but most of the tech-savvy people I know use a real mail service and avoid gmail.
Really? I would consider myself somewhat tech savvy, I run Linux, but I do use gmail as a secondary e-mail. I use it via IMAP (with SSL enabled) with a real mail client, not via webpage. So no ads for me. I've also got gpg and S/MIME keys.
A lot of them refuse to send email to gmail addresses as well.
I understand that some people prefer not to use gmail themselves, but why refuse to send e-mail to gmail addresses. If one is worried about Google analyzing messages, that's what gpg and S/MIME are for.
Just use an address book, and configure email client to prompt when sending to out of address book recipients.
Oh, I agree. The bank should have been doing that anyway.
Advantages : 1. Customer doesn't have to do anything. 2. Financial institution IT can handle this - most likely by MS ActiveDirectory group policy or something like that.
Banks really ought to start issuing S/MIME certs for secure communication, or at minimum encouraging more use of GnuPG, and the Comodo free certs.
You can publish the public key anywhere, and exchange it any way you see fit. Slashdot either does or did at one time, an area where users can publish their public keys.
Still does, for older UID"s. It is at http://slashdot.org/~username/... "You Must Be New Here" types are out of luck because they took out the entry form for it section where you can add your sig, bio, ICQ, etc etc.
Using a keyserver is point and click easy. The Windows version of Kleopatra (an easy to use GUI for gnupg) is installed by default with the windows version of gnupg. The keys.gnupg.net keyserver is used by default.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
That's what an "Address Book" is for. It's also why when you encrypt, you'll get a popup stating something like: "Encrypt to recipient "foo" with key fingerprint "bar"?
That's when a mistake like the submitter's would have been caught.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAlTQ5bAACgkQnludVzJNqF35fACgu7J19bzSLOqFHzOD5LOGYD30
yZ8An170YvYTwhY18kPOdu2qBJ/ftVoS
=jSMl
-----END PGP SIGNATURE-----
Supply my key in person when I open the account? Or I can just say, "Grab my key from a keyserver, the KEY ID is: 324DA85D" I could also hand them the Fingerprint of the key.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Yes, there is. Grab my pubkey from Slashdot or a keyserver and you can verify this comment.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAlTQ3RYACgkQnludVzJNqF1L3gCgwc4fQUhaG6UGESV+zCtHdp7U
9SEAoIuyI48gCaPmXy2aXJdCHa5VKKF7
=mq0h
-----END PGP SIGNATURE-----
I just checked my e-mail client, Claws Mail. It doesn't have an option to encrypt e-mail. Maybe in an extension; it's not in the client itself.
Claws Mail supports both GnuPG and S/MIME encryption by default. The reason you don't have an option is that you haven't configured/setup claws-mail to do so.
Furthermore, I don't know of any current standard for e-mail encryption that is widely supported.
Any good e-mail client supports BOTH GnuPG and S/MIME.
let alone how to securely and easily exchange keys with random recipients (like a client who calls me asking me to send them some information by e-mail).
You can use out-of-band methods, or just use keyservers.
The obvious way to send an encrypted mail to someone would be to pull their public key from some kind of repository (which as yet doesn't exist
They do exist, they're called keyservers.
[CronoCloud ~]$ keylookup --frontend=plain Rob Malda gpg: searching for "Rob Malda" from hkp server subkeys.pgp.net 1024R/BA9146D5239BB413 2000-2-9
Rob Malda <malda@slashdot.org>
1024D/D86FEB1F6CE3D482857AEB2809C2DB458662850F 1999-7-7
Rob Malda <malda@slashdot.org>
OpenPGP would happily decrypt for the correct (but incorrectly typed-in) address. It would not prevent a typo.
yes, it would. Because you have to choose a public key to encrypt to. No public key for an address, it'll throw up a warning, preventing you from encrypting or sending.
And even if it did get sent to the wrong address, but encrypted to the right key, the wrong recipient couldn't do a damn thing with it. They don't have the key...or the password for said key.
Does music cost $20 a song and come with a 5 minute unskippable warning against piracy, and 10 minutes of unskippable trailers for other songs?
People complained about previews on dvd's so with most blu-rays it's much easier to skip them Just hit the Top/Menu button your remote. I just did it right now on the Fury Blu-ray, hit the square button and it went right to the disc menu.
In most cases the Blu-ray trailers/ads are EASIER to skip than those on DVD Perhaps you aren't hitting the right button. Usually hitting Menu (on a PS4 it is the [square button])will bypass everything and take you to the disc menu.
and a BR player that needs to be connected to the internet
That there's really little reason for the operating system on a home computer to look and work exactly like the one at work.
Yep, that's how it was, and how I think it ought to be again.
This is one reason that at some point down the road, I hope to be able to use both Windows for my digital audio workstation in my home studio, and some form of "SteamOS" for playing games.
I run Linux on the desktop, but my game machines run BSD based operating systems.
Of course, with companies like EA/Origin and Ubisoft using their own game store platforms, I don't see all PC games being compatible with a SteamOS for some time to come.
Yep, I personally think SteamOS is really going nowhere. You're better off going BSD, because while EA/Origin and Ubisoft don't do games for SteamOS....they DO release them for BSD. Admittedly those BSD machines are PlayStations. But essentially PS3's/PS4's were Steam Machines before Gabe Newell decided to make them. Gabe hates walled gardens...except Valve's of course.
There's nothing more ironic than someone who has the luxury of having time to complain about someone complaining spending that time complaining about them..... thought maybe you could use a bit o' perspective.
That is true, but if I was on "vacation" in another country, buying videogames would be a rather low priority compared to enjoying the things that are unique to that country.
Perhaps it is in part due to the fact that I'm a console gamer, who remembers the time of consoles with regions and would think: "Why buy something that isn't guaranteed to work back home".
Of course with modern console games no longer being region locked, I wouldn't have to worry. It's only PC gamers with "keys" and using proxies and VPN's to authorize said cheap Russian/Polish key they bought, that have issues.
That is correct, I don't. The niche is people doing "work" on their computing devices at home.
I've always believed that the old distinction between "business computers" and "home computers" was a good one, and that the Microsoft/Intel/IBM hegemony that said to home users that they needed a "Business computer" at home (and the computer reviewers/pundits who also encouraged going MIcrosoft/Intel/IBM platform for home users) was a bad thing.
The card is an old but perfectly working Geforce 4 MX ( http://en.wikipedia.org/wiki/G... ), fast enough fast for any desktop environment, for video (vlc, mplayer) and even for flashplayer (if I use version 10.3, which I won't, out of security concerns).
While the Geforce 4 MX's do accelerate MPEG2 video, most video these days is MPEG4/H264, you want at least a 7xxx series card to hardware accelerate that. If you've got AGP, then a 7950 GT is the best you can get.
I concede it's rather old (last updated 10 years ago), but it was very fast when new and now it still is a match for some onboard video.
No, it's not equal to some onboard video, unless that video is old. Even the motherboard graphics on this machine, a Nvidia 6150SE, is better. That 4MX is running around 500MFLOPS. A 6150SE runs around 850MFLOPS. An intel HD 4600 runs around 432GFLOPS. I can understand not wanting to just throw the thing away, but there comes a time when an old card can't keep up.
It did stop working, as a matter of fact. It was being updated to work with recent kernels. Since they stopped support, no more updates; now I must use an old distro if I want to use it.
How old is that GPU, considering that the rpmfusion builds for fedora 21 support everything back to the Geforce 6xxx series. Perhaps it's time to upgrade the video card?
Slashdot Mirror
but most of the tech-savvy people I know use a real mail service and avoid gmail.
Really? I would consider myself somewhat tech savvy, I run Linux, but I do use gmail as a secondary e-mail. I use it via IMAP (with SSL enabled) with a real mail client, not via webpage. So no ads for me. I've also got gpg and S/MIME keys.
A lot of them refuse to send email to gmail addresses as well.
I understand that some people prefer not to use gmail themselves, but why refuse to send e-mail to gmail addresses. If one is worried about Google analyzing messages, that's what gpg and S/MIME are for.
My longest password is more than 28 characters you insensitive clod!
Been a while since I could do a good insensitive clod joke on Slashdot.
Apparently JP Morgan does use gpg for ACH file transfers.
https://www.jpmorgan.com/cm/Co...
A follow up on my previous response:
Ah Ha! You can get to the old style Slashdot edit-user page with the form for your gnupg/pgp public key here:
https://slashdot.org/users.pl?...
Just use an address book, and configure email client to prompt when sending to out of address book recipients.
Oh, I agree. The bank should have been doing that anyway.
Advantages :
1. Customer doesn't have to do anything.
2. Financial institution IT can handle this - most likely by MS ActiveDirectory group policy or something like that.
Banks really ought to start issuing S/MIME certs for secure communication, or at minimum encouraging more use of GnuPG, and the Comodo free certs.
You can publish the public key anywhere, and exchange it any way you see fit. Slashdot either does or did at one time, an area where users can publish their public keys.
Still does, for older UID"s. It is at http://slashdot.org/~username/... "You Must Be New Here" types are out of luck because they took out the entry form for it section where you can add your sig, bio, ICQ, etc etc.
Last I checked, PGP implementations tend to look at the recipient address for a key.
Yep:
or you can use names
Which means either no key would have been used,
If there is no pubkey, it won't encrypt and will throw out an error message.
or the wrong key.
But you have to confirm to encrypt to a key, in this case it would show the wrong name, which should be caught.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Using a keyserver is point and click easy. The Windows version of Kleopatra (an easy to use GUI for gnupg) is installed by default with the windows version of gnupg. The keys.gnupg.net keyserver is used by default.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAlTQ6SwACgkQnludVzJNqF3qYQCguZImj1JJkDD6Cj2MLZpQuS09
LT8Aniu/VvJJ0KJeuJQbPrQ8JgVypwux
=7ag6
-----END PGP SIGNATURE-----
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 That's what an "Address Book" is for. It's also why when you encrypt, you'll get a popup stating something like: "Encrypt to recipient "foo" with key fingerprint "bar"? That's when a mistake like the submitter's would have been caught. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iEYEARECAAYFAlTQ5bAACgkQnludVzJNqF35fACgu7J19bzSLOqFHzOD5LOGYD30 yZ8An170YvYTwhY18kPOdu2qBJ/ftVoS =jSMl -----END PGP SIGNATURE-----
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Supply my key in person when I open the account? Or I can just say, "Grab my key from a keyserver, the KEY ID is: 324DA85D" I could also hand them the Fingerprint of the key.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAlTQ4ZMACgkQnludVzJNqF1ShwCfXw6mnE38KG5v+d8ymYNZAuvt
2ygAmQE3bLKuhhSYCCDCGum8oH2y6Ooi
=TuLn
-----END PGP SIGNATURE-----
xclip messed it up, my fault. You should be able to verify this one:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Yes, there is. Grab my pubkey from Slashdot or a keyserver and you can verify this comment.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAlTQ3RYACgkQnludVzJNqF1L3gCgwc4fQUhaG6UGESV+zCtHdp7U
9SEAoIuyI48gCaPmXy2aXJdCHa5VKKF7
=mq0h
-----END PGP SIGNATURE-----
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Yes, there is. Grab my pubkey from Slashdot or a keyserver and you can verify this comment. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iEYEARECAAYFAlTQ3RYACgkQnludVzJNqF1L3gCgwc4fQUhaG6UGESV+zCtHdp7U 9SEAoIuyI48gCaPmXy2aXJdCHa5VKKF7 =mq0h -----END PGP SIGNATURE-----
Or fax it, or take it over, or just have them get it from a keyserver.
I just checked my e-mail client, Claws Mail. It doesn't have an option to encrypt e-mail. Maybe in an extension; it's not in the client itself.
Claws Mail supports both GnuPG and S/MIME encryption by default. The reason you don't have an option is that you haven't configured/setup claws-mail to do so.
Furthermore, I don't know of any current standard for e-mail encryption that is widely supported.
Any good e-mail client supports BOTH GnuPG and S/MIME.
No idea on how to create a key
Applications>Accessories>Passwords & Keys. File>New>PGP Key
let alone how to securely and easily exchange keys with random recipients (like a client who calls me asking me to send them some information by e-mail).
You can use out-of-band methods, or just use keyservers.
The obvious way to send an encrypted mail to someone would be to pull their public key from some kind of repository (which as yet doesn't exist
They do exist, they're called keyservers.
OpenPGP would happily decrypt for the correct (but incorrectly typed-in) address. It would not prevent a typo.
yes, it would. Because you have to choose a public key to encrypt to. No public key for an address, it'll throw up a warning, preventing you from encrypting or sending.
And even if it did get sent to the wrong address, but encrypted to the right key, the wrong recipient couldn't do a damn thing with it. They don't have the key...or the password for said key.
Does music cost $20 a song and come with a 5 minute unskippable warning against piracy, and 10 minutes of unskippable trailers for other songs?
People complained about previews on dvd's so with most blu-rays it's much easier to skip them Just hit the Top/Menu button your remote. I just did it right now on the Fury Blu-ray, hit the square button and it went right to the disc menu.
Have obnoxious unskippable trailers and ads
In most cases the Blu-ray trailers/ads are EASIER to skip than those on DVD Perhaps you aren't hitting the right button. Usually hitting Menu (on a PS4 it is the [square button])will bypass everything and take you to the disc menu.
and a BR player that needs to be connected to the internet
For BD-Live and updates, yes.
That there's really little reason for the operating system on a home computer to look and work exactly like the one at work.
Yep, that's how it was, and how I think it ought to be again.
This is one reason that at some point down the road, I hope to be able to use both Windows for my digital audio workstation in my home studio, and some form of "SteamOS" for playing games.
I run Linux on the desktop, but my game machines run BSD based operating systems.
Of course, with companies like EA/Origin and Ubisoft using their own game store platforms, I don't see all PC games being compatible with a SteamOS for some time to come.
Yep, I personally think SteamOS is really going nowhere. You're better off going BSD, because while EA/Origin and Ubisoft don't do games for SteamOS....they DO release them for BSD. Admittedly those BSD machines are PlayStations. But essentially PS3's/PS4's were Steam Machines before Gabe Newell decided to make them. Gabe hates walled gardens...except Valve's of course.
There's nothing more ironic than someone who has the luxury of having time to complain about someone complaining spending that time complaining about them.....
thought maybe you could use a bit o' perspective.
That is true, but if I was on "vacation" in another country, buying videogames would be a rather low priority compared to enjoying the things that are unique to that country.
Perhaps it is in part due to the fact that I'm a console gamer, who remembers the time of consoles with regions and would think: "Why buy something that isn't guaranteed to work back home".
Of course with modern console games no longer being region locked, I wouldn't have to worry. It's only PC gamers with "keys" and using proxies and VPN's to authorize said cheap Russian/Polish key they bought, that have issues.
Jesus fuck. So I can't buy games while on holiday in another country? A big FUCK YOU goes to ubisoft.
First World Problem.
That is correct, I don't. The niche is people doing "work" on their computing devices at home.
I've always believed that the old distinction between "business computers" and "home computers" was a good one, and that the Microsoft/Intel/IBM hegemony that said to home users that they needed a "Business computer" at home (and the computer reviewers/pundits who also encouraged going MIcrosoft/Intel/IBM platform for home users) was a bad thing.
The card is an old but perfectly working Geforce 4 MX ( http://en.wikipedia.org/wiki/G... ), fast enough fast for any desktop environment, for video (vlc, mplayer) and even for flashplayer (if I use version 10.3, which I won't, out of security concerns).
While the Geforce 4 MX's do accelerate MPEG2 video, most video these days is MPEG4/H264, you want at least a 7xxx series card to hardware accelerate that. If you've got AGP, then a 7950 GT is the best you can get.
I concede it's rather old (last updated 10 years ago), but it was very fast when new and now it still is a match for some onboard video.
No, it's not equal to some onboard video, unless that video is old. Even the motherboard graphics on this machine, a Nvidia 6150SE, is better. That 4MX is running around 500MFLOPS. A 6150SE runs around 850MFLOPS. An intel HD 4600 runs around 432GFLOPS. I can understand not wanting to just throw the thing away, but there comes a time when an old card can't keep up.
It did stop working, as a matter of fact. It was being updated to work with recent kernels. Since they stopped support, no more updates; now I must use an old distro if I want to use it.
How old is that GPU, considering that the rpmfusion builds for fedora 21 support everything back to the Geforce 6xxx series. Perhaps it's time to upgrade the video card?
X gives you just the display.
You can also forward the audio, that's what Pulseaudio is for.
That's incorrect. Sony maintains a OpenGL variant called PSGL, it's OpenGL 4.3 plus extensions.