A good, easy to read, consumer grade local port sniffer / analyzer. How hard would it be to build a frontend that reported on "odd" behavior?
There are any number of consumer "intrusion detection systems". They all suffer from the same problem: in order to convince the end-user that they're working, they report every single intrusion-like activity, making them useless for actual security work.
How old are those drives? The original (1994 or so) Zip 100 drives were very reliable. It was only once they got popular and started ramping up production that things went to hell.
What confuses me is that this is listed under a "wiretap" law; my understanding (common understanding?) is that a wiretap is a "man in the middle" attack where a third party "eavesdrops" on a conversation. In this case, they are applying it to one party recording their conversation with a second party. While they may want to prohibit this (two party consent) it really is separate from wiretapping.
The original wiretap laws were about third-party recordings. Since then, the laws have been expanded to cover all recording of conversations, but the term hasn't changed.
1) Let's make a simple calculation: let's pick up the number of Hotmail accounts (200,000,000 as I heard last time). Multiply this with 1 Gb and you get 24 Petabytes of data!
Now, multiply by the average amount of usage. I'd guess the average user has about 10MB of email, after they get rid of the spam.
2) Now, let's compute how much power will this system consume? Assuming at least a RAID 1 configuration, you would need at least 48 Petabytes of storage since we all know that harddisks fail.
RAID 5 is a better assumption. Multiply by 3/2, not 2.
From these two changed assumptions, the number of hard drives is closer to 10,000 than 1,600,000. A much more reasonable number.
Do you seriously think that every user who signs up will use the full gigabyte? I've got e-mail archives reaching back almost six years for my personal account, and it's only a couple hundred MB.
What's going to happen is that they'll allocate a few hundred KB or so for each user who signs up, then add disk space as needed.
Define "binary attachment". Is a Base64-encoded attachment binary? What about uuencoding? Would a unicode text file be binary, or text?
Consider the following: X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STAN DARD-ANTIVIR US-TEST-FILE!$H+H*
Any virus scanner will tell you that's a virus. If I were to attach it to an e-mail under the name "eicar.com", would it be considered a binary attachment or not?
There is a 10MB/attachment max, I believe. If you're talking warez, you'd have to be giving people access to the password, at which point someone will delete the files or just change the password.
No, you don't.
Use the GMail account for storage. On your warez site, when someone clicks a "download" link, the site backend creates a new GMail account for the user, popping up any CAPTCHA system Google is using for the user to solve. It then forwards the approprate e-mails from the storage account to the newly-created account, gives you the username and password for that account, and lets you take care of downloading and reassembling the pieces. During this process, the storage account is perfectly secure.
Most mailing lists would be sent out using academic or corporate accounts anyway - definitely not freebie accounts - atleast that's my assumption, though it's not too outstretched.
These days, most spam isn't sent by freebie accounts, either. Most spam is sent from computers that have been hijacked using the latest batch of e-mail viruses.
Another way to defeat this method would be to hack web servers, and put on files that redirect to the desired site. This has a lot of implications - legal and technical - but again gets into the same situation as before where blacklisting the site in the email would blacklist legitimate sites.
You don't need to hack into them. I know that Yahoo has an open redirect URL -- it was used to disguise a link to goatse a while back -- and I suspect that most other major web sites have similar URLs.
As anyone who's spent any amount of time reading Slashdot comments should know, there are open redirect URLs on a number of sites that would be whitelisted under this proposal. On Slashdot, they were used to hide references to goatse. In spam, they can be used to whitelist spam URLs.
You know, this may actually be a good thing though - if more people get upset about their high rate of taxation, maybe they'll finally put pressure on the government to curtail spending.
It's called a tax revolt. Washington went through one of those in the past decade, and the result is that a lot of useful public services are getting cut. For example, the Spokane bus service gets a lot of its funding from vehicle license fees. However, the fees were recently cut by 90%+, and as a result, it's looking like half the bus routes are going to be dropped.
It's called "thinning the herd." If you cause enough accidents, the number of people that speed in these areas WILL go down.
No it won't. A side-impact accident, which these hypothetical crashes will all be, is far more survivable for the person running the red light than for the person just starting on green.
Is there any other town in the WORLD where pedestrians can cross an intersection DIAGONALLY, right through the center of the intersection? So that pedestrians can pull off this amazing stunt, you'll be sitting at a four way stop light for a minute or so to allow granny to walk through THE MIDDLE OF THE INTERSECTION.
Here in Spokane, there's at least one intersection like that. It's three-way, not four-way, but it does have a red in all directions cycle and "no turn on red" signs.
You are aware that oil wells in the gulf are refilling?
Got links for this?
You are aware that most oil may be non-biotic; we've extracted oil from wells drilled in solid granite.
Are you referring to oil shale, oil sand, or something else? It takes more energy to extract oil from oil shale than you get from burning the oil, so that's only a source for non-fuel uses. Oil sand won't be economically viable until the cost of oil doubles. If you're referring to something else, how about some links?
You are aware that oils there are several species of plants that can be refined into a very fine oil
You're referring to biodiesel? Makes a nice (if smelly) fuel oil, but isn't much good for anything that requires long-chain hydrocarbons.
You are aware that animal entrails can be reduced to a very fine grade oil, right?
Got any information on how much energy it takes to do this? Even if it's an energetically favorable reaction, it will probably suffer from the same limitations as biodiesel.
>> The only way to think otherwise is to believe that tons of uber-geniuses are somehow found and snatched up before they ever publish any good work. Pretty unlikely, if you ask me.
> We seemed to do a pretty good job of it in WWII, I see no reason to expect things are different now.
If you're referring to the Manhattan project, the government just went out and hired everyone who had ever done any research work in nuclear physics, regardless of how good they were or how much they'd published. Since the field was so small at the time, it was quite possible.
That's what excites me. Look at how cheap and safe air travel is now. Wright brother's flight was in 1903, right? In less than 20 years you had airplanes EVERYWHERE. In less than 40 years there were jets. (July '42 for the first real jet fighter, yes yes I know there were actually jet engines in the 30's but come on).
Much faster than that. The first flight of a jet airplane was December 16, 1910.
>> How do you know that the code you are looking at, assuming that it is running in the device, wasn't modified by a malicious compiler?
> True, but highly unlikley.
It happened. All early versions of Unix "login" had a backdoor password. The C compiler had a set of hidden routines that, when it recognized a recompilation of "login", would inject the backdoor code. Further, if it recognized a recompilation of the compiler, it would inject the backdoor creation routines. None of this showed up in the source code.
Next full Moon, look closely at Tyco Crater. That is one honkin HUGE hole! look north and south near Tyco. What you see is...cracks. Sometime in the past, a collision occurred that almost cracked the moon in half. The luck of the draw isn't every X*6 million years, it is once....only once. So far, Mammals have won this all important lottery
At the speeds and scales involved in asteroid impacts, the bodies involved are effectivly liquid. You can't "crack" the moon any more than you can "crack" a drop of water. The "cracks" you see are splashes of rock, thrown out during the impact.
Personally, I'd be satisfied if they'd put a pdf of the manual up. As is, the only site on the web with a copy of the manual is looking for a new host.
Income - anything that comes into my posession that I do not need to eventually return (with the sole exception, for the purpose of avoiding recursion, that you do not need to consider tax refunds as income). So a loan wouldn't count, but my salary would.
So a $1000 student loan counts as $0 for income. What about a $1000 Pell grant? You don't need to pay it back, so in some sense it's income, but you aren't free to use it for anything other than college tuition. What about a four-year free-ride scholarship? If four years of tuition to that college is $40,000, does the scholarship count as $40,000 income, even though no actual money is involved?
Didn't bother asking this question because the thread was already old, but what's that odd looking game that's standing beside the pinball machine in the wide shot?
No idea, but judging from the bulge of the screen, I'd say it dates from the 70s.
Slashdot Mirror
Still trying to think of games that can be played on it once you enable "perfect silence mode" this way.
Target shooting?
A good, easy to read, consumer grade local port sniffer / analyzer. How hard would it be to build a frontend that reported on "odd" behavior?
There are any number of consumer "intrusion detection systems". They all suffer from the same problem: in order to convince the end-user that they're working, they report every single intrusion-like activity, making them useless for actual security work.
Which one?
How old are those drives? The original (1994 or so) Zip 100 drives were very reliable. It was only once they got popular and started ramping up production that things went to hell.
What confuses me is that this is listed under a "wiretap" law; my understanding (common understanding?) is that a wiretap is a "man in the middle" attack where a third party "eavesdrops" on a conversation. In this case, they are applying it to one party recording their conversation with a second party. While they may want to prohibit this (two party consent) it really is separate from wiretapping.
The original wiretap laws were about third-party recordings. Since then, the laws have been expanded to cover all recording of conversations, but the term hasn't changed.
1) Let's make a simple calculation: let's pick up the number of Hotmail accounts (200,000,000 as I heard last time). Multiply this with 1 Gb and you get 24 Petabytes of data!
Now, multiply by the average amount of usage. I'd guess the average user has about 10MB of email, after they get rid of the spam.
2) Now, let's compute how much power will this system consume? Assuming at least a RAID 1 configuration, you would need at least 48 Petabytes of storage since we all know that harddisks fail.
RAID 5 is a better assumption. Multiply by 3/2, not 2.
From these two changed assumptions, the number of hard drives is closer to 10,000 than 1,600,000. A much more reasonable number.
Do you seriously think that every user who signs up will use the full gigabyte? I've got e-mail archives reaching back almost six years for my personal account, and it's only a couple hundred MB.
What's going to happen is that they'll allocate a few hundred KB or so for each user who signs up, then add disk space as needed.
Maybe no binary attachments?
N DARD-ANTIVIR US-TEST-FILE!$H+H*
Define "binary attachment". Is a Base64-encoded attachment binary? What about uuencoding? Would a unicode text file be binary, or text?
Consider the following:
X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STA
Any virus scanner will tell you that's a virus. If I were to attach it to an e-mail under the name "eicar.com", would it be considered a binary attachment or not?
There is a 10MB/attachment max, I believe. If you're talking warez, you'd have to be giving people access to the password, at which point someone will delete the files or just change the password.
No, you don't.
Use the GMail account for storage. On your warez site, when someone clicks a "download" link, the site backend creates a new GMail account for the user, popping up any CAPTCHA system Google is using for the user to solve. It then forwards the approprate e-mails from the storage account to the newly-created account, gives you the username and password for that account, and lets you take care of downloading and reassembling the pieces. During this process, the storage account is perfectly secure.
Most mailing lists would be sent out using academic or corporate accounts anyway - definitely not freebie accounts - atleast that's my assumption, though it's not too outstretched.
These days, most spam isn't sent by freebie accounts, either. Most spam is sent from computers that have been hijacked using the latest batch of e-mail viruses.
Another way to defeat this method would be to hack web servers, and put on files that redirect to the desired site. This has a lot of implications - legal and technical - but again gets into the same situation as before where blacklisting the site in the email would blacklist legitimate sites.
You don't need to hack into them. I know that Yahoo has an open redirect URL -- it was used to disguise a link to goatse a while back -- and I suspect that most other major web sites have similar URLs.
Additional problem:
(x) The whitelist feature can be abused
As anyone who's spent any amount of time reading Slashdot comments should know, there are open redirect URLs on a number of sites that would be whitelisted under this proposal. On Slashdot, they were used to hide references to goatse. In spam, they can be used to whitelist spam URLs.
You know, this may actually be a good thing though - if more people get upset about their high rate of taxation, maybe they'll finally put pressure on the government to curtail spending.
It's called a tax revolt. Washington went through one of those in the past decade, and the result is that a lot of useful public services are getting cut. For example, the Spokane bus service gets a lot of its funding from vehicle license fees. However, the fees were recently cut by 90%+, and as a result, it's looking like half the bus routes are going to be dropped.
It's called "thinning the herd." If you cause enough accidents, the number of people that speed in these areas WILL go down.
No it won't. A side-impact accident, which these hypothetical crashes will all be, is far more survivable for the person running the red light than for the person just starting on green.
Is there any other town in the WORLD where pedestrians can cross an intersection DIAGONALLY, right through the center of the intersection? So that pedestrians can pull off this amazing stunt, you'll be sitting at a four way stop light for a minute or so to allow granny to walk through THE MIDDLE OF THE INTERSECTION.
Here in Spokane, there's at least one intersection like that. It's three-way, not four-way, but it does have a red in all directions cycle and "no turn on red" signs.
You are aware that oil wells in the gulf are refilling?
Got links for this?
You are aware that most oil may be non-biotic; we've extracted oil from wells drilled in solid granite.
Are you referring to oil shale, oil sand, or something else? It takes more energy to extract oil from oil shale than you get from burning the oil, so that's only a source for non-fuel uses. Oil sand won't be economically viable until the cost of oil doubles. If you're referring to something else, how about some links?
You are aware that oils there are several species of plants that can be refined into a very fine oil
You're referring to biodiesel? Makes a nice (if smelly) fuel oil, but isn't much good for anything that requires long-chain hydrocarbons.
You are aware that animal entrails can be reduced to a very fine grade oil, right?
Got any information on how much energy it takes to do this? Even if it's an energetically favorable reaction, it will probably suffer from the same limitations as biodiesel.
>> The only way to think otherwise is to believe that tons of uber-geniuses are somehow found and snatched up before they ever publish any good work. Pretty unlikely, if you ask me.
> We seemed to do a pretty good job of it in WWII, I see no reason to expect things are different now.
If you're referring to the Manhattan project, the government just went out and hired everyone who had ever done any research work in nuclear physics, regardless of how good they were or how much they'd published. Since the field was so small at the time, it was quite possible.
SpaceShipOne is the most likely winner, but Armadillo Aerospace is also trying for a launch this year, and could potentially beat SpaceShipOne.
That's what excites me. Look at how cheap and safe air travel is now. Wright brother's flight was in 1903, right? In less than 20 years you had airplanes EVERYWHERE. In less than 40 years there were jets. (July '42 for the first real jet fighter, yes yes I know there were actually jet engines in the 30's but come on).
Much faster than that. The first flight of a jet airplane was December 16, 1910.
>> How do you know that the code you are looking at, assuming that it is running in the device, wasn't modified by a malicious compiler?
> True, but highly unlikley.
It happened. All early versions of Unix "login" had a backdoor password. The C compiler had a set of hidden routines that, when it recognized a recompilation of "login", would inject the backdoor code. Further, if it recognized a recompilation of the compiler, it would inject the backdoor creation routines. None of this showed up in the source code.
Next full Moon, look closely at Tyco Crater. That is one honkin HUGE hole! look north and south near Tyco. What you see is...cracks. Sometime in the past, a collision occurred that almost cracked the moon in half. The luck of the draw isn't every X*6 million years, it is once....only once. So far, Mammals have won this all important lottery
At the speeds and scales involved in asteroid impacts, the bodies involved are effectivly liquid. You can't "crack" the moon any more than you can "crack" a drop of water. The "cracks" you see are splashes of rock, thrown out during the impact.
Personally, I'd be satisfied if they'd put a pdf of the manual up. As is, the only site on the web with a copy of the manual is looking for a new host.
Income - anything that comes into my posession that I do not need to eventually return (with the sole exception, for the purpose of avoiding recursion, that you do not need to consider tax refunds as income). So a loan wouldn't count, but my salary would.
So a $1000 student loan counts as $0 for income. What about a $1000 Pell grant? You don't need to pay it back, so in some sense it's income, but you aren't free to use it for anything other than college tuition. What about a four-year free-ride scholarship? If four years of tuition to that college is $40,000, does the scholarship count as $40,000 income, even though no actual money is involved?
so...what does that say about foreign medical training?
That they don't do the same sort of record-keeping? It takes time to learn all the laws regarding medical records!
Didn't bother asking this question because the thread was already old, but what's that odd looking game that's standing beside the pinball machine in the wide shot?
No idea, but judging from the bulge of the screen, I'd say it dates from the 70s.