Slashdot Mirror


User: gweihir

gweihir's activity in the archive.

Stories
0
Comments
19,136
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 19,136

  1. Re:We Can't Ever Fix This on Paris Attacks Would Not Have Happened Without Crypto (arstechnica.com) · · Score: 1

    The one-time-pad is too costly and too unwieldy. It maybe used for a very small set of ultra-top-whatever messages, but that is it. It is also not proof to attack, as you must under all circumstances keep the pad secret. It is also not necessary. There is absolutely no indicator anybody can break even AES-128 if used right.

    I should also note that "Bruce Perens" is apparently utterly clueless about crypto. The absolutely last thing you want to do with an one-time-pad is to put it into a machine that is connected to the network, like in an app.

  2. Re:We Can't Ever Fix This on Paris Attacks Would Not Have Happened Without Crypto (arstechnica.com) · · Score: 1

    Nonsense. Modern crypto is only breakable cheaply if the implementation is seriously broken. The terrorists were known and under surveillance, but 24/7 surveillance was apparently too costly. So breaking any reasonably implemented modern crypto would have been the same.

    You are talking out of your backside. Seriously.

  3. Re:Haven't we already debunked this? on Paris Attacks Would Not Have Happened Without Crypto (arstechnica.com) · · Score: 1

    Most propaganda and marketing experts these days are. Goebbels was an all-time master at this game and his texts are still in regular use in teaching.

  4. Re:Haven't we already debunked this? on Paris Attacks Would Not Have Happened Without Crypto (arstechnica.com) · · Score: 1

    For people stupid enough, you are entirely correct. The human race has a lot of those.

  5. Re:Bollocks on Paris Attacks Would Not Have Happened Without Crypto (arstechnica.com) · · Score: 1

    It was. The flight-school was alarmed. The FBI ignored them. Just as the French police ignored the Bavarian police telling them they just had arrested a person with a shipment of automatic weapons in his car and a destination on a Paris parking-lot on his navigation system a week or so before the attacks, apparently with ample time to make the meeting and arrest the people the weapons were going to.

    I know to never suspect intent when stupidity is enough to explain a screw-up, but can police-persons really be this utterly demented? The bad thing is that we are in really deep trouble in either case.

  6. Re:Bollocks on Paris Attacks Would Not Have Happened Without Crypto (arstechnica.com) · · Score: 1

    A .125 batter can't keep blaming the bat forever.

    If he is government-funded and sponsored? Sure he can!

  7. Re:Not this old info again on Paris Attacks Would Not Have Happened Without Crypto (arstechnica.com) · · Score: 1

    That is why they had to let the terrorists try two times to get the weapons into France. The first shipment was intercepted in Bavaria and the attack nearly failed. Fortunately some quick thinkers at the French police stonewalled the Bavarian police who even knew that the shipment of automatic weapons was going to a parking-lot in Paris (from the car's navigation system). The next shipment made it trough and the Bavarian police found out what the first shipment was intended for from the news. They have since complained a few times publicly about being stonewalled by the French, but nobody pays attention to them.

    I usually do not go for conspiracy theories, but the second Paris attack had a lot of indicators of having been supported by the French government. And the way they now keep their state of emergency up, it is pretty clear why they would have wanted it. The only other option I see is incompetence so extreme that they would not be able to stop a terrorist attack if the terrorists informed the police a week in advance, because that is about what happened.

  8. Re: Not this old info again on Paris Attacks Would Not Have Happened Without Crypto (arstechnica.com) · · Score: 0

    Yea, the classical "Brutus force" attack.

  9. Oh, simple: He cannot do it. He will not get a chance to try either and he does know that as well.

  10. No. There is a crypto key stored in a secure microcontroller. Unless they get the key out of that chip, they have nothing. At this time, it depends very much on implementation details whether Apple can even write that mystical software to allow unlimited tries.

  11. Re:Can you work with an image? on John McAfee Offers To Decrypt San Bernardino iPhone For the FBI and Save America (hothardware.com) · · Score: 2

    And anybody that knows their stuff just uses a secure passphrase with > 100 bits of entropy and Argon2 and nobody besides them will ever be able to unlock that. Apple only needs the hardware to make it very convenient to get secure crypto. It is entirely possible to do this securely in software only, just requires a user that is willing to remember more than 6 characters and letters.

  12. Re:Can you work with an image? on John McAfee Offers To Decrypt San Bernardino iPhone For the FBI and Save America (hothardware.com) · · Score: 1

    And how would you do that for the secure key storage hardware that does not offer that functionality?

  13. Re:Can you work with an image? on John McAfee Offers To Decrypt San Bernardino iPhone For the FBI and Save America (hothardware.com) · · Score: 1

    Would take longer that the remaining lifetime of the universe or alternately more energy and matter than is available if the universe goes for heat-death.

  14. Re:Can you work with an image? on John McAfee Offers To Decrypt San Bernardino iPhone For the FBI and Save America (hothardware.com) · · Score: 1

    That is not the problem. The problem is getting the encryption key out of the secure microcontroller storing it. Seriously, your amateur-level approach is among the very first things the experts will check for feasibility... and will find that it does not work here as.

  15. He will send hookers to the agents responsible on the FBI-side to distract them, then he will vanish with the phone....

  16. They cannot clone that encryption key.

  17. Re: "Magic" nonsense is still nonsense on SnO: First Stable P-Type 2D Semiconductor Discovered (phys.org) · · Score: 1

    The limiter is on-die interconnect. You may get individual transistors 100x faster, gates 30x faster and CPUs 1.1x faster (if that). Sorry.

  18. Re:Not very useful. on Backblaze Dishes On Drive Reliability In their 50k+ Disk Data Center · · Score: 1

    I very much agree on the backups. Sure, catastrophic failures are rarer today, but they happen and only backup protects you.

  19. Re:What were the problems with 840s? on Samsung Returns To 2D, Releases 250GB 750 EVO For $75 · · Score: 1

    This only hit you with bleeding-edge kernels. Distro-kernels were fine, I think. Still shows that SSD is not a completely mature technology at this time.

  20. Re:no thanks on Samsung Returns To 2D, Releases 250GB 750 EVO For $75 · · Score: 1

    Indeed. And they did actually fix the problems, at least for my 750GB Evo. It was a bit of a pain though, so now I am only buying the Pro models. Zero problems with them so far, quite unlike some other manufacturers I could name. I even have several completely dead SSDs.

  21. Re:O RLY? on Interviews: 'Ubuntu Unleashed' Author Matthew Helmke Responds · · Score: 1

    Indeed. Our production servers run things that _work_, not things that are _new_. (Some of them may also be new, but if needed we will compile from sources and that is that.)

  22. Re:O RLY? on Interviews: 'Ubuntu Unleashed' Author Matthew Helmke Responds · · Score: 1

    My sysadmin happens to be my CEO as well. So no. Incidentally, "modern" is a straw-man here, i.e. you are being dishonest and manipulative. (Nice try, amateur...)

    And in case you really did not know: You can compile all Linux software yourself! Distros are a _convenience_ feature, they are not strictly _necessary_ (except for the incompetent).

  23. Re:I'm missing something here yeah on Judge Tells Apple To Help FBI Access San Bernardino Shooters' iPhone (engadget.com) · · Score: 1

    Security involves trade-offs. This is one of them. There is really no good way to make something both fool-proof and attacker-proof at the same time.

  24. Re:I'm missing something here yeah on Judge Tells Apple To Help FBI Access San Bernardino Shooters' iPhone (engadget.com) · · Score: 1

    I very much agree on all your points. In particular, someone with physical access can already kill it in many ways, so this additional one does not matter much.

  25. Re:I'm missing something here yeah on Judge Tells Apple To Help FBI Access San Bernardino Shooters' iPhone (engadget.com) · · Score: 1

    Good idea.