Thats just an ATA password, as enclosed with the ATA spec. That means without that password, the HD motor just doesnt start up.
All you need is disk microscopy to recover data. Just send it offshore to a semi-legitimate firm for data restoration on backup DVDs. It'll cost a thousand or so.
Im assuming high hostility against a federal machine. So, no, the host password will NOT be easily extracted. You know.. SysKey, encrypted ~/windows directory, encrypted user directories... Not fun. To combat that, you use an ICE. In Circuit Emulator.
Next the VM... Yes, you could roll back the clock, but how would one prevent that simple of an "attack"? Record via signed encrypted file when the last time/date access was. Ok.. so now we can just 'freeze' the VM so restart starts with those very files at that exact time.
The question is "How can we verify accurate and precise time in a VM?" The answer here is that the VM needs to have a secret that is shared with a trusted server, however one must also have trusted access to the CPU to verify that no tampering takes place during the critical connection. To combat replay attacks, the VM client could send a very fine granularity time (say HH:mm:ss:SSS) and request a response using this time. Any significant deviancy from this timebase would seal off the VM.
---What they should be looking at is VMware's ACE product. Built in encryption, security policies, and the ability to expire a VM after a certain amount of time. Add to that the ability to lock out USB devices and un trusted networks, and you have a pretty cool product.
And I dont see an easy to maintain that kind of security with exception of TPMs. They support remote network control as you describe.
If I was attacking that kind of setup, I'd extract the HD partitions to my emulator (yes, a real ICE) and proceed to crack the passwords. Once I have the passwords, I'd go towards the VM, while rolling back times to last known access (by checking T/D stamps on windows system files).
Unless you're in the music artel, you do NOT license music.
You are granted 1 copy under the copyright statutes. This is NOT voidable unless both parties agree.
However if your copy grants are less then your real copies (not counting backups specifically allowed), you're breaking tort law. Sell those for profit and you break criminal law if it is some $ total or something.
Due to the problem with most computers NOT being able to offer full HD encryption, to use a X86 emulator (like VirtualBox) with an encrypted directory via TruCrypt.
That problem is it does NOT provide good stego. I've went over that before, but there's a way to prove by contradiction that there is a likely chance of hidden partitions in data.
---And finally... you do NOT need to keep the RSK secret to get the benefits of hardware that enforces digital signing on executing code. As I said, so much specious bullshit. Trusted Computing, as it was designed from the beginning, has NOTHING to do with security as most people understand it. It is about software vendors and copyright cartels mandating the use of signed code remotely. That's it.
I think it does provide an additional layer of security, at least considering networks under your control. In local network cases, it would be the final security solution so that hackers literally couldnt do much at all via network hopping.
However, if you're worried about the boogeyman Software Vendors and Copyright Cartels, dont use their products.
Yes, you know what I said. Use free OSes and listen to musicians who know their place. Linux is a rather good OS, despite what you hear.
A TPM chip only reduces your rights if YOU are not the TPM controller.
However, if YOU are the TPM controller, you can run/not run programs you choose, and in general, are the root controller of the machine.
If you run Linux, one could use the PAM TPM interface and have everything ran by that. Who'd turn down better security?
Now... if you run a 399$ MS desktop, guess what you get? -100$ for TPM remote control, -100$ for subsudised cheap Windows. If you wish to trade your rights away, go ahead.
---The practice of sending a copy of your own work to yourself is sometimes called a "poor man's copyright." There is no provision in the copyright law regarding any such type of protection, and it is not a substitute for registration
Thats just false. If you do NOT register a valid work, you must prove it is yours. By providing a federal datestamp, it does provide some basic claim that it was created by X date.
You still cannot sue for violating copyright if you didnt register it. The mail trick only works in preventing others from suing YOU.
But Costco doesnt hide what they carry behind curtains either.
One can go look around before buying a membership. They're happy to do so.
That DirectBuy place is a ripoff. We requested to look around BEFORE buying. They literally laughed at us. So we took our 8 grand for furniture elsewhere (just got a new house and budgeted for furniture)
I was going purely on memory. I didnt even have the Constitution open at the time. And I also didnt mention about the 7 day waiting approval that can also turn into a pocket veto.
Some of our laws can get kind of messy, so I was trying to give a general overview. And I was wrong about the Senate.. I should have remembered the recent Senate debacle about the almost-confirmed justice.
Well, our country is a representative republic. In other words, we dont vote on laws. We vote "Congressmen" and presidents in for that instead.
We have 3 branches of Govt: Congress, Judicial, and Executive.
Congress is a bicameral entity (similar to the house of lords and commons in the UK). Senate (one of those bodies) is comprised of 100 members. There are 2 from each state, so that every state has equal representation.
The other part of Congress is the House. It is made up of 435 members, representing population makeup through the states. This is so that more populated states can influence the law more, as there is more people affected by the law.
The executive branch represents the President, bureaucrats and others in executing laws made by Congress, however that idea has been perverted. The way the US looks now, the Executive branch (President) looks like they are the Judge, jury and executioner.
The way a law is passed: Congress writes a law (well, House and Senate write their own versions which must be arbitrated by committee). When/if law is passed by a simple majority, 50% +1, then said law goes to the presidents desk. If president signs, it is a law. If not, it is sent back to Congress for a 67% majority to veto the presidents choice.
The last branch is Judicial. They are the ones to rule on laws and breakings of said laws. The highest court is the Supreme Court, which there are 9 appointed judges (appointed by the Senate) which have lifetime seats. They rule purely on Constitutionality of laws passed by Congress. They have the ability to pass judgment on laws, strike them down, or define unclear terms. Many see that the Supreme court is probably more powerful than Congress or the Presidency. _____
Now, how companies pass "Laws" as you probably have heard on Slashdot:
Congress doesnt exist in a vacuum, but instead well entrenched and 'sponsored' by different entities and interests. For example, Maine (a state) has heavy lumber interests, so the lumber industry donates money to the said political party. Even though there is no obligation for the party to do anything, they do the lumber entities interests in making law favorable to them.
Some lobbies have grown extremely powerful. For example, the RIAA is a lobby group brought forth by the Big 5 media companies. Big Pharma is another lobby, mainly on medical drugs. These companies and groups can literally buy laws by supporting both parties (the Republicans and Democrats) with their money coffers.
For indiduals, we have no recourse for bad laws other than voting the congress/president in or out
More "westernized" nations are in the northern hemisphere, along with what used to be horrible environmental practices. The southern hemisphere has, all in all, less westernized nations. It would be fair to say that the North used to put out much more O3 destroying compounds.
Why is the hole bigger over the south than it is in the north?
Our current technology could make human extinction a snap.
Why dont we sequence Ebola (wait.. already been done).
After that, we can slow it to incubation = 2 months, no symptoms.
Fatality rate = 100%, via e.coli immunity and increased drug resistances
Now, give it botulism environmental protection as seen from Type A variant. Now all those dead bodies now hold that disease, unless you want to personally burn each and every body. You'd probably get the spores anyways.
That is a 100% death rate for the whole world. And you can thank the e.coli living in your gut for the lack of resistance.
Not all Arabs are Muslims and not all Muslims are Arabs.
Would your plan work when you have Mr. Businessman and his associates going for a lecture and they are a sleeper cell?
They're white and they're professional. They most certainly cant be terrorists. (look at the recent England stuff. something like that scenario happened).
Slashdot Mirror
Thats just an ATA password, as enclosed with the ATA spec. That means without that password, the HD motor just doesnt start up.
All you need is disk microscopy to recover data. Just send it offshore to a semi-legitimate firm for data restoration on backup DVDs. It'll cost a thousand or so.
To your knowledge, has anybody tried to sue the Big 4 (was 3..) for defamation of name in identity theft cases?
Im not worried about anything. I've got an LG 8300 with hacked firmware on a Verizon network.
I have complete control of my phone and Verizon has complete control over THEIR network. Thats the way I like it.
Im assuming high hostility against a federal machine. So, no, the host password will NOT be easily extracted. You know.. SysKey, encrypted ~/windows directory, encrypted user directories... Not fun. To combat that, you use an ICE. In Circuit Emulator.
Next the VM... Yes, you could roll back the clock, but how would one prevent that simple of an "attack"? Record via signed encrypted file when the last time/date access was. Ok.. so now we can just 'freeze' the VM so restart starts with those very files at that exact time.
The question is "How can we verify accurate and precise time in a VM?" The answer here is that the VM needs to have a secret that is shared with a trusted server, however one must also have trusted access to the CPU to verify that no tampering takes place during the critical connection. To combat replay attacks, the VM client could send a very fine granularity time (say HH:mm:ss:SSS) and request a response using this time. Any significant deviancy from this timebase would seal off the VM.
You make it sound that Apple would only yank the cert if you broke the law... Suuuuure.
---What they should be looking at is VMware's ACE product. Built in encryption, security policies, and the ability to expire a VM after a certain amount of time. Add to that the ability to lock out USB devices and un trusted networks, and you have a pretty cool product.
And I dont see an easy to maintain that kind of security with exception of TPMs. They support remote network control as you describe.
If I was attacking that kind of setup, I'd extract the HD partitions to my emulator (yes, a real ICE) and proceed to crack the passwords. Once I have the passwords, I'd go towards the VM, while rolling back times to last known access (by checking T/D stamps on windows system files).
Unless you're in the music artel, you do NOT license music.
You are granted 1 copy under the copyright statutes. This is NOT voidable unless both parties agree.
However if your copy grants are less then your real copies (not counting backups specifically allowed), you're breaking tort law. Sell those for profit and you break criminal law if it is some $ total or something.
Due to the problem with most computers NOT being able to offer full HD encryption, to use a X86 emulator (like VirtualBox) with an encrypted directory via TruCrypt.
That problem is it does NOT provide good stego. I've went over that before, but there's a way to prove by contradiction that there is a likely chance of hidden partitions in data.
---And finally... you do NOT need to keep the RSK secret to get the benefits of hardware that enforces digital signing on executing code. As I said, so much specious bullshit. Trusted Computing, as it was designed from the beginning, has NOTHING to do with security as most people understand it. It is about software vendors and copyright cartels mandating the use of signed code remotely. That's it.
I think it does provide an additional layer of security, at least considering networks under your control. In local network cases, it would be the final security solution so that hackers literally couldnt do much at all via network hopping.
However, if you're worried about the boogeyman Software Vendors and Copyright Cartels, dont use their products.
Yes, you know what I said. Use free OSes and listen to musicians who know their place. Linux is a rather good OS, despite what you hear.
Dont lie, and dont spread misinformation.
A TPM chip only reduces your rights if YOU are not the TPM controller.
However, if YOU are the TPM controller, you can run/not run programs you choose, and in general, are the root controller of the machine.
If you run Linux, one could use the PAM TPM interface and have everything ran by that. Who'd turn down better security?
Now... if you run a 399$ MS desktop, guess what you get? -100$ for TPM remote control, -100$ for subsudised cheap Windows. If you wish to trade your rights away, go ahead.
Frankly, I need not prove what I say to some anonymous name on slashdot.
And as for your authoritative source, did you know that IRS's papers are not authoritative, nor are they even law? Go read up on Tom Crier Vs. IRS.
Who lost?
---The practice of sending a copy of your own work to yourself is sometimes called a "poor man's copyright." There is no provision in the copyright law regarding any such type of protection, and it is not a substitute for registration
Thats just false. If you do NOT register a valid work, you must prove it is yours. By providing a federal datestamp, it does provide some basic claim that it was created by X date.
You still cannot sue for violating copyright if you didnt register it. The mail trick only works in preventing others from suing YOU.
But Costco doesnt hide what they carry behind curtains either.
One can go look around before buying a membership. They're happy to do so.
That DirectBuy place is a ripoff. We requested to look around BEFORE buying. They literally laughed at us. So we took our 8 grand for furniture elsewhere (just got a new house and budgeted for furniture)
And according to you, "Sorting algorithms" are no longer artificial intelligence if we know what equations and transforms to execute.
And to think, at one time we thought that WAS AI.
Ill ask you these two questions.
How much energy is there in a gallon/litre of 87% octane, 13% ethanol?
Is there a limit on how much gasoline one can buy?
I was going purely on memory. I didnt even have the Constitution open at the time.
And I also didnt mention about the 7 day waiting approval that can also turn into a pocket veto.
Some of our laws can get kind of messy, so I was trying to give a general overview. And I was wrong about the Senate.. I should have remembered the recent Senate debacle about the almost-confirmed justice.
Well, our country is a representative republic. In other words, we dont vote on laws. We vote "Congressmen" and presidents in for that instead.
We have 3 branches of Govt: Congress, Judicial, and Executive.
Congress is a bicameral entity (similar to the house of lords and commons in the UK). Senate (one of those bodies) is comprised of 100 members. There are 2 from each state, so that every state has equal representation.
The other part of Congress is the House. It is made up of 435 members, representing population makeup through the states. This is so that more populated states can influence the law more, as there is more people affected by the law.
The executive branch represents the President, bureaucrats and others in executing laws made by Congress, however that idea has been perverted. The way the US looks now, the Executive branch (President) looks like they are the Judge, jury and executioner.
The way a law is passed: Congress writes a law (well, House and Senate write their own versions which must be arbitrated by committee). When/if law is passed by a simple majority, 50% +1, then said law goes to the presidents desk. If president signs, it is a law. If not, it is sent back to Congress for a 67% majority to veto the presidents choice.
The last branch is Judicial. They are the ones to rule on laws and breakings of said laws. The highest court is the Supreme Court, which there are 9 appointed judges (appointed by the Senate) which have lifetime seats. They rule purely on Constitutionality of laws passed by Congress. They have the ability to pass judgment on laws, strike them down, or define unclear terms. Many see that the Supreme court is probably more powerful than Congress or the Presidency.
_____
Now, how companies pass "Laws" as you probably have heard on Slashdot:
Congress doesnt exist in a vacuum, but instead well entrenched and 'sponsored' by different entities and interests. For example, Maine (a state) has heavy lumber interests, so the lumber industry donates money to the said political party. Even though there is no obligation for the party to do anything, they do the lumber entities interests in making law favorable to them.
Some lobbies have grown extremely powerful. For example, the RIAA is a lobby group brought forth by the Big 5 media companies. Big Pharma is another lobby, mainly on medical drugs. These companies and groups can literally buy laws by supporting both parties (the Republicans and Democrats) with their money coffers.
For indiduals, we have no recourse for bad laws other than voting the congress/president in or out
Its just an itchy, slightly burning rash.
Except the rash is caused by the oils of a plant (an ivy), so it can potentially rash up many parts of your body.
Some people are partially immune to its rash (me).
But this 200$ "100$ laptop" was also when USA $ was worth more in respect of the Euro.
What is its respective cost after determining currency inflation? Perhaps close to 100$ US?
You want your Goatse on holes?
How about the US boarder holes? Dont worry, its just a Time Magazine front cover... looking like goatse.
How about this argument:
More "westernized" nations are in the northern hemisphere, along with what used to be horrible environmental practices. The southern hemisphere has, all in all, less westernized nations. It would be fair to say that the North used to put out much more O3 destroying compounds.
Why is the hole bigger over the south than it is in the north?
---1. Check which way your amplifier is plugged in. Having the main power plug in the wrong way wreaks havoc on the sound,
I know you're making a funny, but I've got a Ham radio (Argonaut) from the 70's that if you reverse the power main, it WILL blow both tubes.
Yep, thats why we use polarized plugs now (that one was not polarized).
Well, I just run this sucker from a 12v car battery. Beautiful straight line (much unlike 120vac).
Our current technology could make human extinction a snap.
Why dont we sequence Ebola (wait.. already been done).
After that, we can slow it to incubation = 2 months, no symptoms.
Fatality rate = 100%, via e.coli immunity and increased drug resistances
Now, give it botulism environmental protection as seen from Type A variant. Now all those dead bodies now hold that disease, unless you want to personally burn each and every body. You'd probably get the spores anyways.
That is a 100% death rate for the whole world. And you can thank the e.coli living in your gut for the lack of resistance.
Note to your sig:
"When I wake up in the morning I piss cryptographic excellence." - Bruce Schneier
___
Yeah, he sure is full of entropy.
(boooo hisss hyuck!)
You'd really want to target all Muslims.
Not all Arabs are Muslims and not all Muslims are Arabs.
Would your plan work when you have Mr. Businessman and his associates going for a lecture and they are a sleeper cell?
They're white and they're professional. They most certainly cant be terrorists. (look at the recent England stuff. something like that scenario happened).