Slashdot Mirror


User: guruevi

guruevi's activity in the archive.

Stories
0
Comments
7,550
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 7,550

  1. Re:HTTPS or SSL isn't enough? on Airport Experiment Shows That People Recklessly Connect To Any Free Wi-Fi Spot (softpedia.com) · · Score: 3, Insightful

    Who do you trust as a reliable Internet provider? You're better off just deleting all root certificates (if you're that kind of paranoid) and make exceptions for every single site you visit.

    OR you could just do like me: you don't store information that matters in places you don't have full control over.

  2. Re:The phone should be cracked. on More Than Half of Americans Think Apple Should Comply With FBI, Finds Pew Survey (theverge.com) · · Score: 1

    1) Even though it is true the NSA/CIA collects information on US-ians, this activity is highly illegal and unconstitutional. There is also the problem (which the NSA has admitted) of searching through the information. Yes, there are large collections of data but in general, beyond immediate interception, they're incapable of using their tech.

    2) Although it is technically possible, you would need some very good reverse engineers to wipe away layer by layer of the security chip and read both the pin and the public keys out of memory with an electron microscope to then unlock the data from the chip. This is well beyond the capabilities of Apple and requires a government agency with access to a private forensics lab with the equipment and knowledge. The largest nations in this world may have 1 or 2 labs each but this is to spy on other nations' leaders, not to pursue some simple criminal suit.

    3) The point of this exercise is for the US government to expand it's power. If they get what they want, they will be able to legally spy on everyone's phone with minimal amount of 'expense'. Right now, each iteration of iOS or Android requires them to do research in order to be able to crack them and the criminal entities are way better at it than they are. This way, they wouldn't need any labs or researchers, they could just force US manufacturers to build in backdoors in everything.

  3. No, the other article was pure speculation. Apple, AFAIK cannot update a device without user interaction. From what I understand on how the security chip works, it is technically impossible to read anything (except what's currently in RAM) because the storage is encrypted while the screen is locked.

  4. Re:A response on Apple's iPhone Already Has a Backdoor · · Score: 1

    And when I say random, I mean, random data they wouldn't be able to glean the regular public can't glean in the same circumstances. If they eg. see a phone number calling the phone while the phone is in their custody (or otherwise in 'public view') they can trace that phone number and depending on the judge, even get as far as a warrant. But they can't "collect" information without a warrant and once under warrant, they have to make sure that it's done according to the rules.

  5. Re:A response on Apple's iPhone Already Has a Backdoor · · Score: 1

    Yes, I agree the threshold is lower but it's still required to follow the rules. If the police are on private property "trespassing" when they smell the meth lab, the entire case could still be thrown out on that basis alone even if they found the largest supplier of meth in the US.

    In this case in particular, they would have to be able to prove they didn't just plant the evidence on the phone after collecting the information through eg. an illegal wiretap. For that you need a chain of evidence and forensics done well. They can't (legally) just collect random information and then use that information to obtain a search warrant (that's what the whole warrantless wiretapping debate is about).

  6. Re:It's not all Apple's fault on Apple's iPhone Already Has a Backdoor · · Score: 1

    Why is the county obligated to cooperate with anything at all? Whether or not it did install an MDM (nice astroturf for a particular product though), the county is not the one being investigated and even if it was capable, doesn't have to unlock shit.

  7. Re:A response on Apple's iPhone Already Has a Backdoor · · Score: 2

    If you want to maintain the constitution (I know, it's far fetched), all evidence must be processed as described above. If the FBI gets a contact list from the phone and decides to prosecute an individual, all the defense has to do is "well, how did you get that phone number" and if the evidence isn't good/correct or the FBI tells them that it just magically knew who to talk to, it's highly likely that the case gets thrown out right then and there.

  8. The problem is that that is impossible and/or illegal on the part of Yelp. The minimum wage in SF is $12.50 - you take home $10.25 after taxes. Where is she losing another $2? Is she calculating in her rent or transportation? At that rate she wouldn't even have to pay for medical insurance and any other insurances would be optional. Even if she was having a judgment against her wages, it would be fairly hard to have a judge agree to allow these to go below the areas minimum wage. I just don't understand how she got to that number.

  9. Lol, 30 degrees outside and I'm still walking in a light sweater; If it's 40-50 degrees all day, you practically don't need to run heat.

  10. Re:And this is...news? on Yelp Employee Posts Open Letter About Cost Of Living And Low Wages, Gets Fired (modernreaders.com) · · Score: 4, Interesting

    If you make $15/h in the SF area you are taking home ~$12.50 after Federal, FICA, State (no local taxes). It is possible a lot of it was taken out by creditors or the IRS for back taxes (which you could be penalized at a monthly rate up to the minimum income), but that's poor life choices, not your employers' fault. And once you have more than 2 creditors taking money out of your pay check, your employer may be able to terminate you (because it's a hell of a lot of paperwork).

  11. Re: The plot thickens... on Apple: Terrorist's Apple ID Password Changed In Government Custody (buzzfeed.com) · · Score: 1

    I haven't read anything besides the news on this one but I think they're either in discovery or pursuit. And typically in these cases, the feds get what they ask for, the judge is just there to rubber-stamp the orders which are written by the feds as long as they can indicate they'll have someone appear in court at some point (dead or alive). So this is really similar to getting a search warrant, except they've gotten the search warrant, can't open the freaking door and now are asking the maker of the door (not the locksmith) to change all their customers' doors.

  12. Re: Lawers should be put out of job on A 19-Year-Old Made A Free Robot Lawyer That Has Appealed $3M In Parking Tickets (businessinsider.com) · · Score: 1

    Judges are typically lawyers that either "graduated" or got elected to the bench. But you need lawyers to interpret the laws, the judge, in these cases at least (tickets and non-criminal/non-family law) only interprets which parts of the explanations are more correct.

    In case of parking and traffic tickets, it's relatively easy to argue the cases. You technically only have to cast some doubt on the explanation of the cop and things like red light and parking tickets in big cities don't even have any cops (or judges for that matter) involved so you can argue (in common law countries at least) against a number of basic, constitutional or conflicting statutes. The "you commit a crime every day" is true but also goes for the state exceeding it's statutory powers, you just got to know which ones apply in your case.

  13. Re: TCO? on US School Agrees To Pay $8,500 To Get Rid Of Ransomware (softpedia.com) · · Score: 4, Informative

    $8500 is cheaper than paying a decent SysAdmin. These criminals know at what point to price their services so that these institutions can continue putting their clients at risk.

  14. Re: Shame on them on US School Agrees To Pay $8,500 To Get Rid Of Ransomware (softpedia.com) · · Score: 1

    It IS illegal to pay criminals for their activities. We should be trying these decision makers for funding terrorism.

  15. Re: older server running outdated equipment. on US School Agrees To Pay $8,500 To Get Rid Of Ransomware (softpedia.com) · · Score: 3, Interesting

    Apt-get upgrade doesn't require any new funding, not even new hardware, this isn't hardware failing, this is incompetence succeeding.

  16. Re: The plot thickens... on Apple: Terrorist's Apple ID Password Changed In Government Custody (buzzfeed.com) · · Score: 1

    In the US, you can sue the estate (basically the inheritance) of dead people even as the result of criminal actions. The estate can be for example 'bankrupt' and you could inherit debts and associated lawsuits from your parents, let's say you accepted the inheritance of a house but you didn't know about the double mortgage taken out on it. Or if your parents/children murdered someone, then died, the estate could still be liable for any damages.

    A posthumous trial could be pursued by either the estate or the state/feds to eg. convict or exonerate certain people and recoup the resulting fines/damages (in whatever direction that may go).

  17. Re: Well, THAT'S interesting. on Apple: Terrorist's Apple ID Password Changed In Government Custody (buzzfeed.com) · · Score: 1

    Perhaps the password is used to encrypt the backup, on OS X at least there is a Keychain which when you change your password renders the keychain inoperable until you enter the old password. The keychain does contain the public/private keys for things like iCloud access (which amongst other things uses IPSec). When you change the password remotely, the old keys may be wiped and the new ones will not sync up to Apple until the user logs in again with the new password.

  18. Re: The plot thickens... on Apple: Terrorist's Apple ID Password Changed In Government Custody (buzzfeed.com) · · Score: 2

    It would render the evidence inadmissible because a chain of custody implies that there was no tampering going on (sealed, signed and locked up) the minute the cops got their hands on it. If you can get a sworn statement from Apple that the Feds altered anything on the phone after the suspect was arrested then the argument would go that they could've planted anything and any lawyer worth their salt would get the evidence thrown out.

  19. Re: Obviously on Even On eBay, Women Get Paid Less For Their Labor (sciencemag.org) · · Score: 2

    Because women (generalizing here, there are also quite some business-savvy individuals) take less risk across the board. It's a biological difference which has evolutionary benefits.

    So women may price, market or promote things less aggressively than men (who subsequently may occasionally lose out on sales) and take less risk of not selling their product. This obviously results in lower income. The same goes for regular jobs; women will often stay at more convenient jobs and won't ask for a raise, thus keeping their comfy jobs (closer to home perhaps) for longer but at lower income rates while most men will ask for a raise and are less afraid to jump ship or travel.

    There are obvious biological imperatives to both paths, if you're home more of the time and bring home a steady income, the young will benefit from the stability while the male is hunting for the wealth.

  20. Which Server isn't running 16GB at least these days? Even a cheap dedicated server comes with it default. And ZFS doesn't actually require all that much RAM, it does better (read caching etc) with it and it requires it a lot for dedupe but a 'standard' file system can easily go with 1 or 2GB of RAM).

  21. Anyone these days. 10TB isn't all that much anymore. If you need 200TB in the enterprise world today, you can get 4TB reliably (6 and 8 exist but are double and quadruple the price respectively and require heavy tradeoffs) so you need ~110-120 drives (RAID10+spares) and that's for 3.5", 15W.

    Enterprise SSD's typically scale evenly with size so I expect these to cost ~5k each, 45 of these would do the job, at 0.2W and 2.5", those things save you first year in both power and space.

  22. Re:Telemetry Free Version on Windows 10 To Be Installed On 4 Million US Department of Defense Computers (betanews.com) · · Score: 1

    Although it is a fact? Perhaps not P4's any more but my local DMV has Dell's with Core M's with a "public WiFi" anyone can change the settings for. Why would the government need to replace a multi-billion firewall (EINSTEIN) if they're not directly connected to the Internet (https://en.wikipedia.org/wiki/List_of_assigned_/8_IPv4_address_blocks#List_of_assigned_.2F8_blocks_to_the_United_States_Department_of_Defense)?

  23. Re:Telemetry Free Version on Windows 10 To Be Installed On 4 Million US Department of Defense Computers (betanews.com) · · Score: 4, Interesting

    Why would they? The decision makers probably don't even understand the concerns and none of the non-IT workers care very much. Until the data has gone to China for a half a decade will they 'find out' and then they'll start a Senate Committee to investigate the issue and after a few more years, when everyone has moved onto Windows 15, will they decide that it wasn't a good idea but it's too expensive now to switch.

    Anyone concerned about security should never use Microsoft products. Most portions of our government have proven that they don't care, the only ones I see care is the NSA which regularly contributes to Linux (SELinux etc) so I think they must be running primarily that.

  24. Re: How about free? on Mattel Unveils $300 3D Printer (computerworld.com) · · Score: 1

    The problem with kits is that you only get the precision you put in it. Between the metal/plastic/wood parts having their own tolerances and the need for very precise measuring tools to put them all together, for most people that's near impossible to get right. A unibody system would solve it by injection molding or laser cutting the parts that have to be precise and at uniform lengths.

  25. Re: read the Ex Parte DOJ filing for the correct s on Judge Tells Apple To Help FBI Access San Bernardino Shooters' iPhone (engadget.com) · · Score: 1

    iCloud backups are also fully encrypted. Apple is the only business that 'gets' security it seems like.