iTunes DRM cracked wide open for GNU/Linux. Seriously.
By Andrew Orlowski in San Francisco
Posted: 05/01/2004 at 20:25 GMT
Exclusive Norwegian programmer Jon Lech Johansen, who broke the DVD encryption scheme, has opened iTunes locked music a tad further, by allowing people to play songs they've purchased on iTunes Music Store on their GNU/Linux computers.
"We're about to find out what Apple really thinks about Fair Use," Johansen told The Register via email.
I'm like so tired of Windows security flaw stories. Maybe I should start charging Microsoft an outsourcing fee for explaining things to users. Would be nice only I wouldn't have enough time given the amount of issues that arise with MS. Oh well... In other news...
Belgian watchdog sues record biz over copy protection
Belgian consumer advocacy group Test-Achats (Test Aankoop) has announced plans to sue music labels EMI, Sony, BMG Music, and Universal Music for installing anti-piracy measure on music CDs. Test-Achats says it has received a number of complaints regarding such CDs as 'Laundry Service' by Shakira, which come with copy protection technology, often making them unusable in
computers and car stereos, and prevent users from making backup copies. Test-Achats is thought to be the first consumer group to legally challenge the music industry over anti-piracy technology. A 2001 lawsuit by a California woman resulted in a
return policy for customers who found their devices could not read discs they had purchased. Philips, the holder of the CD standard, said in 2002 that it would sue manufacturers who did not clearly label their copy-protected products.
<troll> techsupp: Hello my friend!! customer: hello is this Dell? I'm having a problem with my Inspiron techsupp: Yes you have reached Dell, Electrocamel Networks, Red Dot Consulting, and Magic Carpet Consultants customer: well my laptop won't turn on techsupp: tell me my friend what is laptop </troll>
bottom line comes from Pleasing customers Sorry to rain on your parade, but I'm sure there are plenty here who'll differ with you on Dell pleasing their customers. As for outsourcing, those on the Sunmanagers list can definitely vouch on this statement, and I in no way mean to offend anyone. For all the outsourcing going to India, I have to wonder whether American companies are losing more in the long run considering the type of quality of the work of the inexperienced.
Ok I'm tired so I'll try to explain a bit. The majority of posts I've been seeing on the Sunmanagers mailing lists are often questions as dub as "How do I reebot my e450 thank you Jawalahar!", and that's scary. If I'm saving say $400 for outsourcing but paying $200 in downtime because an admin is a moron, $100 in downtime waiting for the idiot admin to get a reply from a mailing list, where is the savings? $100 you say? What happens if I lose customers while my business is down?
eg:
Date: Fri, 2 Jan 2004 14:11:29 -0500 (EST) From: Sundaram Ramasamy <sun!!@percipia.com> To: sunmanagers@!!sunmanagers.org Subject: sendmail mqueue files
hi,
Solaris mail server mailq command shows only two request is waiting.
But/var/spool/mqeue has 81 files, Some of them 1 year old can I delete these file?
Thanks SR
Again, apologies if it seems I' nitpicking but I'm not, I just notice the majority of questions that are for one: easily resolveable to an experienced admin, easily resolveable via googling, are posted by people in countries that American chooses to use for outsourcing.
You sold me there on that story. Obviously I'm passing this on to all of those Berkeley, MIT, Carnegie, Harvard, Yale grad CTO's and marketers who work at places like Alienware, Sager, Toshiba, and other smaller comp makers who spend the big bucks. This guy is definitely on to something, and I'm glad Slashdot didn't waste my time posting garbage.
At least the Russian Revolution had a Lenin, and a Trotsky. Stalin was no fun, but he sure knew how to rule a party. I mean, give me a break, these socialist computer haters are not revolutionary, they're just whiny
THAT I know, but it should have been clarified either in the write up, or by/. editors posting the story. Perception is a bitch, and the way I see it, the intro (/. intro anyway) makes it seem as if the average joe blow would know or even care about ATM, QOS, etc., hell the average non ISP linked person knows what CLEC's or ILEC's are.
ATM,... have turned out to be duds. Furthermore, they all failed not because the technical solutions that were developed were inadequate, but because they were not what users wanted.'"
Define "user" I know this guy is not referring to some average joe fiddling with ATM. Hell the average joe thinks a cell is where he's going to be if he uses Kazaa too long.
interface ATM1/0.2 point-to-point
description PVC to Kungfunix
ip address 192.168.1.1 255.255.255.252
no ip directed-broadcast
ip access-group from_Kun in
ip access-group to_Kun out
atm pvc 3 0 33 aal5snap
Oh yea I'm sure the average user is going to bypass DSL or cable and go straight for the big guns. Sure, run an ISP in their own house... User? Define
Extract: Civilian Global Positioning System (GPS) receivers are vulnerable to attacks such as blocking, jamming, and spoofing. The goal of such attacks is either to prevent a position lock (blocking and jamming) or to feed the receiver false information so that it computes an erroneous time or location (spoofing). GPS receivers are generally aware of when blocking or jamming is occurring because they have a loss of signal. Spoofing, however, is a surreptitious attack. Currently, no countermeasures are in use for detecting spoofing attacks. We believe, however, that it is possible to implement simple, low-cost countermeasures that can be retrofitted onto existing GPS receivers. This would, at the very least, greatly complicate spoofing attacks.
I run a Windows XP machine for music editing and I use it online plenty too, and to date I have yet to worry about spyware, or worms. I don't have some ultra fancy shmancy set on the Win machine because I don't care that much about it. Now... I do contracting work at a mid sized Uni from time to time (I work at an ISP), and whenever at the Uni, I would see students' machine flooded with tons of spyware, viruses, you name it they had it. After fixing things for some of these kids while there, a call would come in an hour later, ONE HOUR, same kid, same viruses, same spyware.
See what happens is, people who are using Windows are using it mainly because of ease of use, at least that's my take on it, and it's easy to trick many Windows users to open up stupid mail, get horny guys to open up "Bratney Spears nude!" emails, as well as leechers to swap files a-la kazaa.... Sorry to say I have no pity on most Windows users. Me I have everything from sparcs to ultras to i386's, and I've NEVER, NEVER, let me repeat, NEVER have gotten spyware, nor a virus. And no... I don't use antivirus software because my home gateway (NetBSD) filters garbage out before it comes in.
That is unless I guess commercial airlines transmit on L1 & L2 frequencies. Provided of course the military sees fit to allow commercial airlines to use that frequency. Which makes me wonder about what juridstiction the United States would have if say a Japan Airlines plane was using that frequency when it pulled in our airspace... Oh well back to work
Oh come on give me a break here are some links the farmers might be interested in. you know you wanted to post something else more informative from those bookmarks of yours didn't you *wink wink* (of course it's a joke before panties rise you know)
Once Palm gets a whiff of this they'll be selling BILLIONS of Farm Pilots... No wait. Maybe I should invest in Redhat. The potential Redhat Farmix. Wow I don't know about you but I'm excited
For most (l)users who don't understand SSL, most times they'll end up ignoring OpenSSL certs that weren't signed by so-called 'Trusted Signers', often going into a site without using SSL, thinking the cert is not to be trusted. I threw a 4096bit cert for my FOIA docs, Openwebmail, and some other stuff, and people always ask me about that annoying little 'Trusted Signer" warning.
Oh well... Bruce Schneier's old but well written doc always comes to mind when thinking of this topic: "Ten Risks of PKI: What You're not Being Told about Public Key
Infrastructure By Carl Ellison and Bruce Schneier
Computer security has been victim of the "year of the..." syndrome.
First it was firewalls, then intrusion detection systems, then VPNs,
and now certification authorities (CAs) and public-key infrastructure
(PKI). "If you only buy X," the sales pitch goes, "then you will be
secure." But reality is never that simple, and that is especially
true with PKI. (source)
Most people like fast content and often overlook security. Hell eBay out of all sites, billions in transactions, and SSL is an option! How sickening is that.
Anti-virus experts hoping current trends continue for MS (l)users in the year 2004. According to an unnamed CEO of an antivirus firms, "Hey I don't bite the hand that feeds me. If Microsoft puts out shoddy products, I'm taking advantage of it. I mean you think I bought this mansion, ferrari, helicopter, silicon implants on Fluffy over there by writing products of Unix based machines? Microsoft is slated to make me a billionaire by years end."
Microsoft as you recall has hired the 31337est of the 31337ers in hopes of tracking down the evil coders that make Microsoft programmers look like morons. According to ^\\h4x0rj33t0^\\ #kungfunix on the efnet, "d4ts r1ght b14tch!*%!$ 3y3 j4m l0ok1ng f0r v1rus c0d3rs w1f m4h p3eps r1ght d1sh m1nut3."
Surprisingly Microsoft still hasn't managed to get its act together and many in the Open Source community are hoping Microsoft implodes, explodes, or anything similar that will send MS (l)users over to alternative operating systems.
<troll> VoIP will never promise that this will work perfectly without fault for legal reasons.
If VoIP starts promising me something I'll check myself into the psychward;O </troll>
and all I want is dependable 911 access.911 is a joke
Dude, just go hardcore and implant your family with Verichip, or Digital Angel. 'INSERT catchy_slogan_thing INTO POST FROM SUBJECT WHERE NAME LIKE missedperception'; "Forget 911 go private consumer based ultra neeto protection. Fun for the cattle and dogs, and now the whole family!"
Providers emerging from the rat's nest of former state telco monopolies have been unable to introduce anything remotely resembling a widespread DSL service at a sensible cost (remember ISDN?:-)
Well DSL is sooner or later going to die at the fate of cable. DSL providers are pretty much selling it under cost (for those charging under $50.00). Verizon is beating up local ISP's offering DSL by taking a loss selling their DSL ($39.00), and for those of you who also work at ISP and have to deal with Verizon, I'm sure others can vouch for the nightmarish pain of dealing with Verizon.
ISDN is close to 98% dead and anyone who'd be willing to pay line surcharges nowadays has got to be on something. Especially for that speed.
Wireless? yea sure.
As for the bigger cities pumping VoIP, this will definitely happen, but expect telco's to do some major lobbying in hopes of controlling it all.
"according to FCC filings, FBI officials had a more private meeting with half-a-dozen FCC staffers to reiterated the Bureau's view on the matter: VoIP should be regulated-- at least enough to ensure that the FBI can listen-in."
Wanna know something, I thought of the same thing. Out of boredom one day in like 2000 I wrote ghost in the shell, and I was going to rewrite it to make it more informative. Only this time I set out to do something sort of like a caesar cipher based scheme only it would've been a forward/reverse scheme.
Using a preselected number (ala rot13) I took a letter and manually (no pc) set the number 16 to my base. So the letter a was now p. The next shift would have been reversed 15 spaces so if b was the next letter it would have become m, and so on. Now in english we run into dupes (foot, book, cook, etc.) which means you're likely to run into problems (randominity, etc.) but it wasn't the case in fact a word like foot would have become "uzcg" but a word like cake would have been something like "boox" which was neat considering I broke the letter into five char blocks.
I played with it for a while but got bored, so I could see how someone may have actually wrote something, translated into their own unique language where no one else would have understood. The math behind the scheme I was playing around with it somewhere lying around, maybe one day I'll do the doc for kicks who knows. I think though, they shouldn't pass the entire thing off as a hoax though
Slashdot Mirror
I knew they would find him
must be on a section I don't check out... mea culpa
iTunes DRM cracked wide open for GNU/Linux. Seriously.
By Andrew Orlowski in San Francisco
Posted: 05/01/2004 at 20:25 GMT
Exclusive Norwegian programmer Jon Lech Johansen, who broke the DVD encryption scheme, has opened iTunes locked music a tad further, by allowing people to play songs they've purchased on iTunes Music Store on their GNU/Linux computers.
"We're about to find out what Apple really thinks about Fair Use," Johansen told The Register via email.
Full article
I'm like so tired of Windows security flaw stories. Maybe I should start charging Microsoft an outsourcing fee for explaining things to users. Would be nice only I wouldn't have enough time given the amount of issues that arise with MS. Oh well... In other news...
Ok I'm tired so I'll try to explain a bit. The majority of posts I've been seeing on the Sunmanagers mailing lists are often questions as dub as "How do I reebot my e450 thank you Jawalahar!", and that's scary. If I'm saving say $400 for outsourcing but paying $200 in downtime because an admin is a moron, $100 in downtime waiting for the idiot admin to get a reply from a mailing list, where is the savings? $100 you say? What happens if I lose customers while my business is down?
eg:
Again, apologies if it seems I' nitpicking but I'm not, I just notice the majority of questions that are for one: easily resolveable to an experienced admin, easily resolveable via googling, are posted by people in countries that American chooses to use for outsourcing.The Open Source Initiative ("OSI") defines Open Source as software providing the following illegal actions:
1. No royalty to use because commie geeks stole all the code.
2. Freely available stolen source code.
3. Illegal rights to create modifications and derivative works of SCO.
4. Evil evil evil.
5. Discriminates against SCO.
6. Discriminates against Scientologists.
7. All rights stolen stolen stolen SCO SCO SCO.
8. Their licenses (Open Source) applies to the peanut butter and bananas SCO SCO SCO.
9. Their license must have been purchased at a bubblegum machine SCO SCO SCO.
You sold me there on that story. Obviously I'm passing this on to all of those Berkeley, MIT, Carnegie, Harvard, Yale grad CTO's and marketers who work at places like Alienware, Sager, Toshiba, and other smaller comp makers who spend the big bucks. This guy is definitely on to something, and I'm glad Slashdot didn't waste my time posting garbage. Oh yea, that guy's good.
here
THAT I know, but it should have been clarified either in the write up, or by /. editors posting the story. Perception is a bitch, and the way I see it, the intro (/. intro anyway) makes it seem as if the average joe blow would know or even care about ATM, QOS, etc., hell the average non ISP linked person knows what CLEC's or ILEC's are.
Define "user" I know this guy is not referring to some average joe fiddling with ATM. Hell the average joe thinks a cell is where he's going to be if he uses Kazaa too long.
interface ATM1/0.2 point-to-point
description PVC to Kungfunix
ip address 192.168.1.1 255.255.255.252
no ip directed-broadcast
ip access-group from_Kun in
ip access-group to_Kun out
atm pvc 3 0 33 aal5snap
Oh yea I'm sure the average user is going to bypass DSL or cable and go straight for the big guns. Sure, run an ISP in their own house... User? Define
GPS Spoofing Countermeasures, Jon S. Warner, Roger G. Johnston -- Los Alamos National Labs
I run a Windows XP machine for music editing and I use it online plenty too, and to date I have yet to worry about spyware, or worms. I don't have some ultra fancy shmancy set on the Win machine because I don't care that much about it. Now... I do contracting work at a mid sized Uni from time to time (I work at an ISP), and whenever at the Uni, I would see students' machine flooded with tons of spyware, viruses, you name it they had it. After fixing things for some of these kids while there, a call would come in an hour later, ONE HOUR, same kid, same viruses, same spyware.
See what happens is, people who are using Windows are using it mainly because of ease of use, at least that's my take on it, and it's easy to trick many Windows users to open up stupid mail, get horny guys to open up "Bratney Spears nude!" emails, as well as leechers to swap files a-la kazaa. ... Sorry to say I have no pity on most Windows users. Me I have everything from sparcs to ultras to i386's, and I've NEVER, NEVER, let me repeat, NEVER have gotten spyware, nor a virus. And no... I don't use antivirus software because my home gateway (NetBSD) filters garbage out before it comes in.
That is unless I guess commercial airlines transmit on L1 & L2 frequencies. Provided of course the military sees fit to allow commercial airlines to use that frequency. Which makes me wonder about what juridstiction the United States would have if say a Japan Airlines plane was using that frequency when it pulled in our airspace... Oh well back to work
Oh come on give me a break here are some links the farmers might be interested in. you know you wanted to post something else more informative from those bookmarks of yours didn't you *wink wink* (of course it's a joke before panties rise you know)
Once Palm gets a whiff of this they'll be selling BILLIONS of Farm Pilots... No wait. Maybe I should invest in Redhat. The potential Redhat Farmix. Wow I don't know about you but I'm excited
Oh well... Bruce Schneier's old but well written doc always comes to mind when thinking of this topic: "Ten Risks of PKI: What You're not Being Told about Public Key Infrastructure By Carl Ellison and Bruce Schneier
Computer security has been victim of the "year of the..." syndrome. First it was firewalls, then intrusion detection systems, then VPNs, and now certification authorities (CAs) and public-key infrastructure (PKI). "If you only buy X," the sales pitch goes, "then you will be secure." But reality is never that simple, and that is especially true with PKI. (source)
Most people like fast content and often overlook security. Hell eBay out of all sites, billions in transactions, and SSL is an option! How sickening is that.
New Year not so new news
Darl McLame
SCUM Group
Anti-virus experts hoping current trends continue for MS (l)users in the year 2004. According to an unnamed CEO of an antivirus firms, "Hey I don't bite the hand that feeds me. If Microsoft puts out shoddy products, I'm taking advantage of it. I mean you think I bought this mansion, ferrari, helicopter, silicon implants on Fluffy over there by writing products of Unix based machines? Microsoft is slated to make me a billionaire by years end."
Microsoft as you recall has hired the 31337est of the 31337ers in hopes of tracking down the evil coders that make Microsoft programmers look like morons. According to ^\\h4x0rj33t0^\\ #kungfunix on the efnet, "d4ts r1ght b14tch!*%!$ 3y3 j4m l0ok1ng f0r v1rus c0d3rs w1f m4h p3eps r1ght d1sh m1nut3."
Surprisingly Microsoft still hasn't managed to get its act together and many in the Open Source community are hoping Microsoft implodes, explodes, or anything similar that will send MS (l)users over to alternative operating systems.
VoIP will never promise that this will work perfectly without fault for legal reasons.
If VoIP starts promising me something I'll check myself into the psychward
</troll>
and all I want is dependable 911 access. 911 is a joke
Dude, just go hardcore and implant your family with Verichip, or Digital Angel. 'INSERT catchy_slogan_thing INTO POST FROM SUBJECT WHERE NAME LIKE missedperception'; "Forget 911 go private consumer based ultra neeto protection. Fun for the cattle and dogs, and now the whole family!"
Well DSL is sooner or later going to die at the fate of cable. DSL providers are pretty much selling it under cost (for those charging under $50.00). Verizon is beating up local ISP's offering DSL by taking a loss selling their DSL ($39.00), and for those of you who also work at ISP and have to deal with Verizon, I'm sure others can vouch for the nightmarish pain of dealing with Verizon.
ISDN is close to 98% dead and anyone who'd be willing to pay line surcharges nowadays has got to be on something. Especially for that speed.
Wireless? yea sure.
As for the bigger cities pumping VoIP, this will definitely happen, but expect telco's to do some major lobbying in hopes of controlling it all.
I'll make sure that SoIP does NOT work with your products manwhore
Here's a script for that nicely written post. Happy New Year!
e `whoami`
GET http://www.perfidious.org/award|\
sed '1!G;h;$!d'|sed '/\n/!G;s/\(.\)\(.*\n\)/&\2\1/;//D;s/.//'|\
writ
I know that it is, but I was referrering to using the rot13 program included on distros like Linux and BSD ;) happy new year
Wanna know something, I thought of the same thing. Out of boredom one day in like 2000 I wrote ghost in the shell, and I was going to rewrite it to make it more informative. Only this time I set out to do something sort of like a caesar cipher based scheme only it would've been a forward/reverse scheme.
Using a preselected number (ala rot13) I took a letter and manually (no pc) set the number 16 to my base. So the letter a was now p. The next shift would have been reversed 15 spaces so if b was the next letter it would have become m, and so on. Now in english we run into dupes (foot, book, cook, etc.) which means you're likely to run into problems (randominity, etc.) but it wasn't the case in fact a word like foot would have become "uzcg" but a word like cake would have been something like "boox" which was neat considering I broke the letter into five char blocks.
I played with it for a while but got bored, so I could see how someone may have actually wrote something, translated into their own unique language where no one else would have understood. The math behind the scheme I was playing around with it somewhere lying around, maybe one day I'll do the doc for kicks who knows. I think though, they shouldn't pass the entire thing off as a hoax though