: because for actual communication - SMS, email, phone, IM and the like - the BlackBerry absolutely spanks the iPhone and Android hands down.
Okay, I used to own a Blackberry (a real one, not one of the consumer-grade ones). And I challenge the notion that it's superior for said purposes.
I find the keyboard on my Galaxy S phone to be eminently more usable than the Blackberry keypad.
Actually it's a decent idea. It gives them access to a large number of apps. With a quality ranging from "superb" down to "damn terrible".
Most of the decent BB-native apps are from RIM-proper. The third party environment comes in three classes.
Damn Terrible, OMFG!, and "Fuck this, I'm going to get an iPhone!"
I know of at least one app (essentially failed now) that used no less than SEVEN JAVA ENVIRONMENTS during initial implementation. Each of the various components of the app was written using a different one.
RIM's line of hardcore business users is (mostly) safe. Their current infrastructure can keep them going a long, LONG time. This just gives them another tool in their bag.
As for those who don't use the RIM infrastructure, these aren't really BB customers that RIM wants to (or will) cater to anyhow.
This way these people get some functionality out of their expensive paperweight. And if they migrate off to a native, gee whiz, Android phone, it's no skin off their noses.
They don't need e-mail, or GPS, or *blahblahblahblahblah*.
Seriously. Were my job not providing me with a smartphone, and as cool as some of the things it can do are, I'd have some dumb, cheapie cell. Not because I can't afford it, but because I don't really care about all the "extras".
By that logic passwords should be stored in plain text.
You're not listening. Root already owns the system. Making the database spit the passwords back to the attacker is simply a matter of time. Yes, LONGER with more secure encryption, but still only a matter of time.
So you're saying SHA+a salt value sucks *IF THE ATTACKER ALREADY HAS ROOT ACCESS*?
Ore are you saying SHA+a salt value sucks *IF PEOPLE ARE USING WEAK DICTIONARY PASSWORDS*?
Can I get a "well fucking DUH!" here?
Seriously, exactly how tall are you claiming this molehill to be?
In BOTH cases the problem IS NOT the weakness of SHA+salt.
In the latter, the problem is some jackass used a crappy password. And even that's defensible if you have things like login restrictions and account locking in place.
In the former, well, not sure how to put this politely, THEY HAVE ROOTED YOUR BOX! At that point, you've got MUCH bigger problems on your hands than their ability to decrypt your password database.
Sorry, but this sounds like someone with SEVERE tunnel-vision here. They're so monofocused on "A" problem, that they fail to see the larger ramifications of the scenarios they construct.
...
What Anonymous did was wrong. Make no mistake about it.
...
That is your opinion.
I think what they did was right.
No, that is YOUR opinion. Breaking into systems not owned by you, destroying data, and other forms of vandalism is wrong. Regardless of the motives.
HBGary talked the talk, but couldn't walk the walk. Who better but anonymous to show us whats up?
anonymous is the public. It's mobs. Mob justice. It's the reminder that you might not be all that and a bag of chips if your doing something people might not like.
If you have nothing to hide, you shouldn't be worried.
Talk about mob justice to all the victims of lynchings in the American south and southwest. A mob is a mob. Justice is not the first thing on it's mind.
Who started with the vigilantism here?
Aaron Barr at HBGary. He's not law enforcement and as far as I know wasn't under contract by any law enforcement agency to root out the members of Anonymous.
Yet he's threatening to name names. To accuse people of participating in disruptive, possibly criminal activities.
Not in a court of law. But in public.
He's going all "Wild West" on people here and threatening to "pull his gun".
In this case, Anonymous responded in kind and Aaron Barr, shootist, is now laying in the street in a puddle of his own blood.
Unfortunately, Anonymous brought a gatling gun to a pistol fight. So lots of other people have huge bullet holes blown in them too.
Now I deplore "hacktivism" as the WORST possible way to convey one's message to people.
But I'm VERY familiar with the notion of making it painful for people who're harassing you to continue to do so.
What Anonymous did was wrong. Make no mistake about it.
But what did these jackholes THINK was going to happen?
Remember folks, it's never Christ that was the problem - it's the fan club.
Tell that to the Sanhedrin
No, we who have four digit IDs do not need to read the article, we already know what it will say. I was really just messing with OverloardQ, who obviously wanted everyone to guess "Teh ebil Gubermint!" Some people can't resist an opportunity to express their hatred of democracy and collective action.
I didn't know they were prescribing psychotropics to the extremely elderly here.
*Insert Rick James*
Nononono. You have to use the modern expression!
Sex+Violence(sqrt(Fact+Importance))
Wow. No coffee yet eh?
The issue is that insufficient shielding allows for greater amounts of radiation to penetrate the cabin areas of said transit vehicle.
Ergo, the issue is actually insufficient shielding.
At that point, the solution presents itself quite nicely. More/better shielding.
It's "if you have crappy shielding, you'll likely kill the fetus".
The solution is simple. Better shielding in such transit vehicles, as well as good shielding once at the destination.
Soon, people will say, "Why buy a Blackberry when I'm just running Android apps?"
I've said it twice in this thread so far: because for actual communication - SMS, email, phone, IM and the like - the BlackBerry absolutely spanks the iPhone and Android hands down.
Okay, I used to own a Blackberry (a real one, not one of the consumer-grade ones). And I challenge the notion that it's superior for said purposes.
I find the keyboard on my Galaxy S phone to be eminently more usable than the Blackberry keypad.
Actually it's a decent idea. It gives them access to a large number of apps. With a quality ranging from "superb" down to "damn terrible".
Most of the decent BB-native apps are from RIM-proper. The third party environment comes in three classes.
Damn Terrible, OMFG!, and "Fuck this, I'm going to get an iPhone!"
I know of at least one app (essentially failed now) that used no less than SEVEN JAVA ENVIRONMENTS during initial implementation. Each of the various components of the app was written using a different one.
RIM's line of hardcore business users is (mostly) safe. Their current infrastructure can keep them going a long, LONG time. This just gives them another tool in their bag.
As for those who don't use the RIM infrastructure, these aren't really BB customers that RIM wants to (or will) cater to anyhow.
This way these people get some functionality out of their expensive paperweight. And if they migrate off to a native, gee whiz, Android phone, it's no skin off their noses.
They don't need e-mail, or GPS, or *blahblahblahblahblah*.
Seriously. Were my job not providing me with a smartphone, and as cool as some of the things it can do are, I'd have some dumb, cheapie cell. Not because I can't afford it, but because I don't really care about all the "extras".
More money we don't have for more shit we don't need!
Change I can believe in my ass!
The only "change" is the changing of WHICH pork projects the money we SHOULD be using to pay off our debts is getting siphoned into.
Republican, Democrat, etc, etc. All just a bunch of money-hungry asshats who just need to be put up against a wall and shot.
By that logic passwords should be stored in plain text.
You're not listening. Root already owns the system. Making the database spit the passwords back to the attacker is simply a matter of time. Yes, LONGER with more secure encryption, but still only a matter of time.
I disagree. It's a much bigger problem is if they can decrypt the password database.
No. Not really. If they've rooted the box, they already OWN the database. Plain and simple. No ifs, ands or buts.
Strong, weak or otherwise, they'll get the password list.
Make it feel stylish and suckers will buy any crap you shovel at them!
More like J. Jonah Jameson trying to bushwhack the Juggernaut...bare-handed.
The thing is, "if the person has root *already*" was specifically mentioned.
If the person already has root, it's a pretty safe assumption that your user passwords are compromised.
Essentially, once they have root, there is no "worse".
So you're saying SHA+a salt value sucks *IF THE ATTACKER ALREADY HAS ROOT ACCESS*?
Ore are you saying SHA+a salt value sucks *IF PEOPLE ARE USING WEAK DICTIONARY PASSWORDS*?
Can I get a "well fucking DUH!" here?
Seriously, exactly how tall are you claiming this molehill to be?
In BOTH cases the problem IS NOT the weakness of SHA+salt.
In the latter, the problem is some jackass used a crappy password. And even that's defensible if you have things like login restrictions and account locking in place.
In the former, well, not sure how to put this politely, THEY HAVE ROOTED YOUR BOX! At that point, you've got MUCH bigger problems on your hands than their ability to decrypt your password database.
Sorry, but this sounds like someone with SEVERE tunnel-vision here. They're so monofocused on "A" problem, that they fail to see the larger ramifications of the scenarios they construct.
You'll see no argument from me on these points. Essentially one gigantic shit salad all around.
It's a feature of the game itself. Not the platform it's on.
Explain why every human on the planet has a navel.
A leftover that we really don't need anymore that's kinda ugly and serves no purpose.
Well, if newer boards ship with a third-party controller to bypass the 3GB issue, we're set there too.
Take a look at Champions Online and it's follow-up, Star Trek Online.
The engine was jacked around with to specifically enable a console port that was to be released simultaneously.
Then the developer realized that a console port was going to be unsupportable and simply COULD NOT give the flexibility necessary.
Boom, console port went away. But by that point, all the console-specific stuff was so firmly embedded into the system that it couldn't be excised.
So what did we get with CO and STO? A pair of SEVERELY half-ass MMOs that were little more than button-mash-fests.
Remind me the next time I neglect to put a gigantic [FoghornLeghorn]That's a joke son...[/FoghornLeghorn] humor tag in there.
Oh wait, you're using too much!
Here's your half a bridge!
Never mind. The downtime from having multiple, random nodes in the cloud burn out at regular intervals isn't worth it.
Call me when Canonical gets a real company to back this setup.