Since the researchers had to run the hack explicitly from a Sprint phone, it sounds like it isn't a public IP address, but a private one behind Sprint's internet access point, and Sprint has left peer-to-peer enabled on that private pool of IPs. The cellular access is to provide a wifi hotspot in the car, and I agree with what everyone has said here about not having critical car systems networked with entertainment systems (didn't we just have that discussion about a Boeing aircraft recently?). Why did Sprint leave that Uconnect pool of IPs able to talk to each other when they could disable peer-to-peer in that pool with trivial effort? I'm guessing it's because the Uconnect server's private IP is within that pool, and the architects didn't want to go to the trouble of setting up a VPN or some other mechanism of allowing an IP outside the pool to initiate traffic with the cars' client Uconnect systems. But, that would mean that either the Uconnect server(s) either are talking to all the cars via their own Sprint cellular connection (seems unlikely) or they have plugged the servers directly into the pool, which opens up the mystery again. Bleh, I'd really like to see the exact network architecture here.
Because the roaming network passes the authentication request to the home network HLR - so if the home network HLR is down, the roaming network doesn't know if the SIM can be allowed on its network.
I just pick up brass at the police range and reload it when I murder people.
Firing pins don't hit brass, they hit primers. When you reload centerfire ammo, you use new primers. So while sanding down the firing pin is an obvious 'solution' here, brass collected from wherever isn't going to be different from newly manufactured brass unless the ammunition manufacturer has imprinted it and tracked the initial retail sale.
All that said, I'd use brass from public and police ranges too, just in case.
I think this is just the semifinals of the "IT Industry" Conference of the US Civil Justice Championship. M$ beat the DoJ and Netscape to get here, SCO beat Novell (and had a bye) and is currently matched against IBM. Winner of these two go head-to-head for the championship. Personally I'd like to see SCO vs the spammers for purely satanic reasons.
Actually a "Digital Pearl Harbor" would tend to imply an intentional attack, not a massive failure as a result of incompetence or poor maintenance.
And yes, we're in serious shot if a tech-savvy threat manages to penetrate multiple infrastructure service systems and coordinate the plug-pulling with physical attacks. Isn't this the same crowd, though, that blasts Tom Ridge for vague "we have evidence that terrorists will try to attack us some time in the next two years, so be alert" warnings? I don't think that Al Qaeda will never turn to electronic warfare, but they're still doing pretty well with car bombs and have as yet shown no capability or intention to use cyberwarfare.
Without a Digital Pearl Harbor attack hitting us, it is unlikely that anyone will take him seriously, and since Digital Pearl Harbors was just Richard Clark FUD in the first place, his resignation was inevitable.
My Bayesian filters are starting to pick up on the snailmail addresses the compliant spams contain... So maybe there was one minor positive point to the law after all. Unless they're simply fraudulent, it's a lot tougher to change a snailmail address than an email or URL address.
The convicted spammer gets put in a box. For every piece of spam he's caused to be sent, a single grain of sand is put in the box.
The size of the box is determined by a carefully guarded formula taking into account the efforts to evade spamfilters, the joejobbing, the nature of the spam (adult content being more significant, for example), and how many other spammers he rats on.
The sand is put into the box at a rate of approximately one liter per hour.
Did I mention that the spammer's feet are secured to the floor of the box?
The market for screensavers will skyrocket - instead of seeing the cruddy building across the street, you can now see a tropical panorama or whatever else makes you feel like you're living in the middle of some asphalt jungle.
Sell your stock in curtains and shades manufacturers before this arrives to a store near you, though.
Are you assuming that the NASA engineers haven't thought of any of that? It sounds like you're ready to design a battlebot, let us know when you've got that done then we'll talk about Mars landers.
Special protection orders?
Anyway, I'm sure some aliens will be happy to modify them and send them back to us, at which point the issue will come up as to whether the Creator is still around. Down, V'ger, that's a good boy.
And also interesting that the Russians claimed the leak had 'stabilized' while NASA stated that the pressure was still dropping - the Russians also have a few zillion years of public denials/minimalizations of disasters, right?
I thought it was red because the Soviets got there first. Helpful timeline
Oct 1957 - Sputnik 1 - first LEO
Sep 1959 - Luna 2 - first Lunar impact
Feb 1962 - Mercury 6 - first manned LEO
Jan 1966 - Luna 9 - first Lunar landing
Jul 1969 - Apollo 11 - first manned Lunar landing
Aug 1970 - Venera 7 - first Venus landing
May 1973 - Mars 3 - first Mars landing
Yeah, it's my first/. post and I didn't know whether to go funny, informative, or troll and I think I missed all three...
Slashdot Mirror
Since the researchers had to run the hack explicitly from a Sprint phone, it sounds like it isn't a public IP address, but a private one behind Sprint's internet access point, and Sprint has left peer-to-peer enabled on that private pool of IPs. The cellular access is to provide a wifi hotspot in the car, and I agree with what everyone has said here about not having critical car systems networked with entertainment systems (didn't we just have that discussion about a Boeing aircraft recently?). Why did Sprint leave that Uconnect pool of IPs able to talk to each other when they could disable peer-to-peer in that pool with trivial effort? I'm guessing it's because the Uconnect server's private IP is within that pool, and the architects didn't want to go to the trouble of setting up a VPN or some other mechanism of allowing an IP outside the pool to initiate traffic with the cars' client Uconnect systems. But, that would mean that either the Uconnect server(s) either are talking to all the cars via their own Sprint cellular connection (seems unlikely) or they have plugged the servers directly into the pool, which opens up the mystery again. Bleh, I'd really like to see the exact network architecture here.
Perhaps Bloomberg needs to be better acquainted with Boston harbour?
Indeed so, but no issue with federal kidnapping charges if you just dump him in the East River instead.
Or is that not what you meant? *innocent look*
Because the roaming network passes the authentication request to the home network HLR - so if the home network HLR is down, the roaming network doesn't know if the SIM can be allowed on its network.
I just pick up brass at the police range and reload it when I murder people.
Firing pins don't hit brass, they hit primers. When you reload centerfire ammo, you use new primers. So while sanding down the firing pin is an obvious 'solution' here, brass collected from wherever isn't going to be different from newly manufactured brass unless the ammunition manufacturer has imprinted it and tracked the initial retail sale. All that said, I'd use brass from public and police ranges too, just in case.
and then a followup message, "...and just for the record, you're talking to the fourth smartest."
They'll take all the children out of the Battlebot competitions and make the robots run by remote control.
I think this is just the semifinals of the "IT Industry" Conference of the US Civil Justice Championship. M$ beat the DoJ and Netscape to get here, SCO beat Novell (and had a bye) and is currently matched against IBM. Winner of these two go head-to-head for the championship. Personally I'd like to see SCO vs the spammers for purely satanic reasons.
And yes, we're in serious shot if a tech-savvy threat manages to penetrate multiple infrastructure service systems and coordinate the plug-pulling with physical attacks. Isn't this the same crowd, though, that blasts Tom Ridge for vague "we have evidence that terrorists will try to attack us some time in the next two years, so be alert" warnings? I don't think that Al Qaeda will never turn to electronic warfare, but they're still doing pretty well with car bombs and have as yet shown no capability or intention to use cyberwarfare.
Without a Digital Pearl Harbor attack hitting us, it is unlikely that anyone will take him seriously, and since Digital Pearl Harbors was just Richard Clark FUD in the first place, his resignation was inevitable.
Better yet, the X-Prize Foundation gets a lead on (as yet nonexistent) competitors for the commercial opportunities waiting up there.
My Bayesian filters are starting to pick up on the snailmail addresses the compliant spams contain...
So maybe there was one minor positive point to the law after all. Unless they're simply fraudulent, it's a lot tougher to change a snailmail address than an email or URL address.
The convicted spammer gets put in a box. For every piece of spam he's caused to be sent, a single grain of sand is put in the box.
The size of the box is determined by a carefully guarded formula taking into account the efforts to evade spamfilters, the joejobbing, the nature of the spam (adult content being more significant, for example), and how many other spammers he rats on.
The sand is put into the box at a rate of approximately one liter per hour.
Did I mention that the spammer's feet are secured to the floor of the box?
The market for screensavers will skyrocket - instead of seeing the cruddy building across the street, you can now see a tropical panorama or whatever else makes you feel like you're living in the middle of some asphalt jungle. Sell your stock in curtains and shades manufacturers before this arrives to a store near you, though.
Are you assuming that the NASA engineers haven't thought of any of that? It sounds like you're ready to design a battlebot, let us know when you've got that done then we'll talk about Mars landers.
The terrorist hunters are looking for moms buying FlightSim for their 10-yr-old when they should be hunting you down.
Goatse.cx is bad enough, but in bigger-than-real-life-sized? The mind boggles, even as the eyes reflexively slam shut.
Which, since the belly is a result of beer, gives us that beer particles are just anti- duct tape particles?
Special protection orders? Anyway, I'm sure some aliens will be happy to modify them and send them back to us, at which point the issue will come up as to whether the Creator is still around. Down, V'ger, that's a good boy.
And also interesting that the Russians claimed the leak had 'stabilized' while NASA stated that the pressure was still dropping - the Russians also have a few zillion years of public denials/minimalizations of disasters, right?
So will duct tape work as a patch for IIS memory leaks, too?
In the tradition of the crime-fighting Guardian Angels, how about the Seraphims? They could have pearlwhite-and-gold gang colors...
I thought it was red because the Soviets got there first.
/. post and I didn't know whether to go funny, informative, or troll and I think I missed all three...
Helpful timeline
Oct 1957 - Sputnik 1 - first LEO
Sep 1959 - Luna 2 - first Lunar impact
Feb 1962 - Mercury 6 - first manned LEO
Jan 1966 - Luna 9 - first Lunar landing
Jul 1969 - Apollo 11 - first manned Lunar landing
Aug 1970 - Venera 7 - first Venus landing
May 1973 - Mars 3 - first Mars landing
Yeah, it's my first