Might sound innocent to some of you, but adults / the school can get in trouble for "allowing" them access to X-rated material.
I'm sorry, what? If they illegally obtained access to this material by using a password they weren't supposed to have (as you assert), there is no WAY the school could be blamed. It'd be like blaming you for murder because your stolen cash was used to buy the weapon. Get real.
My other issue is this: teenagers accessing pornography. Wow, this has never happened before. So, deny them computer privilages, fix your fscking holes and be done with it. Charging a school kid with anything criminal for breaking such apparently trivial security is just stupid. Hey, if it gets really bad, expell them. What they've done, however, should not be criminal enough to drag them through courts. That's stupid, expensive and pointless.
Well, in Tasmania, as in NSW (and maybe elsewhere, I'm not sure), provisional drivers are only allowed to do 80kph regardless of the actual speed limit. I contend that going at a speed other than the flow of traffic - like 95 when the limit is 100 - is MORE dangerous than the "speeding" which I do.
High schoolers are, on average, less mature than college kids are, and tend to lose and break anything that's remotely portable.
I've had a laptop since grade five - I was nine years old when I started grade five. In two years I spent at that school where all the kids had laptops, I knew of one lost, one broken in hardware. School size? 400 kids. The result of this? I'm the family's resident "computer whiz". I can type, I can use the internet... there's little I can't do on computers (in terms of general opperation).
Surprisingly, my handwriting hasn't suffered - enforced hand note-taking in some classes has helped that. My spelling has suffered a lot, though I am a grammar nazi. So as long as they still learn to spell, it's fine.
<horse type="high">Stop treating young people as idiots; we're not. Even eight year olds are quite mature enough to use a laptop</horse>
The thing I tend to notice is that your average lower-middle-class-upwards ten year old can touch type faster than a 1960s secretary. Plus there's an intuative understanding of the way computers work, because that's what they've grown up with. That's why IM is popular.
I turned 18 today (yay for now being able to vote:D) and I've had daily access to a computer since I was 10. It's intuative. Right now I'm typing sitting outside my old school (semiwardriving) on my laptop.
The advantage to email, of course, is that you don't have an instant reaction. When talking about embarrasing things this can be an advantage. Despite this, IM has practically replaced all conversation for me.
If someone rips your pages directly to your financial loss then that's copyright violation and you can sue them.
If someone takes your cachable[1] page and caches it then that's fine. If they hold that cache and make it accessible to people already looking to directly access your site, with proper attribution then that's fine. That's what the Wayback machine does.
[1] The internet is cachable. The HTTP spec allows caching. If you've got a no cache directive or a robots.txt then it won't be indexed/cache. If not then by putting up content you implicitly allow caching.
Bin Laden, like so many before him, is using religion as a vehicle to push a political aim. Why? Because it's bloody hard to motivate people to kill themselves (or risk themselves) for politics. Much easier if there's a centuries-old book which you can exploit for your purpose. That way you only have to increase belief, not actually convince people of something in the first place.
I'd say it's actually quite easy to do something like this. The biggest difficulty is getting explosives but any university chemist (and there are 400 in the tiny, non-chemistry-related town where I live) can help you with that. Walk onto a bus, leave your backpack, walk off the bus, then it detonates - timer or remote detonation for the cost of a mobile phone.
I will however say that the anti-globalisation bunch generally don't support this sort of violent action and it is therefore unlikely that they carried it out. I'll also claim that violent action carried out by old-school British activists (I'm thinking IRA) is against hard targets and comes with warnings.
As someone who's currently studying law, I have a different interpretation - amusingly, if you read the rest of my comment. I believe that the law is complicated because it has to deal with so many contingancies. Because there are so many people with slightly different opinions and the law is designed to be able to make a ruling on anything so it has to account for absolutly every contingancy. It actually makes sense: you start with simple contract law (intent to create contract, exchange of consideration), add a few "oh but what about..."s and you've pretty much got the modern mess.
Would you like me to say that slower? The courts are designed to deal with this so we don't have witch-hunts. So we don't have random people getting the arses kicked for things they didn't do because vigilantes are too lazy to do proper fact checking. Courts exist for a reason. They are good. They are effective. And if I ever catch you promoting this crap again...
... I'll inform a district attorny who will hopefully charge you with inciting hatred. Because that's what laws are designed to do. Protect. And they can proect us whenever we need it. We never need vigilante violence.
(As a PS: I don't mean to say that self defence is bad. I mean that if you can at all help it, don't be violent)
I'm a law student - I'll be a laywer soon enough. Basic second year stuff: email is not legally binding, in terms of document serving for a tort (which this is) or in terms of a contract. You need something written and delivered. Hell, mail isn't valid unless you get a response or it's a previously agreed method. Keep chucking out your pseudo-legal stuff - it's not binding.
Yes, sure, there may be too many Speilberg movies. And there were earlier holocaust movies. But none were nearly as powerful as Schindler's List. That movie is one that definitely deserves placement on the list. It's just too good to be left out.
Ugh, it's called caselaw. It's at least as important as, if not more important than, legislation. Basically it establishes a precedent of interpretation of the legislation. So legislation might say "don't steal stuff" and the judiciary decides what that means. Then they establish a precedent and judges, often in lower courts, can hand down decisions saying "in the past it was this way, so it's this way again - for that reason you punishment is X". Learn something about the legal system before spouting crap.
If you're going to commit suicide you'll consider it. You'll consider it very carefully and consider carefully how to do it, what to leave behind. People consider it very carefully.
What this does is prevent websites promoting suicide with detailed instructions on how to do it. This is very similar to existing laws pertaining to movies, televisions and computer games.
For once I don't have a lot of difficulty with an action of the Howard government. Host your site in the US - it's cheaper anyway - if you want to host this sort of crap.
Oh, and do not try to tell us about suicide when you obviously know nothing about clinical depression.
If it takes 15 seconds to compute one digest, then you're looking at a mere 2,000 processor years to find a vulnerability, compared to the much more comfortable 130,000,000 processor years that it would have required using the brute force method.
It wouldn't take me that long to compute a hash. It'd take me 0.01 second. That's 49 days. 90 day passwords a cinch. That is why we're worried.
Re:May be a big deal...
on
SHA-1 Broken
·
· Score: 1
SHA512 will be suceptible to similar attacks. I'd suggest the next-best-thing (RIPEMD) but that has also been attacked by these guys (though not to the same degree). They're good. And we need something new, fast. Or fastish at least.
Actually I think you'll find that before 17 Aug 2004 MD5 was considered strong-but-possibly-flawed and SHA1 has been considered the best we have to prevent fraud until today. There is nothing better and widely distributed in the same digital signature fruad prevention class. This same research team has done some work against the best competitor, RIPEMD, so we're pretty much, as a child of FP said, pwn3d.
If we used common passwords like that, we would be fired. The admin would go through the database, see the passwords, and report them to our supervisor.
Please don't tell me you store your passwords in the clear. That's insanely stupid. Sure, running through a dictionary attack or similar, good idea. But you make it sound like passwords are stored in cleratext which is beyond stupid in this day and age.
I really hope you're not serious. MS could never get away with that. It just simply wouldn't stand the publicity - real publicity - it would attract. Far worse than the overused antitrust crap.
Ok, so I liked Opera when I used it for a while. But firefox kicks its butt. I prefered FF myself because there were no ads (although you can add them if you want them)
But all of these features are available as FF extensions... even adding google ads to your browser.
I don't want to sound like a zelot, but FF is cheaper, ad free and does all that plus some. Email client? IRC client? That's what Thunderbird/Chatzilla/Mozilla suite are for.
It's your money, but I know where I'll be putting mine. Straight back in my wallet.
I have a series of nemonics I use, each stored with the password (e.g. a file is named file.zip.i.pgp, where i is the nemonic). A key for all my passwords is 'encrypted' using a monoalphabetic substiution cipher (crackable with ease) which is stored in a locked cabniet. Key to be given to my executor, stored with my will. Also in the cabinet is a book on frequency analysis, for the luddites.
I am also working on a nice PHP class which can be activated by a password written in my will (which is in a sealed envelope at the moment) which posts a final entry on my blog.
There are files with which I don't store the nemonic - these are the encrypted things which will stay secret when I die. And hopefully we all live happily ever after.
Slashdot Mirror
Might sound innocent to some of you, but adults / the school can get in trouble for "allowing" them access to X-rated material.
I'm sorry, what? If they illegally obtained access to this material by using a password they weren't supposed to have (as you assert), there is no WAY the school could be blamed. It'd be like blaming you for murder because your stolen cash was used to buy the weapon. Get real.
My other issue is this: teenagers accessing pornography. Wow, this has never happened before. So, deny them computer privilages, fix your fscking holes and be done with it. Charging a school kid with anything criminal for breaking such apparently trivial security is just stupid. Hey, if it gets really bad, expell them. What they've done, however, should not be criminal enough to drag them through courts. That's stupid, expensive and pointless.
Actually, there's this thing called a "user agent string"...
there is no excuse to speed
Well, in Tasmania, as in NSW (and maybe elsewhere, I'm not sure), provisional drivers are only allowed to do 80kph regardless of the actual speed limit. I contend that going at a speed other than the flow of traffic - like 95 when the limit is 100 - is MORE dangerous than the "speeding" which I do.
High schoolers are, on average, less mature than college kids are, and tend to lose and break anything that's remotely portable.
I've had a laptop since grade five - I was nine years old when I started grade five. In two years I spent at that school where all the kids had laptops, I knew of one lost, one broken in hardware. School size? 400 kids. The result of this? I'm the family's resident "computer whiz". I can type, I can use the internet... there's little I can't do on computers (in terms of general opperation).
Surprisingly, my handwriting hasn't suffered - enforced hand note-taking in some classes has helped that. My spelling has suffered a lot, though I am a grammar nazi. So as long as they still learn to spell, it's fine.
<horse type="high">Stop treating young people as idiots; we're not. Even eight year olds are quite mature enough to use a laptop</horse>
The thing I tend to notice is that your average lower-middle-class-upwards ten year old can touch type faster than a 1960s secretary. Plus there's an intuative understanding of the way computers work, because that's what they've grown up with. That's why IM is popular.
:D) and I've had daily access to a computer since I was 10. It's intuative. Right now I'm typing sitting outside my old school (semiwardriving) on my laptop.
I turned 18 today (yay for now being able to vote
The advantage to email, of course, is that you don't have an instant reaction. When talking about embarrasing things this can be an advantage. Despite this, IM has practically replaced all conversation for me.
I turned 18 today >_<
:(
Damn you for making me feel old
If someone rips your pages directly to your financial loss then that's copyright violation and you can sue them.
If someone takes your cachable[1] page and caches it then that's fine. If they hold that cache and make it accessible to people already looking to directly access your site, with proper attribution then that's fine. That's what the Wayback machine does.
[1] The internet is cachable. The HTTP spec allows caching. If you've got a no cache directive or a robots.txt then it won't be indexed/cache. If not then by putting up content you implicitly allow caching.
Bin Laden, like so many before him, is using religion as a vehicle to push a political aim. Why? Because it's bloody hard to motivate people to kill themselves (or risk themselves) for politics. Much easier if there's a centuries-old book which you can exploit for your purpose. That way you only have to increase belief, not actually convince people of something in the first place.
I'd say it's actually quite easy to do something like this. The biggest difficulty is getting explosives but any university chemist (and there are 400 in the tiny, non-chemistry-related town where I live) can help you with that. Walk onto a bus, leave your backpack, walk off the bus, then it detonates - timer or remote detonation for the cost of a mobile phone.
I will however say that the anti-globalisation bunch generally don't support this sort of violent action and it is therefore unlikely that they carried it out. I'll also claim that violent action carried out by old-school British activists (I'm thinking IRA) is against hard targets and comes with warnings.
As someone who's currently studying law, I have a different interpretation - amusingly, if you read the rest of my comment. I believe that the law is complicated because it has to deal with so many contingancies. Because there are so many people with slightly different opinions and the law is designed to be able to make a ruling on anything so it has to account for absolutly every contingancy. It actually makes sense: you start with simple contract law (intent to create contract, exchange of consideration), add a few "oh but what about..."s and you've pretty much got the modern mess.
Violence
... I'll inform a district attorny who will hopefully charge you with inciting hatred. Because that's what laws are designed to do. Protect. And they can proect us whenever we need it. We never need vigilante violence.
is
NOT
the
answer
Would you like me to say that slower? The courts are designed to deal with this so we don't have witch-hunts. So we don't have random people getting the arses kicked for things they didn't do because vigilantes are too lazy to do proper fact checking. Courts exist for a reason. They are good. They are effective. And if I ever catch you promoting this crap again...
(As a PS: I don't mean to say that self defence is bad. I mean that if you can at all help it, don't be violent)
I'm a law student - I'll be a laywer soon enough. Basic second year stuff: email is not legally binding, in terms of document serving for a tort (which this is) or in terms of a contract. You need something written and delivered. Hell, mail isn't valid unless you get a response or it's a previously agreed method. Keep chucking out your pseudo-legal stuff - it's not binding.
Yes, sure, there may be too many Speilberg movies. And there were earlier holocaust movies. But none were nearly as powerful as Schindler's List. That movie is one that definitely deserves placement on the list. It's just too good to be left out.
Ugh, it's called caselaw. It's at least as important as, if not more important than, legislation. Basically it establishes a precedent of interpretation of the legislation. So legislation might say "don't steal stuff" and the judiciary decides what that means. Then they establish a precedent and judges, often in lower courts, can hand down decisions saying "in the past it was this way, so it's this way again - for that reason you punishment is X". Learn something about the legal system before spouting crap.
If you're going to commit suicide you'll consider it. You'll consider it very carefully and consider carefully how to do it, what to leave behind. People consider it very carefully.
What this does is prevent websites promoting suicide with detailed instructions on how to do it. This is very similar to existing laws pertaining to movies, televisions and computer games.
For once I don't have a lot of difficulty with an action of the Howard government. Host your site in the US - it's cheaper anyway - if you want to host this sort of crap.
Oh, and do not try to tell us about suicide when you obviously know nothing about clinical depression.
Actually, "Is Google breaking its own rules?" is correct. Google is a corporation, a single legal entity in and of itself. A legal person.
It wouldn't take me that long to compute a hash. It'd take me 0.01 second. That's 49 days. 90 day passwords a cinch. That is why we're worried.
SHA512 will be suceptible to similar attacks. I'd suggest the next-best-thing (RIPEMD) but that has also been attacked by these guys (though not to the same degree). They're good. And we need something new, fast. Or fastish at least.
Actually I think you'll find that before 17 Aug 2004 MD5 was considered strong-but-possibly-flawed and SHA1 has been considered the best we have to prevent fraud until today. There is nothing better and widely distributed in the same digital signature fruad prevention class. This same research team has done some work against the best competitor, RIPEMD, so we're pretty much, as a child of FP said, pwn3d.
Please don't tell me you store your passwords in the clear. That's insanely stupid. Sure, running through a dictionary attack or similar, good idea. But you make it sound like passwords are stored in cleratext which is beyond stupid in this day and age.
I really hope you're not serious. MS could never get away with that. It just simply wouldn't stand the publicity - real publicity - it would attract. Far worse than the overused antitrust crap.
Mouse gestures, automatic numerical forward/back and image zoom, popup blocking, skinning, tabbed browsing and UA spoofing.
Ok, so I liked Opera when I used it for a while. But firefox kicks its butt. I prefered FF myself because there were no ads (although you can add them if you want them)
But all of these features are available as FF extensions... even adding google ads to your browser.
I don't want to sound like a zelot, but FF is cheaper, ad free and does all that plus some. Email client? IRC client? That's what Thunderbird/Chatzilla/Mozilla suite are for.
It's your money, but I know where I'll be putting mine. Straight back in my wallet.
*cough*bloody great missiles*cough*
Or fighter jets, or marines, or nukes, or sanctions with the "support" of the "itnernational community"...
Perhaps we'd prefer something over https? You know, this thing we call security?
https://bluexo.net/password.html
--
Contact details: mine.mjec.net
I have a series of nemonics I use, each stored with the password (e.g. a file is named file.zip.i.pgp, where i is the nemonic). A key for all my passwords is 'encrypted' using a monoalphabetic substiution cipher (crackable with ease) which is stored in a locked cabniet. Key to be given to my executor, stored with my will. Also in the cabinet is a book on frequency analysis, for the luddites.
I am also working on a nice PHP class which can be activated by a password written in my will (which is in a sealed envelope at the moment) which posts a final entry on my blog.
There are files with which I don't store the nemonic - these are the encrypted things which will stay secret when I die. And hopefully we all live happily ever after.