Uh, you didn't hear the story about the guy who controlled the the plane he was on via the wifi? Caused it to climb and descend? Got a nice visit from the FBI?
The fact that the decade old exploits needed physical access is irrelevant to this exploit which the article/video clearly states and shows is NOT necessary.
the video even explains that the first time these guys did this to his car (years ago) they did need physical access - they were in the car with him while they did the hack. They use that point to explicitly note that this time they were miles away.
The video states that there was nothing done to the vehicle prior to the test. It's an internet connected computer, it has a specific address. Whether that's done via hacking the Uconnect servers that then relay commands to the car or by connecting directly to the car is really besides the point.
Obviously the former is much easier to close, but since the 'fix' is a USB delivered patch me thinks they are directly connecting to the vehicle.
They aren't vague, it's the defined system by which the car connects to the internet, Uconnect. They accessed that over the internet from 10 miles away and controlled the car. This is no different than them using a buffer overflow exploit to gain remote access to a web server.
It's a perfect example of why encryption back doors are a fools errand. I'm sure it would be nice to stop a criminal who stole your car by turning off the engine...but that opens up the ability to remotely turn off the engine that could be used by anyone gaining the appropriate access. You can't make remote connections 'secure', only levels of security that come with risks.
Just verified PrivateInternetAccess is not leaking IPv6 according to the link in the article comments. The PIA client also has a 'disable IPv6 during VPN' option that I have enabled
His Op-Ed doesn't mention nuclear even once. Going full renewable in 35 years is one hell of a goal to shoot for. We have all the renewable energy we will ever need available but we don't currently have any way to store it in a grid scale type of way - and he only mentions storage once.
Nuclear isn't clean by any stretch, but it is 'clean air' which is what we probably need most right now. I'd love to see full renewable but a more reasonable plan would be nuclear in the short (30-50) year term while renewable/storage becomes grid capable.
To be fair, in at least one case the NSA intercepted a Cisco router in transit and modified it. Even took pictures of the work (with obligatory obscuring of faces) but they didn't obscure the big bold CISCO logo on the box.
Most means of energy 'production' aren't capable of what this system (or any similar one) needs. It's massive, almost instantaneous draw of loads of power followed by zero. Any nuclear reactor capable of that much instant power isn't going to ramp down between shots...so what do you do with that power in the mean time?
All of these systems are going to be using some sort of energy storage and quick delivery...that's entirely different than the production of the energy. Capacitors or supersized batteries are likely what will actually be used to supply the energy to the catapult.
Not the case here. He did something of his own free will. What you're thinking of is government compelling testimony against yourself.
It's why your past writings aren't excluded as 'self-incrimination'. You did them willingly so are viable evidence; the gov't didn't make you create them.
Read the article. It expressly states the gov't does NOT need to inform you about an investigation to charge with deleting data relevant to that investigation. No clue how that is supposed to work other than a slam dunk conviction.
If a business has a planned policy to delete data it's entirely legal, up until the point at which they are informed to keep anything relevant. Enron wasn't following any plan but simply deleting anything they could find.
My company email is deleted after 60 days by default, even as a gov't contractor. Once we're notified to preserve then the rules change.
To me the big thing in the article is they can claim that even if you didn't know about an investigation and hadn't been ordered to preserve, they could still charge you with destruction of evidence. That's simply an astounding assertion. "You must follow orders you haven't been given" How does that work exactly?
Cosby was just a performer. There's no specific power in that. Hastert was 2nd in line to the most powerful job in the world and in control of one of the most influential bodies in the world.
When you are that important, it changes one's perspective and judgement...not always for the better.
Surely guys at his level have lawyers on retainer to do that for them.
And just as surely, guys at his level just *know better* and hide things from their lawyers. When your entire career is because of your reputation, people will stop at next to nothing to attempt to protect that.
apparently there is a non-GPS version available as well. As for why they'd need anything to track miles driven when the odometer already exists, I can't explain.
doesn't reflect if it was driven on private roads or out of state.
Neither does a gas tax so no harm done. By switching *every* state to this, the in a different state issues wash. My home state gets my mileage tax (and a separate federal one too...just like the gas tax) so everybody is still paying basically the same tax they were before but it might very slightly change to whom that tax is paid.
They already are taxed significantly more than cars by nature of their much higher gas usage so there's no difference other than implementation of that tax.
The tax needs to be indexed by the vehicle make and model. Heavy vehicles do more damage so the tax rate on them would be higher...just as it is now as heavy vehicles generally consume more gas.
Slashdot Mirror
Uh, you didn't hear the story about the guy who controlled the the plane he was on via the wifi? Caused it to climb and descend? Got a nice visit from the FBI?
The fact that the decade old exploits needed physical access is irrelevant to this exploit which the article/video clearly states and shows is NOT necessary.
the video even explains that the first time these guys did this to his car (years ago) they did need physical access - they were in the car with him while they did the hack. They use that point to explicitly note that this time they were miles away.
this link has some more technical details linky
The video states that there was nothing done to the vehicle prior to the test. It's an internet connected computer, it has a specific address. Whether that's done via hacking the Uconnect servers that then relay commands to the car or by connecting directly to the car is really besides the point.
Obviously the former is much easier to close, but since the 'fix' is a USB delivered patch me thinks they are directly connecting to the vehicle.
They aren't vague, it's the defined system by which the car connects to the internet, Uconnect. They accessed that over the internet from 10 miles away and controlled the car. This is no different than them using a buffer overflow exploit to gain remote access to a web server.
It's a perfect example of why encryption back doors are a fools errand. I'm sure it would be nice to stop a criminal who stole your car by turning off the engine...but that opens up the ability to remotely turn off the engine that could be used by anyone gaining the appropriate access. You can't make remote connections 'secure', only levels of security that come with risks.
Just verified PrivateInternetAccess is not leaking IPv6 according to the link in the article comments. The PIA client also has a 'disable IPv6 during VPN' option that I have enabled
If you're saying natural gas is our 'bridge' between FF and clean energy...you might want to check your definitions.
Solar is great except at night. How does Australia power itself when the sun goes down?
His Op-Ed doesn't mention nuclear even once. Going full renewable in 35 years is one hell of a goal to shoot for. We have all the renewable energy we will ever need available but we don't currently have any way to store it in a grid scale type of way - and he only mentions storage once.
Nuclear isn't clean by any stretch, but it is 'clean air' which is what we probably need most right now. I'd love to see full renewable but a more reasonable plan would be nuclear in the short (30-50) year term while renewable/storage becomes grid capable.
Are you seriously suggesting that a government that is increasing it's military, economy, and territorial aspirations is something to not fear?
Indeed. this is why the rest of the world is pulling back from the US. Or did you mean China...
To be fair, in at least one case the NSA intercepted a Cisco router in transit and modified it. Even took pictures of the work (with obligatory obscuring of faces) but they didn't obscure the big bold CISCO logo on the box.
How do you think that made Cisco customers feel?
Most means of energy 'production' aren't capable of what this system (or any similar one) needs. It's massive, almost instantaneous draw of loads of power followed by zero. Any nuclear reactor capable of that much instant power isn't going to ramp down between shots...so what do you do with that power in the mean time?
All of these systems are going to be using some sort of energy storage and quick delivery...that's entirely different than the production of the energy. Capacitors or supersized batteries are likely what will actually be used to supply the energy to the catapult.
Read the article. They already don't have to inform you you're under investigation to charge you with deleting records they later tell you they want.
It should be fiction, but that's the current procedure apparently.
Where do I send the bill for all the backup tapes I'll need to buy to meet this requirement?
Actually they send you the bill. It's usually referred to as 'Taxes'
Not the case here. He did something of his own free will. What you're thinking of is government compelling testimony against yourself.
It's why your past writings aren't excluded as 'self-incrimination'. You did them willingly so are viable evidence; the gov't didn't make you create them.
Read the article. It expressly states the gov't does NOT need to inform you about an investigation to charge with deleting data relevant to that investigation. No clue how that is supposed to work other than a slam dunk conviction.
If a business has a planned policy to delete data it's entirely legal, up until the point at which they are informed to keep anything relevant. Enron wasn't following any plan but simply deleting anything they could find.
My company email is deleted after 60 days by default, even as a gov't contractor. Once we're notified to preserve then the rules change.
To me the big thing in the article is they can claim that even if you didn't know about an investigation and hadn't been ordered to preserve, they could still charge you with destruction of evidence. That's simply an astounding assertion. "You must follow orders you haven't been given" How does that work exactly?
depends how you count. The 'line' to replace the President starts with the VP then the Speaker...so second in line.
:)
But thanks for being pedantic
Cosby was just a performer. There's no specific power in that. Hastert was 2nd in line to the most powerful job in the world and in control of one of the most influential bodies in the world.
When you are that important, it changes one's perspective and judgement...not always for the better.
Surely guys at his level have lawyers on retainer to do that for them.
And just as surely, guys at his level just *know better* and hide things from their lawyers. When your entire career is because of your reputation, people will stop at next to nothing to attempt to protect that.
To be fair, Rand Paul is an idiot. Broken clocks are right about as often as he is.
If he were truly libertarian, I'd at least respect that...but he's not.
Again, so it's undertaxed now and would be undertaxed under this new plan. How is it different?
apparently there is a non-GPS version available as well. As for why they'd need anything to track miles driven when the odometer already exists, I can't explain.
doesn't reflect if it was driven on private roads or out of state.
Neither does a gas tax so no harm done. By switching *every* state to this, the in a different state issues wash. My home state gets my mileage tax (and a separate federal one too...just like the gas tax) so everybody is still paying basically the same tax they were before but it might very slightly change to whom that tax is paid.
It's a non-issue.
They already are taxed significantly more than cars by nature of their much higher gas usage so there's no difference other than implementation of that tax.
The tax needs to be indexed by the vehicle make and model. Heavy vehicles do more damage so the tax rate on them would be higher...just as it is now as heavy vehicles generally consume more gas.