So now they will be relying on a piece of technology to not be hackable. It may be hard, but with enough incentive these solutions may well let someone in and nobody would be any the wiser.
In essence they are designing their security system to have a single point of failure. All it takes to get past ID-based security is to hack/forge one system - so all the forgers who previously had multiple potential documents to specialize in are now going to unilaterly focus on breaking that single point of failure. That will even bring the cost down since people who may not have directly competed before, each possibly specializing in a specific ID are now all selling forgeries of the exact same ID and competition is only based on the quality and not the type of product.
It should make "normal" ID checks a little easier though if there is only 1 type of ID to check.
Like Bruce said, the security of checking legit people with legit IDs doesn't go up, national ID or multiple IDs, these people are telling the truth anyway. The liars will just have an easier time getting really well-forged IDs.
While it is true that a lot of money is raised in elections, not all of that could be invested in a project to steal an election
Yeah, that's one reason why he picked $100M instead of the total of $500M that was raised between the two parties last time around. He never said ALL raised money would be spent on the attack.
Furthermore, the $500M was the amount of money actually reported to the election commision. If a serious attack was planned, the money spent would be off the books to begin with and so not limited by even the $500M figure -- a cadre of the upper class, a billionaire boy's club, might easily toss a cool $1B at such a project if they felt the ROI would justify it.
Look at how immensley profitable George Bush has been for the military-industrial complex. That group of companies could easily afford $1B to put Bush into office -- if they did, they have certainly made back their investent tenfold.
You are pretty naive if you think consular cards and ITINs are the only, or even the easiest, way to acquire a bogus driver's license. All of the documents that are used to get a driver's license are easily forged or falsefied - for example everyone ought to know by now of the stories of acquring birth certificates for the deceased and using them as a starting point.
This situation will not change with a unified ID system since the unified ID will still rely on the same easily forged or falsified documents that a driver's lisences requires today.
No - you missed Schneier's point - if you make all ID cards look the same, then ALL the forgers will get really good at forging that one style. If there are 51 master forgers in the USA, it is much better if each one specializes in their state's style, thus making it that much harder to find that single guy who can do a good job of forging the particular ID card that a criminal needs. If cards are all the same, then the criminal can go shopping at any of the 51 different master forgers. Helps to keep the price of forged documents UP too since competition is reduced.
Why don't you compare performance of the code rather than code size? Unless you are developing for an embedded system or something small like a PDA, code size is really near the bottom of the list of importance.
Theoretically you ought to be able to create object files with this compiler and then use gnu ar and ld to make libraries and executables. As other's have noted, gnu binutils knows about the windows object file format (PE?) -- but the default build of linux binutils probably does not, you would probably need a special one that can link ELF objects with PE objects, or at least translate PE to ELF.
NeXT used the monolithic verson of Mach (2.5 I think, and 3.x was when CMU when ukernelwith Mach). I don't know about OSX, but since NeXT essentially did a corporate take-over of Apple, it is certainly quite possible that they decided to stick with monolithic version of Mach rather than "upgrade" to the ukernel.
In fact, given the lack of complaints about stability for OSX, either that's just what Apple did, or they sent A LOT of money fixing up Mach into something that worked and was stable. Something other vendors have not been able to do.
Are they supposed to send someone out to the address of EVERY customer every time someone reports a change of service address?
I'm the one who said:
a) They wouldn't have to send someone if they used ANI b) Even if they did send someone it would suck more than hooking the STB up to the phone just once c) The whole restriction is stupid in the first place
So you go and say -- but if they did send someone, it isn't their job to send someone.
Huh what?
I think you just want to be argumentative because you got ANI'd. Go ahead and write a response to this -- you can have the last word too, cogent or psychedelic, do what makes you feel good.
As one of those people who DO NOT and WILL NEVER connect his satellite STB to a phone line, I am completely aware of that attitude.
However, it is only those who claim service and billing addresses that are in significantly different geographical regions that would need to be verified, not the entire customer base.
Furthermore, I disagree with the whole premise of blocking out local service anyway, all I was really responding to was the claim that it would take an army of people to go out and physically verify addresses. Having someone from DirecTV come knock on your door to verify your installation would be 10x more invasive than requiring a single dial-in connection.
Much to IP pirates' dismay, just like "piracy" and a million other words in English, "theft" has acquired a new definition thanks to usage. Copyright violation is Theft; the "No Electronic Theft" bill was signed into law a good 7 years ago, the usage is established, stop playing games about it
So, where exactly in the body of the NET bill does the word "theft" appear? Oh, that's right, it doesn't. The only reason they used the word "theft" in the title is to make the acronym be "NET" - just like a million other bills have stupid-ass names so their acronyms can spell something cutesy.
It wouldn't be possible for them to verify it. Are they supposed to send someone out to the address of EVERY customer every time someone reports a change of service address?
Ever hear of ANI - Automatic Number Identification? As soon as one of those directv set-top boxes dials in to the toll-free number to report a PPV or whatever they dial in for, DirecTV can, and almost certainly does, make a record of the phone number from which the call was made. Unlike Caller ID, ANI is not blockable.
Determining geographical region from ANI is trivial.
$300/hr buys you an average lawyer. I know of an entertainment lawyer (yeah, one of the MPAA's finest) who, unlike most in his industry "got it" with regard to copyright becoming an anachronism and so quit his position as partner to go work for a startup. Before he left, his billing rate was $800/hr and he easily billed more than 40hrs/wk on a regular basis.
Congresspeople are cheap but top-notch lawyers are wicked expensive. That's why it is easier to lobby congress to write you a new law than it is to go to court and get a ruling in your favor under current law.
They have been slowly exiting their position in XM for a while and I wouldn't be surprised if they were completely out of XM by now -- maybe because it was ammunition for people evanglize Sirius over XM, but probably it was just the decision of some bean-counter at clearchannel.
Re:Possible unlawful use of code
on
VIA Pulls PadLockSL
·
· Score: 2, Insightful
the fact that a major company thinks the GPL wasnt applied lawfully to it,
Sorry, but what a "major company" thinks about the application of the GPL doesn't mean shit (see that other long running story about this company called SCO). What matters is what the courts think and while I can completely understand not wanting to get embroiled in a court case, that doesn't mean you need to rationalize it by handing moral authority over to an organization that has, as its stated goal, complete self-interest without regard to the interests of anyone else.
There are a lot of mitigating circumstances regarding AOL's claim that WASTE was not authorized for release and they've been pointed out many times in each WASTE thread here on slashdot. In my opinion, the strongest point is that Frankel is (or at least was, maybe he got the smack-down over the WASTE release) positioned sufficiently high enough up the corporate ladder to be reasonably considered to be able to act for AOL on matters of his business domain. Since he wrote WASTE, it is clearly in his domain, since he published under the GPL while in the position to act for AOL it is entirely reasonable to expect that, despite AOL's attempt to rewrite history, the WASTE code is lawfully licensed under the GPL.
I suspect that, like yourself, Via did not want to risk testing the validity of the WASTE release in court, their project being little more than a technology showcase and not central to their business. But their decision has no bearing on the truth of the matter, only that they didn't care to spend the money to find the truth in court.
Wasn't it Europe where the movie industry wanted to stop text messaging because people were messaging each other and giving advice as to which movies sucked, which supposidly undermined the advertising campaign that overhypes crap?
Yep. What is really funny are the spots for that new eliza cuthbert (whatever her name is, keifer sutherland's blonde daughter from 24). All the advertising shows "real people" getting on their cell phones as they exit the theater and either calling or texting all their friends about how great a movie it is.
I don't think the flick is out yet, but such a poorly executed attempt to hijaak/brainwash people like that does not bode well.
I bet the projectionist was making his own copy of the film and didnt want competition!
You've been modded funny, but you just may be right. Just last night I ran across what was clearly a unauthorized-copy-distribution web-site and they had "the rules" posted. It is apparently much like the "warez" scene where there is significant competition between "release groups" (that sure sounds kinky) to be the first to put a new movie out on the net. There were all kinds of "rules" limiting when and how any other group could make a second release and basically it sounded like once the first release was made, most everybody just followed the hunt on to the next unreleased movie.
That picture of the three doing an impression of a vegas show together gives me the willies. It is just too reminiscent of Daryl coming out and "hangin' wit da boyz" picketing SCO -- that almost a year ago too.
They were husband and wife, and this was before gay marriage was popular, so you can be pretty sure that only one was a man and considering the nature of their actions, I think "gentle" is not quite the right adjective for either.
Nevertheless, the female died a few years back after they were both disbarred in Florida, or Tenessee or maybe Arizona, they were licensed in a number of states. I think the male went on to be a used car dealer or something quite suitably of that ilk.
Oh, and to the article poster/slash non-editors, 20 years: Were you trying to give me sudden mid-life crisis syndrome or what? Like I don't feel old enough already not being a part of a flash-mob super-computer, geeze...
With all the off-shoring of work that large companies like Microsoft, HP and IBM do there is at least a perception on their part that when selling to the DoD that they should downplay the fact that foreign nationals, in foreign countries, not only have read access to the source code for the OSes (NT/XP/HPUX/AIX) that most DoD contractors don't have themselves, but that these same foreign nationals also, in many cases have write access to that source code too. Whether most DoD contractors care, I don't know, but like I said, the vendors often remind their customer interaction people to gloss over those kind of details.
Agent Smythe, meet RFC1323 - Long Fat Pipes. If you can use more throughput between the same machines with multiple streams, then window scaling is for you.
So now they will be relying on a piece of technology to not be hackable. It may be hard, but with enough incentive these solutions may well let someone in and nobody would be any the wiser.
In essence they are designing their security system to have a single point of failure. All it takes to get past ID-based security is to hack/forge one system - so all the forgers who previously had multiple potential documents to specialize in are now going to unilaterly focus on breaking that single point of failure. That will even bring the cost down since people who may not have directly competed before, each possibly specializing in a specific ID are now all selling forgeries of the exact same ID and competition is only based on the quality and not the type of product.
It should make "normal" ID checks a little easier though if there is only 1 type of ID to check.
Like Bruce said, the security of checking legit people with legit IDs doesn't go up, national ID or multiple IDs, these people are telling the truth anyway. The liars will just have an easier time getting really well-forged IDs.
While it is true that a lot of money is raised in elections, not all of that could be invested in a project to steal an election
Yeah, that's one reason why he picked $100M instead of the total of $500M that was raised between the two parties last time around. He never said ALL raised money would be spent on the attack.
Furthermore, the $500M was the amount of money actually reported to the election commision. If a serious attack was planned, the money spent would be off the books to begin with and so not limited by even the $500M figure -- a cadre of the upper class, a billionaire boy's club, might easily toss a cool $1B at such a project if they felt the ROI would justify it.
Look at how immensley profitable George Bush has been for the military-industrial complex. That group of companies could easily afford $1B to put Bush into office -- if they did, they have certainly made back their investent tenfold.
You are pretty naive if you think consular cards and ITINs are the only, or even the easiest, way to acquire a bogus driver's license. All of the documents that are used to get a driver's license are easily forged or falsefied - for example everyone ought to know by now of the stories of acquring birth certificates for the deceased and using them as a starting point.
This situation will not change with a unified ID system since the unified ID will still rely on the same easily forged or falsified documents that a driver's lisences requires today.
No - you missed Schneier's point - if you make all ID cards look the same, then ALL the forgers will get really good at forging that one style. If there are 51 master forgers in the USA, it is much better if each one specializes in their state's style, thus making it that much harder to find that single guy who can do a good job of forging the particular ID card that a criminal needs. If cards are all the same, then the criminal can go shopping at any of the 51 different master forgers. Helps to keep the price of forged documents UP too since competition is reduced.
You gotta see the forest, not just the trees.
1 tree == cache efficiency
Entire Forest == overall system performance
Why don't you compare performance of the code rather than code size? Unless you are developing for an embedded system or something small like a PDA, code size is really near the bottom of the list of importance.
Theoretically you ought to be able to create object files with this compiler and then use gnu ar and ld to make libraries and executables. As other's have noted, gnu binutils knows about the windows object file format (PE?) -- but the default build of linux binutils probably does not, you would probably need a special one that can link ELF objects with PE objects, or at least translate PE to ELF.
NeXT used the monolithic verson of Mach (2.5 I think, and 3.x was when CMU when ukernelwith Mach). I don't know about OSX, but since NeXT essentially did a corporate take-over of Apple, it is certainly quite possible that they decided to stick with monolithic version of Mach rather than "upgrade" to the ukernel.
In fact, given the lack of complaints about stability for OSX, either that's just what Apple did, or they sent A LOT of money fixing up Mach into something that worked and was stable. Something other vendors have not been able to do.
Dude, follow along, you were the one who said:
Are they supposed to send someone out to the address of EVERY customer every time someone reports a change of service address?
I'm the one who said:
a) They wouldn't have to send someone if they used ANI
b) Even if they did send someone it would suck more than hooking the STB up to the phone just once
c) The whole restriction is stupid in the first place
So you go and say -- but if they did send someone, it isn't their job to send someone.
Huh what?
I think you just want to be argumentative because you got ANI'd. Go ahead and write a response to this -- you can have the last word too, cogent or psychedelic, do what makes you feel good.
As one of those people who DO NOT and WILL NEVER connect his satellite STB to a phone line, I am completely aware of that attitude.
However, it is only those who claim service and billing addresses that are in significantly different geographical regions that would need to be verified, not the entire customer base.
Furthermore, I disagree with the whole premise of blocking out local service anyway, all I was really responding to was the claim that it would take an army of people to go out and physically verify addresses. Having someone from DirecTV come knock on your door to verify your installation would be 10x more invasive than requiring a single dial-in connection.
Much to IP pirates' dismay, just like "piracy" and a million other words in English, "theft" has acquired a new definition thanks to usage. Copyright violation is Theft; the "No Electronic Theft" bill was signed into law a good 7 years ago, the usage is established, stop playing games about it
So, where exactly in the body of the NET bill does the word "theft" appear? Oh, that's right, it doesn't. The only reason they used the word "theft" in the title is to make the acronym be "NET" - just like a million other bills have stupid-ass names so their acronyms can spell something cutesy.
It wouldn't be possible for them to verify it. Are they supposed to send someone out to the address of EVERY customer every time someone reports a change of service address?
Ever hear of ANI - Automatic Number Identification? As soon as one of those directv set-top boxes dials in to the toll-free number to report a PPV or whatever they dial in for, DirecTV can, and almost certainly does, make a record of the phone number from which the call was made. Unlike Caller ID, ANI is not blockable.
Determining geographical region from ANI is trivial.
they might even have some $300/hr lawyer on staff
$300/hr buys you an average lawyer. I know of an entertainment lawyer (yeah, one of the MPAA's finest) who, unlike most in his industry "got it" with regard to copyright becoming an anachronism and so quit his position as partner to go work for a startup. Before he left, his billing rate was $800/hr and he easily billed more than 40hrs/wk on a regular basis.
Congresspeople are cheap but top-notch lawyers are wicked expensive. That's why it is easier to lobby congress to write you a new law than it is to go to court and get a ruling in your favor under current law.
They have been slowly exiting their position in XM for a while and I wouldn't be surprised if they were completely out of XM by now -- maybe because it was ammunition for people evanglize Sirius over XM, but probably it was just the decision of some bean-counter at clearchannel.
the fact that a major company thinks the GPL wasnt applied lawfully to it,
Sorry, but what a "major company" thinks about the application of the GPL doesn't mean shit (see that other long running story about this company called SCO). What matters is what the courts think and while I can completely understand not wanting to get embroiled in a court case, that doesn't mean you need to rationalize it by handing moral authority over to an organization that has, as its stated goal, complete self-interest without regard to the interests of anyone else.
There are a lot of mitigating circumstances regarding AOL's claim that WASTE was not authorized for release and they've been pointed out many times in each WASTE thread here on slashdot. In my opinion, the strongest point is that Frankel is (or at least was, maybe he got the smack-down over the WASTE release) positioned sufficiently high enough up the corporate ladder to be reasonably considered to be able to act for AOL on matters of his business domain. Since he wrote WASTE, it is clearly in his domain, since he published under the GPL while in the position to act for AOL it is entirely reasonable to expect that, despite AOL's attempt to rewrite history, the WASTE code is lawfully licensed under the GPL.
I suspect that, like yourself, Via did not want to risk testing the validity of the WASTE release in court, their project being little more than a technology showcase and not central to their business. But their decision has no bearing on the truth of the matter, only that they didn't care to spend the money to find the truth in court.
Sounds like the gnome groupware calender app still has some bugs to work out.
Wasn't it Europe where the movie industry wanted to stop text messaging because people were messaging each other and giving advice as to which movies sucked, which supposidly undermined the advertising campaign that overhypes crap?
Yep. What is really funny are the spots for that new eliza cuthbert (whatever her name is, keifer sutherland's blonde daughter from 24). All the advertising shows "real people" getting on their cell phones as they exit the theater and either calling or texting all their friends about how great a movie it is.
I don't think the flick is out yet, but such a poorly executed attempt to hijaak/brainwash people like that does not bode well.
I bet the projectionist was making his own copy of the film and didnt want competition!
You've been modded funny, but you just may be right. Just last night I ran across what was clearly a unauthorized-copy-distribution web-site and they had "the rules" posted. It is apparently much like the "warez" scene where there is significant competition between "release groups" (that sure sounds kinky) to be the first to put a new movie out on the net. There were all kinds of "rules" limiting when and how any other group could make a second release and basically it sounded like once the first release was made, most everybody just followed the hunt on to the next unreleased movie.
That picture of the three doing an impression of a vegas show together gives me the willies. It is just too reminiscent of Daryl coming out and "hangin' wit da boyz" picketing SCO -- that almost a year ago too.
In other words, Slashdot IS your AI interface to google!
They were husband and wife, and this was before gay marriage was popular, so you can be pretty sure that only one was a man and considering the nature of their actions, I think "gentle" is not quite the right adjective for either.
Nevertheless, the female died a few years back after they were both disbarred in Florida, or Tenessee or maybe Arizona, they were licensed in a number of states. I think the male went on to be a used car dealer or something quite suitably of that ilk.
Oh, and to the article poster/slash non-editors, 20 years: Were you trying to give me sudden mid-life crisis syndrome or what? Like I don't feel old enough already not being a part of a flash-mob super-computer, geeze...
no-one buys an item because of its LED colour, or if it has them at all...
I do, when buying an LED flashlight.
With all the off-shoring of work that large companies like Microsoft, HP and IBM do there is at least a perception on their part that when selling to the DoD that they should downplay the fact that foreign nationals, in foreign countries, not only have read access to the source code for the OSes (NT/XP/HPUX/AIX) that most DoD contractors don't have themselves, but that these same foreign nationals also, in many cases have write access to that source code too. Whether most DoD contractors care, I don't know, but like I said, the vendors often remind their customer interaction people to gloss over those kind of details.
Agent Smythe, meet RFC1323 - Long Fat Pipes. If you can use more throughput between the same machines with multiple streams, then window scaling is for you.
How about just a kitty-kat instead?