Basically as long as you are 100% sure who you are talking to on the other end your connection will be secure.
The problem comes from there being no way to be 100% sure who is on the other end without signed certificates on both ends. Since neither SSH or SSL use signed certificates on both ends they are potentially open to attack.
These vunrubilities have always existed. It comes from the fact that SSH is not signed by a certificate authority, and as such you cannot trust the server on the other end. If someone cracks DNS etc to direct you to another server, you won't know about it, except for a warning that the key is different from last time.
SSL is similar, but it is signed on the server side, usually not on the client.
This isn't anything new, it's just not there are publically available tools to exploit this.
It's just a matter of time really. At the moment most sites are still playing to the 56k crowd, so there is no real reason upgrade to broadband. As more people aim content at broadband, more people will move to broadband. As more people move to broadband, more people will create content for it.
It will happen, just not that fast. Remember the net has only been in the average persons home for a few years, it's going to be a few years more until broadband becomes the norm. And until it does sites will aim at the majority which is the 56k crowd.
Lets face it, no matter how good a chip is, most people just assume that clock speed is what is important. The marketing people want higher clock speeds, that's what they are going to get.
The problem is the attitude of people who are happy to sacrifice their freedom to avoid things they don't like yet jump up and down when the freedoms they do like are taken away.
If you want to defend freedom, you have to defend *all* freedom.
Most ISPs will not tell you they are using MAPS. Even if they did, there are still enough ISPs using MAPS to cause problems if MAPS decide to block someone unfairly.
Anyone who complains about censorware yet trusts MAPS to block spam is a hypocrite. Any time you give someone else the power to control what you can read you are allowing them to take away your freedom.
Remember, if you let them censor the stuff you don't like, soon they will censor the stuff you do. Simple as that.
Re:terminal newsreaders
on
Deja.com Vu!
·
· Score: 2
I use OE when I use Windows, it's not that bad - could be better, particularly as offline reading goes and it needs the ability to edit headers.
But I was talking about console not GUI, so OE and Agent don't count.
I prefer tin but you are correct. The only thing most of the terminal based newsreaders lack is good binary decoding ability.
Of course that's only an issue if you read binary groups, which deja doesn't carry anyway.
What I would really like to see is a combined mail/news reader. I'm one of those who actually like to see them both in the same program. Pine has a newsreader but it was pretty crap.
What the vendors do won't change the fact that most people still want MS products. MS is the "standard" on the desktop, if you want to share office documents you need MS products, if you want to play games you need MS products.
Vendor support for Linux will not happen unless a large percentage of the general public wants it.
Is the huge selection of games with years of backwards compatibility. Abandonware, crappy freeware games, emulator games, game mods like counterstrike etc. are things you will never see in the console world.
The HURD is apparently going to offer CORBA as the primary means of inter-proccess communication. And due the HURD's micro kernel architecture it can probably be done without the bloat of having an orb compiled into a monolithic kernel.
To get IP traffic the sender needs to know what IP you are at, if they can get your IP they can log it. Proxies can disguise this, but you still need to trust the person running the proxy.
Running an anonymiser is a great way to conduct man in the middle attacks, particularly since you know anyone using an anonymiser is doing something they don't want people to find out about.
The problem with making the ISP responsible for spamming is that they will just go to another provider. In the case of warez, kiddie porn, DeCSS etc. no one expects the ISP to take action, they go after the people responsible. We need a way to go after the spammers ourselves, rrather than leaving it to an ISP that may or may not do anything.
One way to stop spam would be via compulsary encryption. Then only people who take the time to obtain your key will be able to mail you, and you will always be able to verify the identity of the sender via their key.
Slashdot Mirror
I was talking about the C64 versions. But the article is talking about Atari 2600
Didn't Pitfall just continue aimlessly with more random similar screens?
Now a perfect Pitfall 2 game, that would be something.
So how much of Render has actually been implemented. Is the transparent menus in twm stuff there?
So I gather they are actually shipping a full Gnome 2.0. Why refer to it as just Eazel, there is a lot more to Gnome than just the file manager.
wow, an on topic FP.
Basically as long as you are 100% sure who you are talking to on the other end your connection will be secure.
The problem comes from there being no way to be 100% sure who is on the other end without signed certificates on both ends. Since neither SSH or SSL use signed certificates on both ends they are potentially open to attack.
These vunrubilities have always existed. It comes from the fact that SSH is not signed by a certificate authority, and as such you cannot trust the server on the other end. If someone cracks DNS etc to direct you to another server, you won't know about it, except for a warning that the key is different from last time.
SSL is similar, but it is signed on the server side, usually not on the client.
This isn't anything new, it's just not there are publically available tools to exploit this.
It's just a matter of time really. At the moment most sites are still playing to the 56k crowd, so there is no real reason upgrade to broadband. As more people aim content at broadband, more people will move to broadband. As more people move to broadband, more people will create content for it.
It will happen, just not that fast. Remember the net has only been in the average persons home for a few years, it's going to be a few years more until broadband becomes the norm. And until it does sites will aim at the majority which is the 56k crowd.
If he posted ilms it would have been a troll.
Lets face it, no matter how good a chip is, most people just assume that clock speed is what is important. The marketing people want higher clock speeds, that's what they are going to get.
The problem is the attitude of people who are happy to sacrifice their freedom to avoid things they don't like yet jump up and down when the freedoms they do like are taken away.
If you want to defend freedom, you have to defend *all* freedom.
Most ISPs will not tell you they are using MAPS. Even if they did, there are still enough ISPs using MAPS to cause problems if MAPS decide to block someone unfairly.
Anyone who complains about censorware yet trusts MAPS to block spam is a hypocrite. Any time you give someone else the power to control what you can read you are allowing them to take away your freedom.
Remember, if you let them censor the stuff you don't like, soon they will censor the stuff you do. Simple as that.
I use OE when I use Windows, it's not that bad - could be better, particularly as offline reading goes and it needs the ability to edit headers.
But I was talking about console not GUI, so OE and Agent don't count.
I prefer tin but you are correct. The only thing most of the terminal based newsreaders lack is good binary decoding ability.
Of course that's only an issue if you read binary groups, which deja doesn't carry anyway.
What I would really like to see is a combined mail/news reader. I'm one of those who actually like to see them both in the same program. Pine has a newsreader but it was pretty crap.
The usenet stuff was just another click away. It's not like that much has really changed.
Besides, the shopping stuff was sort of useful.
What the vendors do won't change the fact that most people still want MS products. MS is the "standard" on the desktop, if you want to share office documents you need MS products, if you want to play games you need MS products.
Vendor support for Linux will not happen unless a large percentage of the general public wants it.
mp3 is basically a tool for distributing warez, doesn't it really matter if it's forced underground.
Um, if I'm not mistaken this has been possible for years.
Can't be my comment, because I didn't say anything that disagrees with what you wrote.
Is the huge selection of games with years of backwards compatibility. Abandonware, crappy freeware games, emulator games, game mods like counterstrike etc. are things you will never see in the console world.
the latter. fortunatly there is no -1 wrong around here
write your web, nfs etc service as a corba control and let it run in userland.
The HURD is apparently going to offer CORBA as the primary means of inter-proccess communication. And due the HURD's micro kernel architecture it can probably be done without the bloat of having an orb compiled into a monolithic kernel.
To get IP traffic the sender needs to know what IP you are at, if they can get your IP they can log it. Proxies can disguise this, but you still need to trust the person running the proxy.
Running an anonymiser is a great way to conduct man in the middle attacks, particularly since you know anyone using an anonymiser is doing something they don't want people to find out about.
The problem with making the ISP responsible for spamming is that they will just go to another provider. In the case of warez, kiddie porn, DeCSS etc. no one expects the ISP to take action, they go after the people responsible. We need a way to go after the spammers ourselves, rrather than leaving it to an ISP that may or may not do anything.
One way to stop spam would be via compulsary encryption. Then only people who take the time to obtain your key will be able to mail you, and you will always be able to verify the identity of the sender via their key.