While I won't get on the I heart Bill bandwagon when he contributes in self serving ways (eg: M$ loaded PCs to Libraries that tie your hands about what you can do with them). I will give him this one.
Robotec (and most all Anime that goes to the US) Most reality television shows (survivor came from Oz) The office had the same name Coupling became Friends Steptoe and Son became Sanford and Son Man About the House became Three's Company Till Death Us Do Part became All in the Family Are You Being Served? became Beanes of Boston
So yes, the US does import television shows, and many believe the originals are more funny, have better voice acting, or are just less broken then the US versions... Ask any anime purist what they think of US doovers... but not with me in the room please:)
See my other comments for clarification on what I was trying to get across above.
I'll note that most of my Mac OS experiences were pre-OSX, but I do find netinfo to be a pain in the tuckus, and did when it was nextstep too. Also I wish Nextstep/Macos would put their files where I can find them without recursively greping half the harddrive:)
not flawed so much as unclear. I know why Macs are good. As an IT professional though I am mostly stuck with a windows workstation. I've also used macs to know that they are difficult (up to OSX, now I just open a shell window:)) for my mindset to work with.
The point I was trying to get across is that we all bring our biases with us. The trick to being a good reporter/commentator is to recognize those biases.
Dorvak seems to see the biases of Mac users, but misses the biases of himself.
Consider this: Fox news airs an obviously biased article by an openly microsoft founded advocacy group. So to be "balanced" they run an equal time piece by the oposing side. They invite the EFF, or someone from the the govt of Mas. to make the opposing viewpoint, right? No, they run a column of emails from readers with a note at the very bottom, where noone would read it unless they waded through the whole article, not appologizing, or retracting, just stating they should have acknowleged the original piece was an article from a microsoft founded organization.
Balanced? Nope. They could have been. I'm sure EFF would have been happy to write an opposing piece. Did they bother? No. That's why Fox News has a bad rep.
Ah taxes, people don't mind them on things they don't buy and hate them on things they do buy. Personally, I don't pay for any internet porn, and am also not a citizen of the USA, so sure, tax Porn:)...
irrelivent really, wipe the partition table and you're probably quicker off to just reghost the thing then try and unrandomize the partition table, I'm sure there's enough entropy left in your average library workstation to do that:)
Actually, security in this case is about doing a calculation of the worth of what it is you're protecting against the cost (be it a cost in terms of cash for access controls, or a cost in terms of user convience and system functionality) of the security. I've seen financial instituations who had all their workstations in a central computer room and just ran KVM terminals to each desk. The server room looked more like a vault. It was important to them to keep the workstations secure. On the other hand if you're a library and your only trying to keep them secure so that you don't have to reinstalls every week because some 12 yr old types cat/dev/random >/dev/hda & well then a locked box is probably all you need.
It's just like insurence really, you sit down and calculate how much your information is worth. After you do that, you put into place access controls equal or greater then the value.
I don't recall the UN ever stepping in and doing anything. My professor concurs.
set OFFTOPIC=1 Like what? Deploy space based hunter killer robots that shot thermal rays from orbit to destroy all the nukes on earth? Ya, you're right they didn't do that.
They did however provide a forum for the discussion of disagreements, and a structure within for things like the ABM treaty et all to exist in international law (oops that's a dirty word).
It provided a forum where the non-superpowers could extert some peer pressure on the US and Soviets.
It provided a number of opertunties for cooperation that lead to greater mutual understanding which arguably lead to the eventual thawing of the cold war. It's hard to consider hte man you were sitting across the table at a UNICEF meeting discussing how to vacinate children in the developing nations to be a blood thirthy enemy.
The UN, like most diplomatic insterments, is a tool of subtly. Just because you don't see it invading countries does not mean it has no long term result. You don't see erosion either, but you don't deny it exists. set OFFTOPIC=0
The DNS system should be decentralized. The true amount of power invested in it is small (you can turn off the internet for non-clued people). Can anyone see a situation where this is a good thing?)
On the other hand the symbolism of turning over the DNS system to an international group would be striking. But it seems the US isn't serious about closing the rifts that it created after all.
The person requiring its purchase is the person who will be checked by it.
In this case, the person it will be checking has proven they are willing to accept responsibility for their actions, and so the need for the device is fairly minimal
Sadly, not always true. I have had people who are totaly rational normal smart people in the light of day, who asked me to hold their keys because they planned to get smashed threaten to punch my lights out when I refused to give them their keys after a fight with their bf/gf. One went out and got the hidden spare from their own car, and drove off.
I had one person who drove after asking me to be the keyholder come to me the next day and beg forgivness.
The problem is that alcohol can turn even the reasonable people into walking morons. They do it even tho in the sober light of day they'd agree that drinking and driving is the single stupidest thing they could ever do in their life.
It usually happens after they have a fight with someone, and their fight/flight reflex kicks in. I get to be the lucky thing standing in their way.
Now if this would solve the problem in these cases is questionable, but hey, at least people wouldn't be threatening me with bodily harm:), and I'm not sure the people in question are rational enough at that point to sit down and think of how they could circumvent the system.
I'm going to stick my head out and instead of flaming you, agree. People tend to view the past with a lovely hazey glow. I watched ANH right before episode 1. Themes that had seemed to me, at age 8, to be complex and deep now seemed obvious and underdeveloped. Ep1 is no great work of art, don't get me wrong, but nor was the original trilogy. Go to the movies for what they are, escapism. Or don't if you don't like them. But don't decide to pay your money just so you have a license to complain later. If it's a waste of time, don't spend your time doing it.
Used to be when looking at M$ products I'd say "wait for the point release". No way was I running dos 6, I waited for 6.1, windows 3, I waited for 3.1, etc. Now M$ wants to wait for CSS 2.1!
I think what he Mr Schneier is actually trying to get across is that it will need to be implemented as part of a whole not as "the" solution.
I see that often with firewalls. Companies deploy a strong perimeter defense, neglect internal auditing, internal security patches and then are shocked when some low level employee walks off with the candy store. "Why didn't the firewall save us?!"
Same holds true for two factor authentication. Is it an improvement? Yep. We use securID on all mission critical servers here.
Is it the end all, be all solution? Of course not.
Before microsoft can credibly deploy a two factor autentication system, they need to clean house on their server codebase. A autentication server that has multiple administrator exploits in a year is not going to help me sleep at night and will not have me trading in my Solaris SecurID box anytime soon.
Actually my phone rang and I had to do real work, so I had intended that to read as fIbe (long I, a shortened form of fibre) as I reached for the phone to find out whom had broken what this time.
It's interesting because fiber is pretty damned sensitive to things like going around corners and being run over with office chairs and a whole lot of other things can make it a challenge to deploy to the desktop. That's why gig over cat 5e is way more popular these days then over fibre. Outside of the machine room fibre isn't a popular solution. And definatly if you're going to run it around window tracks or under carpet with roller chairs, you don't want to use fib...
OK, I'm going to give you the benifit of the doubt and assume you are not a troll, so here goes.
I am a computer professional, work in the IT industry for 10+ yrs now. In that time I've worked for several companies as network admin/network security officer. Since the advent of IM networks, I have yet to work in one company where I have not gone to the executive branch and said "You know, we send confidental information over IM a lot."
Things like business deals, and information that could, given some of these were publicly traded companies, could have made some signifigant cash for someone who intercepted the communications.
So it's not so much about you and your friend debating who fraged whom first, it's your CEO chatting with your CFO about the next takeover target.
I am not saying that it's a good idea to communicate confidental information over AIM, but rather that: 1) it does happen 2) people commenting that AOL would never bother to read it do not help people like myself who try to raise awareness of the problem in a corporate environment. (If I had a dollar for every time an exec has looked at me with the "get him a tinfoil hat" look, I'd not need to talk to them anymore!)
My self, my wife and several of our friends play Munchkins regularly and very much enjoy it. It's a stab your friend in the back sort of game, where you go crawling through a dungeon with your party, and try to get to level 10 before the rest of your party. Preferably by killing them all off multiple times. The cards are hillarious, and will make anyone who has ever played a dungeon crawl in D&D giggle. There are a number of expansions worth getting, such as star munchkins (my wife especially likes building impressive laser weapons, such as x-rayser-laser-dazer-phaser-goawayzer with improved special effects. She still lost tho!) munchkin bites (vampire munchkins, yay), munkin fu (martial arts munchkins... hi-ya!) and add-ons to the original munchkins (Sluggy fans: Watch for Pete Adam's monster contribution)
Highly recommended, fun for you and all your friends too. Until they hate you for winning that is:)
In Antigua it's already illegal. Cable and Wireless pushed through a law making it illegal. When you sign up for ISP service, you have to agree not to do it, along with the usual AUP.
It's worth pointing out that on the point of the law being unreasonably vauge, the court said:
without the unpublished regulations or statutes before it, the court was unable to conduct any meaningful inquiry as to the merits of the plaintiff's vagueness argument and, therefore, dismissed the claim for lack of standing or jurisdiction
Infinate: see loop. Loop: see infinate.
Since the law is secret, we can't tell you if it's too vauge.
Then why would the requirement be enforeced by a secret law? Much easier to enforce as an airline reg: "All tickets are non-transferable. Prior to boarding the aircraft you will be required to present an acceptable proof of identification. The following are acceptable".... No biggie. On the other hand, if you have a secret govt law requiring that you show ID to get on the airplane, you get lots of bad press, and someone suing for constituational reasons. Sounds to me like the airlines did this the hard way if they were just trying to keep people from trading tickets.
Slashdot Mirror
While I won't get on the I heart Bill bandwagon when he contributes in self serving ways (eg: M$ loaded PCs to Libraries that tie your hands about what you can do with them). I will give him this one.
Way to go Bill!
Min
The UN != the EU.
For one thing the US is a member of the UN, and therefore would be giving up control to an organization that it is a member of.
Min
Imported santitized shows:
:)
Robotec (and most all Anime that goes to the US)
Most reality television shows (survivor came from Oz)
The office had the same name
Coupling became Friends
Steptoe and Son became Sanford and Son
Man About the House became Three's Company
Till Death Us Do Part became All in the Family
Are You Being Served? became Beanes of Boston
So yes, the US does import television shows, and many believe the originals are more funny, have better voice acting, or are just less broken then the US versions... Ask any anime purist what they think of US doovers... but not with me in the room please
Min
See my other comments for clarification on what I was trying to get across above.
:)
I'll note that most of my Mac OS experiences were pre-OSX, but I do find netinfo to be a pain in the tuckus, and did when it was nextstep too. Also I wish Nextstep/Macos would put their files where I can find them without recursively greping half the harddrive
Min
not flawed so much as unclear. I know why Macs are good. As an IT professional though I am mostly stuck with a windows workstation. I've also used macs to know that they are difficult (up to OSX, now I just open a shell window :)) for my mindset to work with.
:)
The point I was trying to get across is that we all bring our biases with us. The trick to being a good reporter/commentator is to recognize those biases.
Dorvak seems to see the biases of Mac users, but misses the biases of himself.
Thus Dorvak is not a good commentator.
Sorry if I was confusing above
Min
Let's see, the author uses windows and is therefore microsoft biased. Should he declare this inbuilt bias in every column?
:))
The vast majority of the world has a Microsoft bias (myself included, sadly, tho I have an offsetting Unix bias as well
Since MS users are trained to handle an overly obtuse interface, we find Apple interfaces simplistic and limiting.
Min
Consider this: Fox news airs an obviously biased article by an openly microsoft founded advocacy group. So to be "balanced" they run an equal time piece by the oposing side. They invite the EFF, or someone from the the govt of Mas. to make the opposing viewpoint, right? No, they run a column of emails from readers with a note at the very bottom, where noone would read it unless they waded through the whole article, not appologizing, or retracting, just stating they should have acknowleged the original piece was an article from a microsoft founded organization.
Balanced? Nope. They could have been. I'm sure EFF would have been happy to write an opposing piece. Did they bother? No. That's why Fox News has a bad rep.
Min
Ah taxes, people don't mind them on things they don't buy and hate them on things they do buy. Personally, I don't pay for any internet porn, and am also not a citizen of the USA, so sure, tax Porn :)...
:)
Just stay away from taxing World of Warcraft!
Min
irrelivent really, wipe the partition table and you're probably quicker off to just reghost the thing then try and unrandomize the partition table, I'm sure there's enough entropy left in your average library workstation to do that :)
Security is all about deterrent.
/dev/random > /dev/hda & well then a locked box is probably all you need.
Actually, security in this case is about doing a calculation of the worth of what it is you're protecting against the cost (be it a cost in terms of cash for access controls, or a cost in terms of user convience and system functionality) of the security. I've seen financial instituations who had all their workstations in a central computer room and just ran KVM terminals to each desk. The server room looked more like a vault. It was important to them to keep the workstations secure. On the other hand if you're a library and your only trying to keep them secure so that you don't have to reinstalls every week because some 12 yr old types cat
It's just like insurence really, you sit down and calculate how much your information is worth. After you do that, you put into place access controls equal or greater then the value.
Min
I don't recall the UN ever stepping in and doing anything. My professor concurs.
set OFFTOPIC=1
Like what? Deploy space based hunter killer robots that shot thermal rays from orbit to destroy all the nukes on earth? Ya, you're right they didn't do that.
They did however provide a forum for the discussion of disagreements, and a structure within for things like the ABM treaty et all to exist in international law (oops that's a dirty word).
It provided a forum where the non-superpowers could extert some peer pressure on the US and Soviets.
It provided a number of opertunties for cooperation that lead to greater mutual understanding which arguably lead to the eventual thawing of the cold war. It's hard to consider hte man you were sitting across the table at a UNICEF meeting discussing how to vacinate children in the developing nations to be a blood thirthy enemy.
The UN, like most diplomatic insterments, is a tool of subtly. Just because you don't see it invading countries does not mean it has no long term result. You don't see erosion either, but you don't deny it exists.
set OFFTOPIC=0
The DNS system should be decentralized. The true amount of power invested in it is small (you can turn off the internet for non-clued people). Can anyone see a situation where this is a good thing?)
On the other hand the symbolism of turning over the DNS system to an international group would be striking. But it seems the US isn't serious about closing the rifts that it created after all.
Pity.
Min
The person requiring its purchase is the person who will be checked by it.
:), and I'm not sure the people in question are rational enough at that point to sit down and think of how they could circumvent the system.
In this case, the person it will be checking has proven they are willing to accept responsibility for their actions, and so the need for the device is fairly minimal
Sadly, not always true. I have had people who are totaly rational normal smart people in the light of day, who asked me to hold their keys because they planned to get smashed threaten to punch my lights out when I refused to give them their keys after a fight with their bf/gf. One went out and got the hidden spare from their own car, and drove off.
I had one person who drove after asking me to be the keyholder come to me the next day and beg forgivness.
The problem is that alcohol can turn even the reasonable people into walking morons. They do it even tho in the sober light of day they'd agree that drinking and driving is the single stupidest thing they could ever do in their life.
It usually happens after they have a fight with someone, and their fight/flight reflex kicks in. I get to be the lucky thing standing in their way.
Now if this would solve the problem in these cases is questionable, but hey, at least people wouldn't be threatening me with bodily harm
Min.
Man, that's what I get for writing before caffine. That was a way better punchline :)
Min
I see from the diagrams from TFA, that one of the predefined emergancies is financial.
Now I agree that there are financial emergancies, but most do not require a first responder.
Unless maybe the program is sponsored by CapitalOne.
"We need a loan officer here STAT!"
The mind boggles.
I'm going to stick my head out and instead of flaming you, agree. People tend to view the past with a lovely hazey glow. I watched ANH right before episode 1. Themes that had seemed to me, at age 8, to be complex and deep now seemed obvious and underdeveloped. Ep1 is no great work of art, don't get me wrong, but nor was the original trilogy. Go to the movies for what they are, escapism. Or don't if you don't like them. But don't decide to pay your money just so you have a license to complain later. If it's a waste of time, don't spend your time doing it.
Simple, no?
Min
Used to be when looking at M$ products I'd say "wait for the point release". No way was I running dos 6, I waited for 6.1, windows 3, I waited for 3.1, etc. Now M$ wants to wait for CSS 2.1!
Everything old is new again!
Min
I think what he Mr Schneier is actually trying to get across is that it will need to be implemented as part of a whole not as "the" solution.
I see that often with firewalls. Companies deploy a strong perimeter defense, neglect internal auditing, internal security patches and then are shocked when some low level employee walks off with the candy store. "Why didn't the firewall save us?!"
Same holds true for two factor authentication. Is it an improvement? Yep. We use securID on all mission critical servers here.
Is it the end all, be all solution? Of course not.
Before microsoft can credibly deploy a two factor autentication system, they need to clean house on their server codebase. A autentication server that has multiple administrator exploits in a year is not going to help me sleep at night and will not have me trading in my Solaris SecurID box anytime soon.
Min
LOL
Actually my phone rang and I had to do real work, so I had intended that to read as fIbe (long I, a shortened form of fibre) as I reached for the phone to find out whom had broken what this time.
Sorry for any confusion aobut my intent.
Min
It's interesting because fiber is pretty damned sensitive to things like going around corners and being run over with office chairs and a whole lot of other things can make it a challenge to deploy to the desktop. That's why gig over cat 5e is way more popular these days then over fibre. Outside of the machine room fibre isn't a popular solution. And definatly if you're going to run it around window tracks or under carpet with roller chairs, you don't want to use fib...
Min
OK, I'm going to give you the benifit of the doubt and assume you are not a troll, so here goes.
I am a computer professional, work in the IT industry for 10+ yrs now. In that time I've worked for several companies as network admin/network security officer. Since the advent of IM networks, I have yet to work in one company where I have not gone to the executive branch and said "You know, we send confidental information over IM a lot."
Things like business deals, and information that could, given some of these were publicly traded companies, could have made some signifigant cash for someone who intercepted the communications.
So it's not so much about you and your friend debating who fraged whom first, it's your CEO chatting with your CFO about the next takeover target.
I am not saying that it's a good idea to communicate confidental information over AIM, but rather that:
1) it does happen
2) people commenting that AOL would never bother to read it do not help people like myself who try to raise awareness of the problem in a corporate environment. (If I had a dollar for every time an exec has looked at me with the "get him a tinfoil hat" look, I'd not need to talk to them anymore!)
Min.
My self, my wife and several of our friends play Munchkins regularly and very much enjoy it. It's a stab your friend in the back sort of game, where you go crawling through a dungeon with your party, and try to get to level 10 before the rest of your party. Preferably by killing them all off multiple times. The cards are hillarious, and will make anyone who has ever played a dungeon crawl in D&D giggle. There are a number of expansions worth getting, such as star munchkins (my wife especially likes building impressive laser weapons, such as x-rayser-laser-dazer-phaser-goawayzer with improved special effects. She still lost tho!) munchkin bites (vampire munchkins, yay), munkin fu (martial arts munchkins... hi-ya!) and add-ons to the original munchkins (Sluggy fans: Watch for Pete Adam's monster contribution)
:)
Highly recommended, fun for you and all your friends too. Until they hate you for winning that is
Minupla
"Oops, did I pick up the light saber instead of the sword again? So sorry. I loose more knights that way."
Min
In Antigua it's already illegal. Cable and Wireless pushed through a law making it illegal. When you sign up for ISP service, you have to agree not to do it, along with the usual AUP.
Min
It's worth pointing out that on the point of the law being unreasonably vauge, the court said:
without the unpublished regulations or statutes before it, the court was unable to conduct any meaningful inquiry as to the merits of the plaintiff's vagueness argument and, therefore, dismissed the claim for lack of standing or jurisdiction
Infinate: see loop. Loop: see infinate.
Since the law is secret, we can't tell you if it's too vauge.
Oops.
Then why would the requirement be enforeced by a secret law? Much easier to enforce as an airline reg: "All tickets are non-transferable. Prior to boarding the aircraft you will be required to present an acceptable proof of identification. The following are acceptable".... No biggie. On the other hand, if you have a secret govt law requiring that you show ID to get on the airplane, you get lots of bad press, and someone suing for constituational reasons. Sounds to me like the airlines did this the hard way if they were just trying to keep people from trading tickets.