well, my first thought would be that if you are only thinking about using the passport at ONE workstation/checkpoint, you are absolutely correct. However, if you scan the barcode with the key for decryption at the first checkpoint and use a secure network (to transmit the decryption key to other nodes on the network), then the RFID can be read anywhere on this network.
Think about scanning your passport when you check in at the airport, then not having to show ID to get through the metal detector or at customs. There could be good value there.
OTOH, if you are only scanning the passport at the metal detector, then yes, it seems like quite a waste.
You really have to analyze a solution in relation its problem before you can make any judgement as to its utility.
> A box that can get easily 0wned is what people are growing weary of.
Next time i am in CompUSA/Best Buy/Circuit City and hear someone ask for "a box that isn't easily 0wned", I'll agree with you. I find this statement so absurd (in the context of a $500 computer) that I'm ignoring the rest of your post.
I seriously doubt that computer security professionals everywhere are flocking to the $499 mini in droves. Get a clue.
I've been asked to remove my shoes before going through the metal detector on a number of occassions. I always tell them I've taken them through the metal detector many times and that they are fine. They've never harassed me afterwards as long as the detector doesn't go off--although once I forgot to take off my wire framed glasses, then i got to take off my shoes;)
Obviosly 90% of the people posting in this discussion have no practical experience with this subject. The certificate in question is a code-signing certificate. Have you ever bought (or tried to buy) one of those from Verisign? I have and let me tell you--it is a royal pain in the ass. I can say with almost certainty that those certificates that are from a company called "CLICK YES TO CONTINUE" did not come from Verisign.
It took me nearly two weeks to track down all the paperwork to get my code signing certificate (authenticode). The process includes designating two contacts, faxing over several forms (including a valid county business license for the company name on the application) and a notorized agreement of indemification because they weren't able to do 3rd party identity validation on my company (they look your company name up in the white pages and call the number to make sure it exists and that you do indeed work there. My company wasn't in the phone book.) They also try to look you up in D&B. This all came after giving them the $500 for the certificate.
That being said, I don't see how anyone could get away with purchasing a certificate such as described in the article from Verisign--maybe Thawte or another. IMO Verisign is taking some flak here due to/. ignorance.
This just give everybody who's concerned about ICANN's unchecked control even more reasons to learn about and support the Open Root Server Confederation.
dude. i thought the confederates lost?!? Unions rule!
i moved from full-time salary to contract about a year ago, and i must say that i hope i NEVER have another "job" again.
Flexible hours, dont have to worry about getting screwed over on money when the employer needs to "lean" on you (read: when they have projects that go over schedule/budget). now they pay me hourly or per project and i am much better off now.
make sure the pay difference between the salary and contract is pretty significant-given the costs of acquiring health care. don't forget the tax ding that we take being self-employed (damn government).
MOST IMPORTANT--Get you taxes squared away FIRST THING. don't push off saving a bit of your income for your quarterlies and actually sending them in. otherwise you will be really hurting come tax time. I (along with several other contractors i know) got lazy and caught in this trap. and getting a $10k tax bill come april will make anyone bleed.
I'll repeat it just for clarity--GET YOUR TAXES TAKEN CARE OF. DO NOT PUSH THEM OFF. its extremely easy to do and really hurts when the time comes to pay up (april).
it's going to suck 10 years down the road when you buy your uber cool new domain name from someone else (because it was previously registered), only to find that you can't use it for email without spending hours trying to get yourself delisted from half a zillion domain key blacklists.
seriously, this is going to cause a whole new set of problems unless the blacklists are run by the domain registrars (yeah right)
at least with ip blacklists, there is a hierarchy of authority to blame when you get stuck with a bad ip (as i've had happen more than once)
and yes, i monitor *all* of our mailservers against all the major blacklists. and i have my aol feedback loop (what a pain in the...)
there's a distinction between a freedom fighter and a terrorist. terrorists target civilians and generally try to promote "terror" among the general population.
if the hijackings of sept 11th had been on military planes and crashed into military targets (ie..an airforce base), this world would be completely different from how it is now.
Correct me if I am wrong, but I'm pretty sure there are quite a few people on slashdot that are confused as to what this device actually does. It is a load balancer for the connections. What this doesn't mean, you hook a DSL line and a cable line to it and get the sum of the two speeds. What it does mean, is that for outgoing connections, you have seamless integration of two lines for redundancy purposes.
For example: once the two lines are plugged in, when you are surfing around and hit a website, the router automagically picks which connection (DSL/cable) the request goes out on. If one of the connections happen to be down, it picks the one which is not (thus the load balancer part).
One interesting thing to note though. It may actually seem like the sum of the two connections from an application standpoint. Examples being web browsing and ftp'ing.
In web browsing, I know that in IE and Mozilla, you can select the number of outgoing connections that the browser will use in fulfilling a web request. So you could end up getting the http reponse (text-only) from one connection and using the other (seperate outgoing web request) to retrieve the images on that page. In most cases, you would likely speed up graphics heavy pages quite a bit.
In ftp'ing, some of the clients (along with the download managers) allow you to use multiple tcp streams to receive your downloading file. The software has a file to receive which it starts multiple receives going. In theory, you could run say, 1 tcp stream per connection, and be receiving the same file over the two connections independently, but achieving an overall rate equal to the sum of the two speeds.
The whole thing kinda reminds me of the pigeon-hole principle in a wierd sorta way.
But anyway, I imagine a linux/BSD solution to be cheaper (given low-end hardware requirements).
Slashdot Mirror
well, my first thought would be that if you are only thinking about using the passport at ONE workstation/checkpoint, you are absolutely correct. However, if you scan the barcode with the key for decryption at the first checkpoint and use a secure network (to transmit the decryption key to other nodes on the network), then the RFID can be read anywhere on this network.
Think about scanning your passport when you check in at the airport, then not having to show ID to get through the metal detector or at customs. There could be good value there.
OTOH, if you are only scanning the passport at the metal detector, then yes, it seems like quite a waste.
You really have to analyze a solution in relation its problem before you can make any judgement as to its utility.
By definition, if someone bought something from a spam email, was it really spam in the first place?
I would argue no, because it obviously was desired.
> A box that can get easily 0wned is what people are growing weary of. Next time i am in CompUSA/Best Buy/Circuit City and hear someone ask for "a box that isn't easily 0wned", I'll agree with you. I find this statement so absurd (in the context of a $500 computer) that I'm ignoring the rest of your post. I seriously doubt that computer security professionals everywhere are flocking to the $499 mini in droves. Get a clue.
I've been asked to remove my shoes before going through the metal detector on a number of occassions. I always tell them I've taken them through the metal detector many times and that they are fine. They've never harassed me afterwards as long as the detector doesn't go off--although once I forgot to take off my wire framed glasses, then i got to take off my shoes ;)
Obviosly 90% of the people posting in this discussion have no practical experience with this subject. The certificate in question is a code-signing certificate. Have you ever bought (or tried to buy) one of those from Verisign? I have and let me tell you--it is a royal pain in the ass. I can say with almost certainty that those certificates that are from a company called "CLICK YES TO CONTINUE" did not come from Verisign.
/. ignorance.
It took me nearly two weeks to track down all the paperwork to get my code signing certificate (authenticode). The process includes designating two contacts, faxing over several forms (including a valid county business license for the company name on the application) and a notorized agreement of indemification because they weren't able to do 3rd party identity validation on my company (they look your company name up in the white pages and call the number to make sure it exists and that you do indeed work there. My company wasn't in the phone book.) They also try to look you up in D&B. This all came after giving them the $500 for the certificate.
That being said, I don't see how anyone could get away with purchasing a certificate such as described in the article from Verisign--maybe Thawte or another. IMO Verisign is taking some flak here due to
This just give everybody who's concerned about ICANN's unchecked control even more reasons to learn about and support the Open Root Server Confederation.
dude. i thought the confederates lost?!? Unions rule!
i moved from full-time salary to contract about a year ago, and i must say that i hope i NEVER have another "job" again. Flexible hours, dont have to worry about getting screwed over on money when the employer needs to "lean" on you (read: when they have projects that go over schedule/budget). now they pay me hourly or per project and i am much better off now. make sure the pay difference between the salary and contract is pretty significant-given the costs of acquiring health care. don't forget the tax ding that we take being self-employed (damn government). MOST IMPORTANT--Get you taxes squared away FIRST THING. don't push off saving a bit of your income for your quarterlies and actually sending them in. otherwise you will be really hurting come tax time. I (along with several other contractors i know) got lazy and caught in this trap. and getting a $10k tax bill come april will make anyone bleed. I'll repeat it just for clarity--GET YOUR TAXES TAKEN CARE OF. DO NOT PUSH THEM OFF. its extremely easy to do and really hurts when the time comes to pay up (april).
it's going to suck 10 years down the road when you buy your uber cool new domain name from someone else (because it was previously registered), only to find that you can't use it for email without spending hours trying to get yourself delisted from half a zillion domain key blacklists. seriously, this is going to cause a whole new set of problems unless the blacklists are run by the domain registrars (yeah right) at least with ip blacklists, there is a hierarchy of authority to blame when you get stuck with a bad ip (as i've had happen more than once) and yes, i monitor *all* of our mailservers against all the major blacklists. and i have my aol feedback loop (what a pain in the ...)
there's a distinction between a freedom fighter and a terrorist. terrorists target civilians and generally try to promote "terror" among the general population.
if the hijackings of sept 11th had been on military planes and crashed into military targets (ie..an airforce base), this world would be completely different from how it is now.
Too bad their webserver wasnt emulating a beowolf cluster of linux servers!
Damn! I thought Overpeer was a new dj company with some kickass remixes (I burned quite the collection onto cd yesterday).
Oh well, hopefully someone won't flood Kazaa with Overpeer fakes! Now that would suck!
E
i wouldnt be caught dead at the top of the hierarchy. it would make for quite the legal target these days...
E
who is this masked marvel? and where does he get this kind of money? and why is he such a troll?
Correct me if I am wrong, but I'm pretty sure there are quite a few people on slashdot that are confused as to what this device actually does. It is a load balancer for the connections. What this doesn't mean, you hook a DSL line and a cable line to it and get the sum of the two speeds. What it does mean, is that for outgoing connections, you have seamless integration of two lines for redundancy purposes.
For example: once the two lines are plugged in, when you are surfing around and hit a website, the router automagically picks which connection (DSL/cable) the request goes out on. If one of the connections happen to be down, it picks the one which is not (thus the load balancer part).
One interesting thing to note though. It may actually seem like the sum of the two connections from an application standpoint. Examples being web browsing and ftp'ing.
In web browsing, I know that in IE and Mozilla, you can select the number of outgoing connections that the browser will use in fulfilling a web request. So you could end up getting the http reponse (text-only) from one connection and using the other (seperate outgoing web request) to retrieve the images on that page. In most cases, you would likely speed up graphics heavy pages quite a bit.
In ftp'ing, some of the clients (along with the download managers) allow you to use multiple tcp streams to receive your downloading file. The software has a file to receive which it starts multiple receives going. In theory, you could run say, 1 tcp stream per connection, and be receiving the same file over the two connections independently, but achieving an overall rate equal to the sum of the two speeds.
The whole thing kinda reminds me of the pigeon-hole principle in a wierd sorta way.
But anyway, I imagine a linux/BSD solution to be cheaper (given low-end hardware requirements).
E
of those "foreign" people who have everyone else's things revolve around them..
Think about it..
It's my money, and since it's mine, I say that it stays green. Screw the bastards who don't know elementary math.
At first sight, I'm not sure whether this is a really cool lightbulb which uses fusion or something that's going to zap me everytime sit on the couch.
;)).
;)
Now I'm pretty sure they meant "lighting", but for "fushion", the question remains (or at least until i read the article
Spell checks would be nice before stories are posted
E
i do plan on buying one of these..as soon as i figure out how im going to pay for that 4 million dollar mansion..ideas? ;)