It's simple, really, if you want to turn off LM hases for everbody. Make the regedit change at one machine, then export that piece of the registry to a floppy. Send a PFY or three around from machine to machine to import the change to everybody's registry and it's a done deal.
I'm a member of SF fandom, and we have lots of words you'll never find in any dictionary. They make real good passwords. Imagine a dictionary attack having to find words like faanish, gafiate, stifnal, sercon or plergb!
One way is to combine two or more words into one, so that the passphrase you type seems to be nonsense. As an example, you type: "anacin the hospital aunts bitter asinine places," but what you remember is, "Ann is in the hospital; ants bit her ass in nine places."
Another way is to take a coherent pass phrase, and start it in the middle. Thus, "I hate these silly pass phrases like the plague," could become, "phrases like the plague I hate these silly pass."
The comparison isn't fair, because we've been spending money on Iraq for much longer than on the tsunami. Even if we stopped spening anything on Iraq, it'd be a long time before spending on disaster relief caught up with it. The important question is how does the ammount we're spending on humanitarian causes compare with what we're currently spending in Iraq.
Whether you like it or not, some of your tax money is going to go to both causes. You certainly have the right to complain if you feel it's being spent on the wrong things.
Whether or not the money is sufficient, the fact remains that we're willing to spend 1000 times as much money per capita on war as on humanitarian activities.
Most of the money you're wanking about was spent long before the tsunami hit. It's neither fair nor honest to count that, but don't let that stop you if it helps you get your rocks off. The only fair way to compare is how much money we're spending on Iraq now with our spending on the tsunami. Does anybody have those figures?
If they opened the trunk, thanks to "probable cause" and it was a false positive-- well, then their rights have been seriously violated.
And the cops would probably have appologized right then for their mistake. The driver probably couldn't have won a suit against them in that case, as they did have reason to believe he was carrying contraband.
...because you don't know which packets they are without searching them first and knowing who is innocent before you begin.
By this reasoning, you'd have to start off by assuming certain people were guilty, then looking for evidence to support your assumption. What the author of TFA is suggesting is checking all traffic through a specific machine, to see if there's any suspicious messages being passed. No messages are stopped, and all packets considered innocent are thrown away. It's rather like listening in on enough of every conversation on a phone system to see if it's about something unlawful and only recording those that are. Still bad, but not quite what you were thinking of.
The reason it's considered OK to stop cars for a DUI check in a pre-determined sequence is that there's no question of profiling. Over the couse of a day, people from various minorities will be stopped, but in the same percentage as they're represented in the populaton. Unless there's some seriously weird shit going on, you're not going to end up stopping nobody but minorities. You're also not going to pick cars to stop because of the way the drivers are acting, meaning that you will occasiionally let a car through when you suspect there's a DUI going on, but that's considered to be a fair trade-off to avoid even the appearance of profiling.
When things happened that were "out of the box", like fires, flooding, reactor or steam plant related issues or simple technical problem resolution, or basically situations that obviously there was no specific "procedure" for, people would rise to the occasion and do outstanding jobs.
That's because you were still working inside a "bigger box," containing drills and training for such things as fires and other emergencies. Although I've never worked with reactors, I was in the military, and I know how well they drill things into you. They may not have covered the exact circumstances you find yourself in, but you learn enough about what has to be done to fill in the blanks.
...what does a calculus exam have to do with thinking outside the box?
Well, there are a number of techniques you can use to solve a problem in calculus, and some are better/quicker on certain classes of problem than others. Picking the right one for each problem on the test instead of just automatically using the most recent one you've learned gets more questions answered faster, leaving you more time for the hardest ones.
Also, never, ever use the imperial system in science.
You have to, here, because the velocity was given in that system. What I did was multiply by 5280 to change to feet, 12, giving me inches, then divide by 2.54 to get centimeters. Not exactly hard, but you do have to remember all the steps. Knowing the conversion factors helps, but I'd hope most people here do. (My sister still has to ask when needed, but that's because it didn't interest her in school. But then, she's not a/.er, either.)
How about this for a definitiion? If it's had the title role or a main role in a major motion picture or hit TV series it's a star. If it just wanders around, it's a planet.
You're a real SF fan if you consider good SF to be "stfnal," but only a died-in-the-wool fan (like me) knows that that's because Hugo Gernsback referred to it as scientifiction.
This type of thing has been going on for quite some time. Back in 1969, twenty-five people collaberated on writing a book with nothing to reccomend it except at least two kinky sex scenes in each chapter and got it published. Anybody beside me remember Naked Came The Stranger?
Maybe they would have gotten better results if they'd bounced the results off the dilithium crystals before measuring them. Of course, for that to work they'd have had to be travelling at standard by six.
I was thinking more in terms of using the algorythm to "calculate" the location of the key instead of storing the filename. Not completely secure, of course, but it might make things more difficult.
I know it can be found. My hope is that it will be difficult enough to slow down the rate at which worms get written and spread. It may be possible to have the location different on every machine, so that instead of just finding out what the hidden file is, you have to find out how the program generated the file name in the first place. Not impossible, but anything that makes it harder for worms to work may well be worth the effort.
There's another way to do this that might work. At my ISP, if you try to post too many Usenet articles in a short time the server slows down for you, gradually speeding up again as time passes. If you persist, the slowdown gets worse, and eventually, you're unable to post for up to 24 hours since your last attempt. In general, if you're composing and sending messages one-by-one, you'll never run into this.
Using this same algorythm for email would cause a small delay if somebody composes a number of messages to multiple recipients, then sends them all at once, but shouldn't inconvenience the average user. Spambots, however, will quickly get locked out. The user will have to call tech support to find out what's going on when they find out they can't send any email, and will have to clean up their machine to get anything sent. Of course, there'd have to be a way for the techs to clear the block once the machine's been deloused.
Of course, if the user doesn't let their mail client "remember" their password (I never trust mail clients to remember anything for me), then the virus would indeed be unable to complete it's evil plan
Back whem programs stored their settings in.ini files instead of trusting the Registry, passwords were encrypted. Having both the userID and password encrypted would make it a little more difficult for the spambots. For that matter, keeping random garbage in those registry locations and hiding the real, encrypted data in some file somewhere would be even better. Granted, it still could be found, but it would make the process more difficult for the 5Kr1pt Kiddi35.
I mean... it baffles me that people like this are being treated like expert professionals and they're misleading thousands of people in the process of pumping up their own misguided ego.
Who says he's really an expert at anything? For all I know the only thing he knows is how to keep people from securing their machines so that the popup ads on the sites he hosts can get through.
Or, they could just hire Wil Wheaton as the next captain - playing a different character than Wesley Crusher, natch - give him a starship, and set him loose.
If you really want Will Weaton as captain, tell him the computers will all use Linux. He's quite the advocate nowadays.
It's simple, really, if you want to turn off LM hases for everbody. Make the regedit change at one machine, then export that piece of the registry to a floppy. Send a PFY or three around from machine to machine to import the change to everybody's registry and it's a done deal.
I'm a member of SF fandom, and we have lots of words you'll never find in any dictionary. They make real good passwords. Imagine a dictionary attack having to find words like faanish, gafiate, stifnal, sercon or plergb!
Another way is to take a coherent pass phrase, and start it in the middle. Thus, "I hate these silly pass phrases like the plague," could become, "phrases like the plague I hate these silly pass."
Maybe they could patent FUD, then sue SCO for infringement?
Whether you like it or not, some of your tax money is going to go to both causes. You certainly have the right to complain if you feel it's being spent on the wrong things.
Most of the money you're wanking about was spent long before the tsunami hit. It's neither fair nor honest to count that, but don't let that stop you if it helps you get your rocks off. The only fair way to compare is how much money we're spending on Iraq now with our spending on the tsunami. Does anybody have those figures?
Slashdot is rather like Ankh-Morpork. Spelling and punctuation are mostly considered to be optional extras.
It would have been much nicer, and more geekish to set up a Bittorrent of it. No real load on the server, and more people can get it at the same time.
And the cops would probably have appologized right then for their mistake. The driver probably couldn't have won a suit against them in that case, as they did have reason to believe he was carrying contraband.
By this reasoning, you'd have to start off by assuming certain people were guilty, then looking for evidence to support your assumption. What the author of TFA is suggesting is checking all traffic through a specific machine, to see if there's any suspicious messages being passed. No messages are stopped, and all packets considered innocent are thrown away. It's rather like listening in on enough of every conversation on a phone system to see if it's about something unlawful and only recording those that are. Still bad, but not quite what you were thinking of.
The reason it's considered OK to stop cars for a DUI check in a pre-determined sequence is that there's no question of profiling. Over the couse of a day, people from various minorities will be stopped, but in the same percentage as they're represented in the populaton. Unless there's some seriously weird shit going on, you're not going to end up stopping nobody but minorities. You're also not going to pick cars to stop because of the way the drivers are acting, meaning that you will occasiionally let a car through when you suspect there's a DUI going on, but that's considered to be a fair trade-off to avoid even the appearance of profiling.
That's because you were still working inside a "bigger box," containing drills and training for such things as fires and other emergencies. Although I've never worked with reactors, I was in the military, and I know how well they drill things into you. They may not have covered the exact circumstances you find yourself in, but you learn enough about what has to be done to fill in the blanks.
Well, there are a number of techniques you can use to solve a problem in calculus, and some are better/quicker on certain classes of problem than others. Picking the right one for each problem on the test instead of just automatically using the most recent one you've learned gets more questions answered faster, leaving you more time for the hardest ones.
You have to, here, because the velocity was given in that system. What I did was multiply by 5280 to change to feet, 12, giving me inches, then divide by 2.54 to get centimeters. Not exactly hard, but you do have to remember all the steps. Knowing the conversion factors helps, but I'd hope most people here do. (My sister still has to ask when needed, but that's because it didn't interest her in school. But then, she's not a /.er, either.)
How about this for a definitiion? If it's had the title role or a main role in a major motion picture or hit TV series it's a star. If it just wanders around, it's a planet.
You're a real SF fan if you consider good SF to be "stfnal," but only a died-in-the-wool fan (like me) knows that that's because Hugo Gernsback referred to it as scientifiction.
This type of thing has been going on for quite some time. Back in 1969, twenty-five people collaberated on writing a book with nothing to reccomend it except at least two kinky sex scenes in each chapter and got it published. Anybody beside me remember Naked Came The Stranger?
Maybe they would have gotten better results if they'd bounced the results off the dilithium crystals before measuring them. Of course, for that to work they'd have had to be travelling at standard by six.
I was thinking more in terms of using the algorythm to "calculate" the location of the key instead of storing the filename. Not completely secure, of course, but it might make things more difficult.
I know it can be found. My hope is that it will be difficult enough to slow down the rate at which worms get written and spread. It may be possible to have the location different on every machine, so that instead of just finding out what the hidden file is, you have to find out how the program generated the file name in the first place. Not impossible, but anything that makes it harder for worms to work may well be worth the effort.
Using this same algorythm for email would cause a small delay if somebody composes a number of messages to multiple recipients, then sends them all at once, but shouldn't inconvenience the average user. Spambots, however, will quickly get locked out. The user will have to call tech support to find out what's going on when they find out they can't send any email, and will have to clean up their machine to get anything sent. Of course, there'd have to be a way for the techs to clear the block once the machine's been deloused.
Back whem programs stored their settings in .ini files instead of trusting the Registry, passwords were encrypted. Having both the userID and password encrypted would make it a little more difficult for the spambots. For that matter, keeping random garbage in those registry locations and hiding the real, encrypted data in some file somewhere would be even better. Granted, it still could be found, but it would make the process more difficult for the 5Kr1pt Kiddi35.
Who says he's really an expert at anything? For all I know the only thing he knows is how to keep people from securing their machines so that the popup ads on the sites he hosts can get through.
No. In Korea, only old people can afford horny robots.
If you really want Will Weaton as captain, tell him the computers will all use Linux. He's quite the advocate nowadays.