Slashdot Mirror


User: AHuxley

AHuxley's activity in the archive.

Stories
0
Comments
11,974
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 11,974

  1. Re:"most powerful" relative to what? on Distrustful US Allies Force Spy Agency To Back Down In Encryption Fight (reuters.com) · · Score: 1

    Relative to real time over years of use for any system, network.
    Enigma, DES should have been the warning from history.
    Revealed: how US and UK spy agencies defeat internet privacy and security (6 September 2013)
    https://www.theguardian.com/wo...
    "..to have cracked the codes used by 15 major internet companies, and 300 VPNs."
    Microsoft handed the NSA access to encrypted messages (12 July 2013)
    https://www.theguardian.com/wo...
    ".. agency already had pre-encryption stage access.."
    "..helped the NSA to circumvent its encryption to address concerns .."
    US allies should have learned from
    SISMI-Telecom scandal https://en.wikipedia.org/wiki/...
    https://en.wikipedia.org/wiki/...–05

  2. The main tacking is done with driver/passenger CCTV, automatic licence plate recognition, facial recognition, internet social media and ad tracking.
    Move out of the inner city areas and a lot of that technology is only used on main roads and highways.

  3. A work phone thats on as needed to keep your well paying private sector job.
    Use a secure email service thats not your ISP.
    Find a secure VPN service that covers your entire network not just some parts of your browser.
    If you have to be on social media have a laptop just used for that work related task. Get work related social media use done without using social media for any other activity.
    Dont respond to social media unless its work related.
    Have email or what was an answering machine allow you to find your own time to get to messages.
    Find your own time when to use email unless its a work related account.
    That allows the human to be less of a consumer.
    Buy a safe SUV thats not part of some network all the time.
    Start saving for a nice off the grid cabin well away from the inner city areas.
    Start enjoying life in your new rural community as time allows.
    Just stop having social and consumer networks on 24/7. Keep that work related cell phone as needed.
    Enjoy been part of a real human community and not an ad network.
    Its not the technology its the hours lost to it. Stop spending time online. Enjoy the off the grid life and put the time to better use with new sports and hobbies.
    Get out of the inner cities areas and rediscover the fun of Americana.
    Use the local library not an ad supported search engine for reading and research.

  4. An old idea on Is Online Advertising Worthless? (zerohedge.com) · · Score: 3, Informative

    The idea that if your brand is not been seen everyday it gets selected less and less when a consumer goes shopping. The other band that spent big on new ads got selected for been new. A consumer has the need to try a new look competitor again due to more new ads.
    No matter how near a monopoly a brand gets due to quality or price it has to keep spending big on its name as if it was entering the market.
    Classic TV, print, radio, billboards ads gave way to banner ads and deep tracking internet ads. Anything to keep humans seeing the trusted brand name and its products everyday.
    The new problem for the ads is the old separation of TV, print, radio, billboard ads is now their direct online competitor. Social media wants to sell and build their own trusted consumer and entertainment brands.
    Private label https://en.wikipedia.org/wiki/... and other ways computer company/social media owners/shopping sites now want to sell are replacing or buying up decades of generations trusted names.
    Browsers are considering blocking outside ads. Social media and online shopping push their own new brands or partners that profit share.
    The need for ads has not changed. The way select products get presented on a few captive platforms has changed.

  5. How the other works on the US mil need for skills on NSA Launches 'Codebreaker Challenge' For Students: Stopping an Infrastructure Attack (ltsnet.net) · · Score: 1

    Re ... and stop the bad /other(s). "
    The other floods your nation with their trusted people over many decades.
    Every few decades later their trusted, skilled, cleared next generation fills your most advanced, sensitive and trusted university courses.
    Apply for education that feeds your mot sensitive mil/gov/clandestine work.
    Some really rise up the ranks.
    Stand next to very best US mil cryptographers in real time.
    https://en.wikipedia.org/wiki/...
    Other nations don't need billions to fund network security projects. They just wait to see who got more clearance deeper into the US clandestine services over decades.
    They spend their billions in working out how to get the US to trust and advance their most trusted staff.
    The US spends billions on fancy new collect it all networks every decade, the other spent their billions placing human spies in the US every few decades.
    Networks change, funding changes, the best spies just stay on and get promoted into the next more secret project.
    The "other" is a few decade worth of a trusted supervisor, boss, that contractor, a party political think tank, that demand for one trusted private sector no bid policy.
    In place for decades and shaping US crypto policy.
    They helped fund and designed your most secure networks.
    While the US was distracted by collect it all global network success stories for decades, other nations spent their funds on placing trusted human spies all over the USA.
    Occasional defectors with amazing stories helped over the years build on the myth of collect it all spending been the winning policy.

  6. This should work well on Can The Pirate Bay Replace Ads With A Bitcoin Miner? (betanews.com) · · Score: 1

    Unlike ads the user and their computer are been used to support the site they visit.
    No been tracked later, no changing of the browser experience. Use the site and the site gets a small amount of direct funding from every user.
    No third party stays tracking the user for the rest of their browsing

  7. Re:Why You Should Run Kaspersky on Kaspersky Software Banned From US Government Systems Over Concerns About Russia (betanews.com) · · Score: 2

    The Magic Lantern (software) https://en.wikipedia.org/wiki/... showed gov thoughts on that.
    The ability to help find the next Equation Group https://en.wikipedia.org/wiki/... is the issue.

  8. Re:Banned because Kaspersky patched NSA/CIA backdo on Kaspersky Software Banned From US Government Systems Over Concerns About Russia (betanews.com) · · Score: 1

    Recall the Magic Lantern (software). https://en.wikipedia.org/wiki/...
    Why do some 5 eye nations have issues?
    https://en.wikipedia.org/wiki/...
    The good work done on Stuxnet, Flame, Equation Group.
    https://en.wikipedia.org/wiki/...

  9. Re:Trusted flagger on EU Set To Demand Internet Firms Act Faster To Remove Illegal Content (reuters.com) · · Score: 0

    Some flags are more equal than others.
    A SJW can always correct on politics and all other issues.
    A nations Communist party.
    Person in a faith or cult.
    A celebrity who does not like a review of their movie or project.
    A bureaucrat.
    Political leadership.
    A brand.
    People who pay for or place ads.
    The security services.
    States that like Ag-gag laws.
    Pharmaceutical companies.
    Any nation with blasphemy or apostasy laws.
    Cartoons or music about a faith can also be flagged.

  10. Re:Issue New SSNs on Ask Slashdot: What's a Practical Response To the Equifax Breach? · · Score: 1

    That would fix so many issues. All the old numbers that still get used would be found.
    All the created number that get used stop working.
    All eligible US citizens would get a new number by showing some real citizenship ID. Any old numbers or fake numbers still been used would be detected and investigated.

  11. Encryption per request? Everyone who wants access gets logged in and has to provide that weeks per session key, token?
    Every data request session has to match up with a real computer in an office with a real human requesting data at a human rate of data access?

    Why not?
    From a used car sale to a gov/mil contractor seeing if the person's data been reviewed has data on them in their own state database.
    The problem with that is then a huge new database exists of who went searching for exactly what, when and why.
    Who gets to review all the new access logs and see who is looking for what?
    That a person wanted to work for the gov/mil and the review search was stopped after a shorter than average time? Why was the person rejected and what exact database was accessed to stop the mil/gov review?
    Thats powerful information been kept on who is looking and who looked and for how long.
    Better just to log in a trusted customer and let them search. As long as they have access data is just readable. Data in a format the customer expects.
    Customers wont trust a system that logs their searches.
    Powerful encryption and logs is not always that the customer wants. They may want access, fast speeds that offers data thats readable from any database. To know that their search terms are secure.

  12. Re public facing computers holding access to basically everything someone needs to completely take your identity.
    The network and database is secure. Everyone with access is trusted. The data is a format that every one with access can read and have displayed in a useful way.

  13. re "It begs the question, why even bother with ..... machines? "
    Pure profit. Money is flowing for new machines, secure networks, support services, repairs, staff support and further education. Cryptography and "private sector" academic certification.
    All costs that some federal or state gov can be expected to pay in full for again and again.
    Then later updates, upgrades, support for all the different levels of politics in a nation. The cash keeps flowing and the few trusted brands can then sell internationally?
    The gov is "sold" on been cheaper and more secure than all that old paper counting on the day. No need to print paper, move paper, count paper. The big news networks get instant results for their prime time. No need to wait up for results to be counted by hand. Thats traditional ads on TV get sold and seen.

    But its all about the security. Is the machine secure at the local level? Its easy to stand around with different party members watching that paper count.
    Flip a few votes in a machine with an election that is almost 50/50? That becomes very tempting. No paper count to worry about. The machine number locally is final and passed up as that trusted and confirmed areas result.

  14. Re:Paper ballots & manual counting fine by me on Software To Capture Votes in Upcoming National Election is Insecure (vice.com) · · Score: 1

    Take some random paper vote nation.
    People in some small town or small area from different political parties watch the vote, paperwork and the counting.
    All voters are real citizens and allowed to vote, fully registered and can only vote once. No illegal migrants can vote, no citizen returning to vote many, many times.
    One real citizen, one vote counted on paper.
    They see a final number and that count is sent up the system. That number is passed up to a region. The people who count and observe in a region agree on a final number from all the vote counts sent in.
    A lot of numbers are then sent for a big federal count. All along the way party members and observers know the number for their local elections area and the later counts.
    All the numbers flowing in are certified from small human watched sets of votes up to the federal level. A thousand votes feed into millions of votes. Changes don't add up when counted and seen by all who know their local numbers. Humans can add up when they see lists of confirmed numbers in front of them.

    The new ways of cheating are very much the same as the old ways. Money, support and faith groups, cults and blocks of one issue voters.
    A candidate does a deal with a community, cult, faith, region and then enjoys a flow of votes to them. Just enough to sway a vote and get them elected.
    No need to fake votes. Every vote is real, just the people voting do what they have been told by their community leaders, faith group weeks or months before the vote.
    The elected representative then has to be responsive to that community. If a faith group, cult can get out 10 or 20% of a vote that becomes a powerful group that attracts political support. The cheating is done long before the vote by the community.

  15. Re:Sure, when it happens on Executives Say AI Will Change Business, But Aren't Doing Much About It (axios.com) · · Score: 1

    Any sufficiently advanced pattern recognition is indistinguishable from a real AI.

  16. Re:How far can Google go before it violates privac on Google's Street View Cars Are Now Giant, Mobile 3D Scanners (arstechnica.com) · · Score: 2

    Re 'because it could breach privacy laws even in a completely public space."
    Depends on the nation and how they interact with photographers on city or public land.
    Copyright on some fancy art work in a park thats open to the public but the art work is legally protected from attempts at photography for profit and publication?
    Private ownership of some part of a city still open to the public with new photography laws?
    A private sector security guard walking out onto public land and wanting to know if someone has permission to photograph their building?
    Police trying to create a wider no photograph area on public land around a court building in a city? No sally port so public photography has to be banned in the area?
    Police enforcing a wide no photograph area on public land around a jail?
    Private security contractors moving far beyond their fence line onto public land to stop photography of a refinery?
    Military police or mil contractors out on public land trying to make a photographer show id on public land thats not part of their base?
    Lots of nations push the color of law and chat downs to try and stop or id photographers.
    Later find out that its all on the web for many years.

  17. Would make a good movie script?
    Spies and embassy workers wondering around whispering to another nations mil/gov contractors?
    Imagine of an area in any nation filled with mil/gov contractors.
    A thought experiment with trusted devices to be turned on outside secure working hours and a network of whispers waiting over a wide area.

  18. Re 'Are they racing to the bottom?"
    New funding, new powers. New computer systems. New networks to build. More contractors, gov and mil staff. Overtime and top gov wages.
    The new staffing and equipment sales and support staff in every part of the EU.
    Having to create an EU wide system to find and then enter into all EU VPN use.
    To then find each VPN user in the EU and see what they are saying and doing while using a VPN.
    To keep all EU ip and isp data for years. To fully register every ISP account and keep records of ip use updated.
    Its a bureaucratic dream of big new cyber budgets and enforcing new EU laws.

  19. Re:Pre-Code Internet on EU Presidency Calls For Massive Internet Filtering, Leaked Document Shows (edri.org) · · Score: 1

    That time of culture, freedom and fun.
    When emerging search engines just searched the www and presented results based on the user's search terms.
    The EU now wants political controls, laws and controls.
    A new digital Berlin wall to keep a EU bureaucracy in control of users, comments and news.
    Smart people will work hard to tunnel around all such EU censorship.
    Freedom of speech and freedom after speech will be saved from the EU laws.

  20. Re "They will outlaw VPNs and make it a chrime that gives you 50 years in jail"
    Enough EU experts have seen, worked with and know of the NSA/GCHQ efforts with systems like XKeyscore https://en.wikipedia.org/wiki/..., Turbulence https://en.wikipedia.org/wiki/....
    EU VPN users will be found and their attempts to use the internet for freedom discovered.
    The full force of EU member state laws will then be used depending on the content and comments.
    The new internet needs to take into consideration all methods any EU member gov/mil can find to counter internet freedom.

  21. Re:For some reason, I'm not worried much on Hackers Have Penetrated Energy Grid, Symantec Warns (fortune.com) · · Score: 1

    Re "1. Isn't it true that this sort of thing isn't exactly new? That we could do it to any number of countries, too, if we wanted to, right now?"
    The US moved to build networks into its grid to replace union workers on site.
    A few people with computer networks could replace a lot of workers on site per state/city.
    But few experts expected the networks to just stay in place over years once connected to the internet.
    New upgrades have to be sold to make the networks better and more secure.
    The news cycle moves with the upgrade cycle.
    No upgrades are bad. Cyber news about internet access.
    New upgrades are expensive and the costs get passed onto poor communities.
    The dial up modem can alter settings on the grid network.
    The internet can access the grid network.
    New cyber upgrades are needed for the grid to ensure poor communities have cooling, heating and lighting...
    Hire more trusted humans again to stop new cyber issues?
    Humans join unions and new wage costs get passed onto poor communities.
    More computer networks to keep wage costs down so poor communities have less to pay?

  22. Security services respond? on Two-Thirds of Tech Workers Now Use a VPN, Survey Finds (9to5mac.com) · · Score: 1

    With all the interesting workers and the private sector embracing VPN products and services?
    XKeyscore https://en.wikipedia.org/wiki/... to find the user. A Turbulence like project to get into the users systems. https://en.wikipedia.org/wiki/...
    NSA’s automated hacking engine offers hands-free pwning of the world (3/13/2014)
    https://arstechnica.com/inform...
    ..VPN connections by inserting an implant on routers that break VPNs’ key exchange process, opening virtually any VPN to direct surveillance."

  23. Re:Ummm on Is Apple Copying Palm's WebOS? (salon.com) · · Score: 1

    And HyperCard was back to? https://en.wikipedia.org/wiki/...

  24. Re " But looking at it another way, it's not necessary for an adversary to examine your search parameters. "
    That depends if the USA is doing a new version of Iran Contra and needs to ensure no system or network ever keeps any related files/logs this time. https://en.wikipedia.org/wiki/...–Contra_affair
    Re "They can make a pretty decent guess at what you are up to by examining the results of your search (who you hired) if they know what individuals' skill sets are."
    The US had a few considerations over the decades that shaped US thinking on that one.
    The US got into the Verona files. But the Soviet Union found out about US decryption efforts. https://en.wikipedia.org/wiki/...
    Great to get the data, needed to keep the translated results more secret.
    The other ability was tracking the build up to say a Tet Offensive. https://en.wikipedia.org/wiki/...
    Lots of skilled US analysts looking over translated data and real time information. Let the enemy know of such skills? Try a cover story about a defector?
    The US later had huge realtime search ability over computer networks with emerging systems like the Community On-line Intelligence System.
    Other nations still used index cards. Safe but too slow to search.
    Plain text information was used as the network stayed secure and the USA could get instant results from its global data collection.

    The other idea was the ability of US analysts to feel trusted within their own clearance and compartmentalization to search for anything and they would not feel questioned over access or as to why for every search term entered. Happy, trusted gov/mil staff got better results searching deep into big global databases.
    Other nations demanded their staff explain every search with extra paperwork and got needed approvals.
    More secure as a spy could not search for terms they wanted but a slow system.
    Lots of reasons as to why the USA still needs plain text and fails to use encryption. But for that the US networks always had stay secure into 2017.

  25. Think about it from the US gov/mil perspective.
    Say a US clandestine agency needed a skilled flight crew to load a big transport aircraft and fly a lot of support in for "freedom" to some "pro democracy" group.
    The US clandestine agency does not want a log of its complex crew searches and have to request a decrypt of many different gov/mil/contractor databases.
    So all that mission critical worker data is easy to search and kept in a format every US gov computer system can access without questions or tracking.
    The database work and needed networks got set up in that way for total and easy access by any US gov/mil computer system.
    The US gov and mil thinks its still 1970-1980 and all the plain text worker data is totally safe on a base/building in a very physically secure location. Fences and guards kept vast, fast plain text databases totally safe.
    Staff skills are needed, the databases now exist and are been searched all over the USA in 2017.
    Total access and no logging with no encryption is the US mil/gov way of getting clandestine work done.
    Missions cant wait for access or decryption requests to get approved. Staff with very different skills are needed and can only be found by searching every US gov/mil database.

    No US clandestine agency will trust the people who have access to logs in their own systems. Complex search logs give away missions been planned.
    No US clandestine agency can trust the people who grant access to decryption in their own systems. Decryption requests allows well placed spies to find out what areas the US gov is looking into.
    So everything is left as plain text as a matter of policy that once worked so well for the USA over the years.
    But the US gov did not think to secure the plain text data to a just a few physical sites.
    Once very secure data is now floating on the "internet" with the same access ability.
    Contractors, the US mil, the US gov all want to use internet services in 2017 just the same way as they always had for once very secure mil/gov computer sites.
    Its not about encryption, only access. Its just the way the US gov/mil has always worked with data sets and expects all new data to be presented. Security is expected around the data. Encryption should never not to slow a search of all the data. Collect it all, access it all, search it all is the wider policy.
    Security is just expected to keep working like it just did over the decades. Most staff just want to search or upload new data in the correct gov/mil plain text way.

    The other security issue the USA thought long about was the US gov/mil analyst needed. In other nations all data was hidden, secure and had to be requested in person.
    That slowed down their ability to work with real time information and historic information.
    The US gov/mil gave their now cleared staff better access to plain text data sets that could be searched. The US had a much better ability to search real time data. But all that needed secure sites to stay secure. The once secure methods of working with vast amounts of unencrypted data have been put on the internet.