I got one of those emails yesterday ("Someone has your password") for a Gmail account I've never heard of, where someone was trying to login from overseas. Whoever created the Gmail had apparently registered my email address as the recovery account. There was a link in the email to disavow the Gmail account, so I did that. I found it a little disconcerting that someone was able to add my email address to their Gmail account without any notification or confirmation email being sent there.
Snapchat isn't paying you, and their app says not to use it while driving. That's pretty much the complete opposite of your scenario. I agree that they'll probably share some culpability in the end, but having this dumb speed filter thing is absolutely not the same as telling someone to drive as fast as possible with reckless abandon. The latter is a feature built-in to most teenagers, phone/app/camera or not.
For whatever it's worth, someone on the Mail.ru security team is credited with discovering recent critical ImageMagick vulnerabilities (and now I'm wondering if that's how they were compromised). So while they may not send a lot of legit mail outside of Russia, I'd say Mail.ru is still a net positive.
I've read a few recent stories about kids firing their parents' gun while they were in the back of the car (a couple of them shooting their mothers at least). I would think that incidents like that should weigh on the matter.
It already does weigh on the matter. Store your gun irresponsibly and you or your loved one might get shot (and even killed) by your own child, there's your punishment. In the most recent case I believe the lady's boyfriend left his firearm under his car seat and the child found it while the girlfriend was driving. The boyfriend should and most likely will be charged. No new laws or technology needed.
The technology was initially developed to prevent police officers' weapons from being grabbed in struggles and used against them.
And how many police officers are using "smart guns," exactly? I might consider trading in my handgun for a "smart" one just as soon as all police officers are willing to do the same. In other words, never going to happen.
There are lots of stories about how the government is supposedly taking away our freedoms and a police state is coming. That police state hasn't happened.
Last year in America, the police stole^Wconfiscated more money and belongings from citizens through civil forfeiture than burglars stole. America has secret courts issuing secret warrants and serving secret orders that no one is allowed to talk about. Police are driving around using secret equipment to intercept cellphone calls and text messages, demonstrably without warrants. Cops in Chicago arrest and "disappear" citizens into a black hole of a dungeon facility called Homan Square, without even their lawyers being told where they are.
If you don't see the police state, you simply aren't fucking looking.
They run lots of stories about how Microsoft is tracking people and doing bad things with data collected through telemetry. That hasn't happened.
How do you know? None of us have any idea what Microsoft is doing with that data.
Because it's the government job to protect every person from every single possible calamity which may befall that person rather than encouraging people to take responsibility for themselves.
Amen. This line of thinking of "but if it saves JUST ONE LIFE, it's all worth it!" is dangerous, expensive, and sadly growing more pervasive. Government trying to protect every person from every possible calamity has led to the USA PATRIOT act, the mass surveillance apparatus, 3 hour lines to get on an airplane, etc.
People are going to die. It sucks, but we can't save everyone all the time.
People frequently substitute "should of" in place of "should've".
People also frequently say things like "for all intensive purposes" and "this code has been depreciated." That these mistakes are oft repeated doesn't make them any less wrong. "Should of," "could of," "would of," are fundamentally erroneous, and people who type these phrases out should be corrected for their own benefit.
(Don't say Linux, I just SSHed into an Ubuntu server which told me a system reboot was required as it downloaded and installed updates. And you can't blame forced updates on this since we're talking about Windows 7)
The CentOS instances I'm responsible for don't update anything, nor even inform me of updates, unless I run yum check-update. Of course I have a cron.daily script on each system that does this and emails me if there are updates available, but I had to implement that myself. I don't have Ubuntu installed anywhere but the behavior you describe doesn't jive with my experience on Linux over the years. Did you have to enable a feature for that or is Ubuntu really updating itself out of the box?
I personally choose which data to feed based on the convenience levels I desire.
You personally choose, are you sure? Millions of people personally chose Chrome as their browser, or Sumatra as their PDF reader, or ACDSee as their image viewer, only to have those choices reset by Microsoft. It happened in November. It happened again last week. Some people have it happen frequently.
"You choose" does not seem to be a concept supported by Windows 10.
I work in an enterprise and can tell you that Microsoft does provide the ability to disable all remote connectivity, including those connections used for its telemetry services. You just need to actually do the research on how to achieve the desired results
Alright, since you've done the research and implemented the necessary GPOs etc. to disable all of this, how about sharing what you've learned?
It could be more helpful than you think. If the server says its timezone is in the US, for example, that may be enough for a judge to grant the FBI a warrant authorizing god-knows-what attacks against it.
I'm not a Green but I'm opposed to smart meters on privacy grounds. Even more so because my utility is government-owned.
The government does not have a need to know, any better than it already can, how much power a particular house is using at any given time. The government has already demonstrated that it will gather and use this information in a malicious manner. One example is reviewing peoples' power consumption for law enforcement purposes, like trying to guess who might be growing marijuana in their house, subsequently sending SWAT teams after people who are doing nothing illegal at all. That's just from aggregate month-over-month comparisons. "You doubled your usage, so you must be breaking the law and we're going to come take a look, citizen!"
I don't want to know what sort of cockamamie analyses they'll attempt with even more refined utility data sampling. Would a President Trump compile a "Muslim registry," for example, of all homeowners whose power draw tends to drop at 5 certain times each day?
The more data they have, the more it can be abused. I'll pass on the smart meter even if it costs me more in the long run.
Want to see smoke come out of someone's ears? Ask one of the Tim-Cook-is-a-traitor, we-can-trust-the-government crowd why the FBI shouldn't break into the gun store owner's phone, where the San Bernardino shooters bought some of their firearms and brass, just to make sure nothing hinky is going on with him or his shop. You can watch the disconnect happen in their brain. "BUT THE GOVERNMENT HAS NO RIGHT..." Exactly! "AND IT WOULDN'T HELP THE CASE..." Exactly!
What method did you use to confirm that anycasting wasn't being used and what were the exact results?
I don't run Windows 10 and I'm not responsible for any of the experiments regarding what network traffic it sends where. But advanced wizardry known as "traceroute" shows me that my traffic from the US to 94.245.121.253 crosses the Atlantic.
. . .
5 ae-2-52.edge2.NewYork2.Level3.net (4.69.138.227) 19.296 ms 19.289 ms 19.270 ms
6 ae-2-52.edge2.NewYork2.Level3.net (4.69.138.227) 19.108 ms 19.011 ms 18.997 ms
7 MICROSOFT-C.edge2.NewYork2.Level3.net (4.71.190.2) 16.850 ms 16.932 ms 16.798 ms
8 ae0-0.lon04-96cbe-1b.ntwk.msn.net (204.152.141.190) 84.723 ms 84.726 ms 86.469 ms
9 ae11-0.lon04-96cbe-1a.ntwk.msn.net (207.46.44.154) 84.502 ms 10 ae12-0.lon04-96cbe-1a.ntwk.msn.net (207.46.44.162) 84.467 ms 11 ae11-0.lon04-96cbe-1a.ntwk.msn.net (207.46.44.154) 87.672 ms
. . .
The destination isn't accepting ICMP traffic, so the trace dies there in a hail of ^H, but the jump from New York to London is rather obvious. You're more than welcome to post a trace showing that your own traffic to that IP stays domestic.
So what do you do when laws in different countries are contradictory? Example: Certain speech being illegal in country A, but protected in country B?
I suppose you have two real choices,
1) block the speech from being seen in country A and allow it to be seen in countries B..Z
2) remove your business operations from country A
Take a look at Google, they've used both strategies in differing countries. Facebook itself is dealing with Belgium's ruling that they're no longer allowed to use cookies to track people who haven't signed up for the service.
My primary point is that Facebook does everything it can to minimize its tax liability in the US by shuffling money around, pretending to be based in Ireland and Luxembourg, etc. That's all well and legal for now, but in doing so, you're no longer an American company and should not have any claim to force overseas legal complaints into American jurisdiction.
At a very basic level, here's the deal. If you're going to operate as a multi-national company, and you're going to offer and promote your services around the globe, then you need to be responsible for and liable to the laws of the land in each of those territories. If you operate in France and you violate the law in France, then you should be subject to penalty in France.
You don't get to shuffle all of your American tax liability through a double Dutch Sandwich with an Irish muffin, or whatever the hell it is, and simultaneously force French legal complaints to be arbitrated in California. You can't have it both ways.
Government grants itself authority to break the law.
And governments around the world have entered into agreements to spy on each others' citizens to explicitly skirt the law.
From several recent news stories, Windows 10's biggest telemetry offender IP seems to be 94.245.121.253, which apologists are quick to tell you is "just a Teredo server" to assist with ipv6. No big deal, it's just helping the OS function! Don't pay any attention to the man behind the curtain, he's just making sure your internet works...
Funny, though, that IP is in the UK, yet Windows 10 installations in the US insist on connecting to it. That's definitely not a matter of efficiency or responsiveness or good customer experience, as the hop across the pond adds a few hundred milliseconds to every packet. For those who might need reminding, communications originating in the US where the endpoint is in a foreign nation are considered fair game for NSA snooping. And it's been known since the ECHELON revelations in the 90s that the "Five Eyes" group of countries have an arrangement to bypass laws against spying on their own citizens by engaging in reciprocal interception and sharing the data among themselves.
Slashdot Mirror
I got one of those emails yesterday ("Someone has your password") for a Gmail account I've never heard of, where someone was trying to login from overseas. Whoever created the Gmail had apparently registered my email address as the recovery account. There was a link in the email to disavow the Gmail account, so I did that. I found it a little disconcerting that someone was able to add my email address to their Gmail account without any notification or confirmation email being sent there.
How is this any different?
Snapchat isn't paying you, and their app says not to use it while driving. That's pretty much the complete opposite of your scenario. I agree that they'll probably share some culpability in the end, but having this dumb speed filter thing is absolutely not the same as telling someone to drive as fast as possible with reckless abandon. The latter is a feature built-in to most teenagers, phone/app/camera or not.
For whatever it's worth, someone on the Mail.ru security team is credited with discovering recent critical ImageMagick vulnerabilities (and now I'm wondering if that's how they were compromised). So while they may not send a lot of legit mail outside of Russia, I'd say Mail.ru is still a net positive.
Congratulations, the Web 3.0 Upgrayedd achievement has been unlocked!
Profanity? On my Slashdot?
I've read a few recent stories about kids firing their parents' gun while they were in the back of the car (a couple of them shooting their mothers at least). I would think that incidents like that should weigh on the matter.
It already does weigh on the matter. Store your gun irresponsibly and you or your loved one might get shot (and even killed) by your own child, there's your punishment. In the most recent case I believe the lady's boyfriend left his firearm under his car seat and the child found it while the girlfriend was driving. The boyfriend should and most likely will be charged. No new laws or technology needed.
Right. Per TFA,
The technology was initially developed to prevent police officers' weapons from being grabbed in struggles and used against them.
And how many police officers are using "smart guns," exactly? I might consider trading in my handgun for a "smart" one just as soon as all police officers are willing to do the same. In other words, never going to happen.
There are lots of stories about how the government is supposedly taking away our freedoms and a police state is coming. That police state hasn't happened.
Last year in America, the police stole^Wconfiscated more money and belongings from citizens through civil forfeiture than burglars stole. America has secret courts issuing secret warrants and serving secret orders that no one is allowed to talk about. Police are driving around using secret equipment to intercept cellphone calls and text messages, demonstrably without warrants. Cops in Chicago arrest and "disappear" citizens into a black hole of a dungeon facility called Homan Square, without even their lawyers being told where they are.
If you don't see the police state, you simply aren't fucking looking.
They run lots of stories about how Microsoft is tracking people and doing bad things with data collected through telemetry. That hasn't happened.
How do you know? None of us have any idea what Microsoft is doing with that data.
Whoever came up with this is brilliant. They found a way to keep some of the H-1B money in America, and it's (supposedly) made in the USA to boot.
Because it's the government job to protect every person from every single possible calamity which may befall that person rather than encouraging people to take responsibility for themselves.
Amen. This line of thinking of "but if it saves JUST ONE LIFE, it's all worth it!" is dangerous, expensive, and sadly growing more pervasive. Government trying to protect every person from every possible calamity has led to the USA PATRIOT act, the mass surveillance apparatus, 3 hour lines to get on an airplane, etc.
People are going to die. It sucks, but we can't save everyone all the time.
People frequently substitute "should of" in place of "should've".
People also frequently say things like "for all intensive purposes" and "this code has been depreciated." That these mistakes are oft repeated doesn't make them any less wrong. "Should of," "could of," "would of," are fundamentally erroneous, and people who type these phrases out should be corrected for their own benefit.
Or maybe - and here's a revolutionary idea, I know - the cops should leave you the fuck alone if you aren't hurting anyone.
(Don't say Linux, I just SSHed into an Ubuntu server which told me a system reboot was required as it downloaded and installed updates. And you can't blame forced updates on this since we're talking about Windows 7)
The CentOS instances I'm responsible for don't update anything, nor even inform me of updates, unless I run yum check-update. Of course I have a cron.daily script on each system that does this and emails me if there are updates available, but I had to implement that myself. I don't have Ubuntu installed anywhere but the behavior you describe doesn't jive with my experience on Linux over the years. Did you have to enable a feature for that or is Ubuntu really updating itself out of the box?
It checks out!
I personally choose which data to feed based on the convenience levels I desire.
You personally choose, are you sure? Millions of people personally chose Chrome as their browser, or Sumatra as their PDF reader, or ACDSee as their image viewer, only to have those choices reset by Microsoft. It happened in November. It happened again last week. Some people have it happen frequently.
"You choose" does not seem to be a concept supported by Windows 10.
I work in an enterprise and can tell you that Microsoft does provide the ability to disable all remote connectivity, including those connections used for its telemetry services. You just need to actually do the research on how to achieve the desired results
Alright, since you've done the research and implemented the necessary GPOs etc. to disable all of this, how about sharing what you've learned?
It could be more helpful than you think. If the server says its timezone is in the US, for example, that may be enough for a judge to grant the FBI a warrant authorizing god-knows-what attacks against it.
So I can subpoena the proprietary engineering designs of Ford Motor Company merely because the officer was using a Ford to patrol the highway?
I don't know, but you can certainly subpoena the proprietary source code for the breathalyzer machine he used.
I'm not a Green but I'm opposed to smart meters on privacy grounds. Even more so because my utility is government-owned.
The government does not have a need to know, any better than it already can, how much power a particular house is using at any given time. The government has already demonstrated that it will gather and use this information in a malicious manner. One example is reviewing peoples' power consumption for law enforcement purposes, like trying to guess who might be growing marijuana in their house, subsequently sending SWAT teams after people who are doing nothing illegal at all. That's just from aggregate month-over-month comparisons. "You doubled your usage, so you must be breaking the law and we're going to come take a look, citizen!"
I don't want to know what sort of cockamamie analyses they'll attempt with even more refined utility data sampling. Would a President Trump compile a "Muslim registry," for example, of all homeowners whose power draw tends to drop at 5 certain times each day?
The more data they have, the more it can be abused. I'll pass on the smart meter even if it costs me more in the long run.
Lovely MRA argument point there .. take a topic about women and try to redirect the conversation about men.
Lovely feminist tactic there... Take a comment written by a man and instead of arguing the point, label him an MRA.
Want to see smoke come out of someone's ears? Ask one of the Tim-Cook-is-a-traitor, we-can-trust-the-government crowd why the FBI shouldn't break into the gun store owner's phone, where the San Bernardino shooters bought some of their firearms and brass, just to make sure nothing hinky is going on with him or his shop. You can watch the disconnect happen in their brain. "BUT THE GOVERNMENT HAS NO RIGHT..." Exactly! "AND IT WOULDN'T HELP THE CASE..." Exactly!
What method did you use to confirm that anycasting wasn't being used and what were the exact results?
I don't run Windows 10 and I'm not responsible for any of the experiments regarding what network traffic it sends where. But advanced wizardry known as "traceroute" shows me that my traffic from the US to 94.245.121.253 crosses the Atlantic.
. . .
5 ae-2-52.edge2.NewYork2.Level3.net (4.69.138.227) 19.296 ms 19.289 ms 19.270 ms
6 ae-2-52.edge2.NewYork2.Level3.net (4.69.138.227) 19.108 ms 19.011 ms 18.997 ms
7 MICROSOFT-C.edge2.NewYork2.Level3.net (4.71.190.2) 16.850 ms 16.932 ms 16.798 ms
8 ae0-0.lon04-96cbe-1b.ntwk.msn.net (204.152.141.190) 84.723 ms 84.726 ms 86.469 ms
9 ae11-0.lon04-96cbe-1a.ntwk.msn.net (207.46.44.154) 84.502 ms
10 ae12-0.lon04-96cbe-1a.ntwk.msn.net (207.46.44.162) 84.467 ms
11 ae11-0.lon04-96cbe-1a.ntwk.msn.net (207.46.44.154) 87.672 ms
. . .
The destination isn't accepting ICMP traffic, so the trace dies there in a hail of ^H, but the jump from New York to London is rather obvious. You're more than welcome to post a trace showing that your own traffic to that IP stays domestic.
So what do you do when laws in different countries are contradictory? Example: Certain speech being illegal in country A, but protected in country B?
I suppose you have two real choices,
1) block the speech from being seen in country A and allow it to be seen in countries B..Z
2) remove your business operations from country A
Take a look at Google, they've used both strategies in differing countries. Facebook itself is dealing with Belgium's ruling that they're no longer allowed to use cookies to track people who haven't signed up for the service.
My primary point is that Facebook does everything it can to minimize its tax liability in the US by shuffling money around, pretending to be based in Ireland and Luxembourg, etc. That's all well and legal for now, but in doing so, you're no longer an American company and should not have any claim to force overseas legal complaints into American jurisdiction.
At a very basic level, here's the deal. If you're going to operate as a multi-national company, and you're going to offer and promote your services around the globe, then you need to be responsible for and liable to the laws of the land in each of those territories. If you operate in France and you violate the law in France, then you should be subject to penalty in France.
You don't get to shuffle all of your American tax liability through a double Dutch Sandwich with an Irish muffin, or whatever the hell it is, and simultaneously force French legal complaints to be arbitrated in California. You can't have it both ways.
Government grants itself authority to break the law.
And governments around the world have entered into agreements to spy on each others' citizens to explicitly skirt the law.
From several recent news stories, Windows 10's biggest telemetry offender IP seems to be 94.245.121.253, which apologists are quick to tell you is "just a Teredo server" to assist with ipv6. No big deal, it's just helping the OS function! Don't pay any attention to the man behind the curtain, he's just making sure your internet works...
Funny, though, that IP is in the UK, yet Windows 10 installations in the US insist on connecting to it. That's definitely not a matter of efficiency or responsiveness or good customer experience, as the hop across the pond adds a few hundred milliseconds to every packet. For those who might need reminding, communications originating in the US where the endpoint is in a foreign nation are considered fair game for NSA snooping. And it's been known since the ECHELON revelations in the 90s that the "Five Eyes" group of countries have an arrangement to bypass laws against spying on their own citizens by engaging in reciprocal interception and sharing the data among themselves.
Something to think about, that's all.