while making damned sure he has no access to any way he could communicate that password on that encrypted "insurance file" he released not too long ago.
If he was any smart (and he is a smart guy...), he would have given passwords to the insurance file to close (but non-obvious) friends of his, with instructions to decrypt and release if they don't hear from him for a given amount of time.
Let's hope that the "insurance file" exists, and that the instructions he communicated to his friends were complete enough, and let the fun begin!
or I could just say to myself,....it is important to document what is happening so as to later better understand what was going on there,
It is important that you finish taping the event. Not only for the reasons that you say, but also for uploading it so that other people can wank off to it too.
and maybe come up with a future solution to avoid this from ever happening again....I will let you decide.
that would be kinda sad, as we would have to watch the same tape over and over again.
It's only really as silly as putting a pile of different functions on a telephone
Why is that silly? This allows you to take a snapshot if you see anything funny while on the road, or to browse you e-mail or play a game when bored in the middle of nowhere (or just in your dentist's waiting room). Or to quickly show off how you can crash the windows box over there with a carefully crafted packet. Or to easily settle a bar bet while still finishing your beer. Or to not miss any appointments thanks to the built-in calendar. Or to easily take down notes about some interesting gadget you see at the supermarket.
or those LCD photo frames that somebody must be buying.
They make great gifts for aging parents. Easy to personalize by putting whatever photos on it that you like. And some can even be remotely updated, so that you can send your holidays pick directly to them, while still on the road.
... to save others from having to lose 5 minutes finding out what this really is about: no, it doesn't have some strange haptic interface where you've got to "feel" the pieces. It still shows them, but only while they are "falling", and they become invisible as soon as they are settled.
So, you've got to beat the game by memory, not by sense of feel
Whenever I see family/friends/co-workers using external drives for "backup" I have to repress the urge to launch into a lecture on the absurdity of relying on a local, always mounted backup.
You know, malware is not the only threat to data. There's also hard disk failures, and human error. "Always-mounted" external disks protect against both.
WesternDigital and all the other purveyors of external hard disks should be ashamed of themselves for promoting their products as a reasonable backup solution.
... and even if you are concerned about "always mounted" being vulnerable to malware, you can always keep your drive securely stashed away, and only connect it once a week to do your backup.
The ONLY kind of calamity that such devices protect you from is accidental deletion or hardware failure.
Which is already quite useful. Even though we like to scoff at windows users, most malware is not interested in trashing user's data, and anti-virus programs still manage to catch most malware (if one is installed).
...or catastrophic disaster (flood, fire, theft).
... which are quite rare compared to the more usual failure modes (hard disk failures, or accidentally deleted the wrong files).
Considering how cheap Amazon S3 [amazon.com] is, off-site backups are finally a real solution for the average person.
You've got to trust Amazon to respect the privacy of your data.
You'll find dozen of matches and you won't know which one is the actual password if it's not dictionary based.
Just pick any match with characters enterable on the keyboard.
Using MD5 is however MUCH worse when used as a security checksum: file checksum, certificate checksum etc. Because there's no salting, and there's no need to find the *original* data here.
Neither is there for passwords. As long as the MD5 matches, and is enterable on the keyboard, it would work on that system. Think about it...
So, it's really only a matter of protecting other, unrelated systems, on the off chance that the user uses the same password elsewhere (there, only the real password picked by the user would work, as they would probably have a different algorithm and/or a different salt).
But this article has an interesting excerpt of his "packing list":
said he started out Wednesday morning on the Sacramento River, where he loaded a $300 inflatable raft with camping supplies, two burritos, a bag of vitamins, a Bible and a mannequin of Gov. Arnold Schwarzenegger.
hmmm... I wonder whether this "mannequin" was "anatomically correct"...
Slashdot Mirror
while making damned sure he has no access to any way he could communicate that password on that encrypted "insurance file" he released not too long ago.
If he was any smart (and he is a smart guy...), he would have given passwords to the insurance file to close (but non-obvious) friends of his, with instructions to decrypt and release if they don't hear from him for a given amount of time.
Let's hope that the "insurance file" exists, and that the instructions he communicated to his friends were complete enough, and let the fun begin!
I'm glad I donated via the "Wau Holland Stiftung", rather than wiring directly to his Swiss account, this one still seems to be intact.
The "Wau Holland Stiftung" is the 3rd option on his donation page.
And it is possible that the house is underwater
This is California, not New Orleans...
woosh!
or I could just say to myself, ....it is important to document what is happening so as to later better understand what was going on there,
It is important that you finish taping the event. Not only for the reasons that you say, but also for uploading it so that other people can wank off to it too.
and maybe come up with a future solution to avoid this from ever happening again....I will let you decide.
that would be kinda sad, as we would have to watch the same tape over and over again.
... and candles can set a house on fire perfectly well too. Actually, a lot more easily than faulty wiring.
It's only really as silly as putting a pile of different functions on a telephone
Why is that silly? This allows you to take a snapshot if you see anything funny while on the road, or to browse you e-mail or play a game when bored in the middle of nowhere (or just in your dentist's waiting room). Or to quickly show off how you can crash the windows box over there with a carefully crafted packet. Or to easily settle a bar bet while still finishing your beer. Or to not miss any appointments thanks to the built-in calendar. Or to easily take down notes about some interesting gadget you see at the supermarket.
or those LCD photo frames that somebody must be buying.
They make great gifts for aging parents. Easy to personalize by putting whatever photos on it that you like. And some can even be remotely updated, so that you can send your holidays pick directly to them, while still on the road.
However, according to a friend who used to live in Cologne, Wednesday is for the other kind of sex ...
by sense of feel?
... to save others from having to lose 5 minutes finding out what this really is about: no, it doesn't have some strange haptic interface where you've got to "feel" the pieces. It still shows them, but only while they are "falling", and they become invisible as soon as they are settled.
So, you've got to beat the game by memory, not by sense of feel
Other people are angry about it.
Some are in between.
However, none are happy.
and they got over Slashdot 2.0.
did they?
Woosh!
How the hell do they get paid?
... and this is the Achilles heel of just about every ransom ploy. Most kidnappings for ransom fail at the "money handover" stage.
Whenever I see family/friends/co-workers using external drives for "backup" I have to repress the urge to launch into a lecture on the absurdity of relying on a local, always mounted backup.
You know, malware is not the only threat to data. There's also hard disk failures, and human error. "Always-mounted" external disks protect against both.
WesternDigital and all the other purveyors of external hard disks should be ashamed of themselves for promoting their products as a reasonable backup solution.
... and even if you are concerned about "always mounted" being vulnerable to malware, you can always keep your drive securely stashed away, and only connect it once a week to do your backup.
The ONLY kind of calamity that such devices protect you from is accidental deletion or hardware failure.
Which is already quite useful. Even though we like to scoff at windows users, most malware is not interested in trashing user's data, and anti-virus programs still manage to catch most malware (if one is installed).
...or catastrophic disaster (flood, fire, theft).
... which are quite rare compared to the more usual failure modes (hard disk failures, or accidentally deleted the wrong files).
Considering how cheap Amazon S3 [amazon.com] is, off-site backups are finally a real solution for the average person.
You've got to trust Amazon to respect the privacy of your data.
This is about a bacterium which replaced its phosphorus (not its carbon) with arsenic. Nothing to see here, move along!
You say that like being a whore is a bad thing.
It isn't. It's certainly a job that's more reputable than many others, such as telemarketer or Visual Basic developer.
But it's also a job many wouldn't like to exercise...
Money is not everything. Not everybody wants to be a whore.
For these situations, having a strong hash, and a difficultly guessable password is important.
You'll find dozen of matches and you won't know which one is the actual password if it's not dictionary based.
Just pick any match with characters enterable on the keyboard.
Using MD5 is however MUCH worse when used as a security checksum: file checksum, certificate checksum etc. Because there's no salting, and there's no need to find the *original* data here.
Neither is there for passwords. As long as the MD5 matches, and is enterable on the keyboard, it would work on that system. Think about it...
So, it's really only a matter of protecting other, unrelated systems, on the off chance that the user uses the same password elsewhere (there, only the real password picked by the user would work, as they would probably have a different algorithm and/or a different salt).
Most don't even know, that you can capture plain text passwords from the SSH server when using password authentication
can you back up that claim ?
I think he meant in the case where the server is already compromised...
No word on what makes Hopper the "Goat Man."
But this article has an interesting excerpt of his "packing list":
said he started out Wednesday morning on the Sacramento River, where he loaded a $300 inflatable raft with camping supplies, two burritos, a bag of vitamins, a Bible and a mannequin of Gov. Arnold Schwarzenegger.
hmmm... I wonder whether this "mannequin" was "anatomically correct"...
I've found it amusing how much French there is in the military shibboleth/jargon.
Indeed amusing... How many words do the eskimo have for "desert sand"?
Indeed. We want to keep our Firefox like it is! We don't want it to become Internet Explorer, Safari or Chrome!
Too bad that the sun doesn't shine its ultraviolet light into certain (... the most interesting...) places...
Wew!