Anyways, yes, even if we could brute-force DES in under a second, brute forcing 3DES would still take centuries.
One of the major weaknesses for any security system is the overestimation of it's abilities by the user or seller. It might take a couple of centuries to brute force every possible key for a message, but you'll stop once you find it.
Weak passphrases greatly contribute to this, but in the end one should consider all methods of encryption and security to be nothing more than a stalling tactic. The question you need to ask yourself is what the minimum amount of time you need an attacker to be held off and what level of resources they have to dedicate to you. For folks that aren't being directly targeted most of this conversation is academic. For folks with something real to hide, perhaps protection from corporate espionage and the like, then consider something that should last at least until product launch if attacked by a company that would allocate slightly less resources than it would take to do the project themselves.
Funny, Considering the fact that Linux + laptops used to be one of the biggest headaches in the world.
It is, but only if the laptop wasn't made with linux in mind to begin with. With the Asus boxes it stands to reason that they're going to work out all the bugs for their own product. Some of the reviews I've read said the webcam was non-functional under Linux. It worked ok under XP though. I guess there's some work to be done still.
I prefer the rationalizing that a month of playing WoW with my friends when I have spare time is still cheaper than a single round of drinks with those same knuckleheads on the weekend. I can still do both, but I get more for the $15/month than I do that first or last round of sweet, tasty liquid love.
First they do not listen to critics, If it gets placed on the test realm it WILL go live.
Right... Listening to critics is not the same as mindlessly obeying critics. There have been plenty of changes that either didn't get past the test realm stage or got reverted/tweaked shortly afterwards. You're only remembering the buffs and nerfs that you didn't like making it live. The easiest to remember change that didn't go live was when druids in bear/cat form were able to finally drink potions. The reversion of that buff drew outrage to the point of organized protests across the live servers and a lot of my beloved forum trolls getting themselves banned due to overly flaming or critical posts.
But, if you purchase a CD, any one with the official Phillips CD logo on it, then you are guaranteed to have no copy protection on it. Phillips has been quite good about requiring that any disc with that logo on it be played on any CD player that has ever been made, which effectively prevents DRM systems from being put on to a licensed disc.
Very true, but it's getting progressively harder to find said logo. It's almost as if it is getting dropped from all disks to help mask which ones are or aren't standards compliant. I think a bit of pressure to the retailers is due as these non-CD disks are in their "CD" sections, labeled as "CDs" in their music catalogs and are generally non-returnable if it's defective by reason of DRM. I can understand them only want to swap out defective disks with the same disk, but if that's how it's made then there's a very screwed pooch someplace. Complaints about selling "music disks" in place of real, true to standards, CDs may have some leverage under any number of consumer protection and truth in advertising laws. If anything, it's a classic bait and switch, but you never know it's a switch until you've rendered the CD unrefundable.
Freakonomics: A Rogue Economist Explores the Hidden Side of Everything, By Steven D. Levitt, Stephen J. Dubner
Notice, no link. Not astroturfing this (or am I? Hmmmm...). The books thought on the crime drop was that legalizing abortion helped a lot. I don't remember if it was violent or overall crime, but basically by allowing women that couldn't raise a child properly (unsupportive father, family, community), less kids were raised at risk of becoming criminals.
Of course, I might just like it because the idea would rub certain members of my family the wrong way. I'm bad like that.
The problem is that the natural gene/chromosome hopping (and the associated traits) never brought about lawsuits before. It's not like the bees in an area have read any literature saying that the corn they gathered pollen from earlier is the patented technology of XYZ corp and they should therefore not visit other plants.
Selective breeding is not the same as direct splicing of genes or chromosomal insertion. At least with selective breeding you can progressively see what other traits pop up and change rather than saying the end result is perfect. I'm a bit dubious about the testing, too. You could eat whole mayo every day for decades before you have related heart attack. How are they testing the products with lifetime use taken into account?
I also want to see how long it takes the chromosomes to hop to different plants. They should sue God if that happens.
I think letting companies like MS or IBM have a say on what is and isn't patentable would be a bad idea. Then companies could easily vote down disruptive technologies (Linux, while not up for a patent, is such) and engage in backroom dealing. Kind of how they do it right now with their Cold War style defensive patent portfolios.
Nope. I think leaving it open to the public, with room for any number of our bored, know it all forum troll types focusing their attention on prior art issues may be the best way to harness the power of this nation's basements.
Nope. Then they'd deny everything. The answer is obviously to allow industry to set up a self-regulating body to approve and deny patent applications. No need for the oversight.
Just kidding. I'm curious what happened to the idea of wiki-fying the system.
I can live with an 8 way mimicking a 4 way. If they added a feature to randomly simulate a broken button or stick, though, I'd say it's a bit too realistic.
I wonder if she'll be allowed to pay the settlement like the recording industry did theirs. In unpopular CDs that cost pennies to make but apply to the fine at retail price.
Probably less software which "needs" admin rights in order to be used.
In all honesty, the vast majority of users don't need anything more than email, a word processor and a web browser. You're right, though. There are specialized programs that need to have admins rights to work. Unfortunately this is the fault of developers being lazy. When I did Help Desk, some of the newer folks could never replicate problems on tickets because they didn't try using regular user accounts instead of their admin accounts.
Crap like that led to the very annoying UAC torture device in Vista. I'm shopping for a new Linux distro again. I wish WINE worked with more stuff.
Another problem with this idea of "computer usaage as a right meme" is that there little discourage "repeat offenders". If someone were to take an axe to their chair they'd get little sympathy, but someone who is just as destructive to their computer may actually get priority in support.
Especially when their name is "Boss". Pointy hair not withstanding:P
The problem is that many of the breaches are not in fact the fault of (or involving) end-users.
1/2 right, 1/2 wrong. The biggest problem with most IT departments is that end users are treated as customers rather than sources of security risks and unnecessary work. Computer usage is viewed as a right rather than a revokable resource. If they didn't have to kiss asses (especially of those higher up in the food chain) many problems wouldn't occur. There would be less people with admin rights to their boxes, less unapproved software installed and less general screwing around on the internet. But no. Let people think their work boxes are for doing everything they ought to be saving for home (even porn surfing and gaming). I'd say it's a safe bet that somebody went and downloaded a trojan by surfing sites they shouldn't have been at.
I'm not saying that a few of the attacks weren't targeted infiltration successes by hackers. I think it's just as likely that some boxes got owned and then were later discovered to be important later on.
For anyone to lose their entire life savings because of Enron meant that their entire life savings was is one company's stock. This is not sound financial planning.
Aside from the slight exaggeration of the entire life savings, part of the Enron scandal was the employees got royally shafted due to their 401ks all being in the company stock. The higher ups dumped their stocks early when they knew things were going south, but the regular folks were left high and dry. http://en.wikipedia.org/wiki/Enron_scandal#Pensions
Well, yeah. But if the memo (with it's TPS coversheet) said "we don't deal with hardware problems on linux machines" and the manager was interpreting too broadly, then you get OP's problem. I'm sure escalating it to the next level or two, while time consuming, would yield the desired results.
More than likely the note the manager read was intended to keep the cheaply paid minions from working on Linux related hardware problems. No letting the underlings break a.config file worse than it already is (and thus incurring the customer's wrath). Rather than hire more expensive techs with Linux+Windows knowledge, keep them in Windows only. The "fine print" was worded with common sense in mind, so it didn't seem necessary to stipulate that hardware issues with non-driver/OS causes would be ok.
I'm having issues with the DRM free bit. The CD logo isn't being shown on actual CDs and some music disks aren't being labeled as being incompatible with computer drives or "some CD players". I don't care what they do with the disks, but they do need to label properly and evidently. The "explicit lyrics" sticker is a marketing device now, and a "CD incompatible" label should be at least the same size.
Indeed, open standards are great. So why doesn't the iPhone support J2ME, which is the existing open standard for mobile applications, instead of trying to create a whole new "standard" based around Safari?
I'm not sure I'm quite getting your point as Safari has a java runtime engine already. According to the wiki, J2ME's source was only made available in December of '06 (and maybe not everything). The prior binaries were not always available without cost either (that changed, but was it too late to integrate without moving ship dates?).
So basically Safari can run java apps already, and the fact that it's on Safari means that it can run on portables, Macs and PC's as is. From what I read about J2ME, isn't it a platform just for mobiles? Doesn't this mean that iPhones will be able to use the greater amount of Java apps from the regular computing world rather than just the mobile games and mini-apps?
Slashdot Mirror
Anyways, yes, even if we could brute-force DES in under a second, brute forcing 3DES would still take centuries.
One of the major weaknesses for any security system is the overestimation of it's abilities by the user or seller. It might take a couple of centuries to brute force every possible key for a message, but you'll stop once you find it.
Weak passphrases greatly contribute to this, but in the end one should consider all methods of encryption and security to be nothing more than a stalling tactic. The question you need to ask yourself is what the minimum amount of time you need an attacker to be held off and what level of resources they have to dedicate to you. For folks that aren't being directly targeted most of this conversation is academic. For folks with something real to hide, perhaps protection from corporate espionage and the like, then consider something that should last at least until product launch if attacked by a company that would allocate slightly less resources than it would take to do the project themselves.
Funny, Considering the fact that Linux + laptops used to be one of the biggest headaches in the world.
It is, but only if the laptop wasn't made with linux in mind to begin with. With the Asus boxes it stands to reason that they're going to work out all the bugs for their own product. Some of the reviews I've read said the webcam was non-functional under Linux. It worked ok under XP though. I guess there's some work to be done still.
I prefer the rationalizing that a month of playing WoW with my friends when I have spare time is still cheaper than a single round of drinks with those same knuckleheads on the weekend. I can still do both, but I get more for the $15/month than I do that first or last round of sweet, tasty liquid love.
*goes off to find a Guiness*
First they do not listen to critics, If it gets placed on the test realm it WILL go live.
Right... Listening to critics is not the same as mindlessly obeying critics. There have been plenty of changes that either didn't get past the test realm stage or got reverted/tweaked shortly afterwards. You're only remembering the buffs and nerfs that you didn't like making it live. The easiest to remember change that didn't go live was when druids in bear/cat form were able to finally drink potions. The reversion of that buff drew outrage to the point of organized protests across the live servers and a lot of my beloved forum trolls getting themselves banned due to overly flaming or critical posts.
But, if you purchase a CD, any one with the official Phillips CD logo on it, then you are guaranteed to have no copy protection on it. Phillips has been quite good about requiring that any disc with that logo on it be played on any CD player that has ever been made, which effectively prevents DRM systems from being put on to a licensed disc.
Very true, but it's getting progressively harder to find said logo. It's almost as if it is getting dropped from all disks to help mask which ones are or aren't standards compliant. I think a bit of pressure to the retailers is due as these non-CD disks are in their "CD" sections, labeled as "CDs" in their music catalogs and are generally non-returnable if it's defective by reason of DRM. I can understand them only want to swap out defective disks with the same disk, but if that's how it's made then there's a very screwed pooch someplace. Complaints about selling "music disks" in place of real, true to standards, CDs may have some leverage under any number of consumer protection and truth in advertising laws. If anything, it's a classic bait and switch, but you never know it's a switch until you've rendered the CD unrefundable.
Freakonomics: A Rogue Economist Explores the Hidden Side of Everything, By Steven D. Levitt, Stephen J. Dubner
Notice, no link. Not astroturfing this (or am I? Hmmmm...). The books thought on the crime drop was that legalizing abortion helped a lot. I don't remember if it was violent or overall crime, but basically by allowing women that couldn't raise a child properly (unsupportive father, family, community), less kids were raised at risk of becoming criminals.
Of course, I might just like it because the idea would rub certain members of my family the wrong way. I'm bad like that.
The problem is that the natural gene/chromosome hopping (and the associated traits) never brought about lawsuits before. It's not like the bees in an area have read any literature saying that the corn they gathered pollen from earlier is the patented technology of XYZ corp and they should therefore not visit other plants.
http://ohioline.osu.edu/agf-fact/0153.html
What happens when the weeds and other pest plants become round-up ready as well?
Oh, and my favorite link so far http://www.nelsonfarm.net/
Selective breeding is not the same as direct splicing of genes or chromosomal insertion. At least with selective breeding you can progressively see what other traits pop up and change rather than saying the end result is perfect. I'm a bit dubious about the testing, too. You could eat whole mayo every day for decades before you have related heart attack. How are they testing the products with lifetime use taken into account?
I also want to see how long it takes the chromosomes to hop to different plants. They should sue God if that happens.
I think letting companies like MS or IBM have a say on what is and isn't patentable would be a bad idea. Then companies could easily vote down disruptive technologies (Linux, while not up for a patent, is such) and engage in backroom dealing. Kind of how they do it right now with their Cold War style defensive patent portfolios.
Nope. I think leaving it open to the public, with room for any number of our bored, know it all forum troll types focusing their attention on prior art issues may be the best way to harness the power of this nation's basements.
Nope. Then they'd deny everything. The answer is obviously to allow industry to set up a self-regulating body to approve and deny patent applications. No need for the oversight.
Just kidding. I'm curious what happened to the idea of wiki-fying the system.
I can live with an 8 way mimicking a 4 way. If they added a feature to randomly simulate a broken button or stick, though, I'd say it's a bit too realistic.
Come to think of it, what about trackball games? Hmm... this could get expensive.
I know it's not likely for the price point, but a joystick being included is what would make that "arcade" for me.
... and a spot for my quarters.
I wonder if she'll be allowed to pay the settlement like the recording industry did theirs. In unpopular CDs that cost pennies to make but apply to the fine at retail price.
Probably less software which "needs" admin rights in order to be used.
:P
In all honesty, the vast majority of users don't need anything more than email, a word processor and a web browser. You're right, though. There are specialized programs that need to have admins rights to work. Unfortunately this is the fault of developers being lazy. When I did Help Desk, some of the newer folks could never replicate problems on tickets because they didn't try using regular user accounts instead of their admin accounts.
Crap like that led to the very annoying UAC torture device in Vista. I'm shopping for a new Linux distro again. I wish WINE worked with more stuff.
Another problem with this idea of "computer usaage as a right meme" is that there little discourage "repeat offenders". If someone were to take an axe to their chair they'd get little sympathy, but someone who is just as destructive to their computer may actually get priority in support.
Especially when their name is "Boss". Pointy hair not withstanding
Heheheh
Mercenary position = sex with a pro?
The problem is that many of the breaches are not in fact the fault of (or involving) end-users.
1/2 right, 1/2 wrong. The biggest problem with most IT departments is that end users are treated as customers rather than sources of security risks and unnecessary work. Computer usage is viewed as a right rather than a revokable resource. If they didn't have to kiss asses (especially of those higher up in the food chain) many problems wouldn't occur. There would be less people with admin rights to their boxes, less unapproved software installed and less general screwing around on the internet. But no. Let people think their work boxes are for doing everything they ought to be saving for home (even porn surfing and gaming). I'd say it's a safe bet that somebody went and downloaded a trojan by surfing sites they shouldn't have been at.
I'm not saying that a few of the attacks weren't targeted infiltration successes by hackers. I think it's just as likely that some boxes got owned and then were later discovered to be important later on.
For anyone to lose their entire life savings because of Enron meant that their entire life savings was is one company's stock. This is not sound financial planning.
Aside from the slight exaggeration of the entire life savings, part of the Enron scandal was the employees got royally shafted due to their 401ks all being in the company stock. The higher ups dumped their stocks early when they knew things were going south, but the regular folks were left high and dry.
http://en.wikipedia.org/wiki/Enron_scandal#Pensions
Well, yeah. But if the memo (with it's TPS coversheet) said "we don't deal with hardware problems on linux machines" and the manager was interpreting too broadly, then you get OP's problem. I'm sure escalating it to the next level or two, while time consuming, would yield the desired results.
More than likely the note the manager read was intended to keep the cheaply paid minions from working on Linux related hardware problems. No letting the underlings break a .config file worse than it already is (and thus incurring the customer's wrath). Rather than hire more expensive techs with Linux+Windows knowledge, keep them in Windows only. The "fine print" was worded with common sense in mind, so it didn't seem necessary to stipulate that hardware issues with non-driver/OS causes would be ok.
I'm having issues with the DRM free bit. The CD logo isn't being shown on actual CDs and some music disks aren't being labeled as being incompatible with computer drives or "some CD players". I don't care what they do with the disks, but they do need to label properly and evidently. The "explicit lyrics" sticker is a marketing device now, and a "CD incompatible" label should be at least the same size.
Again... how?
I'm not sure I'm quite getting your point as Safari has a java runtime engine already. According to the wiki, J2ME's source was only made available in December of '06 (and maybe not everything). The prior binaries were not always available without cost either (that changed, but was it too late to integrate without moving ship dates?).
So basically Safari can run java apps already, and the fact that it's on Safari means that it can run on portables, Macs and PC's as is. From what I read about J2ME, isn't it a platform just for mobiles? Doesn't this mean that iPhones will be able to use the greater amount of Java apps from the regular computing world rather than just the mobile games and mini-apps?
Seriously. I'm not a programmer and am curious.
Seriously. Jonny5 will be sending his manifesto to the New York Times pretty soon.
Ever wonder if the offer to earn more "DKP" might have meant something a bit different then?