There is in fact PGP fone which does just that:
Link here
There's aslo SpeakFreely available here.
Both support secure encryption, so unless they really do ahve those factoring machines and we don't yet know it...
Surely there's a world of difference between a hole that's remotely exploitable and one that can only be exploited by a local user.
Web servers, mail servers (properly configured as 'black boxes'), firewalls, routers etc are all unlikely to be affected if the only user account is actually root).
Then we have timescale - the BBC are reporting here that the US Army were caught out by the Microsoft hole as much as 2 weeks ago, yet a patch didn't turn up until now. Here we have a patch before any known exploits are running in the wild. That's the big difference.
Every operating system has its vulnerabilities. Nonetheless, if the vendor refuses to acknowledge them and your OS is closed source there's nothing you can do. If it's open source at least you know that when a problem comes along you'll be able to get it fixed.
The electoral register now comes in two formats, one which is available only to returning officers, credit reference agencies and political parties, and an edited version made available to marketers. You can opt out of being listed in the edited version if you wish.
I'm getting nowhere trying to access the site.
Is it the same list from Privicy International? It too is nine items long. You can read it here through the google cache no less:)
Can't votes in the US be traced back? Certainly in the UK - where elections are paper based - our ballot papers are marked and can be traced back to the individual who cast the vote. No one seems to complain too loudly.
Surely you'd be in favour then? If a State has low costs for doing business, you as a shopper anywhere in the US can decide to conduct your business with firms in that State. They then have a competitive advantage, firms in other states complain and their business taxes are held low or are reduced to maintain their commercial opportunity.
If, however, the tax is to be collected by the State local to the purchaser, you have the opportunity to vote your representatives out of office if you don't like their taxation policies. If your fellow electorate disagree with you and keep them in office, you have the right to move to a different state.
11-Digit Local Dialing Starts in New York City on Feb. 1
By LYDIA POLGREEN
our favorite Chinese-food delivery place may be just down the block, but starting Feb. 1 that kung pao shrimp will be four digits farther away.
That is when New Yorkers will have to start using an area code when calling a local telephone number, even if it is in the same area code. The days when a phone number was just a name and five digits -- say, Pennsylvania 6-5000 -- are now an even more distant memory. It will now take 11 digits, including the 1, to call across the street.
If callers do not dial the area code, they will hear a recorded message asking them to hang up and dial again, using the area code, said Daniel Diaz Zapata, a Verizon spokesman.
Verizon has taken out advertisements in newspapers, put up billboards and sent notices to customers in the hopes of helping people avoid the chaos that will undoubtedly ensue. With the number of devices attached to phone lines these days, this is no small task. "People will need to reprogram speed dialing lists, fax lists, dial-up modems and call-forwarding," Mr. Diaz Zapata said.
The reasons behind the change are complex. It is not simply the need for more phone numbers, as many people believe. Adding new area codes takes care of that problem, and New York City has received three new area codes since 1992 -- 917 and 646 in Manhattan, and 347 in the rest of the city -- to help cope with the exploding demand for phone lines as customers have added pagers, fax machines, cellphones and modems.
Officials in less densely populated places simply split their area in two, with half the population keeping the old area code and the other half getting a new one. But in big cities, like New York and Boston, regulators use an overlay approach, which has meant that people who live next door to each other can and do have different area codes. City Hall, for example, uses the 212 area code. But since 9/11, which disrupted phone service in Lower Manhattan, the Police Department, across the street, has used the 646 area code.
In 1996, in order to simplify things and make it easier to foster competition in the local telephone service market, the Federal Communications Commission began requiring cities with overlaid area codes to use the area code when dialing locally.
New Yorkers did not take the requirement lying down. The New York Public Service Commission and the Consumer Federation of America asked for a waiver. The F.C.C. turned them down, but they appealed and were overruled in 2001.
So, what's the impact here in the rest of the world where there are no (or few) software patents?
Are SCO going to pursue every linux user in the US? and if they do, will the US government (that's busy spending billions trying to re-ignite their economy) simply sit back and watch as the rest of the globe becomes more competitive and a better location to establish your business as a result?
Maybe, just maybe, this is actually what's required though. A really harsh pursuit of a patent by a failing company that sees this crazy ability to patent any and every idea relating to computing, whether it's obvious or even whether it's been done before properly challenged and hopefully halted. And if it's not halted? Well then for many companies it quickly becomes silly to be located in the US.
We handle circa 10,000 emails a day. Not a huge amount, but probably the same as many small businesses. Spam makes up for a very small amount of our mail - certainly less than 5%, and probably less than 2% of my inbox. We take no measures other than checking open relays against ORDB and known spammers against the SBL at spamhaus.
In the last 24 hours, ordb has caught 200 attempts to connect, spamhaus has caught one.
I suspect that by using algorithims, we can reduce our spam even further. If more ISPs were to impliment spam filtering - even as an option - to the same extent as ours, a lot less would get through. If we can get the response rate from spam to drop from a quarter of one percent to maybe a tenth of that, we may start to get close to a position where spam actually becomes uneconomic. It's only by achieving that that we'll see the current volume of spam reduced.
Re:Securing OpenSSL
on
Due Diligence?
·
· Score: 4, Interesting
There's also the issue of those running servers who, sensibly, have either gcc set to non executable, or simply have no compiler installed. It's much more difficult to compile code when there isn't a compiler, and with no gcc available, slapper can't do an awful lot.
Sure something else might come along that can, but as you point out, if you're running a server that's been up a year, changing things is never comfortable, and if you know slapper isn't going to infect you, there's much less motivation.
There's some discussionon the law - of course mainly American law which has little to do with whether it was legal or not where the crime actually happened.
If they were to prosecute in the UK - I note Reuters replied to the allegations from their London HQ - here's what the law says:
Computer Misuse Act (1990) Unauthorised access to computer material
1.--(1) A person is guilty of an offence if--
(a) he causes a computer to perform any function with intent to secure access to any program or data held in any computer;
(b) the access he intends to secure is unauthorised; and
(c) he knows at the time when he causes the computer to perform the function that that is the case.
(2) The intent a person has to have to commit an offence under this section need not be directed at--
(a) any particular program or data;
(b) a program or data of any particular kind; or
(c) a program or data held in any particular computer.
(3) A person guilty of an offence under this section shall be liable on summary conviction to imprisonment for a term not exceeding six months or to a fine not exceeding level 5 on the standard scale or to both.
So, it's quite straightforward really - if they can prove Reuters knew they weren't supposed to be looking at that material, then if the access was from the UK, a crime was committed.
If Reuters can argue they didn't know the material was private, there is no case to answer.
Going back to the points some others have made about the information being publicaly accessible with no.htaccess protection, clearly this doesn't matter. If, for example, you were to make a clcik through that had to be viewed before you could see any of the content that stated the information was confidential then someone not supposed to be viewing it would be committing a crime to do so.
By reading the FAQ you would learn that the simputer has been designed for sharing by communities. THe examples they give are schools and community centres which are already established as places where shared resources are available to comunities.
The simputer is equipped with a smart card reader which is intended to provide personalisation to the device. The aim is to reduce the cost of _access_ (that's the important bit, not ownership) to the device to that of owning a smart card, not of owning the device itself.
Think of being able to walk into a local library and borrow a computer for a day instead of a book.
Indeed, in Europe if they had you working 15 hour days, you could go home at 11am on the Thursday and not return to work until the Monday.
Why? Because the European Union protected its workers by introducing the working time directive which emans the maximum hours you can be contracted to work is 48 per week - you can work longer if you wish and agree, but no employer can force you too, and if you decide not to there's not a thing they can do. Even if later they decided not to promote you on that basis you could take action against them.
Usually I'd be cautious about such intervention, but certainly here I have to agree that it's to everyone's disadvantage being forced to work these crazy hours - I've done it myself and veryone loses - employer, employee and families.
This is a problem that is exacerbated by the receiving party pays for calls and text messages trap that, as I understand it, only the US has fallen into.
Certainly here in the UK, the calling party pays for calls and text messages and it costs nothing to receive either. As a result, mobile (cellphone) numbers are handed out freely to all and sundry, with mobile phones being used much more conspicuously by everyone aged eight upwards.
While it does not justify spamming, the idea that SMS spamming where the receiving party actually has to pay for the junk is one that wouldn't be tolerated here, and shouldn't be tolerated in the US or anywhere else.
It should be noted that those producing GPL software in the UK could simply call the police in such circumstances. Here copyright is a criminal as well as civil offence, so if you're less concerned about punitive damages and more concerned about protecting the copyright license you have chosen to protect your work, you can ask the police to do it on your behalf.
It seems obvious that if you spam a million people you are going to hit someone interested in your product - whatever your product is. The fact that spamming a million folk costs pennies is what makes it so appealing to those selling products which have a minority interest.
I get very little spam these days, but then my mailserver has a blocked senders list that is now over 1,000 lines long. That I find to be the most effective method to stop unwanted mail. Today I started blocking SMTP server IPs as well. I check my logfile every morning and check who was bounced in the previous 24 hours. I haven't yet seen an email bounce that I think might have been legit.
In other words, if you want to block spam for your users, it requires a bit of time each day. I calculate it is time well spent as it saves staff from being snowed under by the stuff, and saves me from getting multiple emails from staff who all want to know how an email offering them a low cost penis extension made it into their inbox.
Spam isn't going away. Either you tollerate it or take action to stop it getting into your inbox. Of course it'd help if a few ISP's - today's culprit has been swbell - actually took action against their DSL users spamming of their broadband connection. Why don't they share information of folk they have had to disconnect due to breeching their AUP - if it suddenly became difficult to get any internet access, spamming might become more hassle than it's worth.
Re:Now begins the hardest part...
on
Ogg Vorbis 1.0
·
· Score: 1
Looks to me like they've also morphed from being a GPL package to a commercial one, with no mention of source code, but several emntions of patents on the web page.
Am I missing something? This is jsut a backup - why would that present a problem under the DPA. You update the databse and the backup is corrected as it is updated, just as would happen in any enterprise situation.
Do you mean unrestricted access? I don't think this is talking about using Joe Foo's kaaza shared folder to store your company's backup data - it's using unused disk space on the company network, and the web sites states that the backup mesh is encrypted, so unauthorised users may have the file on their disk, but they can't access it.
Looks to me like all the criterea of the DPA are covered.
Sony have been producing Picturebooks with Bluetooth support for many months. They run Windows XP, are a fraction of the size of an I-Book, I'd even say they look better:)
Slashdot Mirror
There is in fact PGP fone which does just that: Link here There's aslo SpeakFreely available here. Both support secure encryption, so unless they really do ahve those factoring machines and we don't yet know it...
Then we have timescale - the BBC are reporting here that the US Army were caught out by the Microsoft hole as much as 2 weeks ago, yet a patch didn't turn up until now. Here we have a patch before any known exploits are running in the wild. That's the big difference.
Every operating system has its vulnerabilities. Nonetheless, if the vendor refuses to acknowledge them and your OS is closed source there's nothing you can do. If it's open source at least you know that when a problem comes along you'll be able to get it fixed.
see this web page
The electoral register now comes in two formats, one which is available only to returning officers, credit reference agencies and political parties, and an edited version made available to marketers. You can opt out of being listed in the edited version if you wish.
See this web page
I'm getting nowhere trying to access the site. Is it the same list from Privicy International? It too is nine items long. You can read it here through the google cache no less :)
Click here for the story on Lucky Green trying to use the patenting process to prevent Microsoft using Palladium to enforce software licensing.
Can't votes in the US be traced back? Certainly in the UK - where elections are paper based - our ballot papers are marked and can be traced back to the individual who cast the vote. No one seems to complain too loudly.
I suspect that's why they are releasing Advanced Workstation
If, however, the tax is to be collected by the State local to the purchaser, you have the opportunity to vote your representatives out of office if you don't like their taxation policies. If your fellow electorate disagree with you and keep them in office, you have the right to move to a different state.
our favorite Chinese-food delivery place may be just down the block, but starting Feb. 1 that kung pao shrimp will be four digits farther away.
That is when New Yorkers will have to start using an area code when calling a local telephone number, even if it is in the same area code. The days when a phone number was just a name and five digits -- say, Pennsylvania 6-5000 -- are now an even more distant memory. It will now take 11 digits, including the 1, to call across the street.
If callers do not dial the area code, they will hear a recorded message asking them to hang up and dial again, using the area code, said Daniel Diaz Zapata, a Verizon spokesman.
Verizon has taken out advertisements in newspapers, put up billboards and sent notices to customers in the hopes of helping people avoid the chaos that will undoubtedly ensue. With the number of devices attached to phone lines these days, this is no small task. "People will need to reprogram speed dialing lists, fax lists, dial-up modems and call-forwarding," Mr. Diaz Zapata said.
The reasons behind the change are complex. It is not simply the need for more phone numbers, as many people believe. Adding new area codes takes care of that problem, and New York City has received three new area codes since 1992 -- 917 and 646 in Manhattan, and 347 in the rest of the city -- to help cope with the exploding demand for phone lines as customers have added pagers, fax machines, cellphones and modems.
Officials in less densely populated places simply split their area in two, with half the population keeping the old area code and the other half getting a new one. But in big cities, like New York and Boston, regulators use an overlay approach, which has meant that people who live next door to each other can and do have different area codes. City Hall, for example, uses the 212 area code. But since 9/11, which disrupted phone service in Lower Manhattan, the Police Department, across the street, has used the 646 area code.
In 1996, in order to simplify things and make it easier to foster competition in the local telephone service market, the Federal Communications Commission began requiring cities with overlaid area codes to use the area code when dialing locally.
New Yorkers did not take the requirement lying down. The New York Public Service Commission and the Consumer Federation of America asked for a waiver. The F.C.C. turned them down, but they appealed and were overruled in 2001.
Are SCO going to pursue every linux user in the US? and if they do, will the US government (that's busy spending billions trying to re-ignite their economy) simply sit back and watch as the rest of the globe becomes more competitive and a better location to establish your business as a result?
Maybe, just maybe, this is actually what's required though. A really harsh pursuit of a patent by a failing company that sees this crazy ability to patent any and every idea relating to computing, whether it's obvious or even whether it's been done before properly challenged and hopefully halted. And if it's not halted? Well then for many companies it quickly becomes silly to be located in the US.
In the last 24 hours, ordb has caught 200 attempts to connect, spamhaus has caught one.
I suspect that by using algorithims, we can reduce our spam even further. If more ISPs were to impliment spam filtering - even as an option - to the same extent as ours, a lot less would get through. If we can get the response rate from spam to drop from a quarter of one percent to maybe a tenth of that, we may start to get close to a position where spam actually becomes uneconomic. It's only by achieving that that we'll see the current volume of spam reduced.
Sure something else might come along that can, but as you point out, if you're running a server that's been up a year, changing things is never comfortable, and if you know slapper isn't going to infect you, there's much less motivation.
The mice (not /.ed but in Japanese) are very nice, but Y7500 that's circa 40 GBP or $60 US which is a bit steep even for a designer mouse, no?
If they were to prosecute in the UK - I note Reuters replied to the allegations from their London HQ - here's what the law says:
So, it's quite straightforward really - if they can prove Reuters knew they weren't supposed to be looking at that material, then if the access was from the UK, a crime was committed.If Reuters can argue they didn't know the material was private, there is no case to answer.
Going back to the points some others have made about the information being publicaly accessible with no .htaccess protection, clearly this doesn't matter. If, for example, you were to make a clcik through that had to be viewed before you could see any of the content that stated the information was confidential then someone not supposed to be viewing it would be committing a crime to do so.
The simputer is equipped with a smart card reader which is intended to provide personalisation to the device. The aim is to reduce the cost of _access_ (that's the important bit, not ownership) to the device to that of owning a smart card, not of owning the device itself.
Think of being able to walk into a local library and borrow a computer for a day instead of a book.
The death penalty for all remaining offences was abolished in the 1998 Crime adn Disorder Act
Why? Because the European Union protected its workers by introducing the working time directive which emans the maximum hours you can be contracted to work is 48 per week - you can work longer if you wish and agree, but no employer can force you too, and if you decide not to there's not a thing they can do. Even if later they decided not to promote you on that basis you could take action against them.
Usually I'd be cautious about such intervention, but certainly here I have to agree that it's to everyone's disadvantage being forced to work these crazy hours - I've done it myself and veryone loses - employer, employee and families.
Certainly here in the UK, the calling party pays for calls and text messages and it costs nothing to receive either. As a result, mobile (cellphone) numbers are handed out freely to all and sundry, with mobile phones being used much more conspicuously by everyone aged eight upwards.
While it does not justify spamming, the idea that SMS spamming where the receiving party actually has to pay for the junk is one that wouldn't be tolerated here, and shouldn't be tolerated in the US or anywhere else.
It should be noted that those producing GPL software in the UK could simply call the police in such circumstances. Here copyright is a criminal as well as civil offence, so if you're less concerned about punitive damages and more concerned about protecting the copyright license you have chosen to protect your work, you can ask the police to do it on your behalf.
I get very little spam these days, but then my mailserver has a blocked senders list that is now over 1,000 lines long. That I find to be the most effective method to stop unwanted mail. Today I started blocking SMTP server IPs as well. I check my logfile every morning and check who was bounced in the previous 24 hours. I haven't yet seen an email bounce that I think might have been legit.
In other words, if you want to block spam for your users, it requires a bit of time each day. I calculate it is time well spent as it saves staff from being snowed under by the stuff, and saves me from getting multiple emails from staff who all want to know how an email offering them a low cost penis extension made it into their inbox.
Spam isn't going away. Either you tollerate it or take action to stop it getting into your inbox. Of course it'd help if a few ISP's - today's culprit has been swbell - actually took action against their DSL users spamming of their broadband connection. Why don't they share information of folk they have had to disconnect due to breeching their AUP - if it suddenly became difficult to get any internet access, spamming might become more hassle than it's worth.
Well, if you want the BBC to support it, read this and then ask for it
Looks to me like they've also morphed from being a GPL package to a commercial one, with no mention of source code, but several emntions of patents on the web page.
Do you mean unrestricted access? I don't think this is talking about using Joe Foo's kaaza shared folder to store your company's backup data - it's using unused disk space on the company network, and the web sites states that the backup mesh is encrypted, so unauthorised users may have the file on their disk, but they can't access it.
Looks to me like all the criterea of the DPA are covered.
Sony have been producing Picturebooks with Bluetooth support for many months. They run Windows XP, are a fraction of the size of an I-Book, I'd even say they look better :)
Where you have a domestic use for the technology we can be pretty sure we'll both see it, and see it at a reasonable price.