Slashdot Mirror


User: AHuxley

AHuxley's activity in the archive.

Stories
0
Comments
11,974
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 11,974

  1. Yes.
    "Revealed: how US and UK spy agencies defeat internet privacy and security"
    https://www.theguardian.com/wo...
    "... to have cracked the codes used by 15 major internet companies, and 300 VPNs."

    The NSA had XKEYSCORE and found problems with digital certificate.

  2. Re:why do I have to go an big lecture class (fille on University of Arizona Tracks Student ID Card Swipes To Detect Who Might Drop Out (theverge.com) · · Score: 1

    So a boss and company, gov, mil knows a person wanting a job later can study and showed they can be punctual and can manage time.

  3. Re:Blinking Lights on 'Slingshot' Malware That Hid For Six Years Spread Through Routers · · Score: 1

    Some sort of induction ring around the router and shielded computer to log events?
    A reverse TEMPEST to see whats been broadcast out at strange times?

  4. Re:More questions than answers on 'Slingshot' Malware That Hid For Six Years Spread Through Routers · · Score: 1

    Yes its fun to think about how much of this state create malware got pushed up from the trusted side of a network.
    Tech support talking fast and seen by staff talking to the boss then moving to any computer with their USB files?
    A charming NGO worker (spy) with a video to play on a computer on the trusted side of a network to show the boss how a "charity" event went...
    How many get the malware update via the internet pushed down in the wild?

  5. Re:Why do people demand that they be caught? on ACLU Sues TSA Over Electronic Device Searches (techcrunch.com) · · Score: 0

    AC re " the law is the law as it exists here and now."
    Many generations of people have attempted over decades to define a US airport as not been able to search their bag without court paperwork in their name for their bag.
    US courts side with the "airports" and the ability to search and question.
    Searching is legal and all rights exist before, after and during the search at an airport.

  6. Re:Lockout chip since 1985 on Apple Seems OK With Currency Miners In the Mac App Store · · Score: 1

    Its nice that a brand still allows apps the user "approves" to be installed.

  7. Re:Freedom is a fantasy, and so are your "rights". on ACLU Sues TSA Over Electronic Device Searches (techcrunch.com) · · Score: 1

    The word "airport" and security is not just about normal travel or day trips around the USA.

  8. Re:Why do people demand that they be caught? on ACLU Sues TSA Over Electronic Device Searches (techcrunch.com) · · Score: 1

    The street is not security at an airport AC.

  9. Re:More questions than answers on 'Slingshot' Malware That Hid For Six Years Spread Through Routers · · Score: 1

    Recall how a modem, router can be upgraded with a file from the home computer network side.
    Some nation is pushing malware upgrades into devices and they are been accepted as a normal upgrade by the device.
    Some methods used is a random walk in person from "tech" support and their usb device. A chat with the boss and the device is upgraded.
    A person is a way from home at work and their network is on. The device gets a nation state malware upgrade pushed down the network.
    Lots of ways in with a person, via a network to alter a device thats often on and networked.

  10. Re:Freedom is a fantasy, and so are your "rights". on ACLU Sues TSA Over Electronic Device Searches (techcrunch.com) · · Score: 1

    AC just stop taking phones and laptops loaded up with sensitive business and personal information to areas where a search is expected and legal.
    Once at the destination use a VPN to access important information.
    When back from travel enjoy the use of a normal phone and laptop again.

  11. Re:Why do people demand that they be caught? on ACLU Sues TSA Over Electronic Device Searches (techcrunch.com) · · Score: 0

    AC searches are searches.
    Domestic searches can be no less aware of security issues given the past US domestic security issues.
    Why would any nation leave the "domestic" side of their security wide open?
    Why would anyone allow domestic travel to be less secure?

  12. Re:Whack-a-mole anyone? on Feds Bust CEO Allegedly Selling Custom BlackBerry Phones To Sinaloa Drug Cartel (vice.com) · · Score: 1

    AC thats why the GCHQ never went to the wider UK police and mil about its collection results and methods in Ireland.
    The GCHQ knew Ireland had generations of well placed supporters in the UK police, courts, telcos, legal profession, media, press and parts of the UK gov.
    So any results of phone and other communications detection stayed in the GCHQ, Royal Ulster Constabulary Special Branch and UK special forces.
    The UK even understood to use its own mil to do the collection and never trusted security cleared UK telco workers and UK police.
    Too many people all over the UK working for UK telcos and police could not be trusted with information about mil collection methods used in Ireland.

    Very different to the way the US police use open courts and the information that gets out to the wider public about real time cell phone collection methods.

  13. Re:TSA has ONE job on ACLU Sues TSA Over Electronic Device Searches (techcrunch.com) · · Score: 2

    Data on electronic devices can show a persons support of and funding for a banned group.
    That they travelled to a nation to support and funded a banned group.
    Photographs, faith based and political support for groups of interest to the USA. Funds for and meetings with people and groups of interest to the USA.
    GPS, images that show the device owner when questioned was in a nation they failed to mention when asked about.

  14. Re:Why do people demand that they be caught? on ACLU Sues TSA Over Electronic Device Searches (techcrunch.com) · · Score: 1

    Thats the only way now.
    The device can be looked at, turned on, questions asked. An empty computer that works is what a business should be supporting until it is safe to use a computer again.

  15. Re:Forensic tools as a counter measure on 'Slingshot' Malware That Hid For Six Years Spread Through Routers · · Score: 1

    All of the AV that can be found and tested.
    Recall the CIA and who could find what code over years? Lots of different AV software missed detection. Some brands of AV had some better ideas about what system was infected.
    "Found in the wild: Vault7 hacking tools WikiLeaks says come from CIA" (4/10/2017)
    https://arstechnica.com/inform...

  16. Re:Doing fantastic work on 'Slingshot' Malware That Hid For Six Years Spread Through Routers · · Score: 2

    Yes Kaspersky has helped security research all over the net, in devices.
    Stuxnet, Flame, Equation Group https://en.wikipedia.org/wiki/... and many others.

  17. Electronic devices on ACLU Sues TSA Over Electronic Device Searches (techcrunch.com) · · Score: 2, Insightful

    Who would risk "electronic devices" in any setting thats got security and that US courts have talked about what can be searched over generations?
    Stop taking private and business related sensitive "electronic devices" to areas where a search can be expected and a search is legal.
    US courts have been asked every generation to offer protections, the right to a lawyer, to courts, to not have a bag searched, to not be questioned, to not have electronic devices questioned.
    Every generation expects "airports" to be court corrected over searches.
    Every generation the US courts return with the concept that bags and devices can be looked at and questioned as part of travel.
    Photographs can be looked at. Bags can be looked into.

    When a search is expected:
    Travel with a computer that has only a few new business and productivity apps on new storage. Nothing to show, nothing to recover, nothing to find.
    The computer like device works when asked to show it can be powered on. The productivity apps run, a new document can be created. No other digital files exist on that computer.
    A text file with the contact numbers and details for within the company that match up to a web site.
    VPN and use other secure methods later to get files and data in another part of the USA, another nation.

  18. Its still your computer on Apple Seems OK With Currency Miners In the Mac App Store · · Score: 1

    So an app can be sold and created to do calculations.
    What the computer owner then does with the calculation results in their own nation is top to them.
    When a computer maker and OS brand starts to set limits on what a CPU and GPU can be used for after buying a computer?
    Time to find a computer company that respects the freedom to use a computer.

  19. Re:You could also look at their grades on University of Arizona Tracks Student ID Card Swipes To Detect Who Might Drop Out (theverge.com) · · Score: 1

    AC a person who studied and used the library and lab a lot might have good grades.
    A person who did not use the library and lab much might also have good "grades".
    Nice to have another way of considering who to hire.

  20. Re:Soooo...help me out here on University of Arizona Tracks Student ID Card Swipes To Detect Who Might Drop Out (theverge.com) · · Score: 2

    Think of what could be looked back and recovered about a person looking for a job.
    Did they study a lot to get their good grades?
    Library time? Lab time?
    Speed too much time on the political and art student side of campus?
    Off campus doing other things?
    Still managed to get "given" good grades but the movements show a student who never really attended much "university"?

  21. Re:Whack-a-mole anyone? on Feds Bust CEO Allegedly Selling Custom BlackBerry Phones To Sinaloa Drug Cartel (vice.com) · · Score: 1

    Thats why the GCHQ never went to court over Irish phone logs and other criminal decryption issues.
    The GCHQ never told the UK police and courts of their methods to listen into all of Ireland.
    UK police, courts, media, press could only guess at informants and spies having some role in UK special forces successes all over Ireland and in other nations supporting Ireland. The GCHQ only shared its collection results with the UK mil and Royal Ulster Constabulary Special Branch.

    What does the USA do?
    Tell the open courts all about their cell phone needs and related collection methods.
    When a nation has a working telco collection method, never go to court. Productive collect it all can stay secret for generations that way.

  22. A one time pad would ensure privacy. Start with encryption that actually works. Never reuse one time pad.
    Some type of "computer" to enter the encrypted message. Dont keep encrypted messages and plain text around. Dont keep decrypted messages around on paper.
    On spy did that in the 1940's as it was the way she was educated for crypto. When caught she had a book of past messages in plain text to read.
    Stay away from anything with a mic, camera, US branded software, OS made in the USA.
    The US brands should be considered to be wide open to all law enforcement globally as designed.
    Dont use anything with a mic, cam as that is what low cost police malware makes live and then keeps open on consumer brands.

  23. Re:Should tell you something on Feds Bust CEO Allegedly Selling Custom BlackBerry Phones To Sinaloa Drug Cartel (vice.com) · · Score: 1

    Re independent encryption ability.
    That needs more effort to stop the feds from turning on the camera, mic at the OS level, not just keeping app level data encrypted.

  24. Re:Should tell you something on Feds Bust CEO Allegedly Selling Custom BlackBerry Phones To Sinaloa Drug Cartel (vice.com) · · Score: 1

    More that the standard US police malware pushed down onto any cell phone likes to turn the camera and mic on.
    What was once DROPOUTJEEP quality https://en.wikipedia.org/wiki/... is now a local police contractor malware on the cell phone method.

  25. The good old days of 3-pass vs 2-pass encoding questions.