This sort of depends on how one handles the key exchange. The idea behind a public key system is that you verify that the key belongs who you think it belongs to either yourself or through a chain of people you trust to make that determination. SSL and S/MIME works on this system in fact, but is just pre-programmed to trust Verisign, Thawte, etc. So, as long as the 'web of trust' keeps its integrity, Carnivore will fail to execute a viable MiTM attack. If people blindly trust all public keys as belonging to the person the key says it belongs too; well, then they don't understand the tools that they are using.
The law states that if someone had the 'apparent' authority to make a commitment as an agent for their prinicipal, even if they did not in fact have that authority, the principle is liable for it. A janitor obviously shouldn't have that apparent authority, but that may be the tact the salesperson is using to bully the company.
Of course the smart-cards don't use online authentication for stored-value... that would defeat the purpose. If you have a landline / wireless connection to some 'main' server, you are back to a credit card again. The magic of stored value is that you *don't* need a third-party connect.
The magic, so to speak, is in the details of the storage protocol. Most stored-value cards use a form of cryptography to validate the money, so you can't just 'deposit' money from just anywhere. I'm not familiar with the fine details, but I'd imagine anyone thinking of creating such a system would have details like this covered.
With Microsoft.NET, the manufacturer could install the client on the machine, weld shut the case and say 'here you go; if you install anything else you have voided the warrenty. Have a nice day'.
Being facecious of course, but who knows what will happen? Combine a X-Box type console with Microsoft.NET, and you have a turnkey, un-user-altaerable system that is so limited in it's uses that it cannot really fail.
On the other hand, the PC manufacturers could compile a program that acts as a whole-system diagnostic independant of any OS. Then they could say "so long as this disk works, it is not our fault".
I don't see how a VPN can be "hard on the routers in between". A packet is a packet is a packet. It doesn't matter what is in the packet, it doesn't matter that the payload is encrypted; all that matters is that the proper headers are on the front of the packet.
Keep in mind that the there are laws that prohibit you from sending too much mail through carriers other than the USPS. I recall hearing that some company was fined for sending too much first-class-type mail through FedEx or something like that.
Once again, the fallacy of relating a tangible object to an intangible one. One involves the expenditure of physical resources (giving me a new car) while another is dealing entirely with ideas (the sound of something). When you buy a recording, you are being granted a license to listen to it. It should not matter through what medium you listen to the work (just like it doesn't matter what quality of speakers you listen to it through).
Should the water company charge me more if I run the water through a filter so that it tastes better to me? It is a riduclous analogy.
Instead, a more 'correct' analogy would be: I pay John to play a song for me, and he allows me to record it. Should he charge me more depending on the quality of microphone I use?
Or how about: I buy a painting from Jill. Should she change the amount she charges based on the quality of the glasses I view it through?
If I want to upgrade the quality of the recording I am listening to, and can do it without expending any resources on the part of the original seller, why shouldn't I? I already paid for 'it' (the right to listen to the music), I am just improving the experience.
Well, there is a reason to allow external IP's from 'inside'. For example, I am thinking of connecting my neighbors DSL to my own network (which already has DSL from a different provider), and having a linux router send the outgoing packets out in a round-robin fashion. This should effectively double our upload speed. If his ISP filtered for non-local IP's, this wouldn't work.
If they have tried to ban him, can't they consture his continued attempts to use their service as computer trespassing, thus press criminal charges? Why the injunction?
Here's a thought... create a 'web of trust' ala PGP (or GPG nowadays). Along with each file, create a gpg signature. Since there are encoder 'groups' out there, they could create an authoritative key for their encodings. Napster software could allow people to 'trust' encodings from a given key, so that it might prioritize the download list in order of trust, or search 'trusted only' etc. You could also do the transitive-trust things gpg does too, so that if I trust "john", and john trusts "The XYZ Encoding group", I trust... etc.
Essentially this would allow mp3's to have an authenticated 'creator'. It would also show when an mp3 was re-sampled, cut, incomplete, etc, since the signature would no longer be valid.
OK, lets see how this would pan out: Imagine two initiatives, A and B. Also imagine that digital signatures are valid (ignoring the potential ofmultiple signatures byone person).
'A' is favored by/. users who all know how to use digital signatures. 'B' is favored by people who have never seen a computer.
'A' gets on the next ballot due to the many signatures garnered by digital signatures. 'B' fails to get on the ballot due to lack of organization and ease of gathering signatures. At the next election, 'A' fails since/. users didn't actually go out and vote. 'B' wasn't there anyway.
Now imagine that digital signatures are NOT valid. 'A' fails to get on the ballot due to lack of organization and ease of gathering signatures. 'B' fails to get on the ballot due to lack of organization and ease of gathering signatures. At the next election, neither bill appears. Net effect: 0.
How has this unfairly disadvantaged the masses? The 'B' group still cannot get their initiative on the ballot. The digital signatures merely allowed an initiative to get on the ballot that would otherwise not have. People still have to vote for it at the next election. Does this mean that people who use digital signatures might have an easier time of getting initiatives on the ballot? Could be. Does that in any way guarentee it'll pass? Nope.
On the other hand, if you have a large group of Foo-Bar's living close together, their close organization gives them an advantage of getting things on the ballot / passed. Should that be allowed?
The way I see it, the situation hasn't changed since it is no harder for a initiative to get on the ballot for anyone. It has merely become a little easier for some.
Perhaps it is a sign of the times that a class-action lawsuit is brought against an ISP. Could it be that, especially in rural areas, AOL is truly the only game in town? Due to the lack of sophistication by the user, they may really believe that they have no other option then to stick with AOL. Since the class-action suit is being allowed, isn't this a sort of de-facto admission that AOL is big enough to do 'bad' things like this?
Obviously the better solution is for someone to create a different ISP that keeps its users happier, but that gets back to the technical sophistication part. There isn't enough of a marget in Dullvsille to support the staff of a new ISP, and the mid-sized ISP's aren't going to want the support headaches -- they'd be pumping a disproportionate amount of money into their low-revenue areas.
Well, there is a ".us". For example, there is the State of California site. Many US.gov-type sites arein the.us hiearchy. It is true that you don't see too many US.com's in ".us" though.
This is something that has worried me for some time. If, say, UUnet were to decide "sorry, no more internet", would the internet continue to work? Especially considering that most 'networks' are in fact leaf networks that are only singularly connected to the internet, the loss of a major backbone could very well segment it.
I always thought that leaf-nodes should try to have at least two disjoint internet connections (even if slow ones) so that the original intent of the internet, redunancy, is preserved.
At my school, we had a class-standing based priority system. The more credits you had, the sooner you were allowed to register. This meant that a last-semester senior would be very unlikely to get locked out of the one class he/she needs to graduate. Freshmen, who have the longest time to go and thus the most flexible schedule, registered last.
It did help to register as close to the beginning of your allocated time slot as possible. However, I believe this was a fair system that also obviated the need to hike all the way across campus to stand in line and fill out bubble-sheets for registration. You can now register by touch-tone phone or the web.
Printed manuals are nice for learning about something w/o having the software to go with it. Take SQL for example. I learned SQL from an Oracle book a few months before I had any access to a SQL database. They are also nice when only one station has the software installed (for space or license reasons, for example) yet someone other than the owner of that station wants to give input. The person sitting at the machine can look up online information while any other people in the vicinity look at the book. Or, as is many times the case, the machine the software is on is locked but I am thinking about some problem posed to me and want to look up something about it.
PDF's are nice if you plan to print the documentation, but otherwise I usually have to zoom in past full-page mode to read anything, resulting in jerky scrolling. I like online (web)documentation, especially when it is annotateable (like php.net's publicly annotated documentation). A series of static & local HTML pages is ok to read, but tends to be lacking easy search funcationality.
So, I believe that online documentation should still be included in some easily searchable format, but I feel cheated when a major package comes with no printed documentation aside from "Getting Started with This-Big-Complicated-Application/Database System."
At Microsoft's site there is a book for win2k that includes IPv6 information. As Microsoft puts support for ipv6 in their products we'll likely see the transition to it begin.
The main hurdle is the 'average user' base, but as client OS's begin to support IPv6 that hurdle will pass.
It would also seem prudent for the backbone networks to implement IPv6 soon and extend out as far as they can. The more of the net that is already at IPv6 (or at least capeable of routing it) the easier it is for one more host to get on.
Speaking of which, linux users should investigate the 6bone which can supply a tunneled connection to an IPv6 network, created automatically by a web page. Also, it would be nice if a 'killer app' such as napster was improved to support IPv6. Doing so would give users a reason to want IPv6 support on their network.
OK, if we assume that the letter posted a ways above (saying that this was a repeat offense, they had been warned before) isn't true, then I don't see the problem. The article seems to say that the U essential said:
"Thanks for giving us $24 for your network connection. Oh, by the way, the room you have been assigned hasn't been wired yet. We can't afford it. Tough cookies--you can drag your machine downstairs."
If the room next to them had ethernet and they ip-masqed on its connection, would there be a problem? Probably not, unless they drilled holes in the wall. At what point does the cable get too long?
True, the concerns about running cables that aren't up to code are valid.
If the letter posted a ways above is in fact true, then the students were rather stupid for attempting a 'kludge' that had been ix-nayed before.
The IT building at my university is going to backup power pre-emptively. There is a small power plant on campus that will take over if the main grid goes down. As such most of WSU's site will be up. The downside is that any non-UPS'd machines will go down during the 15 seconds it takes to transfer from external to internal power.
Slashdot Mirror
This sort of depends on how one handles the key exchange. The idea behind a public key system is that you verify that the key belongs who you think it belongs to either yourself or through a chain of people you trust to make that determination. SSL and S/MIME works on this system in fact, but is just pre-programmed to trust Verisign, Thawte, etc. So, as long as the 'web of trust' keeps its integrity, Carnivore will fail to execute a viable MiTM attack. If people blindly trust all public keys as belonging to the person the key says it belongs too; well, then they don't understand the tools that they are using.
Promissary estoppel
:>
The law states that if someone had the 'apparent' authority to make a commitment as an agent for their prinicipal, even if they did not in fact have that authority, the principle is liable for it. A janitor obviously shouldn't have that apparent authority, but that may be the tact the salesperson is using to bully the company.
IANAL, I just took a business law class
Of course the smart-cards don't use online authentication for stored-value... that would defeat the purpose. If you have a landline / wireless connection to some 'main' server, you are back to a credit card again. The magic of stored value is that you *don't* need a third-party connect.
The magic, so to speak, is in the details of the storage protocol. Most stored-value cards use a form of cryptography to validate the money, so you can't just 'deposit' money from just anywhere. I'm not familiar with the fine details, but I'd imagine anyone thinking of creating such a system would have details like this covered.
With Microsoft.NET, the manufacturer could install the client on the machine, weld shut the case and say 'here you go; if you install anything else you have voided the warrenty. Have a nice day'.
Being facecious of course, but who knows what will happen? Combine a X-Box type console with Microsoft.NET, and you have a turnkey, un-user-altaerable system that is so limited in it's uses that it cannot really fail.
On the other hand, the PC manufacturers could compile a program that acts as a whole-system diagnostic independant of any OS. Then they could say "so long as this disk works, it is not our fault".
I don't see how a VPN can be "hard on the routers in between". A packet is a packet is a packet. It doesn't matter what is in the packet, it doesn't matter that the payload is encrypted; all that matters is that the proper headers are on the front of the packet.
Keep in mind that the there are laws that prohibit you from sending too much mail through carriers other than the USPS. I recall hearing that some company was fined for sending too much first-class-type mail through FedEx or something like that.
Once again, the fallacy of relating a tangible object to an intangible one. One involves the expenditure of physical resources (giving me a new car) while another is dealing entirely with ideas (the sound of something). When you buy a recording, you are being granted a license to listen to it. It should not matter through what medium you listen to the work (just like it doesn't matter what quality of speakers you listen to it through).
Should the water company charge me more if I run the water through a filter so that it tastes better to me? It is a riduclous analogy.
Instead, a more 'correct' analogy would be: I pay John to play a song for me, and he allows me to record it. Should he charge me more depending on the quality of microphone I use?
Or how about: I buy a painting from Jill. Should she change the amount she charges based on the quality of the glasses I view it through?
If I want to upgrade the quality of the recording I am listening to, and can do it without expending any resources on the part of the original seller, why shouldn't I? I already paid for 'it' (the right to listen to the music), I am just improving the experience.
Well, there is a reason to allow external IP's from 'inside'. For example, I am thinking of connecting my neighbors DSL to my own network (which already has DSL from a different provider), and having a linux router send the outgoing packets out in a round-robin fashion. This should effectively double our upload speed. If his ISP filtered for non-local IP's, this wouldn't work.
If they have tried to ban him, can't they consture his continued attempts to use their service as computer trespassing, thus press criminal charges? Why the injunction?
Essentially this would allow mp3's to have an authenticated 'creator'. It would also show when an mp3 was re-sampled, cut, incomplete, etc, since the signature would no longer be valid.
Imagine two initiatives, A and B. Also imagine that digital signatures are valid (ignoring the potential ofmultiple signatures byone person).
'A' is favored by /. users who all know how to use digital signatures.
'B' is favored by people who have never seen a computer.
'A' gets on the next ballot due to the many signatures garnered by digital signatures. /. users didn't actually go out and vote. 'B' wasn't there anyway.
'B' fails to get on the ballot due to lack of organization and ease of gathering signatures.
At the next election, 'A' fails since
Now imagine that digital signatures are NOT valid.
'A' fails to get on the ballot due to lack of organization and ease of gathering signatures.
'B' fails to get on the ballot due to lack of organization and ease of gathering signatures.
At the next election, neither bill appears. Net effect: 0.
How has this unfairly disadvantaged the masses? The 'B' group still cannot get their initiative on the ballot. The digital signatures merely allowed an initiative to get on the ballot that would otherwise not have. People still have to vote for it at the next election. Does this mean that people who use digital signatures might have an easier time of getting initiatives on the ballot? Could be. Does that in any way guarentee it'll pass? Nope.
On the other hand, if you have a large group of Foo-Bar's living close together, their close organization gives them an advantage of getting things on the ballot / passed. Should that be allowed?
The way I see it, the situation hasn't changed since it is no harder for a initiative to get on the ballot for anyone. It has merely become a little easier for some.
Perhaps it is a sign of the times that a class-action lawsuit is brought against an ISP. Could it be that, especially in rural areas, AOL is truly the only game in town? Due to the lack of sophistication by the user, they may really believe that they have no other option then to stick with AOL. Since the class-action suit is being allowed, isn't this a sort of de-facto admission that AOL is big enough to do 'bad' things like this?
Obviously the better solution is for someone to create a different ISP that keeps its users happier, but that gets back to the technical sophistication part. There isn't enough of a marget in Dullvsille to support the staff of a new ISP, and the mid-sized ISP's aren't going to want the support headaches -- they'd be pumping a disproportionate amount of money into their low-revenue areas.
Well, there is a ".us". For example, there is the State of California site. Many US .gov-type sites arein the .us hiearchy. It is true that you don't see too many US .com's in ".us" though.
This is something that has worried me for some time. If, say, UUnet were to decide "sorry, no more internet", would the internet continue to work? Especially considering that most 'networks' are in fact leaf networks that are only singularly connected to the internet, the loss of a major backbone could very well segment it.
I always thought that leaf-nodes should try to have at least two disjoint internet connections (even if slow ones) so that the original intent of the internet, redunancy, is preserved.
At my school, we had a class-standing based priority system. The more credits you had, the sooner you were allowed to register. This meant that a last-semester senior would be very unlikely to get locked out of the one class he/she needs to graduate. Freshmen, who have the longest time to go and thus the most flexible schedule, registered last.
It did help to register as close to the beginning of your allocated time slot as possible. However, I believe this was a fair system that also obviated the need to hike all the way across campus to stand in line and fill out bubble-sheets for registration. You can now register by touch-tone phone or the web.
Printed manuals are nice for learning about something w/o having the software to go with it. Take SQL for example. I learned SQL from an Oracle book a few months before I had any access to a SQL database. They are also nice when only one station has the software installed (for space or license reasons, for example) yet someone other than the owner of that station wants to give input. The person sitting at the machine can look up online information while any other people in the vicinity look at the book. Or, as is many times the case, the machine the software is on is locked but I am thinking about some problem posed to me and want to look up something about it.
PDF's are nice if you plan to print the documentation, but otherwise I usually have to zoom in past full-page mode to read anything, resulting in jerky scrolling. I like online (web)documentation, especially when it is annotateable (like php.net's publicly annotated documentation). A series of static & local HTML pages is ok to read, but tends to be lacking easy search funcationality.
So, I believe that online documentation should still be included in some easily searchable format, but I feel cheated when a major package comes with no printed documentation aside from "Getting Started with This-Big-Complicated-Application/Database System."
The main hurdle is the 'average user' base, but as client OS's begin to support IPv6 that hurdle will pass.
It would also seem prudent for the backbone networks to implement IPv6 soon and extend out as far as they can. The more of the net that is already at IPv6 (or at least capeable of routing it) the easier it is for one more host to get on.
Speaking of which, linux users should investigate the 6bone which can supply a tunneled connection to an IPv6 network, created automatically by a web page. Also, it would be nice if a 'killer app' such as napster was improved to support IPv6. Doing so would give users a reason to want IPv6 support on their network.
OK, if we assume that the letter posted a ways above (saying that this was a repeat offense, they had been warned before) isn't true, then I don't see the problem. The article seems to say that the U essential said:
"Thanks for giving us $24 for your network connection. Oh, by the way, the room you have been assigned hasn't been wired yet. We can't afford it. Tough cookies--you can drag your machine downstairs."
If the room next to them had ethernet and they ip-masqed on its connection, would there be a problem? Probably not, unless they drilled holes in the wall. At what point does the cable get too long?
True, the concerns about running cables that aren't up to code are valid.
If the letter posted a ways above is in fact true, then the students were rather stupid for attempting a 'kludge' that had been ix-nayed before.
The IT building at my university is going to backup power pre-emptively. There is a small power plant on campus that will take over if the main grid goes down. As such most of WSU's site will be up. The downside is that any non-UPS'd machines will go down during the 15 seconds it takes to transfer from external to internal power.