Slashdot Mirror


User: AHuxley

AHuxley's activity in the archive.

Stories
0
Comments
11,974
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 11,974

  1. Re:Impossible to enforce 100% on Netflix Decides To Crack Down On VPN Users (netflix.com) · · Score: 1

    Who will win long term if the VPN is smart, well funded and has US hardware to cover for complex global connections?
    How long before a call centre has to confirm a US address and seek in depth over the phone CC payment details to begin the sign up for media streaming :)
    Send in your new REAL ID Act details to create an account. A personalized dongle for HD and 4K streaming is shipped back for US use only :)

  2. Re:Why does a nuclear facility need to be connecte on Governments Don't Do Enough to Protect Nuclear Facilities From Cyberattacks (nytimes.com) · · Score: 1

    Many of the US sites are old, really old. So a 1980's computer like network is used for logging to keep track of wider electrical grid and site conditions in real time.
    If the local US grid fails in part or needs more power the nuclear plant can respond.
    Other networks are used to recall the shift of workers to support the existing day/night shift if an event takes place. In the past it was with phones, pagers. Computer networking is hoped to help offer another way to help recall distant team members in todays modern telco world. Now more advance logging and national networks can share vital data about events too.
    More digital like networking lets a few control staff know more about the more distant parts of a plant on a computer rather than 1970's dials and paper print outs.
    So a lot of networks in and out to solve a few issues that help the wider US grid respond, help old reactors function for a few more decades, allow todays staff to do more with much older systems.
    As far a security news is needed, its mostly about front companies, multinationals selling or renting more "security" products and services to the wealthy US energy sector that still has decades of security money on the table.
    Great for the contractors with expensive new security product lines over 10's of sites. For that cyber 'news' is needed to help push mandatory upgrades via grass roots astroturfing or political leaders.

  3. Re:Impossible to enforce 100% on Netflix Decides To Crack Down On VPN Users (netflix.com) · · Score: 1

    If a VPN is buying a pool of shared, known VPN exit points from a 3rd party that only deals with VPNs in the US it should be easy to track and block.
    The lower end, cheaper VPN services will be easy to block if they all use the same few fast low cost networks to emerge into the USA.
    If a VPN has its own real hardware in the US? Then it can buy into any network or provider from its own more hidden hardware and exit as any US telco, providers, networks business service ip range.
    An ip range might show as a US telco, providers real ip range. Hard to block that and have domestic users not been able to connect.
    How much cash is a VPN going to have to put into the US telco market to ensure a useful US telco ip range that is :)
    Reverse every connecting ip and see if it ends in consumer hardware in the USA before a tv/movie connection is allowed?
    Have an app tunnel up from the user to see what their network really looks like?

  4. Re:Regions and business strategy on Netflix Decides To Crack Down On VPN Users (netflix.com) · · Score: 1

    Re: What good do regions do to any business strategy?
    Say you have a few big cities with coax in Australia. Buy a US series and show it a lot in time with the US release date with an expensive month per month connection fee.
    Some US or UK brand then offers the same series in full HD at a low per show price on the same day via the internet.
    Who wins depends on the political access to ensure regional lock out is enforced or free trade is allowed.

  5. Re:Essentially a ULA contract? on NASA Awards Sierra Nevada's Dream Chaser an ISS Commercial Resupply Contract (examiner.com) · · Score: 1

    The US could find a really good design that it can still produce and get many different brands to build the bespoke top part.
    Add on different top parts and hope the sensitive payloads dont get too much of a mission ending shaking as the big rocket was totally designed for a different generation of missions.
    Or give one huge no bid contract for a real rocket and correct top part to one company that can still design it all really well.
    Or keep importing really well made rockets and fitting the non mil 100% made in the USA top part.
    The US needs to get how to total design of rocket again and rediscover the version for human-rated, acceleration profiles and the nose related acoustic considerations again.
    Then back to the old ideas of been dual manifested :)

  6. Re:fast winds on Kite Power: The Latest In Green Technology (thebulletin.org) · · Score: 2

    Depends on the size and scale of the project.
    "US army blimp wreaks havoc after breaking free from military facility" (2015/oct/28)
    http://www.theguardian.com/us-...
    "... dragging its 10,000 foot long cable behind it and knocking out power to thousands."

  7. Re:Horray for spaceships that fly! on NASA Awards Sierra Nevada's Dream Chaser an ISS Commercial Resupply Contract (examiner.com) · · Score: 1

    Mil space policy has not really changed much from the 1970's.
    The US needs to place spy satellites, collect/alter any other nations satellites as needed and return to a few different very secure runways as an interesting long term next gen design consideration.
    All with the nice PR spin of reuse, precious science experiments "returning" and massive cost savings of a winged space plane :)
    A very public water landing or not atmosphere ready is not what the US mil missions need long term.

  8. Re:Anybody ask Japan about this? on More People In Europe Are Dying Than Are Being Born (phys.org) · · Score: 1

    Japan can do very hi tech production lines in Japan as needed.
    If price point is a consideration just open a factory in a nation like Laos, Indonesia, China, The Philippines, Cambodia with a supportive tax rate and low cost export ready infrastructure.
    If the EU was having factory staff problems, build production lines in low cost nations with skilled workers, good ports and low export zone taxes.
    No need to do what the EU did and totally fail with vast numbers of random people just wondering around for decades.
    Filling a nation with random people with no skills hoping a few might try for advanced factory work is not the best job creation idea.
    If a nation wants to really win long term, look after a nations own citizens with advanced education and learn to build factories in other low cost nations with good skilled workers if needed.
    The EU is now left with huge numbers of people with no skills.
    All Japan has to do to win is to fund and look after its education system to ensure it has the very best students every generation.

  9. To the people who found this wide and deep issue.
    Any news to who could be using the ability to create and track media files in the wild?
    Time to alter the out going software firewall :)

  10. Re:Easy Fix for the Paranoid: Cold Reboot on Nvidia Blames Apple For Bug That Exposes Browsing In Chrome's Incognito (venturebeat.com) · · Score: 1

    Think of all the apps running at the same time that could be looking in at something thats still open.

  11. Thats some powerful control by established Australian interests to keep their existing cash streams flowing.

  12. Re:A true patriot, when that used to mean somethin on Ann Caracristi, Who Cracked Codes, and the Glass Ceiling At NSA, Dies At 94 (washingtonpost.com) · · Score: 2

    Yes moved from the Army's Signal Intelligence Service under William F. Friedman the US Army's best cryptologist.
    William F. Friedman really wanted to work with the UK in early 1940 but was blocked by the then powerful US Navy that was duplicating US decoding efforts and did not want to share with the US army.
    William Friedman was then focused on diplomatic encryption systems eg Japan.
    By 1946 the post war agreements over sharing and 5 eye got a lot of attention, a new way to collect all due to new sites long term.
    A later fear for the NSA was that the emerging EU would have a lot of complex national encryption systems that would lock out the NSA and US interests. US and NATO pressure ensured the NSA could always backdoor all emerging crypto products the EU was offered. The US would ensure Western Europe would always revert to plain text on any system ever used or allowed to be used.
    Ann Caracristi moved from Japanese to Russian military codes, got to the "supergrade" civilian equivalent and then moved to A Group, ie Soviet mil codes.
    Russia knew its was totally open to US and UK collection but had so much material to move one time pads could not keep up.
    So Russia had to use machine efforts just to ensure speed and the ability to send ever more material. The network was understood to be weak and the US, UK collected all into the 1960's.
    The Rainfall results followed into the 1970's getting bulk Soviet material.
    Collect it all was always the mission since before WW2 for the US and UK just under different groups and funding.

  13. Re:Did I miss something? on New Remote Access Trojan Used In Cyberespionage Operations (csoonline.com) · · Score: 4, Insightful

    The linked "Uncovering the Seven Pointed Dagger" has some interesting information on what was of interest (Special Economic Zones (SEZs) in Myanmar) and what was discovered.
    https://asert.arbornetworks.co...
    The ability to evade detection is interesting, likes to stay in memory and is resistant to simple malware detection. Remote uninstall, upload, download and could move within target networks.

  14. Find and support the good hardware on Stallman's Legacy Halts At Hardware (hackaday.com) · · Score: 1

    Find the cpu thats fully understood.
    Buy the motherboard thats been fully examined and found to be open and usable for a developers needs.
    Tell the world about it on the web and grow a user community.
    Move away from the devices and brands that expose IP's while selling an expensive VPN related product.
    Stop buying tame and junk crypto turn key products that have trap doors and backdoors design in as sold and shipped.
    Secure and understand what can be as a user and developer.
    The cpu, motherboard, OS can still be secure, fully documented and developer ready.

  15. Re:What's the problem? on NY Bill Would Force Decryption of Smartphones On Demand (onthewire.io) · · Score: 1

    Yes the US brand has the root, the telco has always been what was the Communications Assistance for Law Enforcement Act ready as connected.
    No phone that has ever been allowed to connect to any type of US phone network cannot be considered "secure" for a user over any decade.
    If any brand wants US networking they have to meet a set of standards, one is total police, gov, mil access at any time for any reason.
    All the talk of a need for decryption seems to be more of a story to reenforce an old fiction that todays complex OS branded phones are still secure.
    All the US has is signals intelligence to track its own staff, mil, police and all the people under surveillance.
    If they ever stop trusting their branded "secure" phones and just meet in person without a live mic on via their cell phones?
    Expect a lot more talking points and sock puppets on just how secure US phones are :)

  16. Established coax networks in different nations want to bring exclusive shows to hype their ability to release in time with a US or UK release date.
    With video online any service can bring that same show to that nation at a lower cost per show or season or series.
    Thats why nations keep been lobbied by established national coax or network brands to protect their regional total control over a market.

  17. Why limit collection... on Algorithms Claimed To Hunt Terrorists While Protecting the Privacy of Others (vice.com) · · Score: 1

    The face? Others faces in a picture? Linguistic analysis? Terms used? Non english words? Slang? Tattoos or symbols? First hop of friends and their pics? Second hop of friends and their friends, links?
    3rd hop? Getting to the maths and scale of total collection yet? 4th hop?

    What can be found in a front facing web 2.0 site without the ip logs and support from regional ISP providers to ensure the ip range is even from a real persons computer, desktop, phone or tablet? For that deep telco support is needed. Did they use a VPN for all submissions? Access to the original IP is then needed.. local wifi? CCTV is good for that .. A real person or a friendly clandestine service setting another fake account up to fool contacts into joining a converstaion?
    The NSA and GCHQ dropped dictionary and friends of friends as its cheaper and much more useful to just collect it all globally.
    No clandestine service is going to set boundaries with a "target population" when anyone could be interesting to any friendly nation or agency asking for help over the years.

    ie the security services in 5 nations have aspects of every connection, term, scrap of information, ip, image, call collected.
    With no limits anyone found to be of interest can be backtracked over any year given a request by any mil or gov or a tip from an NGO, informant or other collection method.
    Limits on collection at the front end was only an issue to the US and UK in the 1950-70's when hardware could not keep up with early attempts at collect it all.
    Once enough hardware was installed the global telecommunications use was tamed, kept and could be indexed. Putting a filter on what is even considered for collection was of no use.
    Too many total strangers with no connections to anyone of interest got listed as been interesting and having information already collected on them was vital.

    Also note that a lot of easy to find groups are "turned" or total fronts of Western clandestine service as tools for color revolutions, freedom fighters, politically useful moderates mentioned in the press or vast sock puppet networks to contain other advanced nations.
    To bait new members to walk in they have to have all the trappings: slag, flags, music, culture, past glory... that can take years before it becomes a trusted pipeline for the Western clandestine service to collect vast numbers of unique individuals of interest.
    All the West has is signals intelligence over the internet, the internet has to be free and open to get people feeling hidden enough to reach out or create profiles... start chatting.. then collect it all can work its magic

    An algorithmic framework on the "net" will just alert or shut groups been tracked online and they can return to protected community face to face meetings.
    Does the West have a cadre of trusted informants to cover all people of interest in shifts? It takes a few people per shift to watch just one person.
    Dont let a simple rush to do "algorithms" and block accounts make the totally observable internet stop chatting.

  18. Re:Don't be so quick to take sides. on India Telecom Regulator Pooh-Poohs Facebook's Orchestrated Lobbying Campaign · · Score: 1

    re " talking about giving free connectivity to people who'd otherwise have nothing."
    On their own network...

  19. Re:Build your own on SSH Backdoor Found In Fortinet Firewalls (arstechnica.com) · · Score: 1

    At least your not paying to fully import a product :)

  20. Re:This only deals with hardware-based encryption on French Conservatives Push Law To Ban Strong Encryption (dailydot.com) · · Score: 1

    The brand has its own update root or firmware so no easy user land software would be aware of a request to update.
    Police, contractors, ex staff, former staff and mil have used that option for many years over generations of cell products to push down keystroke logging, to get results pushed out or soft power on, mic turn on requests.
    Brands have have to allow that since the early 1980's product lines or they do not get gov permission to sell their products in that nation.
    No un-backdoored encryption has ever been sold, is been sold or will be allowed to be sold on any nations network that will not allow access to images, text, voice, mic on, power on, beacon like gps tracking.
    Designed in, as sold. The brands own messaging service might be "secure" as sent but only until its national or global databases.
    Again its own root access is a given as it is an in house product. Advertising has to look for keywords :) For that any brand needs back to plain text within its own networks.
    Secure networking sounds like a fancy term for selling privacy but its all on internal networks designed in house by the brand. Secure from the press, media, random user street level interception but fully reversible in real time by the network owners who created the network been offered to users.

  21. Re:It's free speech. on Kentucky Bill: Wait an Hour Before Posting Injuries To Social Media (kentucky.com) · · Score: 1

    Its more about giving giving technocrats, bureaucrats, party officials and political leaders time to create a narrative.
    Too often press releases have gone out too quickly only to be found to be party line spin in the face of citizen or press released HD media.
    One hour gives time to find out that the press, media, police cam has and apply political spin based on what will be seen.

  22. Re:The encoding community seems to disagree on BBC Confirms 50% Bitrate Savings For H.265/HEVC Vs H.264/AVC (bbc.co.uk) · · Score: 0

    It really depends what the end game is for the codec that has to be paid for or designed is.
    Addition of an extra channel in the space of one existing channel . Great for more branded content on existing bandwidth or spectrum.
    Two times the nation building UK content to limit the impact of foreign broadcasting having an impact on traditional UK news and documentaries.
    The role of video over IP considering the limitations of infrastructure going to most towns, cities, villages and its ability to support per device or room selected, streaming HD content. Many devices, screens now support on demand content and real bandwidth limits to that location is an issue.
    Getting more TV out to more people that they want anytime at the slow end of broadband would be useful.
    Limited national networking considerations vs paying a lot for an advanced codec.
    Create a codec in house and face the legal challenges of US codec standards expecting generational export dividends on their sale been rejected by unfair UK competition.
    Buy a US backed codec and have to pay per device, per seat, per user, as a nation... every year..all year.
    Thats UK funding wasted on an imported codec that could have gone to creative content on new channels via a free codec.
    Or the US gov demands the UK buy into its free market product under a trade deal clause. The codec owners rejoice and enjoy another revenue stream is secured for years.

  23. Build your own on SSH Backdoor Found In Fortinet Firewalls (arstechnica.com) · · Score: 1

    Nations have to learn to stop importing complex with issues.
    Learn to fab, design your own hardware, add the code and test it. Lots of nice domestic work for years and a good secure product is created.
    The hardware might not be fast, cool running, an international standard but it will be fully understood from the chips up and be fully supported locally.

  24. Re:What about one-time pads? on French Conservatives Push Law To Ban Strong Encryption (dailydot.com) · · Score: 1

    France can detect the use of a one time pad message on any of its digital networks as it has had expert GCHQ telco upgrade help since the 1970's.
    No anonymity but the message still kept its privacy. In a five eye nation that communications network would be tasked for special collection and digital files created on everyone with 3 connection hops of that code use.
    France can do the digital tracking too but has something the Signals intelligence fixated 5 eye nations do not.
    A vast network of real human informants exist in every French community going back generations. They will get tasked on the origin of that one time pad message.
    The French officials will get all the digital data and have a small human team on the ground to report on that location.
    Unlike teams of contractors or special forces trying to blend in as often attempted in other nations, the informants will be part of the local community and not be spotted.
    Informants are very easy to create when the legal system historically starts with a presumption of guilt and then offers a very good deal.
    Rows of one time pad use can stand out in a collect it all database that expects and sorts everyday readable language use.

  25. Re:This only deals with hardware-based encryption on French Conservatives Push Law To Ban Strong Encryption (dailydot.com) · · Score: 1

    re "Well yeah, that's pretty much a requirement for IP-based networking."
    Thats the idea that the security services can build on, the phone network by default knows a lot about the users cell phone for billing or just to make the connections.
    The only extra is to get to the plain text keyboard press or touch screen use before it is encoded by the high level user application layer.
    The ability to remote turn on the mic and listen in :)
    A user can encrypt all the want just before the message or voice is sent but the device as sold is not secure at a hardware or OS level.