My company has found that the most cost-effective way of building a high performance router is to buy Symantec 5440's on ebay. These boxes are basically a xeon, 1GB of ram, with 6 gigabit interfaces. Throw mikrotik routeros on it and it can route 3 gigabit without pushing the hardware much. I would have thrown some more at it but i didn't have enough machines with gigabit interfaces lying around at the time.
Furthermore, in this case, the ratio is a lot more important than the figure itself. It wouldn't matter if trillion was replaced with billion or even million, the point still stands (just not to the same degree)
If those implementing this type of thing know what they're doing, there is really no reason it can't be done securely. Simply require all "intercept-this-communication" messages should be digitally signed, etc, and keep the private key under lock and key, both physically and electronically. If it's leaked, have an update-key command on the switches to replace the old key with a new one, and replace any switches that attackers get to first.
I absolutely agree that this is a serious invasion of privacy and is inevitably going to be abused. But arguing against it because it has been poorly implemented and misused in the past is counterproductive.
"How do you re-secretize something that is in Public Domain???"
The crazy conspiracy theorist in me thinks that it might be a little worse than that. Maybe, they don't care about the Saturn V at all. Maybe its nothing more than a test, a social experiment of sorts. A test, of how effectively they can rewrite history and how much the public will care. And let us hope they are not successful, as if this is true and they are successful, we have much bigger concerns than the preservation of the history of space exploration on our hands.
Or maybe the crazy conspiracy theorist in me is just a little too crazy and I'm talking out of my ass. But we must watch this.
Except that entrapment is only applicable to law enforcement. In cases like this, you could probably argue unclean hands, which should get you off the hook but is not illegal in itself. (Disclaimer: I am not a lawyer)
I already called the office of my representative to tell them how I feel about these laws. I'm against the laws on the grounds that I don't care how much of a nut some people are, I want my right to free speech and I don't appreciate any effort by the government to take it away, no matter how good the reason they give. There are hundreds of reasons why its a bad idea anyway but other posters can explain them better than me.
That list looks a bit outdated. Netscape mail, but no thunderbird?
At this stage i'm using Mac OS X Mail as my mail client, but the GPGMail site says: "GPGMail is a complete hack, relying on Mail's private internal API. Use it at your own risks!"
From the number of times ive almost lost large portions of my email because of Mail's less-than-ideal database sytem, i'd rather not risk it. Plus the screenshots are obviously from like OSX.1 o2 X.2. Although the last updated date is fairly recent. I might ry it out on another user.
-Richard
Can you please point me to either a free email client that is easy enough to use and has a decent interface? Or a plugin for an existting one, that supports this? I'd be very interested in doing this (although I don't know anyone who has the technical capacity to figure out how to read it that wouldn't just ask me to send it unencrypted)
1. in a dissasembly of the IE code, you'd notice that its gathering unrelated info during a web request, then dumping the extra data to the server
2. in a network sniffer, you'd see exactly what it's sending. Sure you'd have to have the network sniffer on at exactly the right time, but if you've seen the dissassembly you can probably hack together a simple sockets app to simulate a specially configured IIS boz.
As for IE going to windows update, I don't use it so I can't say for sure..but I've seen it do this under only one circumstance: the home page is set ot the default. The defualt home page is on microsoft.com, and its a page that redirects to your local msn affiliate, but sometimes to windows update.
Scary? yes. Realistic? not really. I'd be more worried about them planting backdoors than openly allowing acess to everone's disk. But ou are forgetting something. Someone has to code it. Windows isn't written by Steve Balmer and Bill Gates sitting in their offices doing evil laughs. It is written by thousands of coders, and I sure hope that the 3 they ask to put the backdoor in have a sense of ethics.
Secondly, someone would notice. Windows is used by millions of people, some of whom are very smart and have an in-depth understanding of what they are using. Someone would see the errant network traffic, notice the unusual disk activity. Somene would notice the hidden process aking disk reads and sending network traffic. If they used a rootkit-like mechanism to hide it, someone would notice the strange activity caused by it. If they embedded it into the kernel, sooner or later someone would pop open a kernel level debugger, to see what's going on (what? why does the kernel have a thread that is sending the directory table to nsa.gov?)
as for the "minesweeper on a macintosh" bit, that's not the first time i've seen that. One of the earlier episodes of Numb3rs also featured minsweeper being played on what is clearly a mac. I wonder if someone made a reimplemntation. I'd google it, but its 4:40am and i'm tired.
I would put the blame squarely on norton there. It's a memory hogging piece of trash. I have a box i use for development (vs2005 express, visual C++ 2003, a bunch of older ms dev tools, e-tax) and it runs for months without problems
or you could just take the common sense approach and use products that rely on algorithms that are open, widely tested and reviewed, and known secure. Algorithms like Blowfish, AES, etc. I use Apple's built-in Filevault protection to encrypt my Powerbook's hard disk, in the event that it is ever stolen. It uses AES-128, which means I know that no-one is getting in without my password.
Any vendor that relies on a custom algorithm for their encryption technology shouldn't be trusted.
Slashdot Mirror
yeah, my bad...browser crashed as i hit submit and I didn't see the post when i went to look for it.
Rob Enderle, Rob Enderle, Rob Enderle, where have I heard that name?
Ah, that's where.
http://www.google.com/search?hl=en&client=safari&rls=en-us&q=enderle+site%3Agroklaw.net&btnG=Search
As far as I'm concerned, that man has zero credibility
Rob Enderele, Rob Enderele, Rob Enderele, where do I know that name?
ah, thats where
http://jeremy.linuxquestions.org/2007/09/24/sco-linux-and-rob-enderle-a-conclusion/
http://daringfireball.net/2003/12/enderle
http://www.tgdaily.com/content/view/34004/128
As far as i'm concerned, that man has ZERO credibility.
Probably in some previous particle accelerator experiment
http://en.wikipedia.org/wiki/Particle_accelerator#High-energy_machines
I remember reading back in early 2006 that they had 6-layer Blu-ray working in the lab, with 200GB on a disc. I'll try and dig up the article.
Another webobjects developer?
My company has found that the most cost-effective way of building a high performance router is to buy Symantec 5440's on ebay. These boxes are basically a xeon, 1GB of ram, with 6 gigabit interfaces. Throw mikrotik routeros on it and it can route 3 gigabit without pushing the hardware much. I would have thrown some more at it but i didn't have enough machines with gigabit interfaces lying around at the time.
Furthermore, in this case, the ratio is a lot more important than the figure itself. It wouldn't matter if trillion was replaced with billion or even million, the point still stands (just not to the same degree)
I wonder if the "Request delivery receipt" option offered by most mail clients is admissible in court.
If those implementing this type of thing know what they're doing, there is really no reason it can't be done securely. Simply require all "intercept-this-communication" messages should be digitally signed, etc, and keep the private key under lock and key, both physically and electronically. If it's leaked, have an update-key command on the switches to replace the old key with a new one, and replace any switches that attackers get to first. I absolutely agree that this is a serious invasion of privacy and is inevitably going to be abused. But arguing against it because it has been poorly implemented and misused in the past is counterproductive.
"How do you re-secretize something that is in Public Domain???"
The crazy conspiracy theorist in me thinks that it might be a little worse than that. Maybe, they don't care about the Saturn V at all. Maybe its nothing more than a test, a social experiment of sorts. A test, of how effectively they can rewrite history and how much the public will care. And let us hope they are not successful, as if this is true and they are successful, we have much bigger concerns than the preservation of the history of space exploration on our hands.
Or maybe the crazy conspiracy theorist in me is just a little too crazy and I'm talking out of my ass. But we must watch this.
Except that entrapment is only applicable to law enforcement. In cases like this, you could probably argue unclean hands, which should get you off the hook but is not illegal in itself.
(Disclaimer: I am not a lawyer)
actually...yes, you do. The new rules set soundexchange as the collector for all internet radio royalties, even if the artist doesn't want them.
I already called the office of my representative to tell them how I feel about these laws. I'm against the laws on the grounds that I don't care how much of a nut some people are, I want my right to free speech and I don't appreciate any effort by the government to take it away, no matter how good the reason they give. There are hundreds of reasons why its a bad idea anyway but other posters can explain them better than me.
I'd advise any other Australians here to do the same: http://www.aph.gov.au/house/members/memlist.pdf
That list looks a bit outdated. Netscape mail, but no thunderbird? At this stage i'm using Mac OS X Mail as my mail client, but the GPGMail site says: "GPGMail is a complete hack, relying on Mail's private internal API. Use it at your own risks!" From the number of times ive almost lost large portions of my email because of Mail's less-than-ideal database sytem, i'd rather not risk it. Plus the screenshots are obviously from like OSX.1 o2 X.2. Although the last updated date is fairly recent. I might ry it out on another user. -Richard
Can you please point me to either a free email client that is easy enough to use and has a decent interface? Or a plugin for an existting one, that supports this? I'd be very interested in doing this (although I don't know anyone who has the technical capacity to figure out how to read it that wouldn't just ask me to send it unencrypted)
I must concur. Even with $20 budget speakers, i can tell the difference between onboard and my card, an audigy value.
I'm running etch in vmware server without problems. What profile are you using? Vmware doesn't provide one for debian.
yes, but it'll raise supsicion. The suspicion needed to go in and dissassemble IE. Or poke around in a kernel deebugger.
1. in a dissasembly of the IE code, you'd notice that its gathering unrelated info during a web request, then dumping the extra data to the server 2. in a network sniffer, you'd see exactly what it's sending. Sure you'd have to have the network sniffer on at exactly the right time, but if you've seen the dissassembly you can probably hack together a simple sockets app to simulate a specially configured IIS boz. As for IE going to windows update, I don't use it so I can't say for sure..but I've seen it do this under only one circumstance: the home page is set ot the default. The defualt home page is on microsoft.com, and its a page that redirects to your local msn affiliate, but sometimes to windows update.
Cost? 10x what it needs to be. Benefit? ACCOUNTABLITY, YOU CORRUPT ASSHOLE.
Scary? yes. Realistic? not really. I'd be more worried about them planting backdoors than openly allowing acess to everone's disk. But ou are forgetting something. Someone has to code it. Windows isn't written by Steve Balmer and Bill Gates sitting in their offices doing evil laughs. It is written by thousands of coders, and I sure hope that the 3 they ask to put the backdoor in have a sense of ethics.
Secondly, someone would notice. Windows is used by millions of people, some of whom are very smart and have an in-depth understanding of what they are using. Someone would see the errant network traffic, notice the unusual disk activity. Somene would notice the hidden process aking disk reads and sending network traffic. If they used a rootkit-like mechanism to hide it, someone would notice the strange activity caused by it. If they embedded it into the kernel, sooner or later someone would pop open a kernel level debugger, to see what's going on (what? why does the kernel have a thread that is sending the directory table to nsa.gov?)
as for the "minesweeper on a macintosh" bit, that's not the first time i've seen that. One of the earlier episodes of Numb3rs also featured minsweeper being played on what is clearly a mac. I wonder if someone made a reimplemntation. I'd google it, but its 4:40am and i'm tired.
Awesome video, btw
I would put the blame squarely on norton there. It's a memory hogging piece of trash. I have a box i use for development (vs2005 express, visual C++ 2003, a bunch of older ms dev tools, e-tax) and it runs for months without problems
or you could just take the common sense approach and use products that rely on algorithms that are open, widely tested and reviewed, and known secure. Algorithms like Blowfish, AES, etc. I use Apple's built-in Filevault protection to encrypt my Powerbook's hard disk, in the event that it is ever stolen. It uses AES-128, which means I know that no-one is getting in without my password.
Any vendor that relies on a custom algorithm for their encryption technology shouldn't be trusted.