MI5 have had this for years. I mean at the range talked about in the article they can also get a good picture quality from your monitor too. This problem has been known about since the 1980s and is the reason why the security services use magnetic shielding either in an entire building or just in private rooms (such as those that exist in every British Embassy internationally).
EM leaks have no real solution at this stage except to shield like crazy. There is potential for some kind of white noise generator but different pieces of electronics would require one tuned to them and the levels required would make a blanket device expensive, or overly large.
I wouldn't worry about people listening in to your keyclicks at home just yet. Perhaps if you work a big corp and there is money on the line. Corporate espionage is big business arguably even bigger than legitimate government work.
Frankly I'm surprised ONLY 7.3% have technical violations. It is an extremely long, complex, and needless process that makes it easy to make mistakes at every step.
There have been books dedicated JUST to the process of US visa application forms, it really is that bad and can take up to or over six months.
I'm sure a lot of fraud goes on... But technical violations is more than likely just people struggling with the system.
As one of the 21st centuries greatest thinkers said: "And again, the Internet is not something that you just dump something on. It's not a big truck. It's a series of tubes. And if you don't understand, those tubes can be filled and if they are filled, when you put your message in, it gets in line and it's going to be delayed by anyone that puts into that tube enormous amounts of material, enormous amounts of material" - Ted Stevens
Consumers in the US in particular are hugely behind the curve as far as end to end security goes. A lot of Credit and Debit cards are still being issues without Chip & Pin. Yet worse for some mind boggling reason Credit Card companies have started installing RFID into these cards.
In the EU, the UK in particular Chip & Pin is mandatory while RFID is nowhere to be found. Now I appeaciate that the US only recently moved away from Checks and still have a very questionable Direct Debit (bank to bank transfers) system in place but you would think one of the worlds leaders wouldn't be one of the worlds losers in terms of card security and fraud protection.
Sorry but telling people to switch to the web interface and change the password is more than just a little paranoid.
This might be hard to believe but less than ten years ago virtual all passwords were transmitted in plain text.
If you aren't surfing in insecure wireless then you really have nothing to worry about. And if you are surfing on insecure wireless than frankly you should assume HTTPs will protect you.
Considering how easy RFIDs are to fake and how much they want to automate authentication the technology will be easier to bypass than the old fashioned 3D hologram was.
People assume that just because its new then no bad guy will be able to figure it out... And that worked on Police Radios for like ten years before all the bad guys had scanners.
These stories keep on referencing the packaging being at fault...
Now I'm no electrical engineer but when you take a working chip and put it in a machine it seems a little odd to blame the packaging it came out of for higher than normal failure rates if it works initially.
Maybe "packaging" refers to the way the actual chips are placed into the material around them? Although it seems like a very odd way of wording it as to me packaging implies something that is discarded.
If someone could explain in non-layman's terms what exactly the problem was I would much appreciate it.
Nobody likes MediaSentry but they do make a compelling case. If you require a PI license in order to simply view logs of connections to your machine and to contact the people referenced in those logs then the law would be extended to a lot of other things.
If I not mistaken I thought the line between requiring a PI license and not is simply where the information exists... If you are using third parties or other people's hardware then a PI license if clearly warranted.
But on the other hand if all the information you're using is in-house then the license is simply not warranted or helpful.
I don't think it would serve the public good at all to require a PI license, particularly if all Network/System Administrators ended up requiring one.
It also wouldn't stop SafeNet/MediaSentry from operating the way they currently do.
It will be easy to sell the concept of SSD to pretty much anyone, particularly for a laptop. Here is the short list: - Faster Reads - Potentially faster to wake up from sleep - More durable - Less chance of sudden and complete data loss (e.g. A smaller portion of the drive would fail instead of a complete drive failure as with a magnetic disk) - Consumes less power - Quieter - Cooler (also a power saving feature due to less fan running time)
SSD drives are very cool pieces of technology and I for one can't wait to be able to buy a superthin laptop with no magnetic disk.
Hmm let me think: - Few Perl Developers - Difficult (or impossible) to maintain - There are better alternatives - Easy to write badly difficult to write well (e.g. Language doesn't lend its self to good practices)
Perl is a dying language and frankly it is easy to see why. The real question is what does Perl do better than the competition other than being older than my Dad and having a bunch of essentially pointless libraries?
This might sound completely insane but did anyone consider that Microsoft might try and cut costs by using Apache for the backend in Windows Server 2010?
Apple has done it with Apple OS X Server. It would allow Microsoft to keep up to date with web standards without having to spend vast amounts to do it. All they would really need to do is develop propitiatory modules that they could hook in.
Microsoft really have very little vested interest in keeping IIS up-to-date. It isn't a big cash cow and I think most people would agree that it isn't a great web server (although does have some nice tie-ins with the OS).
While I am posting I really dislike the article attacking the Apache licence. The Apache and BSD licenses are the purest form of what OSS stands for. It is freedom in the true sense and not freedom in the American sense (e.g. Freedom at the barrel of a gun).
But it is Nvidia's fault because they signed off on these cooling units.
That is like saying it isn't your car maker's fault if they put breaks in your car designed for a lawnmower and instead it is obviously the people who are making these lawnmower breaks fault for not making sure they can break a much heavier car...
From what I'm reading the issue isn't with fans not performing as expected. The issue is that at the performance rate Nvidia had them at they simply didn't do the job needed and resulting in the GPU overheating and destroying its self.
It is entirely, 100% Nvidia's fault. If you put in substandard parts you get a substandard result.
The concept of a personal flying machine (e.g. Cars, Bikes, Jet Packs) is two fold at the moment.
1) Energy / Power (inc. Storage & Delivery) 2) Safety
Now I'm going to assume for the sake of this post that we could solve the second one if it was viable to do anyway.
The real kicker is really energy. We need a very rich energy source that is cheap, light, small in volume, and safe.
We can often tick two or three of those boxes but no energy source comes remotely close to hitting all four. Hydrogen for example is light, small in volume, but there are questions over safety and cost.
If we invented some kind of completely safe energy source that had the energy output approaching a nuclear reactor and weighted very little we could be in flying cars within a few years.
Comparing Sugar to Windows XP is kind of like comparing a pushbike to a 747 engine...
They're designed to do different things. Sugar is designed to be incredibly simple needing little training (or reading skill). It allows people to use a computer without having to learn how to use a computer.
Windows XP is a versatile monster trying to offer all things to all people. It is hugely complex and requires the average person a great deal of time to pickup and use.
I can understand why Microsoft might wish to run XP on the X0 but what I struggle to understand is why anyone is comparing them to one another.
If Microsoft develops some kind of child friendly interface that children can use then we can start talking about it. But until that happens you just aren't comparing the same thing at all.
In 99.9% of cases it isn't the protocol that causes a server crash and instead it is the way that the protocol is implemented.
This story is another example of that. Although they're fixing it by changing the protocol spec' that is really just a much cheaper way of resolving the core issue (e.g. That any input shouldn't ever cause a crash - corrupt or otherwise).
Programmers need to learn something but I think the real lesson here is simply that input over the network cannot ever be trusted. You should assume that it is corrupt, untrusted, or wrong.
Other large businesses could learn a lot from Amazon's example.
How often do you have the problem really explained to you, an apology, and a reasonable set of changes to stop it occurring again?
Most businesses would never explain the root of any problem. They simply list "hardware issues." And they NEVER say sorry anymore - supposedly it opens them up to more liability or something.
If I was an Amazon customer I would be happy with their explanation and apology even if obviously the downtime is still an issue.
Alright this Vista thing has got a little out of hand. Here's a quick recap on events up till now: 1) Microsoft Released Windows Vista 2) Windows Vista failed to live up to people's expectations 3) People said "stick with Windows XP for now" 4) People complained about the normal driver and application compatibility issues 5) Somewhere along the line "stick with Windows XP for now" got turned into "Windows Vista sucks - stick with XP indefinitely."
So now we have people paying the same amount of money either way and going out of their way to pickup Windows XP. I could appreciate that position a year when issues still existed but those have all but gone today.
Vista is about as big of a leap as going from virgin XP to XP SP2. Meaning a few nice features but not really worth money. It has very few bugs and at least as many as XP currently does.
Windows ME was terrible. But let's be clear - Vista isn't ME. Because Windows ME was genuinely an unstable buggy monster as opposed to Vista which is just a very minor upgrade with a huge price tag.
Yes it eats more memory. SuperFetch converts all of your available free memory into better program loading times. These pages are marked so that they can be disposed of very quickly but when viewing a memory map it appears as if memory usage has skyrocketed.
Thank you Mr. Conspiracy theory. But the truth is that: - There is a serious problem in WoW - It is extremely common for accounts to get compromised - Sometimes people quit the game after a breakin (-$13/month) - A 30 second google search found similar devices for between $17 and $23 a go
If I had to guess I would imagine Blizzard breaks even roughly on these devices. I can't imagine there being a huge profit margin on $6 and that they justify it by keeping people playing.
Slashdot Mirror
MI5 have had this for years. I mean at the range talked about in the article they can also get a good picture quality from your monitor too. This problem has been known about since the 1980s and is the reason why the security services use magnetic shielding either in an entire building or just in private rooms (such as those that exist in every British Embassy internationally).
EM leaks have no real solution at this stage except to shield like crazy. There is potential for some kind of white noise generator but different pieces of electronics would require one tuned to them and the levels required would make a blanket device expensive, or overly large.
I wouldn't worry about people listening in to your keyclicks at home just yet. Perhaps if you work a big corp and there is money on the line. Corporate espionage is big business arguably even bigger than legitimate government work.
Frankly I'm surprised ONLY 7.3% have technical violations. It is an extremely long, complex, and needless process that makes it easy to make mistakes at every step.
There have been books dedicated JUST to the process of US visa application forms, it really is that bad and can take up to or over six months.
I'm sure a lot of fraud goes on... But technical violations is more than likely just people struggling with the system.
As one of the 21st centuries greatest thinkers said:
"And again, the Internet is not something that you just dump something on. It's not a big truck. It's a series of tubes. And if you don't understand, those tubes can be filled and if they are filled, when you put your message in, it gets in line and it's going to be delayed by anyone that puts into that tube enormous amounts of material, enormous amounts of material" - Ted Stevens
Consumers in the US in particular are hugely behind the curve as far as end to end security goes. A lot of Credit and Debit cards are still being issues without Chip & Pin. Yet worse for some mind boggling reason Credit Card companies have started installing RFID into these cards.
In the EU, the UK in particular Chip & Pin is mandatory while RFID is nowhere to be found. Now I appeaciate that the US only recently moved away from Checks and still have a very questionable Direct Debit (bank to bank transfers) system in place but you would think one of the worlds leaders wouldn't be one of the worlds losers in terms of card security and fraud protection.
Sorry but telling people to switch to the web interface and change the password is more than just a little paranoid.
This might be hard to believe but less than ten years ago virtual all passwords were transmitted in plain text.
If you aren't surfing in insecure wireless then you really have nothing to worry about. And if you are surfing on insecure wireless than frankly you should assume HTTPs will protect you.
If you actually check T-Mobile's site instead of reading the article you'll find no use of the word "unlimited" anywhere on the pages.
In fact next to each plan it lists "3GB fair use amount - without any run-on rates."
In fact the only reference I can find to "unlimited" broadband is on ISP Review.
Considering how easy RFIDs are to fake and how much they want to automate authentication the technology will be easier to bypass than the old fashioned 3D hologram was.
People assume that just because its new then no bad guy will be able to figure it out... And that worked on Police Radios for like ten years before all the bad guys had scanners.
Security though obscurity at its worst. My 2c.
Because unlike Accountants, Lawyers, etc we actually have to work for a living...
If we're bad then stuff just doesn't get done. If an accountant is bad they still get $100k a year.
Doctors still have to prove themselves multiple times just to be able to get into the interview. Years and training and testing.
I like to think of us more like Doctors than professional bureaucrats.
Discussion is equal to Endorsement.
By discussing it in a SCIENCE classroom you're admitting it science, which it blatantly is not.
A better place for discussion would be Religious Education or Social Studies. Both classes a lot of schools have in the UK.
These stories keep on referencing the packaging being at fault...
Now I'm no electrical engineer but when you take a working chip and put it in a machine it seems a little odd to blame the packaging it came out of for higher than normal failure rates if it works initially.
Maybe "packaging" refers to the way the actual chips are placed into the material around them? Although it seems like a very odd way of wording it as to me packaging implies something that is discarded.
If someone could explain in non-layman's terms what exactly the problem was I would much appreciate it.
Nobody likes MediaSentry but they do make a compelling case. If you require a PI license in order to simply view logs of connections to your machine and to contact the people referenced in those logs then the law would be extended to a lot of other things.
If I not mistaken I thought the line between requiring a PI license and not is simply where the information exists... If you are using third parties or other people's hardware then a PI license if clearly warranted.
But on the other hand if all the information you're using is in-house then the license is simply not warranted or helpful.
I don't think it would serve the public good at all to require a PI license, particularly if all Network/System Administrators ended up requiring one.
It also wouldn't stop SafeNet/MediaSentry from operating the way they currently do.
So does this research suggest that the old saying "Once a cheater, always a cheater" is actually true?
You should download a copy of "C# express edition" which is a totally free version of Visual Studio.
Then by studying that language you will in-turn learn Java as it is basically just a rip off with a much better IDE than anything Java has.
NetBeans is a laggy nightmare to work with.
It will be easy to sell the concept of SSD to pretty much anyone, particularly for a laptop. Here is the short list:
- Faster Reads
- Potentially faster to wake up from sleep
- More durable
- Less chance of sudden and complete data loss (e.g. A smaller portion of the drive would fail instead of a complete drive failure as with a magnetic disk)
- Consumes less power
- Quieter
- Cooler (also a power saving feature due to less fan running time)
SSD drives are very cool pieces of technology and I for one can't wait to be able to buy a superthin laptop with no magnetic disk.
Could someone please explain the point of Wireless USB to me?
I mean we have WiFi (802.11) for the longer range stuff and Bluetooth for close proximity devices...
What niche does Wireless USB fit in that the existing technology doesn't?
Hmm let me think:
- Few Perl Developers
- Difficult (or impossible) to maintain
- There are better alternatives
- Easy to write badly difficult to write well (e.g. Language doesn't lend its self to good practices)
Perl is a dying language and frankly it is easy to see why. The real question is what does Perl do better than the competition other than being older than my Dad and having a bunch of essentially pointless libraries?
This might sound completely insane but did anyone consider that Microsoft might try and cut costs by using Apache for the backend in Windows Server 2010?
Apple has done it with Apple OS X Server. It would allow Microsoft to keep up to date with web standards without having to spend vast amounts to do it. All they would really need to do is develop propitiatory modules that they could hook in.
Microsoft really have very little vested interest in keeping IIS up-to-date. It isn't a big cash cow and I think most people would agree that it isn't a great web server (although does have some nice tie-ins with the OS).
While I am posting I really dislike the article attacking the Apache licence. The Apache and BSD licenses are the purest form of what OSS stands for. It is freedom in the true sense and not freedom in the American sense (e.g. Freedom at the barrel of a gun).
But it is Nvidia's fault because they signed off on these cooling units.
That is like saying it isn't your car maker's fault if they put breaks in your car designed for a lawnmower and instead it is obviously the people who are making these lawnmower breaks fault for not making sure they can break a much heavier car...
From what I'm reading the issue isn't with fans not performing as expected. The issue is that at the performance rate Nvidia had them at they simply didn't do the job needed and resulting in the GPU overheating and destroying its self.
It is entirely, 100% Nvidia's fault. If you put in substandard parts you get a substandard result.
The concept of a personal flying machine (e.g. Cars, Bikes, Jet Packs) is two fold at the moment.
1) Energy / Power (inc. Storage & Delivery)
2) Safety
Now I'm going to assume for the sake of this post that we could solve the second one if it was viable to do anyway.
The real kicker is really energy. We need a very rich energy source that is cheap, light, small in volume, and safe.
We can often tick two or three of those boxes but no energy source comes remotely close to hitting all four. Hydrogen for example is light, small in volume, but there are questions over safety and cost.
If we invented some kind of completely safe energy source that had the energy output approaching a nuclear reactor and weighted very little we could be in flying cars within a few years.
But frankly such dreams are far off.
The video contains no holes in SIMs, Payphones, or the telco billing system.
Did you even watch it?
She had to rewire the phone in order to get a red box to work because modern phones keep the microphone unpowered before you pay.
A SIM reader isn't illegal or even really a black hat thing to do.
Comparing Sugar to Windows XP is kind of like comparing a pushbike to a 747 engine...
They're designed to do different things. Sugar is designed to be incredibly simple needing little training (or reading skill). It allows people to use a computer without having to learn how to use a computer.
Windows XP is a versatile monster trying to offer all things to all people. It is hugely complex and requires the average person a great deal of time to pickup and use.
I can understand why Microsoft might wish to run XP on the X0 but what I struggle to understand is why anyone is comparing them to one another.
If Microsoft develops some kind of child friendly interface that children can use then we can start talking about it. But until that happens you just aren't comparing the same thing at all.
In 99.9% of cases it isn't the protocol that causes a server crash and instead it is the way that the protocol is implemented.
This story is another example of that. Although they're fixing it by changing the protocol spec' that is really just a much cheaper way of resolving the core issue (e.g. That any input shouldn't ever cause a crash - corrupt or otherwise).
Programmers need to learn something but I think the real lesson here is simply that input over the network cannot ever be trusted. You should assume that it is corrupt, untrusted, or wrong.
Other large businesses could learn a lot from Amazon's example.
How often do you have the problem really explained to you, an apology, and a reasonable set of changes to stop it occurring again?
Most businesses would never explain the root of any problem. They simply list "hardware issues." And they NEVER say sorry anymore - supposedly it opens them up to more liability or something.
If I was an Amazon customer I would be happy with their explanation and apology even if obviously the downtime is still an issue.
Alright this Vista thing has got a little out of hand. Here's a quick recap on events up till now:
1) Microsoft Released Windows Vista
2) Windows Vista failed to live up to people's expectations
3) People said "stick with Windows XP for now"
4) People complained about the normal driver and application compatibility issues
5) Somewhere along the line "stick with Windows XP for now" got turned into "Windows Vista sucks - stick with XP indefinitely."
So now we have people paying the same amount of money either way and going out of their way to pickup Windows XP. I could appreciate that position a year when issues still existed but those have all but gone today.
Vista is about as big of a leap as going from virgin XP to XP SP2. Meaning a few nice features but not really worth money. It has very few bugs and at least as many as XP currently does.
Windows ME was terrible. But let's be clear - Vista isn't ME. Because Windows ME was genuinely an unstable buggy monster as opposed to Vista which is just a very minor upgrade with a huge price tag.
Yes it eats more memory. SuperFetch converts all of your available free memory into better program loading times. These pages are marked so that they can be disposed of very quickly but when viewing a memory map it appears as if memory usage has skyrocketed.
Thank you Mr. Conspiracy theory. But the truth is that:
- There is a serious problem in WoW
- It is extremely common for accounts to get compromised
- Sometimes people quit the game after a breakin (-$13/month)
- A 30 second google search found similar devices for between $17 and $23 a go
If I had to guess I would imagine Blizzard breaks even roughly on these devices. I can't imagine there being a huge profit margin on $6 and that they justify it by keeping people playing.