I wish Diaspora* would change their fucking name so it'd be more appealing to the masses.
Also wishing I had donated my $100 to Michael Chisari and The Appleseed Project over Diaspora* but I didn't know about Appleseed until after I had donated to Diaspora.::sigh::
I use it on all my machines. Mac, Linux, and Windoze.
I store all my backups locally on one of my Drobos. Backup my parents PC over the net to the same Drobo and also backup remotely to CrashPlan's servers.
I've got news for you: there's no such thing as anonymity on the Internet.
Just ask Anonymous who found out the hard way earlier this week.
Besides, if I'm doing anything online I don't want Google to track, I sure as hell aren't going to be logged-in to my Google account while I'm doing it, will make sure I'm tunneling my connection through several remote proxies, and would probably be using a Live CD distribution of my favorite Linux.
Even then, I'm still not 100% anonymous. Only obfuscated enough to hopefully make it not worth anyone's while to track me down.
I'm sure members of Anonymous did something similar. Only difference was, what they were doing WAS worth somebody's "while" to track them down.
Request, log, and record, only that information that is absolutely necessary and nothing more, and keep it only for as long as you'll need it and not a bit longer.
You can save yourself some heartache by not storing any PII and PFI.
Don't store payment information.
Don't store credentials. Consider using OpenID or Google or (shudder) Facebook Connect for accounts.
Keep sensitive information off any internet-accessible systems.
And last, don't trust any input from your visitors.
Sanitize all input.
Declare all variables.
Don't assume anything.
If you're expecting an integer, make sure you convert the submitted form data to an integer for that variable implicitly.
Same for dates, strings.
Normalize all input.
Sanitize all input.
Never trust any input.
Consider using a database abstraction library with well documented and mature APIs. Don't code things yourself.
Don't turn on ssh password authentication. Require only public/ private keys.
Turn register globals off in PHP. Use safe mode.
Make sure MySQL is on a separate server, with an RFC-1918 address, accessible from a dedicated NIC that is not on the Internet.
Consider a security audit and professional code review if you're planning on taking any money.
As the Iranians found out the hard way, it's difficult to keep an intruder out despite the obscure nature of PLC (most people probably don't even know what that is.)
You know, for $59.95/ month you can get Comcast Business and have no bandwidth caps, no ports blocked, 4 hour response times in the event something gets frakked, and techs that actually know what the hell they're talking about, and the ability to run whatever servers you want without them saying shit about it.
(You also get your own Sharepoint server and Exchange mailboxes for those that are OS challenged.)
Best decision I ever made. (Switching to Comcast Business).
(Don't get me wrong, I hate Comcast with a passion, but it makes you wonder if Comcast is able to afford unlimited bandwidth for $10/ month than what's the real purpose of those 250GB caps?)
You don't understand. In order to filter the SSL traffic, you first have to intercept it, decrypt it, and then repackage it for further transport.
If you don't consider that "broken", considering that SSL was never intended to be that way (except between endpoint and server) then I'm afraid I can't help you.
The only thing that fucking lock gives you is a modicum amount of assurance of who the real individuals are behind that domain you're surfing (and even that is turning into bullshit now-a-days).
The technology exists today (in fact for the past several years now) to decrypt, and reassemble (as in man-in-the-middle attack) an SSL/ TLS packet stream to inspect away.
We've got the commercial appliance where I work today that can do that, and as far back as 2000 I remember the solutions being commercially available to do the same.
So go on, continue to believe in TLS/ SSL, and while you're at it take a look at the following if you don't believe me:
1. Unconscionable: How I feel about this whole matter. Completely unconscionable that GoDaddy could or WOULD do anything like this.
2. 142: The number of domains I have registered with GoDaddy.
3. $1500: Roughly the annual amount I pay for my domains to renew them each year.
4. 48: The number of hours I have allotted myself this weekend to transfer each and every one of them AWAY from GoDaddy to someplace like NameCheap.com or DomainMonitor. Haven't decided yet.
5. True: Boolean value for whether or not I am pissed-off.
6. Very Much: The level of item 5, above's, value.
Depends on what I'm searching for. If its something thats specialized then I start with Wikipedia. If its broad and general then I start with Google.
Although, I've got to admit, there's this extension for FireFox that embeds the Wikipedia entries into the Google search results page. I use it at work, and for the life of me I can't remember its name right now, but its awesome.
Cables:
- Require no additional power
- Difficult to intercept communication
- Finite distance
- Clutter
UWB/ Wireless in General:
- Requiers power for transmitter/ receiver resulting in reduced battery life or increased power consumption
- Interception/ eavesdropping much easier
- Tempest Emissions/ Interceptions?
- Finite distance
- Much more susceptible to interference
I'm sure there's more but I'll stick with copper, thank you.
Slashdot Mirror
.I2P
http://www.i2p2.de/
Send me your Email. I've got invites.
gellenburg (gmail).
I wish Diaspora* would change their fucking name so it'd be more appealing to the masses.
Also wishing I had donated my $100 to Michael Chisari and The Appleseed Project over Diaspora* but I didn't know about Appleseed until after I had donated to Diaspora. ::sigh::
Never used a pseudonym on Google+. My issue was never about *me* being able to use one.
So I did the next best thing - I've deleted my Google Profile and have moved on.
Thought I'd never say this, but Bing's search isn't all that bad! (j/k, j/k)
Okay. I just realized the irony. Let's see if anyone else does.
Took you long enough. :-)
Until they reverse their stance on real names, sadly I have no f*cks to give.
+1 +1 +1 +1 +1 for CrashPlan.
I use it on all my machines. Mac, Linux, and Windoze.
I store all my backups locally on one of my Drobos. Backup my parents PC over the net to the same Drobo and also backup remotely to CrashPlan's servers.
If the homeowner let a bunch of asshats into their house to perform a search without a warrant signed by a judge
Badge or no badge
The owner is an idiot.
I've got news for you: there's no such thing as anonymity on the Internet.
Just ask Anonymous who found out the hard way earlier this week.
Besides, if I'm doing anything online I don't want Google to track, I sure as hell aren't going to be logged-in to my Google account while I'm doing it, will make sure I'm tunneling my connection through several remote proxies, and would probably be using a Live CD distribution of my favorite Linux.
Even then, I'm still not 100% anonymous. Only obfuscated enough to hopefully make it not worth anyone's while to track me down.
I'm sure members of Anonymous did something similar. Only difference was, what they were doing WAS worth somebody's "while" to track them down.
I would seriously pay twice what I'm paying Netflix for now for unlimited streaming and if it helped provide a better selection.
Seriously.
Netflix is by far the best value on the Internet today.
That and they treat their employees with respect. Especially their customer service folks.
My Hulu Plus subscription isn't giving me shit.
My recommendation: pfSense.
Or ClearOS.
pfSense is FreeBSD based. ClearOS is linux-based.
Easy -
Request, log, and record, only that information that is absolutely necessary and nothing more, and keep it only for as long as you'll need it and not a bit longer.
You can save yourself some heartache by not storing any PII and PFI.
Don't store payment information.
Don't store credentials. Consider using OpenID or Google or (shudder) Facebook Connect for accounts.
Keep sensitive information off any internet-accessible systems.
And last, don't trust any input from your visitors.
Sanitize all input.
Declare all variables.
Don't assume anything.
If you're expecting an integer, make sure you convert the submitted form data to an integer for that variable implicitly.
Same for dates, strings.
Normalize all input.
Sanitize all input.
Never trust any input.
Consider using a database abstraction library with well documented and mature APIs. Don't code things yourself.
Don't turn on ssh password authentication. Require only public/ private keys.
Turn register globals off in PHP. Use safe mode.
Make sure MySQL is on a separate server, with an RFC-1918 address, accessible from a dedicated NIC that is not on the Internet.
Consider a security audit and professional code review if you're planning on taking any money.
As the Iranians found out the hard way, it's difficult to keep an intruder out despite the obscure nature of PLC (most people probably don't even know what that is.)
Programmable Logic Controllers.
I prefer Allen-Bradley PLCs myself.
Where do you get "twice as expense per month"? Maybe for DSL.
Not for Comcast Business.
It's $20.00 extra per month.
50/10 residential is $169.95 w/ a 250GB cap.
50/10 business is $189.95 w/ no cap, and I can get static IPs, and run as many servers as I want.
(Atlanta region)
You know, for $59.95/ month you can get Comcast Business and have no bandwidth caps, no ports blocked, 4 hour response times in the event something gets frakked, and techs that actually know what the hell they're talking about, and the ability to run whatever servers you want without them saying shit about it.
(You also get your own Sharepoint server and Exchange mailboxes for those that are OS challenged.)
Best decision I ever made. (Switching to Comcast Business).
(Don't get me wrong, I hate Comcast with a passion, but it makes you wonder if Comcast is able to afford unlimited bandwidth for $10/ month than what's the real purpose of those 250GB caps?)
With those reasons, why on Earth did you buy a Mac to begin with?
You would have been much better off with a Dell running Ubuntu.
Just sounds to me like you (and everyone else trying to accomplish the same thing) are trying to force a square peg into a round hole.
If the only thing that's tying you back is iTunes, then run the Windows version under Wine.
JFC dude.
Ever hear of a Money Order?
You don't understand. In order to filter the SSL traffic, you first have to intercept it, decrypt it, and then repackage it for further transport.
If you don't consider that "broken", considering that SSL was never intended to be that way (except between endpoint and server) then I'm afraid I can't help you.
I got news for you and everyone else:
d +traffic/2100-1029_3-5940533.html
HTTPS / SSL / TLS is not secure.
The only thing that fucking lock gives you is a modicum amount of assurance of who the real individuals are behind that domain you're surfing (and even that is turning into bullshit now-a-days).
The technology exists today (in fact for the past several years now) to decrypt, and reassemble (as in man-in-the-middle attack) an SSL/ TLS packet stream to inspect away.
We've got the commercial appliance where I work today that can do that, and as far back as 2000 I remember the solutions being commercially available to do the same.
So go on, continue to believe in TLS/ SSL, and while you're at it take a look at the following if you don't believe me:
http://news.com.com/Blue+Coat+to+cleanse+encrypte
http://viralinks.com/computersecurity/?cat=846
1. Unconscionable: How I feel about this whole matter. Completely unconscionable that GoDaddy could or WOULD do anything like this.
2. 142: The number of domains I have registered with GoDaddy.
3. $1500: Roughly the annual amount I pay for my domains to renew them each year.
4. 48: The number of hours I have allotted myself this weekend to transfer each and every one of them AWAY from GoDaddy to someplace like NameCheap.com or DomainMonitor. Haven't decided yet.
5. True: Boolean value for whether or not I am pissed-off.
6. Very Much: The level of item 5, above's, value.
I dunno dude, I just did your exact same search:
u pport+in+Windows+98&ie=utf-8&oe=utf-8&rls=org.mozi lla:en-US:official&client=firefox-a&safe=active
... ::shock!:: useful. ::horror!::
http://www.google.com/search?q=USB+Mass+Storage+s
And got vastly different results than you testified to above.
In fact, most of the results were
Depends on what I'm searching for. If its something thats specialized then I start with Wikipedia. If its broad and general then I start with Google.
Although, I've got to admit, there's this extension for FireFox that embeds the Wikipedia entries into the Google search results page. I use it at work, and for the life of me I can't remember its name right now, but its awesome.
Hmmm..
Cables:
- Require no additional power
- Difficult to intercept communication
- Finite distance
- Clutter
UWB/ Wireless in General:
- Requiers power for transmitter/ receiver resulting in reduced battery life or increased power consumption
- Interception/ eavesdropping much easier
- Tempest Emissions/ Interceptions?
- Finite distance
- Much more susceptible to interference
I'm sure there's more but I'll stick with copper, thank you.
Tell that to Scott Peterson.
But wait, he *did* kill his wife, didn't he?
At least a Jury said so.
But *he* was tried on circumstantial evidence, too.
Count me in as one of those persons.
No mre CableTV, and two different (yet both really bad experiences) with Dish & DirecTV mean I won't be getting Satellite, either.
Between iTunes & certain "other means", who needs Cable TV?
Finally, "TV The Way I Want It To Be(TM)".