The scary thing is that it took so long for them to analyze it, and they still don't know what it is. It's hard to believe there isn't a system in place for rapidly identifying airborne contaminants.
The science goes where the money is--identifying the most dangerous things first, like radiation, anthrax, and 'in soviet russia' jokes.
End of an era? Yes. But the era that has ended is not just the shuttle program. It is the end of the U.S. Space program. The United States will never be prominent in space again.
I recently read an article that explained how DropBox was perfect to share your KeePass database among all your devices. I've also heard of BitCoin wallets.
Well, your KeePass database is protected by its own encryption, and its security depends on the password that you choose for it. Not something I'd want on the Internet, sure, but it's not completely naked. If you use the key file for authentication, along with a password, and don't replicate the key file, you're probably okay.
I still believe that these 'talking' movies is one of those things that is interesting for a while, and then you move on.
(a few years later)
I still believe that these 'color' movies is one of those things that is interesting for a while, and then you move on.
(2011)
Dunno about that. I still believe that 3D is one of those things that is interesting for a while, and then you move on. The only thing that remains for me is a headache.
Do you really believe that Facebook has 600 million users? Or is it more like 600 million unique login names?
Because I personally know several people with several dozen accounts that they use to game the games that require you to have scads of social acquaintances willing to play the games along with you.
I'd put FB's real usership at 50-150 million. The rest are fake.
You're assuming that everyone creates duplicate accounts. I don't know a single person who does. I think that there are at least 400 million real accounts....And I have as much evidence for my position, as you have for yours.
On windows, you can authenticate using the password hash instead of the plain text password (ie you can just retrieve the hash from the disk, no need to crack it), does doing so still provide access to the encrypted data?
In order to do what you describe, you'd have to authenticate across the network...which means you'd be connecting from a machine that doesn't have the private key on it. No dice.
If resetting the password destroys the private key, how is this performed? IS the destruction of the key a separate process which could be bypassed by resetting the password using a livecd, or is it destroyed because the privkey is encrypted using the password and thus can no longer be decrypted by the newly changed password?
The private key is stored in the windows credential manager, which is encrypted using the password. Changing the password when you're not logged on renders the credential manager unreadable.
Even assuming that this doesnt work, windows password encryption is much weaker than modern unix systems (especially if lanman is still enabled) so there is still a high possibility of simply cracking the password and using it.
Lanman isn't enabled by default in Windows 7. An offline attack using a rainbow table would have the highest chance of success.
Isn't EFS just using your password hash as the key, or at least using that hash as the key to encrypt the actual certificate... In any case, it's supposed to be pretty weak and quite easy to retrieve data from.
Also, the reason most windows users go for full disk encryption instead of user level encryption is because of just how many places on disk windows could store personal information, whereas on a unix system it pretty much only goes in $HOME,/tmp (which you can put in ram) and swap (which you can encrypt using a random key at bootup)
It's not quite that bad, most of the weaknesses were in Windows 2000. Wikipedia has a good article on it. Basically, you need to log on as the user to decrypt the file. Resetting the user password destroys the private key, so that doesn't work. Just be sure that the administrator account is not the data recovery agent--just back up your key/cert to a CD or USB drive.
It really irritates the heck out of me - as freelancer I don't use most of the specific Enterprise features, nor the Ultimate features (for Vista at least) but whoever thought Bitlocker should be left out of the business edition is an idiot. All freelancers who tote around their laptop all day to customers could use it.
I agree that it would be nice to include bitlocker, but you can still use EFS to encrypt your documents in Win 7 Pro. just be sure to back up your personal cert.
Same way it read to me. I'm imagining Bilbo climbing out of the well with a shotgun. "This! is my boomstick!"
A hobbit with a 'tude? You know that's unheard of.
This makes sense only if you ignore the italicization of The Hobbit.
In usual convention, italicization indicates a movie or book title (among others), so if you read it as the book The Hobbit started shooting... you have an overactive imagination.
Buzzkill.
Also, on my iGoogle RSS feed, there is no formatting. So there!
You have to draw the line somewhere, but the whole notion that online retailers insist upon saving your credit information is absurd. Beyond the tendency to overspend, there's also the issue of all of a sudden you have to worry about somebody stealing the details and running up large bills with stolen credit card details.
Retailers need to store credit cards to issue refunds on returns. After that time period, I think they should delete the info. In reality, it can be tricky to clean up all references to data.
And that article was a dupe from the 2001 when everyone started blocking mail from Korea because it was mostly spam. The US was the origin of the first spam, and has constantly been the biggest producer of spam since then, no matter what people's perceptions are. Currently Turkey seems to be on the up, but you can bet that it is still well behind the US.
The US is also the origin of the first non-spam email, and has constantly been the biggest producer of non-spam emails.
Simple fact of the matter is, the US has the most computers, and the most infected computers.
[From the summary]DHS's areas of interest include software assurance, enterprise security metrics, usable security, as well as the challenges posed by insider threats
Call me naive but is sounds to me like DHS wants to stick around a while. Or am I still too new here?
What made you think the DHS was ever designed to be a temporary agency? It's a permanent restructuring of the government.
Looks to me like they want to expand their scope--that's the "new" part.
First, this seems to be the work of a TV broadcaster, not a nation (certainly not a communist one...)... does anyone here really think "non-commie" media are any better?
The difference is that in China, that TV broadcaster IS the government, or at least highly controlled by them.
The American media are stupid all by themselves.
But a spelling checker is not going to handle that--firefox only fixed a single word (unable). So it's not the doom and gloom scenario you are imagining.
This is just lowering the bar so that dumb people feel smart!
This does 2 things:
-Makes US High School Diplomas worthless (Hey, if the illiterate can get through HS, why would I want to hire one with a HS Diploma?)
-Gives a false sense of confidence when they go to college.(Results: more drop outs)
I fail to see how illiterate people would benefit from a spelling checker. It's not a text to speech program--they would still have to string words together to form ideas, and write a semblance of the word for the spelling checker to offer the correct spelling.
And if the colleges allow spelling checkers--and any class that lets you type your paper in your dorm room does--then college performance won't be impacted.
It's not pointless, but it is annoying.
I take it that you've never used KMS before. As someone who has deployed both XP with a VLK and 7 with KMS, I have to say that KMS is the one thing that Microsoft has finally gotten right about license management. You don't even put keys in your images or scripted installs anymore. It's completely automatic.
Windows KMS IS nice--the problem is that you don't use it for Office 2010, you have to use the "Volume Activation Management Tool". Which isn't automatic, it's annoying.
Slashdot Mirror
What about the mysterious hydrocarbon odor wafting through San Diego lately?
http://www.signonsandiego.com/news/2011/aug/19/tests-odiferous-air-come-negative/
The scary thing is that it took so long for them to analyze it, and they still don't know what it is. It's hard to believe there isn't a system in place for rapidly identifying airborne contaminants.
The science goes where the money is--identifying the most dangerous things first, like radiation, anthrax, and 'in soviet russia' jokes.
10Mbps is not an entirely unusable speed? That's .... Fast Ethernet!
10Mbps is Ethernet, 100Mbps is Fast Ethernet.
End of an era? Yes. But the era that has ended is not just the shuttle program. It is the end of the U.S. Space program. The United States will never be prominent in space again.
And we'll never need more than 640k of RAM.
I recently read an article that explained how DropBox was perfect to share your KeePass database among all your devices. I've also heard of BitCoin wallets.
Well, your KeePass database is protected by its own encryption, and its security depends on the password that you choose for it. Not something I'd want on the Internet, sure, but it's not completely naked. If you use the key file for authentication, along with a password, and don't replicate the key file, you're probably okay.
I'm not surprised either. EA's Battlefield 2 featured soldiers who were very obviously Chinese and generic "arab".
Are you sure they are Chinese, and not Japanese/Korean/Vietnamese/Thai?
Anyone else notice their advisories are against competitors? Yeah... I call BS
Are you calling BS because you do not think that other companies besides MS have vulnerabilities in their products?
Or are you calling BS because you believe that MS should keep quiet about vulnerabilities they find in products other than their own?
And yes...I am calling BS on your calling BS.
It all depends though, does dropbox keep a copy of every file?
Dropbox is a cloud storage service, that syncs a folder between your computer(s) and a cloud location. So yes, they do have a copy of every file.
You could have answered your own question in about a minute.
Gee I'd be doing really well if it was once a week.
Really? I get it every 2 or 3 days, usually. If you're not getting it very often, perhaps you should focus more on her needs...
I still believe that these 'talking' movies is one of those things that is interesting for a while, and then you move on.
(a few years later)
I still believe that these 'color' movies is one of those things that is interesting for a while, and then you move on.
(2011)
Dunno about that. I still believe that 3D is one of those things that is interesting for a while, and then you move on. The only thing that remains for me is a headache.
Domo Arigato, Mr. hardened-against-radiation Roboto!
Do you really believe that Facebook has 600 million users? Or is it more like 600 million unique login names?
Because I personally know several people with several dozen accounts that they use to game the games that require you to have scads of social acquaintances willing to play the games along with you.
I'd put FB's real usership at 50-150 million. The rest are fake.
You're assuming that everyone creates duplicate accounts. I don't know a single person who does. I think that there are at least 400 million real accounts. ...And I have as much evidence for my position, as you have for yours.
On windows, you can authenticate using the password hash instead of the plain text password (ie you can just retrieve the hash from the disk, no need to crack it), does doing so still provide access to the encrypted data?
In order to do what you describe, you'd have to authenticate across the network...which means you'd be connecting from a machine that doesn't have the private key on it. No dice.
If resetting the password destroys the private key, how is this performed? IS the destruction of the key a separate process which could be bypassed by resetting the password using a livecd, or is it destroyed because the privkey is encrypted using the password and thus can no longer be decrypted by the newly changed password?
The private key is stored in the windows credential manager, which is encrypted using the password. Changing the password when you're not logged on renders the credential manager unreadable.
Even assuming that this doesnt work, windows password encryption is much weaker than modern unix systems (especially if lanman is still enabled) so there is still a high possibility of simply cracking the password and using it.
Lanman isn't enabled by default in Windows 7. An offline attack using a rainbow table would have the highest chance of success.
Isn't EFS just using your password hash as the key, or at least using that hash as the key to encrypt the actual certificate... In any case, it's supposed to be pretty weak and quite easy to retrieve data from.
Also, the reason most windows users go for full disk encryption instead of user level encryption is because of just how many places on disk windows could store personal information, whereas on a unix system it pretty much only goes in $HOME, /tmp (which you can put in ram) and swap (which you can encrypt using a random key at bootup)
It's not quite that bad, most of the weaknesses were in Windows 2000. Wikipedia has a good article on it. Basically, you need to log on as the user to decrypt the file. Resetting the user password destroys the private key, so that doesn't work. Just be sure that the administrator account is not the data recovery agent--just back up your key/cert to a CD or USB drive.
Also in the enterprise versions.
It really irritates the heck out of me - as freelancer I don't use most of the specific Enterprise features, nor the Ultimate features (for Vista at least) but whoever thought Bitlocker should be left out of the business edition is an idiot. All freelancers who tote around their laptop all day to customers could use it.
I agree that it would be nice to include bitlocker, but you can still use EFS to encrypt your documents in Win 7 Pro. just be sure to back up your personal cert.
Same way it read to me. I'm imagining Bilbo climbing out of the well with a shotgun. "This! is my boomstick!" A hobbit with a 'tude? You know that's unheard of.
This makes sense only if you ignore the italicization of The Hobbit.
In usual convention, italicization indicates a movie or book title (among others), so if you read it as the book The Hobbit started shooting ... you have an overactive imagination.
Buzzkill. Also, on my iGoogle RSS feed, there is no formatting. So there!
You have to draw the line somewhere, but the whole notion that online retailers insist upon saving your credit information is absurd. Beyond the tendency to overspend, there's also the issue of all of a sudden you have to worry about somebody stealing the details and running up large bills with stolen credit card details.
Retailers need to store credit cards to issue refunds on returns. After that time period, I think they should delete the info. In reality, it can be tricky to clean up all references to data.
And that article was a dupe from the 2001 when everyone started blocking mail from Korea because it was mostly spam. The US was the origin of the first spam, and has constantly been the biggest producer of spam since then, no matter what people's perceptions are. Currently Turkey seems to be on the up, but you can bet that it is still well behind the US.
The US is also the origin of the first non-spam email, and has constantly been the biggest producer of non-spam emails. Simple fact of the matter is, the US has the most computers, and the most infected computers.
Yea except a gram of it will weigh a few million pounds.
I'm almost positive that a gram will always weigh a gram. Did you mean a cubic centimeter?
[From the summary]DHS's areas of interest include software assurance, enterprise security metrics, usable security, as well as the challenges posed by insider threats
Call me naive but is sounds to me like DHS wants to stick around a while. Or am I still too new here?
What made you think the DHS was ever designed to be a temporary agency? It's a permanent restructuring of the government. Looks to me like they want to expand their scope--that's the "new" part.
First, this seems to be the work of a TV broadcaster, not a nation (certainly not a communist one...) ... does anyone here really think "non-commie" media are any better?
The difference is that in China, that TV broadcaster IS the government, or at least highly controlled by them. The American media are stupid all by themselves.
I don't want to be charged with murder, so I'll just post that link, and nothing else.
But a spelling checker is not going to handle that--firefox only fixed a single word (unable). So it's not the doom and gloom scenario you are imagining.
This is just lowering the bar so that dumb people feel smart! This does 2 things: -Makes US High School Diplomas worthless (Hey, if the illiterate can get through HS, why would I want to hire one with a HS Diploma?) -Gives a false sense of confidence when they go to college.(Results: more drop outs)
I fail to see how illiterate people would benefit from a spelling checker. It's not a text to speech program--they would still have to string words together to form ideas, and write a semblance of the word for the spelling checker to offer the correct spelling.
And if the colleges allow spelling checkers--and any class that lets you type your paper in your dorm room does--then college performance won't be impacted.
OGA/WGA/activation is pointless.
It's not pointless, but it is annoying. I take it that you've never used KMS before. As someone who has deployed both XP with a VLK and 7 with KMS, I have to say that KMS is the one thing that Microsoft has finally gotten right about license management. You don't even put keys in your images or scripted installs anymore. It's completely automatic.
Windows KMS IS nice--the problem is that you don't use it for Office 2010, you have to use the "Volume Activation Management Tool". Which isn't automatic, it's annoying.
Must wear Shoes that cover your toes, Skirt or Pants (trousers for those of you in the UK) and a Shirt
So open-toed women’s dress shoes would be a no-no?
A lot of places use this formula:
open-toed != dress