When I read about such techniques in a presentation from the 25C3 conference in 2008 it was not news to me even then.
http://events.ccc.de/congress/...
The cyber laws in some countries seem to be inspired by fear of the unknown, reminds me of the Salem Witch Trials. The next test for guilt in "hackers" might be that they float
A Solaris sys-admin on my team deleted '/bin/ldd' from the department server and found that he could not issue any more commands. Other processes on the server began to hang when they needed to load libraries.
He was in panic mode and planning to take down the server to boot from the installation CD in order to fix it. That would have resulted in a few hundred people unable to work for a while. I had the idea of writing a quick program on another workstation and copying that to an NFS share that was mounted by that server. The program would copy 'ldd' from another disk to '/bin/ldd' but the catch was that it could not load any system libraries, it had to be static linked with the correct version of each library it required. The bigger catch was that I had a deadline of under 5 minutes to get it working.
You probably know this already. For the moment you should concentrate on telling her that everyone is ok and she needs to rest. Talk to her, tell her not to try to respond and not to be frustrated. Don't ask questions as that will make her more frustrated. Keep her in the conversation without expecting her to answer.
The decision should be based on the common good and that is not always the worst for the occupants. Remember that the CPU in the other cars will also be evaluating the best strategy to take. http://en.wikipedia.org/wiki/N...
I had only just last week found one of the first programs that I wrote in 1972. We were lucky that our engineering school had a reconditioned IBM1800 with only a small cadre of us who knew how to use it so we got plenty of hands-on machine time in the late evenings when the official jobs had finished. You can see a printout of it on
http://2eo.blogspot.ie/2014/04...
"rather than relying on their charity or free software" - Sigh!
The FOSS movement should work to educate such people. Perhaps we should call it Bespoke Handcrafted Libre FOSS because some people equate "free" with "cheap and nasty"
It has been common knowledge for at least 14 years that governments could eavesdrop on A5/1 traffic http://cryptome.org/gsm-joke.htm
Many governments have warned industrialists not to discuss secrets when using a mobile phone near the country borders. Only the radio channels are encrypted in GSM, lawful interception happens on the wired network that interconnects the base stations so eavesdropping on A5/1 is mostly used when lawful interception is not an option, e.g. listening to the GSM traffic of other countries.
I'll ask him to say hello and give our good wishes. October Sky is one of our favourite films and let's hope Kiera does as well as Homer Hickam did despite his early escapades.
The judge knows that it's impossible to remove all copies from the Internet but he has ordered Google etc to work on the problem and demonstrate that they have spent some effort in trying as punishment for not being helpful earlier when the plaintiff asked them to clear his name.
I have worked in information security for 25 years and am always amused when people say something is "physically impossible". There is almost always a way. I have worked on forensic engineering for chip manufacturers, finding production faults by etching off layers using warm nitric acid and reading the secrets out of the circuit using a microscope. That technique can be used to make many copies of a card but nobody bothers because it's too time expensive and there are easier ways.
Many parts of the world still use only the magnetic strip. For years while Europe waited for the US to deploy chip and pin we saw European CC numbers being used in the US. Now NFC will make it easier for US based cloners to get just enough data from your cards to send to their cousins in other countries.
I was working on public key cryptography in the late 70s while doing my undergrad degree in maths and electronics and got to know some of the people in that field.
I have talked with PZ face to face about his experiences with PGP and government. I believe him.
Most companies that do this type of SSL inspection at their Internet gateways can get Internet Explorer (and such companies often standardize on IE) on the user's PCs to trust the fake certificate by pushing the fake Certificate Authority Root Cert through their Active Directory.
I help out at the local CoderDojo, it's like a youth club and we show them everything from Scratch through HTML & Javascript up to developing Android apps (for the older kids). The company I work for just donated 100 old laptops to allow kids without their own (or parents) laptop to take part.
Kevin Mitnick was able to get mugshots of police that were investigating him by buying a police yearbook claiming it was a present for a relative who was a police officer.
"At one point, he went to a police station and found a Los Angeles Police Department yearbook for sale. It included photographs and names of the very undercover squads seeking him. He said he wanted to buy a copy as a gift for his police officer uncle. With no questions asked, for $75 he walked away with a photo guide to his pursuers."
Slashdot Mirror
Why would you want an untraceable weapon? I cannot think of any ethical reason.
When I read about such techniques in a presentation from the 25C3 conference in 2008 it was not news to me even then. http://events.ccc.de/congress/...
http://listverse.com/2012/07/2...
He was in panic mode and planning to take down the server to boot from the installation CD in order to fix it. That would have resulted in a few hundred people unable to work for a while. I had the idea of writing a quick program on another workstation and copying that to an NFS share that was mounted by that server. The program would copy 'ldd' from another disk to '/bin/ldd' but the catch was that it could not load any system libraries, it had to be static linked with the correct version of each library it required. The bigger catch was that I had a deadline of under 5 minutes to get it working.
It worked :-)
You probably know this already. For the moment you should concentrate on telling her that everyone is ok and she needs to rest. Talk to her, tell her not to try to respond and not to be frustrated. Don't ask questions as that will make her more frustrated. Keep her in the conversation without expecting her to answer.
The decision should be based on the common good and that is not always the worst for the occupants. Remember that the CPU in the other cars will also be evaluating the best strategy to take. http://en.wikipedia.org/wiki/N...
I had only just last week found one of the first programs that I wrote in 1972. We were lucky that our engineering school had a reconditioned IBM1800 with only a small cadre of us who knew how to use it so we got plenty of hands-on machine time in the late evenings when the official jobs had finished. You can see a printout of it on http://2eo.blogspot.ie/2014/04...
The FOSS movement should work to educate such people. Perhaps we should call it Bespoke Handcrafted Libre FOSS because some people equate "free" with "cheap and nasty"
Many governments have warned industrialists not to discuss secrets when using a mobile phone near the country borders. Only the radio channels are encrypted in GSM, lawful interception happens on the wired network that interconnects the base stations so eavesdropping on A5/1 is mostly used when lawful interception is not an option, e.g. listening to the GSM traffic of other countries.
Eircom in Ireland do this too, there's one outside the car park that I use when shopping in the town center, very convenient.
Private sector data companies don't have a leak-proof record either http://krebsonsecurity.com/2013/09/data-broker-giants-hacked-by-id-theft-service/
Well, that didn't take long.
Name: www.governmentattic.org
Address: 127.0.0.1
$ nslookup -type=AAAA google.com
Name: google.com
Address: 2a00:1450:4007:80a::1001
$ nslookup -type=AAAA slashdot.org
Name: slashdot.org
$
I'll ask him to say hello and give our good wishes. October Sky is one of our favourite films and let's hope Kiera does as well as Homer Hickam did despite his early escapades.
The judge knows that it's impossible to remove all copies from the Internet but he has ordered Google etc to work on the problem and demonstrate that they have spent some effort in trying as punishment for not being helpful earlier when the plaintiff asked them to clear his name.
I have worked in information security for 25 years and am always amused when people say something is "physically impossible". There is almost always a way. I have worked on forensic engineering for chip manufacturers, finding production faults by etching off layers using warm nitric acid and reading the secrets out of the circuit using a microscope. That technique can be used to make many copies of a card but nobody bothers because it's too time expensive and there are easier ways.
Ross Anderson's group in Cambridge are real experts in the chip and pin technology, they know that security implementation flaws often make cards vulnerable, for example see http://www.lightbluetouchpaper.org/2012/09/10/chip-and-skim-cloning-emv-cards-with-the-pre-play-attack/
Many parts of the world still use only the magnetic strip. For years while Europe waited for the US to deploy chip and pin we saw European CC numbers being used in the US. Now NFC will make it easier for US based cloners to get just enough data from your cards to send to their cousins in other countries.
* expire date: 2013-11-15 18:15:53 GMT
Call this from a cronjob script which should then take suitable action if the date is too close.
was a Kinsale Coderdojo session in the Lilly factory canteen. Here's a video we shot of the event http://www.youtube.com/watch?v=MMODHilE4qk
I was working on public key cryptography in the late 70s while doing my undergrad degree in maths and electronics and got to know some of the people in that field. I have talked with PZ face to face about his experiences with PGP and government. I believe him.
http://www.tamersahin.com/mssecrets/hotmail.html TL;DR it was not easy!
Most companies that do this type of SSL inspection at their Internet gateways can get Internet Explorer (and such companies often standardize on IE) on the user's PCs to trust the fake certificate by pushing the fake Certificate Authority Root Cert through their Active Directory.
Here's what it looks like http://www.youtube.com/watch?v=MMODHilE4qk
They're looking for intelligence on Facebook? That should keep them searching for a while :-)
"At one point, he went to a police station and found a Los Angeles Police Department yearbook for sale. It included photographs and names of the very undercover squads seeking him. He said he wanted to buy a copy as a gift for his police officer uncle. With no questions asked, for $75 he walked away with a photo guide to his pursuers."
http://www.sodahead.com/united-states/hacking-the-system-because-he-could/question-2086111/
http://en.wikipedia.org/wiki/The_Trouble_with_Trillions