Rather then attaching the public key, a system such as GPG's pka that publishes keys for e-mail addresses in DNS via DNSSEC signed records is likely a safer alternative against modified keys. It also allows the first e-mail between two people to be encrypted (as the key can be found via a DNS request).
PKA works now, but the clients have to be told to use pka manually, so its of limited value in its current state until adoption gets a little wider. Sadly leaves GMail and friends out in the cold (unless they offer a key publishing service to their DNS), but works well for privately controlled domains (since commercial webmail can't really be secure anyway, its as good as I think we are likely to get).
My main issue is sites that SAY they allow anything, but don't. There are a lot of sites I've run across using keepass that don't have data validation cheks when changing the password, but when the password has some symbols in it, can no longer be logged into. I've had one site with the combination of this and a password-retrevial instead of a password reset feature, thus breaking the account completely.
We could have people working at the polling stations who act as proxies to assist voters. The voter tells the worker who to vote for, then the worker places the vote.
Because we are short on money, they canidates should pay these workers, and decide how many and where they work.
I'm sure self-regulation will work fine for this, so faud won't be an issue.
I use Firefox because it has NoScript and SSLEverywhere, that Chrome doesn't (or doesn't that have equivilent funcionality); thus making Firefox more secure for my usage paterns.
Having not seen the technical details of this implementation issue before, I googled it, and found http://rdist.root.org/2010/11/19/dsa-requirements-for-random-k-value/.
I don't design my own signature implementations (I just use openssl), but its conceivable that I might need to at some point, so I like to keep up on the technical details behind such cracks; in order to avoid making the same mistakes.
Thanks for posting that link, I am glad I got a chance to see that story, depressing as it is. I had read The Innocent Man by John Grisham before, and this just further hardens my view of the death penalty.
If I had some mod points, I would mod your comment up, sadly I do not.
For the lazy: Static Control Components made a chip that got around an authentication procedure between the cartage and the printer to prevent refills of the cartage. Lexmark got an injunction, SCC appealed, and finally won.
For the sake of argument (I am not sure this is the case), say that this national ID won't do anything. Then, the question becomes, why would you spend money on nothing? (This is OUR tax dollars they are spending on nothing)
There only seems to be closed source drivers.
I am still looking for a device like that that has open-source Linux drivers for it. But until then, no sale.
Am I the only one who thinks that 7.9% growth in shipments is still quite large?
I really don't see what the problem is, as you can not expect to have 10% growth in shipments every year. I can't think of any other industry that would say a 7.9% growth rate is killing them...
Spam would be out of control on that domain... Any mail server would most likely just melt as soon as it was powered on for that domain.
Every time a site wants my e-mail, and I don't want them to have it... I use goto@hell.com or a similar address.
Further reducing the value is the fact that I have never been to that web site, nor had any desire to.
I already use the Google Toolbar for Firefox that has built-in spell checking. When I get Firefox 2, I may get rid of the Google Toolbar, as that is really the only reason I use it.
A while ago the FCC had not decided if it would license the old frequency range to big companies willing to pay big bucks or if it would allow unlicensed use.
If this does mean that they went the way of unlicensed use for most of the spectrum, then I see this as one of the few good moves the FCC has made in a while for the people, in light of its bad choices about other allocation choices, wiretapping, DRM, etc that were in favor of huge companies.
I like this idea, as when building electronic devices, the more frequency choices I have the better... and the licensed spectrum is just wasted by the big companies over-charging for cell-phone plans (I don't have a cell phone).
"No one in the know uses.gz anymore, they use.bz2"
I still use gz to compress large files that have alot of null bytes or something. If you have a file with huge blocks of any one symbol, bz2 will take a huge amount of processing time to compress. I have also found times where bz2 can take both more processing time, and produce a larger output file (then gz).
When the government designs something that should last two or three years, it never lasts more then 90 days before failing. When the government designs these things that are supposed to last 90 days, they end up lasting two or three years.
I wonder if they should start designing everything to last 90 days, as they might do a little better that way:-)
Assuming that they price the game down to the point where the game price + some tracks and cars = a reasonable cost...
This might be good because it would force the developers to make the car's and tracks worth playing or they will not be used.
It could prevent the usual placement of tracks/cars that are worthless just to fill the space. It might also make more tracks available then would be in a usual game disk, allowing for more replay value.
The only downside that I can think of is used games, but as long as you can back them up to a (small) memory card and sell the card with the game, then you could sell the tracks and cars along with the used game, thus adding value to the used game market.
Before everyone says that I am on Sony's side and I forgot about the rootkit thing, I can think of a number of ways off the top of my head that they could disprove the above points (and I would not put it past them to do just that).
Even if this did have a chance of working...
I would love to be the one who walks on the sidewalk while the "floating cars" send out their microwaves to cook me...
SOFTWARE INSTALLATION: Components bundled with our software may report to Licensor and/or its affiliates the installation status of certain marketing offers, such as toolbars, and also generalized installation information, such as language preference and operating system version, to assist Licensor in its product development. No personal information will be communicated to VCODEC or its affiliates during this process. Licensor may offer additional components through our version checking/update system. These components include: Toolbar, Popup advertising solution, Commercial homepage manager, Commercial messenger.
This is in the therms of use. So even if the reason that made this post does not have backing... this statement tells me to keep out.
There are some reasons for reading the TOS, you know.
Also as a side note, the file name of the "Therms of use" is therms.html for whatever that may mean.
The name is the Office of Professional Responsibility... and he told them to go away... That would indicate to me that he is admitting he is not responsible.
But, we all knew that when he first go into office.
I rather like using an O/S that only a few people have the knowledge to use... as it means fewer stupid questions.
I would like to see more people that are skilled in computers using Linux... not people who do not understand how things work under the hood of a computer.
Also, there is such a thing as over-simplification, and then it will loose all the power that drew me to the O/S in the first place. That is one of the reasons I do not use Windows.
At any rate, I like Linux on my desktop, and would not use anything else; but it really shows its power on my web and mail servers (that most people do not have to use).
Tor (http://tor.eff.org/) is a good way to prevent the government (or anyone else) from watching what sites you go to.
It can be a little slow at times, but you do not need to use it all the time (unless you are very paranoid).
Hashcash http://www.hashcash.org/>
This is a nice system that does that, but it is too bad that none of the mail user agents that I know of support it. I am still watching for one to implement it, as it has Spamassassin support already.
In my opinion, China should be free to make the laws that they want, and then the companies who do business with them need to follow the laws they make. The congressmen should be attacking the policy of China if he does not like the actions. There is no point in telling companies to stay out... unless they want to go all the way and place an embargo on China or something like that. That is why they have to power to do that.
I am not saying that an embargo is a good idea, as every cheap plastic toy that we have here is made over there, but I do not think that telling companies to stay out is a good policy. We want to get US based companies to sell products and services to China to reduce the trade deficit anyway, so telling them not to do anything over there is a bad idea.
If he wants to complain about something, anti-competitive practices are a good target, and DRM is also a good target, or the patent companies, and the list goes on. There are better things to attack then things that are just following government policy.
If the DOJ are not doing a criminal investigation, why do they have more rights to get the information that they want, when if I were to jump up and down asking for access from MSN, AOL, or Yahoo, I would just be told to go away?
I do not have a problem with them having access, as long as I can have access too. If they get away with this, next time I am left doing a research paper on the popular searching trends of people, I want them to open there databases up to me, too. That is the extent of what they are doing from what I see, just a research paper to prove a point.
If I had internet service through them, and I noticed that some web sites did not come through as fast as they did on my friends system with a different ISP, I would tend to call BellSouth and ask what is happening.
What are they going to tell me? "Oh, Skype did not pay us $3000 this month, so it is slow for you, but if you switch ISP's we will sue you to death."
hmmm I guess customers really don't have any value in today's society.
Slashdot Mirror
Rather then attaching the public key, a system such as GPG's pka that publishes keys for e-mail addresses in DNS via DNSSEC signed records is likely a safer alternative against modified keys. It also allows the first e-mail between two people to be encrypted (as the key can be found via a DNS request).
PKA works now, but the clients have to be told to use pka manually, so its of limited value in its current state until adoption gets a little wider. Sadly leaves GMail and friends out in the cold (unless they offer a key publishing service to their DNS), but works well for privately controlled domains (since commercial webmail can't really be secure anyway, its as good as I think we are likely to get).
My main issue is sites that SAY they allow anything, but don't. There are a lot of sites I've run across using keepass that don't have data validation cheks when changing the password, but when the password has some symbols in it, can no longer be logged into. I've had one site with the combination of this and a password-retrevial instead of a password reset feature, thus breaking the account completely.
We could have people working at the polling stations who act as proxies to assist voters. The voter tells the worker who to vote for, then the worker places the vote.
Because we are short on money, they canidates should pay these workers, and decide how many and where they work.
I'm sure self-regulation will work fine for this, so faud won't be an issue.
I use Firefox because it has NoScript and SSLEverywhere, that Chrome doesn't (or doesn't that have equivilent funcionality); thus making Firefox more secure for my usage paterns.
Having not seen the technical details of this implementation issue before, I googled it, and found http://rdist.root.org/2010/11/19/dsa-requirements-for-random-k-value/. I don't design my own signature implementations (I just use openssl), but its conceivable that I might need to at some point, so I like to keep up on the technical details behind such cracks; in order to avoid making the same mistakes.
Thanks for posting that link, I am glad I got a chance to see that story, depressing as it is.
I had read The Innocent Man by John Grisham before, and this just further hardens my view of the death penalty.
If I had some mod points, I would mod your comment up, sadly I do not.
http://arstechnica.com/news.ars/post/20050221-4636.html
This seems to be the same as the Lexmark vs SCC case a while back. Took a while, but SCC finally won.
For the lazy: Static Control Components made a chip that got around an authentication procedure between the cartage and the printer to prevent refills of the cartage. Lexmark got an injunction, SCC appealed, and finally won.
For the sake of argument (I am not sure this is the case), say that this national ID won't do anything. Then, the question becomes, why would you spend money on nothing? (This is OUR tax dollars they are spending on nothing)
There only seems to be closed source drivers.
I am still looking for a device like that that has open-source Linux drivers for it. But until then, no sale.
Am I the only one who thinks that 7.9% growth in shipments is still quite large?
I really don't see what the problem is, as you can not expect to have 10% growth in shipments every year. I can't think of any other industry that would say a 7.9% growth rate is killing them...
Spam would be out of control on that domain... Any mail server would most likely just melt as soon as it was powered on for that domain.
Every time a site wants my e-mail, and I don't want them to have it... I use goto@hell.com or a similar address.
Further reducing the value is the fact that I have never been to that web site, nor had any desire to.
I already use the Google Toolbar for Firefox that has built-in spell checking. When I get Firefox 2, I may get rid of the Google Toolbar, as that is really the only reason I use it.
A while ago the FCC had not decided if it would license the old frequency range to big companies willing to pay big bucks or if it would allow unlicensed use.
If this does mean that they went the way of unlicensed use for most of the spectrum, then I see this as one of the few good moves the FCC has made in a while for the people, in light of its bad choices about other allocation choices, wiretapping, DRM, etc that were in favor of huge companies.
I like this idea, as when building electronic devices, the more frequency choices I have the better... and the licensed spectrum is just wasted by the big companies over-charging for cell-phone plans (I don't have a cell phone).
When the government designs something that should last two or three years, it never lasts more then 90 days before failing. When the government designs these things that are supposed to last 90 days, they end up lasting two or three years. I wonder if they should start designing everything to last 90 days, as they might do a little better that way :-)
Assuming that they price the game down to the point where the game price + some tracks and cars = a reasonable cost...
This might be good because it would force the developers to make the car's and tracks worth playing or they will not be used.
It could prevent the usual placement of tracks/cars that are worthless just to fill the space. It might also make more tracks available then would be in a usual game disk, allowing for more replay value.
The only downside that I can think of is used games, but as long as you can back them up to a (small) memory card and sell the card with the game, then you could sell the tracks and cars along with the used game, thus adding value to the used game market.
Before everyone says that I am on Sony's side and I forgot about the rootkit thing, I can think of a number of ways off the top of my head that they could disprove the above points (and I would not put it past them to do just that).
Even if this did have a chance of working... I would love to be the one who walks on the sidewalk while the "floating cars" send out their microwaves to cook me...
There are some reasons for reading the TOS, you know.
Also as a side note, the file name of the "Therms of use" is therms.html for whatever that may mean.
The name is the Office of Professional Responsibility... and he told them to go away... That would indicate to me that he is admitting he is not responsible. But, we all knew that when he first go into office.
I rather like using an O/S that only a few people have the knowledge to use... as it means fewer stupid questions.
I would like to see more people that are skilled in computers using Linux... not people who do not understand how things work under the hood of a computer.
Also, there is such a thing as over-simplification, and then it will loose all the power that drew me to the O/S in the first place. That is one of the reasons I do not use Windows.
At any rate, I like Linux on my desktop, and would not use anything else; but it really shows its power on my web and mail servers (that most people do not have to use).
Tor (http://tor.eff.org/) is a good way to prevent the government (or anyone else) from watching what sites you go to.
It can be a little slow at times, but you do not need to use it all the time (unless you are very paranoid).
Hashcash http://www.hashcash.org/> This is a nice system that does that, but it is too bad that none of the mail user agents that I know of support it. I am still watching for one to implement it, as it has Spamassassin support already.
In my opinion, China should be free to make the laws that they want, and then the companies who do business with them need to follow the laws they make. The congressmen should be attacking the policy of China if he does not like the actions. There is no point in telling companies to stay out... unless they want to go all the way and place an embargo on China or something like that. That is why they have to power to do that. I am not saying that an embargo is a good idea, as every cheap plastic toy that we have here is made over there, but I do not think that telling companies to stay out is a good policy. We want to get US based companies to sell products and services to China to reduce the trade deficit anyway, so telling them not to do anything over there is a bad idea. If he wants to complain about something, anti-competitive practices are a good target, and DRM is also a good target, or the patent companies, and the list goes on. There are better things to attack then things that are just following government policy.
If the DOJ are not doing a criminal investigation, why do they have more rights to get the information that they want, when if I were to jump up and down asking for access from MSN, AOL, or Yahoo, I would just be told to go away?
I do not have a problem with them having access, as long as I can have access too. If they get away with this, next time I am left doing a research paper on the popular searching trends of people, I want them to open there databases up to me, too. That is the extent of what they are doing from what I see, just a research paper to prove a point.
If I had internet service through them, and I noticed that some web sites did not come through as fast as they did on my friends system with a different ISP, I would tend to call BellSouth and ask what is happening. What are they going to tell me? "Oh, Skype did not pay us $3000 this month, so it is slow for you, but if you switch ISP's we will sue you to death." hmmm I guess customers really don't have any value in today's society.