Google Analytics is just an extension of something that's been around for aaaaages on the WWW. It's not like they can put it on every page on the internet; sites like Slashdot want to have access to that sort of data to see where people are going on their website. If you want to be pissed at someone (though I don't see why), be pissed at Slashdot.
Be careful you don't use slocate if you're on Linux either. (Hint: you probably do without knowing it.)
The point of this paper is that any automatically indexing software could reveal a hidden partition's existence; they were simply giving a few hard examples.
Schneier et al don't break TrueCrypt's deniability, per se. They simply show that Word, Google Desktop, and other automatically-indexing programs may reveal a hidden partition's possible existence.
This is a concern, of course, but can be avoided by careful use of the software invoked when using a TrueCrypt partition (i.e. killing processes except for TrueCrypt, etc).
I believe there's also a portable version of TrueCrypt that can be used that leaves no traces on the OS install once you're finished.
I think, if this is a Flash ad, it's a result of the Flash player on Linux always being on top regardless of what the HTML specifies. If that's the case, there's no way they'll be able to fix that short of not running Flash ads, which I doubt will happen.
Personally, I run Adblock + Filterset.G anyway, so it doesn't affect me. I am a long-time subscriber though so I figure they can't be too mad at me.
Translating the parent and the subsequent posts in this thread by the parent poster: You must bow to Blizzard and agree with everything they say and do or you shouldn't play their games at all and can't call yourself a fan.
To quote Star Wars: "Only Sith deal in absolutes."
If you think this, you are ignoring the history of the internet. While the overall trend might be toward commercialization, the fact is that when a site gets shut down for legal reasons, if there's demand for it, ten more will pop up skirting the legal issues that brought down the first.
I guess what I'm trying to say is, pr0n wants to be free?
I know, it seems hard to believe. I'm not saying I haven't played Blizzard games (and Diablo II is, of course, great). That said, I vote with my wallet with these sorts of things, and over the years Blizzard's arrogant controlling nature with regard to servers and products interacting with their games has never made me want to give them any support.
Amen, I'd mod you up if I hadn't already posted here. Frankly, making an unsealed envelope addressed to you "illegal to read" is insanity and nigh-totalitarian.
I'm not saying we shouldn't adjust our level of technospeak for the person asking (easy to follow instructions for the novice, more technical but more to-the-point for the more technical person).
I'm also not claiming that we should try to teach him the whole GeoIP API, how it works, why he might have been listed incorrectly, or what have you.
Check further down, I posted a fairly succinct answer about contacting MaxMind before even posting the GP.
What I'm saying is that as I'm helping someone, I want them to understand what I'm doing and possibly where I got the knowledge. I'm satisfied if I can give them enough knowledge to both solve their problem, and pass that knowledge on to others if it comes up with one of their friends.
That's why I wouldn't say "Call XXX-XXXX and ask for YYYYY, tell them to fix your IP" because it's cryptic and without context. Saying who to contact, how to contact them, and why you should contact them is a much better option, IMHO.
No, that's not helpful, and that's not what I'm saying we should do. I didn't tell the asker to RTFM, as your "hacker" fellow did a while ago.
If you check below, I told him that it's likely that he could contact MaxMind and have them fix the IP in their database. I could have, for example, contacted MaxMind myself and said "fixed", but I figure he could learn why it's happening at the same time as fixing it.
Teach a man to fish, and he'll feed himself for years.
Hackers follow this model when giving support. Even if the asker gave such details, we'd likely show them how to figure out the answer themselves. It's not that we don't care to give a quick solution, it's that we want to share the knowledge so they can help themselves and help others in the future.
And frankly, I wouldn't want to make it immediately obvious what my IP address was to such a large audience. There's inevitably going to be some jackass that sends a botnet at it.
I agree with this. I've implemented GeoIP on a bunch of sites. Basically, they give you a database linking class A / B / C blocks to certain areas. I don't know where they get this data, but it's what most sites use to determine where you're from. I suggest contacting MaxMind, the maintainers of GeoIP, to correct your information (it's not immediately obvious from their FAQ who you should talk to, but I would start at their contact page). Unfortunately, getting them to make the change may not immediately come into effect on clients' sites... most sites use a static version of the database and update it fairly infrequently (since GeoIP charges for a subscription).
As a side note, I once made an antifraud system on a major unlocked cell phone seller that relied mostly on flagging orders coming from certain countries (using GeoIP) as possible fraud, as well as people who had used the same CC number on more than one account, people who had more than one account in general (using various stats like email address), etc. Seemed to work pretty well for them.
I think that has to do with the idea that there's a much higher ratio of Linux users that consider themselves part of a "community", be it centred around their distribution, open source in general, or what have you. Windows users don't have the same organization, at least, not around Windows. Early on, the Linux users probably told others in their community, and when it got "good enough", told their Windows friends as well.
Slashdot Mirror
Oh no! Not tracking software! Anything but that!
Google Analytics is just an extension of something that's been around for aaaaages on the WWW. It's not like they can put it on every page on the internet; sites like Slashdot want to have access to that sort of data to see where people are going on their website. If you want to be pissed at someone (though I don't see why), be pissed at Slashdot.
Be careful you don't use slocate if you're on Linux either. (Hint: you probably do without knowing it.)
The point of this paper is that any automatically indexing software could reveal a hidden partition's existence; they were simply giving a few hard examples.
Schneier et al don't break TrueCrypt's deniability, per se. They simply show that Word, Google Desktop, and other automatically-indexing programs may reveal a hidden partition's possible existence.
This is a concern, of course, but can be avoided by careful use of the software invoked when using a TrueCrypt partition (i.e. killing processes except for TrueCrypt, etc).
I believe there's also a portable version of TrueCrypt that can be used that leaves no traces on the OS install once you're finished.
Porn is a fun online game about battling popups and malware with boobs
Fixed...?
You only get those controls when you get mod points.
Trust me, it's a fun game.
I think, if this is a Flash ad, it's a result of the Flash player on Linux always being on top regardless of what the HTML specifies. If that's the case, there's no way they'll be able to fix that short of not running Flash ads, which I doubt will happen.
Personally, I run Adblock + Filterset.G anyway, so it doesn't affect me. I am a long-time subscriber though so I figure they can't be too mad at me.
I think you meant this brilliant logic.
Translating the parent and the subsequent posts in this thread by the parent poster: You must bow to Blizzard and agree with everything they say and do or you shouldn't play their games at all and can't call yourself a fan.
To quote Star Wars: "Only Sith deal in absolutes."
Actually, they kinda pay the radio station to play a certain song or group. And if you think payola doesn't still happen, you're incredibly naive.
If you think this, you are ignoring the history of the internet. While the overall trend might be toward commercialization, the fact is that when a site gets shut down for legal reasons, if there's demand for it, ten more will pop up skirting the legal issues that brought down the first.
I guess what I'm trying to say is, pr0n wants to be free?
I know, it seems hard to believe. I'm not saying I haven't played Blizzard games (and Diablo II is, of course, great). That said, I vote with my wallet with these sorts of things, and over the years Blizzard's arrogant controlling nature with regard to servers and products interacting with their games has never made me want to give them any support.
And let's not even get into WoW. I like my life.
By the power vested in me by mod points, I hereby declare this the one true name of this exploit. All others are fakes.
System Requirements: You totally can't run it.
Where can I download this "Liberation of Linux" font? It sounds like it'd be good for my paper on open source technology.
Plus, the administration never signed on with the ICC, AFAIK.
Indeed. To call it a "no with an explanation" is misleading at best, and just plain completely wrong at worst. And I support Obama.
Present == Abstain.
Or, y'know, you could avoid making huge, sweeping generalizations regarding people who happen to be a certain sex in a certain country.
People are different.
Get that through your head, and you'll find it's a lot easier to understand others.
Amen, I'd mod you up if I hadn't already posted here. Frankly, making an unsealed envelope addressed to you "illegal to read" is insanity and nigh-totalitarian.
I'm sorry, without the car, I'm lost.
I'm not saying we shouldn't adjust our level of technospeak for the person asking (easy to follow instructions for the novice, more technical but more to-the-point for the more technical person).
I'm also not claiming that we should try to teach him the whole GeoIP API, how it works, why he might have been listed incorrectly, or what have you.
Check further down, I posted a fairly succinct answer about contacting MaxMind before even posting the GP.
What I'm saying is that as I'm helping someone, I want them to understand what I'm doing and possibly where I got the knowledge. I'm satisfied if I can give them enough knowledge to both solve their problem, and pass that knowledge on to others if it comes up with one of their friends.
That's why I wouldn't say "Call XXX-XXXX and ask for YYYYY, tell them to fix your IP" because it's cryptic and without context. Saying who to contact, how to contact them, and why you should contact them is a much better option, IMHO.
No, that's not helpful, and that's not what I'm saying we should do. I didn't tell the asker to RTFM, as your "hacker" fellow did a while ago.
If you check below, I told him that it's likely that he could contact MaxMind and have them fix the IP in their database. I could have, for example, contacted MaxMind myself and said "fixed", but I figure he could learn why it's happening at the same time as fixing it.
Give a man a fish, and he'll eat for a day.
Teach a man to fish, and he'll feed himself for years.
Hackers follow this model when giving support. Even if the asker gave such details, we'd likely show them how to figure out the answer themselves. It's not that we don't care to give a quick solution, it's that we want to share the knowledge so they can help themselves and help others in the future.
And frankly, I wouldn't want to make it immediately obvious what my IP address was to such a large audience. There's inevitably going to be some jackass that sends a botnet at it.
I agree with this. I've implemented GeoIP on a bunch of sites. Basically, they give you a database linking class A / B / C blocks to certain areas. I don't know where they get this data, but it's what most sites use to determine where you're from. I suggest contacting MaxMind, the maintainers of GeoIP, to correct your information (it's not immediately obvious from their FAQ who you should talk to, but I would start at their contact page). Unfortunately, getting them to make the change may not immediately come into effect on clients' sites... most sites use a static version of the database and update it fairly infrequently (since GeoIP charges for a subscription).
As a side note, I once made an antifraud system on a major unlocked cell phone seller that relied mostly on flagging orders coming from certain countries (using GeoIP) as possible fraud, as well as people who had used the same CC number on more than one account, people who had more than one account in general (using various stats like email address), etc. Seemed to work pretty well for them.
C|NET and Download.com are news and download sites, respectively. A real community they are not.
I think that has to do with the idea that there's a much higher ratio of Linux users that consider themselves part of a "community", be it centred around their distribution, open source in general, or what have you. Windows users don't have the same organization, at least, not around Windows. Early on, the Linux users probably told others in their community, and when it got "good enough", told their Windows friends as well.