Oh god, here come the douche bag linux comments. If you can't secure a windows box enough to stop this sort of thing then yes, you might want to use an alternate OS. It ain't Windows' fault.
Actually it is window's fault that it's insecure by design. Sure you can work around the problems but it's not 100% effective. Adobe also deserves some of the blame and their flash nightmare is more or less the same on all OS's.
From who? And for what? Why would anyone think their data is so important that anyone else would want it and that it needs encrypting?
I think my bank account numbers and banking passwords should be kept secret.
I also have a duty to protect any passwords or authentication keys I was trusted with to other people's systems. In fact that one is a condition of employment.
Sure that is funny, but that comic isn't as true as you think. The only people who will beat you until you give up the key are those that a) can get away with it, b) know that you have what they want. Criminals who steal hard drives, etc. aren't going to go breaking legs for the encryption keys because they don't know whats on the disk and would likely goto jail for it. Even government agents would have to know that you have what they're looking for, and in the US they aren't likely to be torturing you unless you're actually important. They might put you in jail however.
Government agents won't torture you themselves, they will convict you for obstructing their investigation and lock you up for many years with a bunch of violent people. This applies to anyone who doesn't willingly hand over their encryption keys. Most likely it also applies to people who really have forgotten or lost their encryption keys.
Encryption is only protection from unskilled thieves, and agencies who don't want you to know they are watching.
I dated her in high school. She was the cross-eyed blonde who had a reputation for being easy. She wasn't for me.
Seriously, friend. Can you tell me what a "pam stack" is? I'm having trouble understanding the google results. I'm half a moron, so if you could be gentle, I'd appreciate it.
Ok, Your question got answered already.
I thought people on here would know what PAM was, it's a pretty fundamental part of a lot of UNIX's including Linux. I believe even FreeBSD uses it now.
Homework: Read up on Pluggable Authentication Modules. Extra Credit: Write a PAM module to log entered usernames and add it to the right part of the PAM stack so it actually works without trashing your authentication.
GNOME 2 or KDE 3.x with compiz were very close to the ideal desktop. If GNOME would have made 2.x's yelp help browser startup faster, it would have nearly been a perfect "minimal" desktop. KDE 3.x was a little further away but was still close to a perfect "power user" desktop. Now we are stuck with two less than optimal desktops that, despite the goal of being easier to use, seem more confusing for beginners. Devs MUST learn that past some point of complexity, evolutionary change is the only way to go.
KDE 3 was basically finished. It got as good as it could possibly get. At that point it had a bunch of enthusiastic developers who wanted to code but didn't have anything worth doing. They kept coding anyway and replaced sensible stuff with less sensible stuff, they kept braking things and turned a good product into an ugly mess.
This happens to software sometimes, nobody tells the developers that they have finished and it's time to stop.
so you enjoy socializing. so you are a fan of people. so you're still a hypocrite based on what you wrote above
So what if he is a hypocrite? It's his business. You don't have to prove you are better or smarter than him because in all likelihood you are not.
look, either become a monk or a hermit, or admit that your stated beliefs and your actions are out of sync
Look, you think you're basically a good person, but you don't give all your money to charity. Either admit you are Hitler and want everyone to die, or admin that your stated beliefs and your actions are out of sync.
First they came for the smokers, and I didn't speak out because I wasn't a smoker.
Then they came for the obese, and I didn't speak out because I wasn't obese.
Then they came for the hedonists, and I didn't speak out because I wasn't a hedonist.
Then they came for me and there was no one left to speak out for me.
Heroin and crack are strongly discouraged by most governments. Why should smoking, which is just another chemical addiction, be treated any differently? I'm not saying we should shoot the smokers just made it as easy as possible for them to get past their addiction like we try to do with people that abuse other substances.
Most obese people never made a choice to be obese, their lifestyle made them that way. To a large extent their lifestyle is encouraged by the society they live in. They should be helped as much as possible as well.
I remember buying a TGI Friday's back of chips from a vending machine. The ingredients claimed it contained 6 servings. Why are they allowed to get away with shit like this? If the fat / sugar / calories sounds too high they increase the number of servings in a packet.
If retailers were forced to separately package each serving (or perhaps be liable for a serving tax), it might make them think a bit harder about the packet size and calorie content in the first place.
I totally agree with that. I see totally unreasonable serving sizes on packets all the time. Serving numbers should be realistic or they should not be on the packet at all. Using them as a way to deceive people is a scam and should be stamped on.
And now you want us to stop building houses and live in tents, never mind that the house that caught fire was made of wood and the houses being built today are made of brick.
Nooooooooo... Some might be saying that but I'm not.
I'm saying it's a huge mess. I'm not saying it's a reason to give up with nuclear power.
This is part of the planned failure mode of the reactor.
Like crumple zones are part of the planned failure mode of cars. Just because it could have been very much worse doesn't mean this isn't a huge clusterfuck.
I'm actually very happy that Nokia went with windows pos 7 instead of Android. We needed a good patsy to keep the anti-trust hounds at bay as Android continues it's meteoric rise to the top. And patsy's in the mobile phone business don't come much bigger than NOK.
I don't want google's kool-aid just like I don't want apple's kool-aid. I want a truly unlocked device that serves me, not a pocket spy loyal to some faceless corporation and who knows what faceless government agencies.
don't know that it makes much difference now. Google is in bed with the NSA and therefore tainted. gmail is tainted, android is tainted. MS is tainted, smart phones are really just tools to track your every movement, and indoctrinate a culture of tweeting and blogging away your location, lifestyle, vices. The smart phones are Stalin's wet dream. In the future people may revert back to simple phones - communicators - if there is a future lol
You sound like a paranoid nutcase. The terrifying thing is that everything you say is correct.
correction: script kiddie;) although securing against someone with physical access is impossible without full disk encryption
Even hard disk encryption sn't enough. He could have plugged in a cheat keylogger and waited or used a fireware memory reader, or any of a large number of other attacks.
I remember when he originally posted that video. about all I could do was/facedesk multiple times. I couldn't believe how someone of his obvious intelligence could be so incredibly stupid (not about the video or even posting it, but the fact that he actually endangered lives by his actions). It is people like him who give governments cause to intrude into our lives as much as they do.
I can't believe he thought they would not find him and call the cops. He was cracking computers at the place where he worked. It was a freaking hospital with computers full of personal data. The guy intended to launch a DOS from hospital computers leaving a clear trail of network traffic back to him.
The guy was a dumbarse, no wonder he was working as a security guy and not in IT. In my experience if anything goes missing, gets broken, or gets unexpectedly altered overnight the security staff did it. Did I tell you about the time the security guy at my last job was caught stealing laptops? Or the time I got in to find some retard had scratched the crap out of the front of a server with a screwdriver trying to remove a disk when simply pulling the disk handle lightly would have done? He didn't even manage to get the disk out.
Security! Bah! I'd trust them when they know that their every move is recored on video tape.
One month, that is how long I give it before this gets used to block sites for non-piracy reasons. Like a site that talks about BitTorrent community activity or a competitor who infringes a patent for two random examples. Make my words, this will be used for political suppression even if it isn't the government doing it.
First they come for the pedos and no-one defends them.
Second they come for the movie pirates and few people defend them.
Then they come for anyone who expresses a non-approved opinion and we are all buggered.
Slashdot Mirror
Not obvious.
Because it may reduce heat / sound energy emanating from your shoe by 1Watt.
Things can be obvious even if they are not true.
Oh god, here come the douche bag linux comments. If you can't secure a windows box enough to stop this sort of thing then yes, you might want to use an alternate OS. It ain't Windows' fault.
Actually it is window's fault that it's insecure by design. Sure you can work around the problems but it's not 100% effective. Adobe also deserves some of the blame and their flash nightmare is more or less the same on all OS's.
Are Computer Crooks Renting Out Your PC?
No, I don't run windows and I set it up right.
If you wear these walking will become 1 watt harder.
From who? And for what? Why would anyone think their data is so important that anyone else would want it and that it needs encrypting?
I think my bank account numbers and banking passwords should be kept secret.
I also have a duty to protect any passwords or authentication keys I was trusted with to other people's systems. In fact that one is a condition of employment.
Sure that is funny, but that comic isn't as true as you think. The only people who will beat you until you give up the key are those that a) can get away with it, b) know that you have what they want. Criminals who steal hard drives, etc. aren't going to go breaking legs for the encryption keys because they don't know whats on the disk and would likely goto jail for it. Even government agents would have to know that you have what they're looking for, and in the US they aren't likely to be torturing you unless you're actually important. They might put you in jail however.
Government agents won't torture you themselves, they will convict you for obstructing their investigation and lock you up for many years with a bunch of violent people. This applies to anyone who doesn't willingly hand over their encryption keys. Most likely it also applies to people who really have forgotten or lost their encryption keys.
Encryption is only protection from unskilled thieves, and agencies who don't want you to know they are watching.
I dated her in high school. She was the cross-eyed blonde who had a reputation for being easy. She wasn't for me.
Seriously, friend. Can you tell me what a "pam stack" is? I'm having trouble understanding the google results. I'm half a moron, so if you could be gentle, I'd appreciate it.
Ok, Your question got answered already.
I thought people on here would know what PAM was, it's a pretty fundamental part of a lot of UNIX's including Linux. I believe even FreeBSD uses it now.
Homework: Read up on Pluggable Authentication Modules.
Extra Credit: Write a PAM module to log entered usernames and add it to the right part of the PAM stack so it actually works without trashing your authentication.
Doesn't this make most operating systems illegal? Who doesn't store the password as a hashed copy?
You can change the pam stack to use unencrypted passwords on most unix OS's. It's not difficult. Of course it's nuts and don't do it.
KDE 3 was forked, and the fork is called Trinity. So, if you want your finished DE back, just search for it.
Thanks! I never heard of that and will certainly try it out.
It should be perfect for the guys I work with who are so used to KDE 3 I'm scared to even try KDE 4 on them.
GNOME 2 or KDE 3.x with compiz were very close to the ideal desktop. If GNOME would have made 2.x's yelp help browser startup faster, it would have nearly been a perfect "minimal" desktop. KDE 3.x was a little further away but was still close to a perfect "power user" desktop. Now we are stuck with two less than optimal desktops that, despite the goal of being easier to use, seem more confusing for beginners. Devs MUST learn that past some point of complexity, evolutionary change is the only way to go.
KDE 3 was basically finished. It got as good as it could possibly get. At that point it had a bunch of enthusiastic developers who wanted to code but didn't have anything worth doing. They kept coding anyway and replaced sensible stuff with less sensible stuff, they kept braking things and turned a good product into an ugly mess.
This happens to software sometimes, nobody tells the developers that they have finished and it's time to stop.
so you enjoy socializing. so you are a fan of people. so you're still a hypocrite based on what you wrote above
So what if he is a hypocrite? It's his business. You don't have to prove you are better or smarter than him because in all likelihood you are not.
look, either become a monk or a hermit, or admit that your stated beliefs and your actions are out of sync
Look, you think you're basically a good person, but you don't give all your money to charity. Either admit you are Hitler and want everyone to die, or admin that your stated beliefs and your actions are out of sync.
First they came for the smokers,
and I didn't speak out because I wasn't a smoker.
Then they came for the obese,
and I didn't speak out because I wasn't obese.
Then they came for the hedonists,
and I didn't speak out because I wasn't a hedonist.
Then they came for me
and there was no one left to speak out for me.
Heroin and crack are strongly discouraged by most governments. Why should smoking, which is just another chemical addiction, be treated any differently? I'm not saying we should shoot the smokers just made it as easy as possible for them to get past their addiction like we try to do with people that abuse other substances.
Most obese people never made a choice to be obese, their lifestyle made them that way. To a large extent their lifestyle is encouraged by the society they live in. They should be helped as much as possible as well.
I remember buying a TGI Friday's back of chips from a vending machine. The ingredients claimed it contained 6 servings. Why are they allowed to get away with shit like this? If the fat / sugar / calories sounds too high they increase the number of servings in a packet.
If retailers were forced to separately package each serving (or perhaps be liable for a serving tax), it might make them think a bit harder about the packet size and calorie content in the first place.
I totally agree with that. I see totally unreasonable serving sizes on packets all the time. Serving numbers should be realistic or they should not be on the packet at all. Using them as a way to deceive people is a scam and should be stamped on.
And now you want us to stop building houses and live in tents, never mind that the house that caught fire was made of wood and the houses being built today are made of brick.
Nooooooooo... Some might be saying that but I'm not.
I'm saying it's a huge mess. I'm not saying it's a reason to give up with nuclear power.
This is part of the planned failure mode of the reactor.
Like crumple zones are part of the planned failure mode of cars. Just because it could have been very much worse doesn't mean this isn't a huge clusterfuck.
I'm actually very happy that Nokia went with windows pos 7 instead of Android. We needed a good patsy to keep the anti-trust hounds at bay as Android continues it's meteoric rise to the top. And patsy's in the mobile phone business don't come much bigger than NOK.
I don't want google's kool-aid just like I don't want apple's kool-aid. I want a truly unlocked device that serves me, not a pocket spy loyal to some faceless corporation and who knows what faceless government agencies.
don't know that it makes much difference now. Google is in bed with the NSA and therefore tainted. gmail is tainted, android is tainted. MS is tainted, smart phones are really just tools to track your every movement, and indoctrinate a culture of tweeting and blogging away your location, lifestyle, vices. The smart phones are Stalin's wet dream. In the future people may revert back to simple phones - communicators - if there is a future lol
You sound like a paranoid nutcase. The terrifying thing is that everything you say is correct.
If you want my Symbian phone, Nokia, you'll have to pry it out of my cold, dead hands!
No. They will wait until it breaks and refuse to sell you a replacement.
Hehe, have you tried meego yet?
Yes, it works well and it's WAY more configurable than any other locked-down nonsense phone OS.
Why Nokia? Why? Do the management like Microsoft money more than they like staying in business?
correction: script kiddie ;) although securing against someone with physical access is impossible without full disk encryption
Even hard disk encryption sn't enough. He could have plugged in a cheat keylogger and waited or used a fireware memory reader, or any of a large number of other attacks.
I remember when he originally posted that video. about all I could do was /facedesk multiple times. I couldn't believe how someone of his obvious intelligence could be so incredibly stupid (not about the video or even posting it, but the fact that he actually endangered lives by his actions). It is people like him who give governments cause to intrude into our lives as much as they do.
I can't believe he thought they would not find him and call the cops. He was cracking computers at the place where he worked. It was a freaking hospital with computers full of personal data. The guy intended to launch a DOS from hospital computers leaving a clear trail of network traffic back to him.
The guy was a dumbarse, no wonder he was working as a security guy and not in IT. In my experience if anything goes missing, gets broken, or gets unexpectedly altered overnight the security staff did it. Did I tell you about the time the security guy at my last job was caught stealing laptops? Or the time I got in to find some retard had scratched the crap out of the front of a server with a screwdriver trying to remove a disk when simply pulling the disk handle lightly would have done? He didn't even manage to get the disk out.
Security! Bah! I'd trust them when they know that their every move is recored on video tape.
they should probably forbid the use of ssh too
Not-viable. Like any TCP traffic it can be tunneled over anything.
One month, that is how long I give it before this gets used to block sites for non-piracy reasons. Like a site that talks about BitTorrent community activity or a competitor who infringes a patent for two random examples. Make my words, this will be used for political suppression even if it isn't the government doing it.
First they come for the pedos and no-one defends them.
Second they come for the movie pirates and few people defend them.
Then they come for anyone who expresses a non-approved opinion and we are all buggered.
Caller stress doesn't correlate well with how important the call is. It correlates with how closely involved the caller is in the incident.
Besides a lot of people will panic like crazy at, say, a small car accident where no-one was hurt.