Your messages would be just as easily for them to read once they know how you embedded them. Encrypt them with a decent algorithm implemented properly. Then use a channel that they might not discover, at least for a while. Don't use the same channel too long and use encrypted messages to inform the recipient of a change in channel. Use PKI, so you don't have to change keys when someone can no longer be trusted. Use PKI, so others can't pretend to be your without stealing your private key. Using steganography the way you describe it is for religious fanatics and boy scouts. Trojans that lack the resources and the channel to do proper encryption may use steganography to remain undetected for people that only casually inspect their proxy/firewall but that's about the only serious modern application I've seen so far. Anyone under surveillance that will only use steganography to hide their data, will be caught.
Ever tried one of those batons? If you put anything of weight on the end, it will seriously impede the director in his/her movements and expression. Also, it's way more than just the up/down motion. Anyone that was ever in a decent choir/orchestra will know that the director has two hands, the baton goes left right as well (up-down is only for 2/4 beat) and the direction the director looks and stands has meaning as well. The amplitude of the baton, and lifting or pushing motions of the director indicate volume and expression... There is so much more than the simple tempo directions that the tip of a baton indicate.
Maybe using a kinect as sensor device might pick up at least a few of these channels. Transferring the channels to a sight impaired musician will be a challenge. If you're seriously going to invest in this technology, you'll want a solution that will work for at least 90% of instrumentalists/vocalists without impairing them seriously in their motions. Now I start thinking of a practical way to do this, you may want to use the motion feedback motors of game controllers placed strategically (no, not there) under the clothing of the musician. Single wobbles could be used to indicate small baton movements, double and more for stronger movements. A second motor could indicate the first beat and there must be quite a few combinations possible that could be distinct and short enough for the musician to accurately follow most gestures of the director. Depending on controller size, you could probably use standard wireless controllers, giving you 0 development in hardware costs, only software and "training" for all involved.
Unless they have written permission, they are violating the law by probing these systems. Not only that, but they are actively trying to do something that might crash vital infrastructure and possibly injure or kill patients. Probing equipment inside a hospital without very specific knowledge of what is what and very explicit permissions and waivers is asking for very expensive lawsuits and (insurance) claims. Tell them to stop scanning your life support systems since they crash all the time when they do so. Maybe then they'll figure out that scanning every IP they can reach might not be a very smart idea....
Implications to secure boot are probably none, when it comes to exposing this key. However, there may be weaknesses in the AMI code that could eventually lead to circumventing secure boot. It's rather academical at this moment, but they may have made some implementation faults that will allow an attacker to falsely keep their checks happy while still modifying boot files. The key is probably only useful for signing firmware, probably only for this vendor and possibly only for this chipset, maybe even a single main board.
What NVidia did was document a very small and specific part of the chipset. They previously opened documentation of 2D accelleration, now the 3D part. The part that accelerates media playback is still closed. Given the fact that this is a SoC that will most likely be used for media playback just as much as for gaming and it's not their own driver code they have released, I'd not consider this open sourcing. They are merely releasing part of the specifications so third parties can develop drivers. Yes, they are actively helping one company, but there is no actual working code available as open source yet. Not from the 3rd party company, nor from NVidia themselves.
Back in my day you weren't allowed to post on/. before you tried at least 10 linux distributions, one *BSD and one archaic closed source UNIX variant. With the new owners it's turned into Computer Noob magazine.....
By becoming a cartel, it would be illegal. However, if one large provider would publicly announce it would stop doing business with apple and all the others would follow, there isn't much apple could do. If this was staged by the EU telcos and kept secret, apple would have the burden of proof. I think that a lot of EU telephone market movements are done this way, but I have no way of proving it, so it's just an expression of my opinion.
I recently acquired a new amplifier that has a proper DSP in it. It uses a microphone to measure the output of your speakers and corrects for time delay and frequency responsiveness (equalization). After I installed it, I found that a lot of the MP3s I have were actually not sounding as good as some others and the flac albums I have (some I have double, since my car stereo can only do mp3) were always sounding better than the mp3s. Mind you, I have my amp set to extract phase and time information in the stereo signal and use that to create a surround sound of the 2 channel input (dolby DTS NEO6).
Most (probably all?) lossy formats use a psycho-acoustic model to take data out of the original audio signal and recode it in such a way that your brain will process it almost the same. What gets "lost" in these models is dynamics (difference between loud and soft), spatial placement (phase shifting) and such. The more "compression" takes place, as in lower bit rates, the more of this sort of information will be taken out. With sufficiently good equipment and especially once you know what to listen for, it is possible even for me (I have lost most hearing above 7KHz and have difficulty interpreting speech in noisy surroundings) to tell the difference between a FLAC encoded CD recording that I know well and a 192 VBR lame encoded version of the same track. I haven't tried higher bit rates, this is just what happened to be on my hard drive. If I can hear it well enough to be right over 95% of the time which one is which, I'm sure people with good hearing will be able to tell the difference as well, given the proper setup. With specific types of music (orchestra's, complex multi guitar heavy metal stuff like Dimmu Borgir) it's even easier. Those I can even tell the difference in my car, while driving. Those sort of recording just don't deal very well with the psy-a models that lossy formats use. Once all the instruments start playing intricate things together, the individual instruments are hard to make out in lossy audio formats, while with 16 bit 44KHz uncompressed, you can still hear them.
24/96 is nice to have/important for a different reason. If your audio source has 16/44.1 as a sampling rate, your modern player/amplifier, will most likely be doing digital stuff to that stream. Either it will resample it to 192/24 or 96/24 before it does that, or it will start porking straight with the 44.1/16 data. In the first case, you're dealing with a non-linear resampling that will add (probably inaudible) quantisation effects to the stream. It will then resample some more because of the DSP effects (volume buttons often are nothing more than a DSP program parameter changer these days) and it may or may not do yet another resampling back to 44.1/16 before it gets to a DA converter to make "sound" out of it. This isn't really the most pretty way to do it, but given the source signal, it's hard to do it better. In the second case, you start with 44.1/16, it doesn't get resampled but it gets chopped up and DSPed at that bit rate. What comes out, is at best equivalent to 44.1/14, but often the resolution (even if the sample frequency is still 44.1/16) is as low as 32/10. The difference between 44.1/16 and 44.1/14 is often audible, on proper equipment and for people that really listen very carefully. the difference between 32/10 and 44.1/16 is almost always audible, even on mediocre equipment like a cell phone or ipod with cheap ear buds, or a car stereo. While 24/96 may in itself not be required for proper sound as a end product before it gets turned into analog audio, even for garden variety sound, it's often a better source sampling rate, just because of the amount of processing we do even on digital audio these days.
With my limited hearing, I feel it's not realistic to call myself an audio purist. I enjoy listening to music in my car, with all the road noise polluting the listening experience and with my non optimal car stereo and speaker setup. My home system could be way better than it is, without the voodoo prop
No, 10% of the green and 56% of the red lasers they tested were defective or had low batteries. It's amazing how low quality can be sold in shops these days without people getting upset. The government should do something about this and it's good they have done some quality research. The next step should be to fine the vendors of the low powered lasers and if they repeat offend, get them out of business.
Just because you can cram more insider acronyms and names in a sentence it doesn't make it more informative or better readable than just using plain English. Think of your target audience. People that know every name and acronym in this summary will most likely have read this news well before it ever made the Slashdot front page. This means that your target audience will be those that not yet know about the existence of this device.
You could easily write something like this and actually inform people without the majority going TL;DR on you:
"Gaming web sites Neoseeker and the Verge are reporting that the community funded VR helmet Oculus Rift will no longer have support for the game Doom 3 BFG when the first units are shipped. In some good news to offset the bad, Valve will be releasing an Oculus ready version of Team Fortress 2 when the early edition of the Oculus Rift for developers ships. For those backers who are upset about not having Doom 3 BFG edition support on launch of the Oculus Rift, they are offering the following options: '$20 Steam Wallet credit... $25 Oculus Store credit... or a a full refund for your pledge.'"
That took all of 5 minutes to edit and every nub and their mum will more or less gather what it's about. That's the difference between an article with hardly any news worthiness and something that might draw the interest of most people reading the summary. As a writer, which one would you prefer?
ZTE and Huawei products are in fact for sale in the USA and Europe as well. I don't know about South America, but I presume you can get them there as well. Maybe the major US telco's don't bundle ZTE or Huawei products with their 3G/4G offerings, but the hardware is for sale for certain. Several EU operators (notably Vodafone) bundle these products. Assuming that because you don't see the products in the USA they are only available in Russia is kind of short sighted, the world is more than just Russia and the bundled hardware you get in the USA, you know?
There are two reasons why we are seeing this in the news.
First, it's because China is currently a main economic "enemy" to a lot of western economies when it comes to "jobs" and "quality". These are mainly economy based attacks where trade secrets are the main target. Some are politically based, some are military intel based, but the majority is about economic advantage.
The second reason is that China is hardly trying to disguise that it's a large, government organized and funded group of hackers that is doing this. If Japan, Korea, Russia and China would each be getting large amounts of spear fishing hacking attempts that all originate from the IP addresses of the Pentagon, it would be all over the news as well. The USA is probably doing just the same, either government or private company sponsored. The big difference is that it's not possible to link it without reasonable doubt to a single government controlled source, if any correlations can be made at all.
That doesn't mean that the USA cars wouldn't be guzzling more gas than the EU cars. The USA cars get through the same tests in Europe to get their economy figures tested so they can get sold in the EU. The USA figures are lies too, just different lies.
They make cars run horribly to get good emission figures in just the standard test. They actually actively harm real world emissions and economy figures just to get a better test score.
Over inflating tires is dangerous. The whole idea of the correct tire pressure is to give you the full width of the tire to grip the road. If you over inflate, the tire might not blow, but your stopping distance when having to do an emergency stop, will increase dramatically. The exact amount of grip you lose will also make you lose control in corners much quicker.
Blocking overseas network traffic will just mean that the hackers will start using US based places to start hacking from. Just blocking China won't work since the hackers almost exclusively use intermediate (hacked) computers that are not in China to do their stuff from. The fact that China isn't really hiding their economic hacking doesn't mean that other countries aren't doing just that as well. Don't forget that commerce and government are more or less the same in "communist" China. This is nothing but industrial espionage, which takes place everywhere, not just in China-USA. The real difference is that in this case the owners of the industry aren't people claiming to be private citizens in a claimed democracy. You're basically fighting a very powerful economy that happens to be a lot more efficient at their corruption than the the US economy is, with the exception of the arms industry.
Slashdot Mirror
Your messages would be just as easily for them to read once they know how you embedded them. Encrypt them with a decent algorithm implemented properly. Then use a channel that they might not discover, at least for a while. Don't use the same channel too long and use encrypted messages to inform the recipient of a change in channel. Use PKI, so you don't have to change keys when someone can no longer be trusted. Use PKI, so others can't pretend to be your without stealing your private key. Using steganography the way you describe it is for religious fanatics and boy scouts. Trojans that lack the resources and the channel to do proper encryption may use steganography to remain undetected for people that only casually inspect their proxy/firewall but that's about the only serious modern application I've seen so far. Anyone under surveillance that will only use steganography to hide their data, will be caught.
Ever tried one of those batons? If you put anything of weight on the end, it will seriously impede the director in his/her movements and expression. Also, it's way more than just the up/down motion. Anyone that was ever in a decent choir/orchestra will know that the director has two hands, the baton goes left right as well (up-down is only for 2/4 beat) and the direction the director looks and stands has meaning as well. The amplitude of the baton, and lifting or pushing motions of the director indicate volume and expression... There is so much more than the simple tempo directions that the tip of a baton indicate.
Maybe using a kinect as sensor device might pick up at least a few of these channels. Transferring the channels to a sight impaired musician will be a challenge. If you're seriously going to invest in this technology, you'll want a solution that will work for at least 90% of instrumentalists/vocalists without impairing them seriously in their motions. Now I start thinking of a practical way to do this, you may want to use the motion feedback motors of game controllers placed strategically (no, not there) under the clothing of the musician. Single wobbles could be used to indicate small baton movements, double and more for stronger movements. A second motor could indicate the first beat and there must be quite a few combinations possible that could be distinct and short enough for the musician to accurately follow most gestures of the director. Depending on controller size, you could probably use standard wireless controllers, giving you 0 development in hardware costs, only software and "training" for all involved.
Unless they have written permission, they are violating the law by probing these systems. Not only that, but they are actively trying to do something that might crash vital infrastructure and possibly injure or kill patients. Probing equipment inside a hospital without very specific knowledge of what is what and very explicit permissions and waivers is asking for very expensive lawsuits and (insurance) claims. Tell them to stop scanning your life support systems since they crash all the time when they do so. Maybe then they'll figure out that scanning every IP they can reach might not be a very smart idea....
That was a British army (70000 men) assisted by six French armies (150000 men) and it was well outside of Paris.
ARE BELONG TO US!
Implications to secure boot are probably none, when it comes to exposing this key. However, there may be weaknesses in the AMI code that could eventually lead to circumventing secure boot. It's rather academical at this moment, but they may have made some implementation faults that will allow an attacker to falsely keep their checks happy while still modifying boot files. The key is probably only useful for signing firmware, probably only for this vendor and possibly only for this chipset, maybe even a single main board.
md5sum Downloads/018s.zip
4ebc77526c2ea7c0387cc993252e682b Downloads/018s.zip
md5sum 018s/Keys/FW/.priKey
198e238540b93095f02ee763bdadba86 018s/Keys/FW/.priKey
There are no American tanks in Baghdad. The situation is completely under control.
What NVidia did was document a very small and specific part of the chipset. They previously opened documentation of 2D accelleration, now the 3D part. The part that accelerates media playback is still closed. Given the fact that this is a SoC that will most likely be used for media playback just as much as for gaming and it's not their own driver code they have released, I'd not consider this open sourcing. They are merely releasing part of the specifications so third parties can develop drivers. Yes, they are actively helping one company, but there is no actual working code available as open source yet. Not from the 3rd party company, nor from NVidia themselves.
Unfuck you, NVidia!!!
But will it require a dongle to run?
Back in my day you weren't allowed to post on /. before you tried at least 10 linux distributions, one *BSD and one archaic closed source UNIX variant. With the new owners it's turned into Computer Noob magazine.....
By becoming a cartel, it would be illegal. However, if one large provider would publicly announce it would stop doing business with apple and all the others would follow, there isn't much apple could do. If this was staged by the EU telcos and kept secret, apple would have the burden of proof. I think that a lot of EU telephone market movements are done this way, but I have no way of proving it, so it's just an expression of my opinion.
I recently acquired a new amplifier that has a proper DSP in it. It uses a microphone to measure the output of your speakers and corrects for time delay and frequency responsiveness (equalization). After I installed it, I found that a lot of the MP3s I have were actually not sounding as good as some others and the flac albums I have (some I have double, since my car stereo can only do mp3) were always sounding better than the mp3s. Mind you, I have my amp set to extract phase and time information in the stereo signal and use that to create a surround sound of the 2 channel input (dolby DTS NEO6).
Most (probably all?) lossy formats use a psycho-acoustic model to take data out of the original audio signal and recode it in such a way that your brain will process it almost the same. What gets "lost" in these models is dynamics (difference between loud and soft), spatial placement (phase shifting) and such. The more "compression" takes place, as in lower bit rates, the more of this sort of information will be taken out. With sufficiently good equipment and especially once you know what to listen for, it is possible even for me (I have lost most hearing above 7KHz and have difficulty interpreting speech in noisy surroundings) to tell the difference between a FLAC encoded CD recording that I know well and a 192 VBR lame encoded version of the same track. I haven't tried higher bit rates, this is just what happened to be on my hard drive. If I can hear it well enough to be right over 95% of the time which one is which, I'm sure people with good hearing will be able to tell the difference as well, given the proper setup. With specific types of music (orchestra's, complex multi guitar heavy metal stuff like Dimmu Borgir) it's even easier. Those I can even tell the difference in my car, while driving. Those sort of recording just don't deal very well with the psy-a models that lossy formats use. Once all the instruments start playing intricate things together, the individual instruments are hard to make out in lossy audio formats, while with 16 bit 44KHz uncompressed, you can still hear them.
24/96 is nice to have/important for a different reason. If your audio source has 16/44.1 as a sampling rate, your modern player/amplifier, will most likely be doing digital stuff to that stream. Either it will resample it to 192/24 or 96/24 before it does that, or it will start porking straight with the 44.1/16 data. In the first case, you're dealing with a non-linear resampling that will add (probably inaudible) quantisation effects to the stream. It will then resample some more because of the DSP effects (volume buttons often are nothing more than a DSP program parameter changer these days) and it may or may not do yet another resampling back to 44.1/16 before it gets to a DA converter to make "sound" out of it. This isn't really the most pretty way to do it, but given the source signal, it's hard to do it better. In the second case, you start with 44.1/16, it doesn't get resampled but it gets chopped up and DSPed at that bit rate. What comes out, is at best equivalent to 44.1/14, but often the resolution (even if the sample frequency is still 44.1/16) is as low as 32/10. The difference between 44.1/16 and 44.1/14 is often audible, on proper equipment and for people that really listen very carefully. the difference between 32/10 and 44.1/16 is almost always audible, even on mediocre equipment like a cell phone or ipod with cheap ear buds, or a car stereo. While 24/96 may in itself not be required for proper sound as a end product before it gets turned into analog audio, even for garden variety sound, it's often a better source sampling rate, just because of the amount of processing we do even on digital audio these days.
With my limited hearing, I feel it's not realistic to call myself an audio purist. I enjoy listening to music in my car, with all the road noise polluting the listening experience and with my non optimal car stereo and speaker setup. My home system could be way better than it is, without the voodoo prop
No, 10% of the green and 56% of the red lasers they tested were defective or had low batteries. It's amazing how low quality can be sold in shops these days without people getting upset. The government should do something about this and it's good they have done some quality research. The next step should be to fine the vendors of the low powered lasers and if they repeat offend, get them out of business.
Just because you can cram more insider acronyms and names in a sentence it doesn't make it more informative or better readable than just using plain English. Think of your target audience. People that know every name and acronym in this summary will most likely have read this news well before it ever made the Slashdot front page. This means that your target audience will be those that not yet know about the existence of this device.
You could easily write something like this and actually inform people without the majority going TL;DR on you:
"Gaming web sites Neoseeker and the Verge are reporting that the community funded VR helmet Oculus Rift will no longer have support for the game Doom 3 BFG when the first units are shipped. In some good news to offset the bad, Valve will be releasing an Oculus ready version of Team Fortress 2 when the early edition of the Oculus Rift for developers ships. For those backers who are upset about not having Doom 3 BFG edition support on launch of the Oculus Rift, they are offering the following options: '$20 Steam Wallet credit ... $25 Oculus Store credit ... or a a full refund for your pledge.'"
That took all of 5 minutes to edit and every nub and their mum will more or less gather what it's about. That's the difference between an article with hardly any news worthiness and something that might draw the interest of most people reading the summary. As a writer, which one would you prefer?
You spammed your business, good for you. Now what does that have to do with surveillance?
ZTE and Huawei products are in fact for sale in the USA and Europe as well. I don't know about South America, but I presume you can get them there as well. Maybe the major US telco's don't bundle ZTE or Huawei products with their 3G/4G offerings, but the hardware is for sale for certain. Several EU operators (notably Vodafone) bundle these products. Assuming that because you don't see the products in the USA they are only available in Russia is kind of short sighted, the world is more than just Russia and the bundled hardware you get in the USA, you know?
There are two reasons why we are seeing this in the news.
First, it's because China is currently a main economic "enemy" to a lot of western economies when it comes to "jobs" and "quality". These are mainly economy based attacks where trade secrets are the main target. Some are politically based, some are military intel based, but the majority is about economic advantage.
The second reason is that China is hardly trying to disguise that it's a large, government organized and funded group of hackers that is doing this. If Japan, Korea, Russia and China would each be getting large amounts of spear fishing hacking attempts that all originate from the IP addresses of the Pentagon, it would be all over the news as well. The USA is probably doing just the same, either government or private company sponsored. The big difference is that it's not possible to link it without reasonable doubt to a single government controlled source, if any correlations can be made at all.
Use a silencer on your assault rifle? I'm sure your dorm mates will see reason and make less noise when you show them a good example.
That doesn't mean that the USA cars wouldn't be guzzling more gas than the EU cars. The USA cars get through the same tests in Europe to get their economy figures tested so they can get sold in the EU. The USA figures are lies too, just different lies.
They make cars run horribly to get good emission figures in just the standard test. They actually actively harm real world emissions and economy figures just to get a better test score.
Over inflating tires is dangerous. The whole idea of the correct tire pressure is to give you the full width of the tire to grip the road. If you over inflate, the tire might not blow, but your stopping distance when having to do an emergency stop, will increase dramatically. The exact amount of grip you lose will also make you lose control in corners much quicker.
How many olympic sized swimming pools can be filled with the servers?
Blocking overseas network traffic will just mean that the hackers will start using US based places to start hacking from. Just blocking China won't work since the hackers almost exclusively use intermediate (hacked) computers that are not in China to do their stuff from. The fact that China isn't really hiding their economic hacking doesn't mean that other countries aren't doing just that as well. Don't forget that commerce and government are more or less the same in "communist" China. This is nothing but industrial espionage, which takes place everywhere, not just in China-USA. The real difference is that in this case the owners of the industry aren't people claiming to be private citizens in a claimed democracy. You're basically fighting a very powerful economy that happens to be a lot more efficient at their corruption than the the US economy is, with the exception of the arms industry.
I bet you can't order it in any color even closely resembling green.