CMP Technology's Computer Security Institute Creates Cross-Disciplinary Group of Web Security Researchers, Computer Crime Law Experts and Agents From the U.S. Department of Justice to Discuss Web 2.0 Research Roadblocks
Group's Initial Report to Be Released at Computer Security Institute's NetSec Conference on June 11
SAN FRANCISCO, June 4/PRNewswire-USNewswire/ -- The Computer Security
Institute (CSI) today announced it has formed a cross-disciplinary working group of Web security researchers, computer crime law experts and agents from the U.S. Department of Justice on the legal barriers to Web 2.0 vulnerability research and disclosure. The group will release its first report Monday, June 11 at CSI's NetSec conference in Scottsdale, Ariz.
"Security researchers are able to identify and publicly disclose
software vulnerabilities or further write proof-of-concept exploit code
without fear of criminal prosecution," said Jeremiah Grossman, CTO of
WhiteHat Security and a contributor to the group. "But Web security
researchers' aren't so lucky: under some laws, a researcher could find
himself prosecuted for simply looking for Web site vulnerability, much less disclosing it publicly."
To tackle this question, this working group is not to espouse any
particular position, but rather to identify, debate and explain all the
legal, ethical, social and technological considerations feeding this issue.
"This report serves as a meeting of the minds, bringing together ideas
and concerns from the developers, security researcher and law enforcement
communities making it a unique touch point for everyone caught in the
frenzy of Web 2.0," added Grossman.
Within the report will be:
A matrix of Web security research methods (on a scale of least-invasive
to most-invasive), assessments of how the law may interpret these
actions and gauges of the likelihood a Web researcher will be
criminally prosecuted for such actions;
Discussion of how the law may be changed, including how liability is
assigned, how "damage" is quantified and how disclosure and criminal
intent factor into sentencing; and
Suggested endeavors the industry may create to improve Web security
within the current letter of the law, such as: better secure Web
development standards, better Web site security certifications,
anonymous vulnerability disclosure tip lines and a service that invites
registered researchers to hack "dummy" Web pages, which are modeled off
typical Web sites but contain fake data.
A question and answer period with some members of the working group
will follow the report presentation. Members of the working group include:
Brian Chess, founder and CTO of Fortify Software; Jennifer Granick,
executive director of the Center for Internet and Society, Stanford Law
School; Jeremiah Grossman, CTO, WhiteHat Security; Billy Hoffman, lead
researcher, SPI Labs; John Lynch, deputy chief, Computer Crime and
Intellectual Property Section, Criminal Division, U.S. Department of
Justice; Scott Parcel, vice president of engineering, Cenzic; Jon Rusch,
special counsel for fraud prevention, Criminal Division, U.S. Department of
Justice; Lee Tien, senior staff attorney, Electronic Frontier Foundation;
and Jacob West, manager of the security research group Fortify Software.
China's continued pursuit
of area denial and anti-access strategies is expanding from the traditional land, air, and sea dimensions of the
modern battlefield to include space and cyber-space.
Searching for "virus" yields one hit, included below.
Information Warfare. There has been much
writing on information warfare among China's
military thinkers, who indicate a strong conceptual
understanding of its methods and uses. For
example, a November 2006 Liberation Army Daily
commentator argued:
[The] mechanism to get the upper hand
of the enemy in a war under conditions of
informatization finds prominent expression in
whether or not we are capable of using various
means to obtain information and of ensuring
the effective circulation of information;
whether or not we are capable of making full
use of the permeability, sharable property,
and connection of information to realize the
organic merging of materials, energy, and
information to form a combined fighting
strength; [and,] whether or not we are
capable of applying effective means to weaken
the enemy side's information superiority and
lower the operational efficiency of enemy
information equipment.
The PLA is investing in electronic countermeasures,
defenses against electronic attack (e.g., electronic
and infrared decoys, angle refl ectors, and false
target generators), and computer network operations
(CNO). China's CNO concepts include computer
network attack, computer network defense, and
computer network exploitation. The PLA sees
CNO as critical to achieving "electromagnetic
dominance" early in a conflict. Although there is
no evidence of a formal Chinese CNO doctrine,
PLA theorists have coined the term "Integrated
Network Electronic Warfare" to prescribe the use
of electronic warfare, CNO, and kinetic strikes to
disrupt battlefield network information systems.
The PLA has established information warfare
units to develop viruses to attack enemy computer
systems and networks, and tactics and measures to
protect friendly computer systems and networks. In
2005, the PLA began to incorporate offensive CNO
into its exercises, primarily in first strikes against
enemy networks.
Neither. See:
"The Problem with Threads,"
Edward A. Lee, EECS Department, University of California, Berkeley, Technical Report No. UCB/EECS-2006-1,
January 10, 2006.
I work for a University as well and looked into this in detail. The short answer is that if we want to run Windows on it, we have to buy it with Windows.
The longer answer is that we have the Microsoft Campus Agreement
which is a license for Microsoft Windows upgrades, so if we are using Windows, then we must buy Windows when we purchase a machine. Note that the Microsoft Campus Agreement includes upgrades to XP Pro, but not to Windows Server. Apparently, upgrades to Vista will also be covered.
Q. Can I use my Campus Agreement Windows Upgrade licenses and media for installing Windows on a computer that does not currently have an operating system?
A. No. To install the upgrade licensed through Campus Agreement you must have a fully-licensed version of Windows already installed on the computer. For example, if you currently run Windows 2000, your Campus Agreement Windows Upgrade license entitles you to upgrade to Windows XP. To run any version of a Microsoft Windows operating system licensed through Campus Agreement, you or your users must have a valid license for a Microsoft operating system on each PC on which the software runs. Please consult the Microsoft Volume Licensing Product List for more information about qualifying operating systems.
It took quite a bit of leg work to figure this out, our Dell rep was very patient with us though.
I don't want to appear as a MS-fanboy here, but this is what we found for our particular university.
Google Excel 1040.
It works for me. I blew off Intuit after their activation debacle. That and the fact that Office Despot consistently has lower prices for Intuit's products than Intuit's website. After Intuit, H&R Block's product seemed ok.
Since Burning Man is a city that gets built and destroyed every year, Burning Man Earth is hoping to be able to use overlays to show the art from different years and allow time travel. Burning Man Earth started as Virtual Playa, which consists of Microsoft Flight Simulator models of objects found at Burning Man. I converted them to Flight Gear and then uploaded them to Google Earth.
Andrew Johnstone and others then redid many of the models in sketchup and uploaded them to Burning Man Earth
Umm, Amanda can be used to dump multiple machines to a single tape host, thus Amanda listens to the network via well known ports and thus is susceptible to buffer overflows. /etc/services will contain:
amanda 10080/udp kamanda 10081/udp amandaidx 10082/tcp amidxtape 10083/tcp
In 1970, the tapes were placed in the US National Archives in Accession #69A4099. By
1984, all but two of the over 700 boxes of Apollo era magnetic tapes placed in the
Accession, were removed and returned to the GSFC for permanent retention. These tapes
are now missing.
...
Accession Document #69A4099. Note: Sam Preecs is the Agency Official who signed the
Accession. He is the most likely person to know where the tapes are. Where is Sam today?
20. Samuel PREECS - U.S. Social Security Death Index
Birth: 18 May 1921 State Where Number was Issued: Indiana Death: 18 Feb 1993
21. Samuel PREECS - U.S. Social Security Death Index
Birth: 17 Nov 1889 State Where Number was Issued: Texas Death: Dec 1972
IEEE 1588 is much more accurate than NTP. Yes, to get greatly increased accuracy, it is helpful to have switches that properly handle 1588 traffic. However, this is not a huge issue with industrial automation, where one has complete control over the hardware. Yes, I'm not sure if running 1588 over the commodity internet would buy you much. However, if you really wanted tight timing, then 1588 is worth a look. The reason to use 1588 over NTP is if you need greater accuracy like +/- 60ns. My interest in 1588 is dealing with realtime distributed operating systems. It is starting to look like interesting things can be done if you have a really precise clock on physically distributed nodes. This could be interesting for distributed time triggered architectures.
Measurement and control systems are widely used in traditional test and
measurement, industrial automation, communication systems, electrical power
systems and many other areas of modern technology. The timing requirements
placed on these measurement and control systems are becoming increasingly
stringent. Traditionally these measurement and control systems have been
implemented in a centralized architecture in which the timing constraints
are met by careful attention to programming combined with communication
technologies with deterministic latency. In recent years an increasing number of
such systems utilize a more distributed architecture and increasingly
networking technologies having less stringent timing specifications than the
older more specialized technologies. In particular Ethernet communications are
becoming more common in measurement and control applications. This has led to
alternate means for enforcing the timing requirements in such systems. One such
technique is the use of system components that contain real-time clocks, all of
which are synchronized to each other within the system. This is very common in the general
computing industry. For example essentially all general purpose computers
contain a clock. These clocks are used to manage distributed file systems,
backup and recovery systems and many other similar activities. These computers
typically interact via LANs and the Internet. In this environment the most
widely used technique for synchronizing the clocks is the Network Time Protocol,
NTP, or the related SNTP.
Measurement and control systems have a number of requirements that must be
met by a clock synchronization technology. In particular:
Timing accuracies are often in the sub-microsecond range,
These technologies must be available on a range of networking technologies
including Ethernet
but also other technologies found in industrial automation and similar
industries,
A minimum of administration is highly desirable,
The technology must be capable of implementation on low cost and low-end
devices,
The required network and computing resources should be minimal.
In contrast to the general computing environment of intranets or the
Internet, measurement and control systems typically are more spatially
localized.
IEEE 1588 addresses the clock synchronization requirements of measurement
and control systems.
Burning Man LLC is very hypocritical. They endorsed a someone for Mayor in San Francisco, yet they
refuse to take a position on a huge
Coal Power Plant called
Granite Fox.
The sad thing is that this plant would be sited near the Black Rock Desert because the air is so clear. Even sadder is that power would go to Los Angeles, yet the plant is too dirty to site in California.
For those that missed the event, Andrew Johnstone has used Micro$oft Flight Simulator to display
models of the various Burning Man objects,
See virtualplaya.org.
The work was covered in Wired in January 2004.
Just yesterday I took a stab at converting the
models from MS FlightSim to FlightGear, which is
freely available. See the FlightGear thread on Virtualplaya.tribe.net for details.
Personally, I think Burning Man is way too big and is destroying the Playa because of the dust load created. My hope is that Burning Man will move between sites, much like the rainbow gathering. Perhaps a virtual reality component like Virtual Playa will help spawn smaller events in other locations, including cyberspace.
The idea of a forced landing that saves the
plane is one that has come up as part of
Soft Walls, which is a project that "studies
technological responses that are practical and implementable and go a long way towards ameliorating the risk of a repeat [of 9/11]. The basic approach is to modify the avionics control system on the aircraft to limit the space into which an aircraft can fly."
Can pilots tolerate a reduction of navigable airspace? Among the more extreme ideas circulating include restricting aircraft to narrowly defined air
lanes, making, in effect, tunnels in the sky. This greatly reduces flexibility in the system,
making it much more difficult to adapt to unusual weather or traffic conditions, for example.
If Soft Walls is deployed, the regulatory bodies that define the no-fly zones will have to
exercise restraint to not unnecessarily reduce the navigable airspace. Ideally, Soft Walls does
not reduce legally navigable airspace at all, since regulatory bodies already restrict the
airspace around inhabited areas. As such, Soft Walls only reduces navigable airspace by
removing the space where flying is unacceptable anyway.
But there is a significant difference between regulatory no-fly zones (what we have now) and
regions into which an aircraft will not fly (what Soft Walls will impose). Some pilots argue
that there are emergencies on an aircraft that would justify flying through regions of airspace
where flight is forbidden. However, the pilot who does this is choosing to override the
regulatory bodies, putting people on the ground at risk in an effort to protect the people in the
craft. Should the pilot have a right to make that decision? Soft Walls means that the decision
is made by the regulatory bodies. There is no aircraft emergency grave enough to justify an
attempt to land on Fifth Avenue, and no pilot should have the right to choose to take that risk.
Soft Walls can enforce that policy.
Of course, it is not new that there are regions into which aircraft will not fly. No aircraft, for
example, can fly through a mountain, no matter how grave the on-board emergency that
makes the pilot want to be on the other side of the mountain. Soft Walls creates no-fly zones
where enforcement is gentler than that defined by mountains, but the constraint is equally
strong. The aircraft simply cannot fly there.
The hardest cases are Professors, who _really_
like their laptops. How protected should a list
of student names and student IDS be? (Mercifully, the student id is not the SSN). Note that
student names are protected information, grades
can be posted on doors, but the student id is
used, not the name.
It is sad that it takes a case like this to
get the barn door closed.
Total Disclosure: I work for Berkeley, but
I have no idea about the details of the missing
laptop.
Diva
is a software infrastructure for visualizing and interacting with dynamic information spaces.
Diva is used by
Ptolemy II, a set of Java packages supporting heterogeneous, concurrent modeling and design.
Ptolemy II uses
PtPlot
to plot 2D signals. Ptplot has a backward
compatibilty mode with Xgraph, the signal plotter
written by David Harrison for X Windows.
Total disclosure: I'm on the Ptolemy II and PtPlot development teams.
Here in academia, a big problem that students and faculty face is managing their personal publications.
For example, a faculty member may be sponsored by several different projects, each of which wants that faculty member to update their web page with each new publication.
Odds are, most faculty will update their own personal page and possibly one project page. This leaves the other projects needing to harangue the faculty member in to updating their pages.
For example, a postdoc comes and visits, write a bunch of papers and then moves on. It would really be nice if the postdoc could take their publications with them to their next position.
For example, you are on an airplane and
need access to your usual bibliography,
For example, all your publications are on
one machine, and that machine is unavailable.
Bibster seems like a good start in addressing these issues.
Locally, Professor Edward A. Lee had a similar idea, with the added wrinkle of having centralized project specific servers check the repositories of individual researchers and update the project specific list of publications with the bibliography info and the paper itself.
Yup, CA has been in the news in a not so nice
way lately with the CEO Sanjay Kumar stepping down
in the wake of a
SEC probe:
Kumar's resignation may help the company reach a settlement with the U.S. Justice Department and the Securities and Exchange Commission, which began a formal probe into the company's accounting in May 2002. Chief Financial Officer Ira Zar said "high-level'' executives were involved in hiding revenue drops when he pleaded guilty to securities fraud earlier this month.
The funny thing is that Kumar's predecessor,
Charles Wang, had similar bad press in 1998
when it came to light that top executives got
$1.1 billion in stock when the stock stayed
above a certain level for a certain amount of time.
However, the expenses of the stock plan were
never booked. When all this came out,
the stock price dropped 31% the next day.
Do you mean the A320 crash of 1988?
Searching Airdisaster.com
for airbus does not mention any Paris Airbus
crashes in 1990, but there is one in 1998, and
a Bangalore crash in 1990.
this also cost Airbus their best test pilot at the paris airshow
Just to be clear, the pilot (actually, the Captain) Michel Asseline lived.
He was convicted of manslaughter and sentenced
to prison, but it is unclear whether he served any time.
January 30, 1990 Risks Digests indicates he lost his French
Pilot's license for 8 years and was flying in Australia at the time (1/30/90).
See Re:Traditional Boeing vs. Airbus debate for links to the
accident reports. There is some controversy
over whether someone tampered with the
black boxes.
I tried to determine if Michel Asseline
was ever a test pilot, but did not find evidence
of that. Googling for michel asseline "test pilot"
results in 3 hits, only one of which is relevant,
which leads to http://www.geocities.com/landroval.geo/airbus-j.ht ml,
which is not found, but the
Google Cache says:
COLMAR, France, March 14 (Reuter) - A French court on Friday
sentenced the pilot of an Airbus airliner which crashed at a
1988 air show, killing three people, to six months jail for
manslaughter with another 12 months suspended.
The verdict vindicated Airbus Industrie , the plane's
makers, blaming human error and irresponsibility by operators
Air France for the disaster.
The Air France A320 ploughed into a forest and exploded into
flames on June 26 1988 after a very low altitude pass over an
airfield at Habsheim, near the eastern city of Mulhouse, killing
three of the 130 passengers.
At the trial, pilot Michel Asseline blamed the cockpit
computer displays and said the flight recorders had been
tampered with. But the prosecution said he and co-pilot Pierre
Mazieres had recklessly endangered the passengers' lives.
Mazieres was given a one-year suspended sentence.
The prosecutor called Asseline ``a reckless daredevil who
tried to prove out of pride he was as good as a test pilot''.
The defence failed to show that the flight data and voice
recorders had been rigged. Experts testified that the plane
crashed because it was pushed beyond its mechanical limits.
Three other officials, including Air France's director of
flight operations at the time, the state-owned airline's then
security director and the organiser of the air show, received
suspended prison terms of six months or less.
Asseline and Mazieres declined to comment on the judgment or
say whether they planned an appeal as they left the court.
Air France was declared liable for the accident and ordered
to pay undisclosed damages to victims of the crash.
The prosecution said Air France had regularly run
low-altitude demonstration flights with passengers aboard in
violation of civil aviation regulations.
``Airlines should be transporters, not circus performers,''
expert witness Michel Bourgeois told the court.
Jean-Claude Boetsch, a spokesman for an association
representing victims and their families, said he thought the
sentences were misguided and too heavy.
``As far as the court is concerned, the verdict is clear and
the case has been proven, but in our view there is no proof. The
plane is still partially in question, but the stakes are so high
that they preferred to make one man pay rather than the system,''
Boetsch said.
The association supported the pilots' accusations of a
shortcoming in the aircraf
Slashdot Mirror
CMP Technology's Computer Security Institute Creates Cross-Disciplinary Group of Web Security Researchers, Computer Crime Law Experts and Agents From the U.S. Department of Justice to Discuss Web 2.0 Research Roadblocks
Group's Initial Report to Be Released at Computer Security Institute's NetSec Conference on June 11
SAN FRANCISCO, June 4 /PRNewswire-USNewswire/ -- The Computer Security
Institute (CSI) today announced it has formed a cross-disciplinary working group of Web security researchers, computer crime law experts and agents from the U.S. Department of Justice on the legal barriers to Web 2.0 vulnerability research and disclosure. The group will release its first report Monday, June 11 at CSI's NetSec conference in Scottsdale, Ariz.
"Security researchers are able to identify and publicly disclose
software vulnerabilities or further write proof-of-concept exploit code
without fear of criminal prosecution," said Jeremiah Grossman, CTO of
WhiteHat Security and a contributor to the group. "But Web security
researchers' aren't so lucky: under some laws, a researcher could find
himself prosecuted for simply looking for Web site vulnerability, much less disclosing it publicly."
To tackle this question, this working group is not to espouse any particular position, but rather to identify, debate and explain all the legal, ethical, social and technological considerations feeding this issue. "This report serves as a meeting of the minds, bringing together ideas and concerns from the developers, security researcher and law enforcement communities making it a unique touch point for everyone caught in the frenzy of Web 2.0," added Grossman.
Within the report will be:
A question and answer period with some members of the working group will follow the report presentation. Members of the working group include: Brian Chess, founder and CTO of Fortify Software; Jennifer Granick, executive director of the Center for Internet and Society, Stanford Law School; Jeremiah Grossman, CTO, WhiteHat Security; Billy Hoffman, lead researcher, SPI Labs; John Lynch, deputy chief, Computer Crime and Intellectual Property Section, Criminal Division, U.S. Department of Justice; Scott Parcel, vice president of engineering, Cenzic; Jon Rusch, special counsel for fraud prevention, Criminal Division, U.S. Department of Justice; Lee Tien, senior staff attorney, Electronic Frontier Foundation; and Jacob West, manager of the security research group Fortify Software.
Neither. See: "The Problem with Threads," Edward A. Lee, EECS Department, University of California, Berkeley, Technical Report No. UCB/EECS-2006-1, January 10, 2006.
The Microsoft Campus Agreement FAQ says:
It took quite a bit of leg work to figure this out, our Dell rep was very patient with us though. I don't want to appear as a MS-fanboy here, but this is what we found for our particular university.Google Excel 1040. It works for me. I blew off Intuit after their activation debacle. That and the fact that Office Despot consistently has lower prices for Intuit's products than Intuit's website. After Intuit, H&R Block's product seemed ok.
Global Security has an article from 2005: "Chemist Derides Qaeda Germwar Skills Touted by Manual." The article says the Mujahideen Poisons Handbook is bunk.
Since Burning Man is a city that gets built and destroyed every year, Burning Man Earth is hoping to be able to use overlays to show the art from different years and allow time travel. Burning Man Earth started as Virtual Playa, which consists of Microsoft Flight Simulator models of objects found at Burning Man. I converted them to Flight Gear and then uploaded them to Google Earth. Andrew Johnstone and others then redid many of the models in sketchup and uploaded them to Burning Man Earth
amanda 10080/udp
kamanda 10081/udp
amandaidx 10082/tcp
amidxtape 10083/tcp
Nessus will scan for amanda.
Thus it would be nice if perhaps some of these bugs in Amanda were addressed
In 1970, the tapes were placed in the US National Archives in Accession #69A4099. By 1984, all but two of the over 700 boxes of Apollo era magnetic tapes placed in the Accession, were removed and returned to the GSFC for permanent retention. These tapes are now missing.
...
Accession Document #69A4099. Note: Sam Preecs is the Agency Official who signed the Accession. He is the most likely person to know where the tapes are. Where is Sam today?
I'd wager he's dead :
20. Samuel PREECS - U.S. Social Security Death Index
Birth: 18 May 1921 State Where Number was Issued: Indiana Death: 18 Feb 1993
21. Samuel PREECS - U.S. Social Security Death Index
Birth: 17 Nov 1889 State Where Number was Issued: Texas Death: Dec 1972
promoting his new SecuritySkins plugin
BTW - Rachna Dhamija is a woman.
Need to my vision tested.
IEEE 1588 is much more accurate than NTP. Yes, to get greatly increased accuracy, it is helpful to have switches that properly handle 1588 traffic. However, this is not a huge issue with industrial automation, where one has complete control over the hardware. Yes, I'm not sure if running 1588 over the commodity internet would buy you much. However, if you really wanted tight timing, then 1588 is worth a look. The reason to use 1588 over NTP is if you need greater accuracy like +/- 60ns. My interest in 1588 is dealing with realtime distributed operating systems. It is starting to look like interesting things can be done if you have a really precise clock on physically distributed nodes. This could be interesting for distributed time triggered architectures.
From the intro:
The sad thing is that this plant would be sited near the Black Rock Desert because the air is so clear. Even sadder is that power would go to Los Angeles, yet the plant is too dirty to site in California.
Just yesterday I took a stab at converting the models from MS FlightSim to FlightGear, which is freely available. See the FlightGear thread on Virtualplaya.tribe.net for details.
Personally, I think Burning Man is way too big and is destroying the Playa because of the dust load created. My hope is that Burning Man will move between sites, much like the rainbow gathering. Perhaps a virtual reality component like Virtual Playa will help spawn smaller events in other locations, including cyberspace.
BTW - Jef Poskanzer is the author of PBMPlus and other utilities, see Slashdot
The Soft Walls FAQ (PDF) says:
See also: Slashdot 01/03/04 and Slashdot 7/03/03>Complete Disclosure: I work on the Soft Walls project.
Berkeley does have a Provisional Data Management, Use and Protection Policy (DMUP), but the key is getting users who have personal data to classify and protect their data.
The hardest cases are Professors, who _really_ like their laptops. How protected should a list of student names and student IDS be? (Mercifully, the student id is not the SSN). Note that student names are protected information, grades can be posted on doors, but the student id is used, not the name.
It is sad that it takes a case like this to get the barn door closed.
Total Disclosure: I work for Berkeley, but I have no idea about the details of the missing laptop.
Diva is used by Ptolemy II, a set of Java packages supporting heterogeneous, concurrent modeling and design.
Ptolemy II uses PtPlot to plot 2D signals. Ptplot has a backward compatibilty mode with Xgraph, the signal plotter written by David Harrison for X Windows.
Total disclosure: I'm on the Ptolemy II and PtPlot development teams.
For example, a faculty member may be sponsored by several different projects, each of which wants that faculty member to update their web page with each new publication.
Odds are, most faculty will update their own personal page and possibly one project page. This leaves the other projects needing to harangue the faculty member in to updating their pages.
For example, a postdoc comes and visits, write a bunch of papers and then moves on. It would really be nice if the postdoc could take their publications with them to their next position.
For example, you are on an airplane and need access to your usual bibliography,
For example, all your publications are on one machine, and that machine is unavailable.
Bibster seems like a good start in addressing these issues.
Locally, Professor Edward A. Lee had a similar idea, with the added wrinkle of having centralized project specific servers check the repositories of individual researchers and update the project specific list of publications with the bibliography info and the paper itself.
However, the expenses of the stock plan were never booked. When all this came out, the stock price dropped 31% the next day.
See: Graef Crystal's 4/21/04 column on Bloomberg
For comparison, the Four Corners power plant is 2,040 megawatts, and the San Juan plant is 1,600 megawatts. These plants and others have smogged the views around the Grand Canyon.
Too bad the clear air around Gerlach will be a thing of the past.
but there is one in 1998, and a Bangalore crash in 1990.
Shoulda been 88, as in
but there is one in 1988, and a Bangalore crash in 1990.
See also
Link to possible video
Re:The real question is - some further notes about the crash
Just to be clear, the pilot (actually, the Captain) Michel Asseline lived. He was convicted of manslaughter and sentenced to prison, but it is unclear whether he served any time. January 30, 1990 Risks Digests indicates he lost his French Pilot's license for 8 years and was flying in Australia at the time (1/30/90).
It also looks like he saw a UFO in 1975 (Google Translation)
See Re:Traditional Boeing vs. Airbus debate for links to the accident reports. There is some controversy over whether someone tampered with the black boxes.
I tried to determine if Michel Asseline was ever a test pilot, but did not find evidence of that. Googling for michel asseline "test pilot" results in 3 hits, only one of which is relevant, which leads to http://www.geocities.com/landroval.geo/airbus-j.ht ml, which is not found, but the Google Cache says: