Unless you were a crypto expert I wouldn't try writing any encryption protocols yourself. It's been proven time and time again that what you think is secure can usually be easily reversed. Use proven encryption technology otherwise the only people you are hiding your message from is me and the rest of the idiots that haven't and never will design a good crypto implementation.
But would you plan such illegal activities in plain text? I know I sure wouldn't. Drug smugglering and other illegal activities have been using encryption technology (on phones and other communication devices) for quite a few years now. All Carnivore really allows is access to unencrypted data. They're going to catch the dumb criminals and individuals that may have commited a crime but aren't under investigation...oh and the dirty sex letters I write to my wife. So encrypt everything you say? Then what good is Carnivore I ask? PGP can't be easily decrypted, they can sniff all my encrypted bytes they want all that will do in todays society is lend credence to me doing illegal activities. It must be illegal, he encrypted what he wrote. Isn't that really the same as putting a letter in an envelope (which can be steamed open and PGP can't be - in theory).
I agree, they should have some technology to do network level wiretaps, I don't think Carnivore is that technology. I don't appreciate feeling like big brother is watching over my shoulder. I have nothing to fear, I haven't done anything wrong, but the feeling of being watched makes us all fearful. Carnivore is a trawler, dragnetting the internet for criminal information, it needs to be a scalpel, capable of ONLY picking up the information it's supposed to.
Why do people constantly believe in such things as heaven and hell? There's no such thing as a non-sinner; think about it. And if you lied about who you were here then you just sinned, blocking any entrance to this imaginary heaven. Face it, when you die, you are DEAD. Nobody has ever come back and said that they saw a heaven or they saw a hell...and wouldn't one mans heaven be another mans hell? Wouldn't living eternity in heaven be hell in and of itself? Humans get bored too easily if we have life easy, we love to make it difficult for ourselves.
You sir, hit it right on the head. Children crave our love and attention. They do NOT realize that you are abusing them, their minds aren't capable of that type of thought at such early ages. They may understand that it's wrong, but ultimately they are tought to trust adults. Mommy and Daddy are always right...but pedophilia is abuse plain and simple. I've never heard of a child that isn't sexually aware ASKING for sex. You aren't awakening them, you are letting them experience a nightmare.
--Doxavg
--Board Member and Security Officer - Ethical Hackers Against Pedophilia
--http://www.ehap.org
You'd have to know the history behind NetBSD and OpenBSD to understand why the two aren't the same. As for FreeBSD...all three share the same lineage, but branch at vastly different parts of the BSD tree. Suffice it to say that OpenBSD and NetBSD are the closest with FreeBSD somewhere in a land of it's own.
Re:OOOOOOOH, 5 gigs more than a IBM Deskstar
on
Maxtor's 80GB Drive
·
· Score: 1
And I've only had one Maxtor fail on me in years of PC work. In fact I've had a 7.2GB Maxtor spinning (with only a few power offs) doing over 8GB in transfer/day (2+GB file base) for almost three years. I also ran a nice old 650MB Maxtor SCSI drive that was mmm....8 years old I think, powered on most of that time (christ, it was a 650M...at the time it was pulled from service, there were still very few multi gigabyte hard disks out there...so I know it came from a server) and it only died about a year later. Wouldn't spin up *sigh*. Let's face it, every vendor has their bad years. I swear by Western Dig personally, but have had two of their drives die on me; I RMA'd them, no questions asked. Nontheless, I'd agree, the IBM drives ROCK!:) And somehow old IBM's seem to work with them when the BIOS only supports 4GB drives *grin*...it's wierd, IBM told me they weren't even supposed to work and here I am sitting with 8gb platters on old p100's where the comparative Maxtor wouldn't work.
Hmmm, wonder if they'll try and sue/. for removal of this post. At the very least I would expect them to ask for it's removal. Oh well, guess I'll go download DeCSS now and copy all the movies I just rented from Blockbuster now (note: I don't have any way to play DVD's and don't expect to purchase a DVD player in the near to semi-distant future). BTW, does copying to/dev/null constitute copyright infringement?
Or worse, what if they just decide to cut off your thumb? Hehe, that brings to light another scenario, wanna punish a "hacker", just cut off his thumbs so he can't authenticate any more, who needs jail time?
OpenBSD utilizes IP Filter by Darren Reed. Home page: http://coombs.anu.edu.au/~avalon/ Read that for more details, the short is that yes, it supports rule chaining and IMHO is MUCH more powerful than IP Chains on linux. IP NAT (Masquerade) under linux is more developed however, so alot depends on what you're trying to do. From experience, the home user will be more suited to IP Chains (linux) than IP Filter (*BSD, Solaris, HP/UX...etc)
Re:Risking life and limb for 40 million?
on
Getaway to Club Mir
·
· Score: 1
No kidding. Besides, these millionaires want bragging rights. This company is obviously targetting the get rich, play hard crowd.
Re:im more worried about cable modems
on
AOL Nation
·
· Score: 2
Man, I can't imagine having an aol.com domain...I'd seriously have to commit suicide. Roadrunner was bad enough when they required the RRLogin program and have been MUCH better since killing that piece of crap. Since there is no *nix port of AOL, alot of us will be SOL; not that I'd EVER EVER run anything that remotely resembled/usr/local/bin/aol !!!! Luckily I have a choice of DSL or cable in my area, I only chose cable in the first place because it was cheaper than DSL. I'd be willing to pay the extra costs to keep AOL out of my life.
BTW, useful/fun things to do with AOL CD's:
Make mobiles from them (especially nice if you have a laser you can play over them while listening to Pink Floyd)
Decorate your computer case
Wallpaper your wall
Microwave (not as fun as nuking cd recordables that are dead)
Make a web site with all the login names and passwords so that people can get plenty of free time (note: I'm not in any way advocating this just making note that it _might_ be fun)
Play frisbee with them (warning: it might hurt)
Throw them at a wall and watch them shatter
And a couple dozen other things that would take too much explaining.
No kidding! Why on earth is/. giving JP the time of day for an interview? What kind of worthwhile information can we expect to see from such an interview? Does this mean that we won't see interviews from people such as Alan Cox, Theo DeRaadt, or any other number of respectable people because/. has decided to lower their interview standards? I'd consider reading this for a laugh, but I've get enough email from losers that makes me laugh, I don't need to go searching for it too!
No kidding! Sheesh...the media gives crackers more attention than gangs, it's no wonder that there are so many web pages being defaced. How often do you hear of a system being cracked, backdoored and left undiscovered for months, but having NO "real" (visible) damage done to it? Never, that doesn't show up in the news, a visible "hack" does.
OTOH, if I was to hack a web site and wanted to give an interview and really _did_ know something more about cracking than jo schmoe script kiddie (I'm not saying that this imaginary individual isn't a script kiddy, just a little higher on the totem pole) I think I'd steer clear of an obvious script kiddy hangout and try to "impress" somebody that does know what they're talking about. So, no I wouldn't give an interview to AntiOnline, I'd be more tempted to give it to HNN or Attrition. Just my thoughts
Yes, we used some apache referral directives to enforce our policy of no direct linking to files on our server. This was due to a tremendous amount of people putting direct links to the PSS files on their web sites and had nothing to do with blocking search engines (although IMO that was a positive side effect). I don't know if the/jp directory was covered in our referral rules, considering how it was layed out, I suspect not.
The directory was never "hidden" however. There was no index.html in it, so anyone with half a brain could figure out how to list if they had viewed any of the documents in that directory. I do not know if there was a direct link to the/jp directory or not - I suspect there was, but I don't feel like grepping through all of Ken's.html files to prove that point.
It is a copy of what was in that directory. As for the reasons Ken had for having that directory on his own site, I can't say. It was his site, his decision, I can't defend him on that. I will however make the directory available so that everyone else can make up their own minds regarding it's content.
FYI, the majority of the content of that directory was created by others and found online. Too my knowledge Ken only provided a repository for the information.
The/jp directory was posted by me not by Ken Williams. Get your facts straight next time you post such crap. By the way the README file in that directory clearly states that _I_ was the one to make the directory available. This particular post stinks of JP in my opinion.
Correction, this is all of the archive _I'm_ willing to post online. Everything that resides in the ~tattooman directory of Genocide2600.com is considered to be the personal property of Ken Williams. It does contain a two week old copy of the PSS archive site. But Genocide2600.com will no longer be hosting that site so we will NOT be putting up the data for any reason (with or without Ken's consent). I posted the/jp directory in an effort to let people know what content JP complained about and what this has supposedly been about.
Slashdot Mirror
Unless you were a crypto expert I wouldn't try writing any encryption protocols yourself. It's been proven time and time again that what you think is secure can usually be easily reversed. Use proven encryption technology otherwise the only people you are hiding your message from is me and the rest of the idiots that haven't and never will design a good crypto implementation.
But would you plan such illegal activities in plain text? I know I sure wouldn't. Drug smugglering and other illegal activities have been using encryption technology (on phones and other communication devices) for quite a few years now. All Carnivore really allows is access to unencrypted data. They're going to catch the dumb criminals and individuals that may have commited a crime but aren't under investigation...oh and the dirty sex letters I write to my wife. So encrypt everything you say? Then what good is Carnivore I ask? PGP can't be easily decrypted, they can sniff all my encrypted bytes they want all that will do in todays society is lend credence to me doing illegal activities. It must be illegal, he encrypted what he wrote. Isn't that really the same as putting a letter in an envelope (which can be steamed open and PGP can't be - in theory).
I agree, they should have some technology to do network level wiretaps, I don't think Carnivore is that technology. I don't appreciate feeling like big brother is watching over my shoulder. I have nothing to fear, I haven't done anything wrong, but the feeling of being watched makes us all fearful. Carnivore is a trawler, dragnetting the internet for criminal information, it needs to be a scalpel, capable of ONLY picking up the information it's supposed to.
Why do people constantly believe in such things as heaven and hell? There's no such thing as a non-sinner; think about it. And if you lied about who you were here then you just sinned, blocking any entrance to this imaginary heaven. Face it, when you die, you are DEAD. Nobody has ever come back and said that they saw a heaven or they saw a hell...and wouldn't one mans heaven be another mans hell? Wouldn't living eternity in heaven be hell in and of itself? Humans get bored too easily if we have life easy, we love to make it difficult for ourselves.
You sir, hit it right on the head. Children crave our love and attention. They do NOT realize that you are abusing them, their minds aren't capable of that type of thought at such early ages. They may understand that it's wrong, but ultimately they are tought to trust adults. Mommy and Daddy are always right...but pedophilia is abuse plain and simple. I've never heard of a child that isn't sexually aware ASKING for sex. You aren't awakening them, you are letting them experience a nightmare.
--Doxavg
--Board Member and Security Officer - Ethical Hackers Against Pedophilia
--http://www.ehap.org
You'd have to know the history behind NetBSD and OpenBSD to understand why the two aren't the same. As for FreeBSD...all three share the same lineage, but branch at vastly different parts of the BSD tree. Suffice it to say that OpenBSD and NetBSD are the closest with FreeBSD somewhere in a land of it's own.
128KB, not 128B :) Small difference, not that it changes anything of course.
Hahaha, OMG, now that brings back memories :)
--Dox
And I've only had one Maxtor fail on me in years of PC work. In fact I've had a 7.2GB Maxtor spinning (with only a few power offs) doing over 8GB in transfer/day (2+GB file base) for almost three years. I also ran a nice old 650MB Maxtor SCSI drive that was mmm....8 years old I think, powered on most of that time (christ, it was a 650M...at the time it was pulled from service, there were still very few multi gigabyte hard disks out there...so I know it came from a server) and it only died about a year later. Wouldn't spin up *sigh*. Let's face it, every vendor has their bad years. I swear by Western Dig personally, but have had two of their drives die on me; I RMA'd them, no questions asked. Nontheless, I'd agree, the IBM drives ROCK! :) And somehow old IBM's seem to work with them when the BIOS only supports 4GB drives *grin*...it's wierd, IBM told me they weren't even supposed to work and here I am sitting with 8gb platters on old p100's where the comparative Maxtor wouldn't work.
--Dox
Hmmm, wonder if they'll try and sue /. for removal of this post. At the very least I would expect them to ask for it's removal. Oh well, guess I'll go download DeCSS now and copy all the movies I just rented from Blockbuster now (note: I don't have any way to play DVD's and don't expect to purchase a DVD player in the near to semi-distant future). BTW, does copying to /dev/null constitute copyright infringement?
Or worse, what if they just decide to cut off your thumb? Hehe, that brings to light another scenario, wanna punish a "hacker", just cut off his thumbs so he can't authenticate any more, who needs jail time?
OpenBSD utilizes IP Filter by Darren Reed. Home page: http://coombs.anu.edu.au/~avalon/ Read that for more details, the short is that yes, it supports rule chaining and IMHO is MUCH more powerful than IP Chains on linux. IP NAT (Masquerade) under linux is more developed however, so alot depends on what you're trying to do. From experience, the home user will be more suited to IP Chains (linux) than IP Filter (*BSD, Solaris, HP/UX...etc)
No kidding. Besides, these millionaires want bragging rights. This company is obviously targetting the get rich, play hard crowd.
Man, I can't imagine having an aol.com domain...I'd seriously have to commit suicide. Roadrunner was bad enough when they required the RRLogin program and have been MUCH better since killing that piece of crap. Since there is no *nix port of AOL, alot of us will be SOL; not that I'd EVER EVER run anything that remotely resembled /usr/local/bin/aol !!!! Luckily I have a choice of DSL or cable in my area, I only chose cable in the first place because it was cheaper than DSL. I'd be willing to pay the extra costs to keep AOL out of my life.
BTW, useful/fun things to do with AOL CD's:
Make mobiles from them (especially nice if you have a laser you can play over them while listening to Pink Floyd)
Decorate your computer case
Wallpaper your wall
Microwave (not as fun as nuking cd recordables that are dead)
Make a web site with all the login names and passwords so that people can get plenty of free time (note: I'm not in any way advocating this just making note that it _might_ be fun)
Play frisbee with them (warning: it might hurt)
Throw them at a wall and watch them shatter
And a couple dozen other things that would take too much explaining.
I'm pretty sure that answer would be pink Ken.
--Dox
No kidding! Why on earth is /. giving JP the time of day for an interview? What kind of worthwhile information can we expect to see from such an interview? Does this mean that we won't see interviews from people such as Alan Cox, Theo DeRaadt, or any other number of respectable people because /. has decided to lower their interview standards? I'd consider reading this for a laugh, but I've get enough email from losers that makes me laugh, I don't need to go searching for it too!
--Dox
No kidding! Sheesh...the media gives crackers more attention than gangs, it's no wonder that there are so many web pages being defaced. How often do you hear of a system being cracked, backdoored and left undiscovered for months, but having NO "real" (visible) damage done to it? Never, that doesn't show up in the news, a visible "hack" does.
OTOH, if I was to hack a web site and wanted to give an interview and really _did_ know something more about cracking than jo schmoe script kiddie (I'm not saying that this imaginary individual isn't a script kiddy, just a little higher on the totem pole) I think I'd steer clear of an obvious script kiddy hangout and try to "impress" somebody that does know what they're talking about. So, no I wouldn't give an interview to AntiOnline, I'd be more tempted to give it to HNN or Attrition. Just my thoughts
Yes, we used some apache referral directives to enforce our policy of no direct linking to files on our server. This was due to a tremendous amount of people putting direct links to the PSS files on their web sites and had nothing to do with blocking search engines (although IMO that was a positive side effect). I don't know if the /jp directory was covered in our referral rules, considering how it was layed out, I suspect not.
/jp directory or not - I suspect there was, but I don't feel like grepping through all of Ken's .html files to prove that point.
The directory was never "hidden" however. There was no index.html in it, so anyone with half a brain could figure out how to list if they had viewed any of the documents in that directory. I do not know if there was a direct link to the
--Dox
It is a copy of what was in that directory. As for the reasons Ken had for having that directory on his own site, I can't say. It was his site, his decision, I can't defend him on that. I will however make the directory available so that everyone else can make up their own minds regarding it's content.
FYI, the majority of the content of that directory was created by others and found online. Too my knowledge Ken only provided a repository for the information.
--Dox
The /jp directory was posted by me not by Ken Williams. Get your facts straight next time you post such crap. By the way the README file in that directory clearly states that _I_ was the one to make the directory available. This particular post stinks of JP in my opinion.
--Dox
Correction, this is all of the archive _I'm_ willing to post online. Everything that resides in the ~tattooman directory of Genocide2600.com is considered to be the personal property of Ken Williams. It does contain a two week old copy of the PSS archive site. But Genocide2600.com will no longer be hosting that site so we will NOT be putting up the data for any reason (with or without Ken's consent). I posted the /jp directory in an effort to let people know what content JP complained about and what this has supposedly been about.
--DoXaVG
--Security Admin - Genocide2600.com
--doxavg@Genocide2600.com