Slashdot Mirror


User: AHuxley

AHuxley's activity in the archive.

Stories
0
Comments
11,974
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 11,974

  1. Re:backups? on ArkOS: Building the Anti-Cloud (on a Raspberry Pi) · · Score: 2

    A usb stick or connected RAID 1 mirrored enclose would allow you to keep your data backed up?
    New server, check your data and your back online.

  2. Re:accidental lie by omission. on Facebook Building a Company Town · · Score: 1

    Yes ~'rent' and ~local shops 'food' costs could be altered to ensure your cash wage was near useless and any savings ability kept very, very low.
    The other experiment was to provide just enough quality to keep emerging unionism away.

  3. Re:Interesting Quote on Adobe Hacked: Almost 3 Million Accounts Compromised · · Score: 2

    Yes, recall the printing efforts:
    Secret Code in Color Printers Lets Government Track You
    https://www.eff.org/press/archives/2005/10/16
    Makes you wonder what a digital file could hold or have blurring reversible :)

  4. Re:Open Source the code. on Adobe Hacked: Almost 3 Million Accounts Compromised · · Score: 1

    Learn by racing your new mulit threading, better RAM use, 64 bit optimized efforts vs the code?
    Chart how much faster or slower :)

  5. Re:This is just adobe's way of saying... on Adobe Hacked: Almost 3 Million Accounts Compromised · · Score: 1

    Every altered pic gets a unique, owner/camera/gps/ serial number string coded in, popular 'face blurring" methods are reversible and stenography efforts flagged in the saved files for easy detection at the network level?

  6. Re:Cue lobbyists ... on French Police To Switch 72,000 Desktop PCs To Linux · · Score: 1

    The US will have a few options:
    Offer more French police and military ongoing US based 'free' training where they are activity reeducated with MS tools. The staff return to France emotionally imprinted with the advanced tools, methods and a list of new US software and hardware.
    Given rank, seniority, charm, security clearances and a global political context the US hopes it can generational reshape Frances buying efforts.
    Costly to US tax payers but long term alters the mind set of senior French staff.
    Inter agency connections can only be trusted on US hardware. This is how the GCHQ and NSA removed generations of EU crypto hardware replacing with weakened encryption standards.
    Long term it ensures senior French staff are using US products, methods with networked computers daily.
    Try a legal trade deal court case ensuing equal access to the French market for US OS/clouds/software/hardware.
    Forcing France to buy and "use" US products..... in the face of public knowledge of junk encryption and network intrusions.

  7. Re:OSS - with 100% less big brother then commercia on French Police To Switch 72,000 Desktop PCs To Linux · · Score: 1

    The NSA/CIA would still fully understand the databases, OS, OS file system, networks and hardware links within France via Tailored Access Programs, templates (ready-to-go backdoor), ~ Genie.
    http://www.wired.com/threatlevel/2013/09/nsa-router-hacking/

  8. Re:Should the US still be in charge of the interne on Lavabit Case Unsealed: FBI Demands Companies Secretly Turn Over Crypto Keys · · Score: 1

    Other countries may have great laws on privacy or not like entrapment or fast track appeals to high courts.
    They may also have concepts historically based on http://en.wikipedia.org/wiki/Inquisitorial_system
    You also risk long term bureaucratic or police tracking or the domestic telco system been legally close to gov tracking efforts.

  9. Re:Hardware on Security After the Death of Trust · · Score: 1

    http://richard.stallman.usesthis.com/
    From 2010:
    "I am using a Lemote Yeelong, a netbook with a Loongson chip and a 9-inch display. This is my only computer, and I use it all the time. I chose it because I can run it with 100% free software even at the BIOS level."
    http://www.wired.com/magazine/2009/12/st_essay_china/
    "Lemote positions its netbook as the only computer in the world with nothing but free software, right down to the BIOS burned into the motherboard chip that tells it how to boot up."
    Vs the US "backdoor-free chip designs" that made the news? http://www.wired.com/threatlevel/2013/09/nsa-router-hacking/
    Tailored Access Programs "“templates” for breaking into common brands and models of routers, switches and firewalls."

  10. Re:What moron judge allowed this? on Lavabit Case Unsealed: FBI Demands Companies Secretly Turn Over Crypto Keys · · Score: 1

    Re provide the metadata? Under telecoms laws in say Australia or UK...that would/could have been done.
    Thankfully in the US the wider legal/tech aspect to get the keys part seems to have been understood in time. Now the press, lawyers, law reform groups, politicians, academics and future coders can discuss aspects of the case :)

  11. Re:What moron judge allowed this? on Lavabit Case Unsealed: FBI Demands Companies Secretly Turn Over Crypto Keys · · Score: 1

    The interesting aspect is that the laws often cited and offered as justification come from the copper line past.
    The vision of a skilled technical staff with alligator clips at an exchange or in suburbia, connecting to one phone, on one legally defined hardware circuit.
    Now you have to opportunity to acquire the digital code for 400,000 individuals with one trip to court :)

  12. Re:What moron judge allowed this? on Lavabit Case Unsealed: FBI Demands Companies Secretly Turn Over Crypto Keys · · Score: 1

    Again Cold the legal team understood how the system worked and what the 'keys' would do. The keys and any future keys put all users at risk via that one demand.
    The result was the insight into how keys functioned and what been done to the encryption system for all users.

  13. Re:Should the US still be in charge of the interne on Lavabit Case Unsealed: FBI Demands Companies Secretly Turn Over Crypto Keys · · Score: 2

    The good think about the US is:
    The 1st and 4th amendments make what most other countries can do less easy.
    The US press and lawyers now know more :)
    In other countries cleared bureaucrats or police would set up long term isp logging based on ip/ports/time found via their work laptops at home.
    Find, point, click your in the system for years.
    Your automated isp logging might get a more senior bureaucrats or police review after many months. Some 'ministers'/'court' staff rushed review year/s later for an extension.
    The good think about the rest of the world is:
    They can air gap, invest, design, export hardware and encrypt in new ways long term.

  14. Re:That doesn't follow on Lavabit Case Unsealed: FBI Demands Companies Secretly Turn Over Crypto Keys · · Score: 1

    Re Give up all that juicy information flow?
    In other countries cleared bureaucrats or police would self sign a letter and be sending automated logging requests to isp's long term based on ip's and content :)

  15. Re:That doesn't follow on Lavabit Case Unsealed: FBI Demands Companies Secretly Turn Over Crypto Keys · · Score: 1

    The encryption system was set up to be robust and hard to fool internally or externally.
    So the legal requests would have been escalated until the 'read all the traffic and extract the bits they needed themselves.' aspect was reached.
    The legal insight could come down to one line "By handing over the keys, the encryption keys in this case, they necessarily become less secure" [400,000 individuals]

  16. Re:What moron judge allowed this? on Lavabit Case Unsealed: FBI Demands Companies Secretly Turn Over Crypto Keys · · Score: 2

    Re.."public will support them when the fact emerge that they were defying court orders."
    The public now understands that the totality of the encryption was at risk and not just for 'one' account.
    That basic insight is a great fact that has emerged and now its public can be talked about :)

  17. Re:Minimal Trust: on Security After the Death of Trust · · Score: 1

    Yes globally many smart people will question their professors, tutors and wonder what they where educated on.
    They will start to write their own code out of pride or nationalism and be able to offer it to their govs at a fair market rate.
    No more trade deals to select from a few 'big' UK/UK brands at a low price and with long term support totally locking out skilled locals.
    The only way into air gapped systems will be via special forces teams breaking in or bribed local staff.
    Both options are very expensive and risky.

  18. Re:Minimal Trust: on Security After the Death of Trust · · Score: 1

    Another issue is state and national databases. If they all connect with junk encryption, junk servers, junk OS they are open.
    Millions of people can be sorted per country thanks to poor software and hardware import deals.

  19. Re:Minimal Trust: on Security After the Death of Trust · · Score: 1

    Sometimes they just get names wrong :)

  20. Re:Hardware on Security After the Death of Trust · · Score: 1
  21. Re:What moron judge allowed this? on Lavabit Case Unsealed: FBI Demands Companies Secretly Turn Over Crypto Keys · · Score: 1

    They went back to challenge the order... If you keep reading..
    'We’re not simply speaking of the target of this investigation. We’re talking about over 400,000 individuals and entities that are users of Lavabit who use this service because they believe their communications are secure. By handing over the keys, the encryption keys in this case, they necessarily become less secure.”"
    The entire encryption system was up for total decryption long term.

  22. Re:Security is possible, but you must focus. on Former NSA Honcho Calls Corporate IT Security "Appalling" · · Score: 1

    Down the list:
    A. How does your organization create a sense of community? Foreign spying, domestic protection.
    F. How does your institution reward long term loyalty? Further education, wages, medals, new projects, global insight.
    Where NSA came unstuck was hiring very smart, loyal people and telling them its all "foreign" with huge domestic security protections. Reality sets in and talented staff feel used.
    A. How do you increase the cost of attack? The main idea was huge electric fences and SUV's packed with contractors. Then a layer of ID and file sections ensuring very few fully understood too much at any time.
    Sadly all this seemed to drift away with contractors, language experts and others been rushed in by private vetting over the past 10 years.
    The NSA withstood all the Soviet Union, non aligned and friendly nations tried for a long time.
    Mission creep (domestic is allowable) and rapidly changing political considerations (contractors, clouds) seem to have displaced a very well thought out internal systems.

  23. Re:Maybe it is because, security has no ROI? on Former NSA Honcho Calls Corporate IT Security "Appalling" · · Score: 1

    I wonder what the ROI would have been in consulting a wide range of security cleared legal teams after getting the first NSL? vs:
    Gov't: Court should not allow disclosure
    http://www.myfoxaustin.com/story/23591839/govt-court-should-not-allow-disclosure
    The NSL aspects, PR and global branding is getting costly and a bit Kafkaesque.

  24. Re:I can confirm this on Former NSA Honcho Calls Corporate IT Security "Appalling" · · Score: 1

    http://www.wired.com/wired/archive/7.03/punchcards.html seems to offer some historic insights too.
    Keep it all working at the lowest cost for the shareholders. Then you have the rush to the not so safe or cheap cloud, web 2.0 and vision of one skilled non union person with a laptop doing a lot of remote work.
    Its seems a cute list of mission statements: protect from outside data threats, protect from inside data threats, made web 2.0+ work, make the cloud work no matter the costs or network holes, keep the old system running to save costs.

  25. Re:SO WHY DID IT TAKE A SNOWDEN . . . !!` on Former NSA Honcho Calls Corporate IT Security "Appalling" · · Score: 1

    The fairy tales of: foreign use only, stockholder legal issues, stock price, privacy legal issues, political issues, the scale of tracking would never work, data sets would be useless, privacy laws, would stop exports, would leak to the press.
    Anyone who was smart enough to understand history, their internal networks, links to outside networks and had a basic level of curiosity would have been aware.
    To counter that:
    You have a mortgage, student loans, taxes, a growing family, real advancement opportunities, expensive hobbies, like sport, might enjoy drinking and have been profiled as been safe as you advance.
    You do what your told or risk huge losses.
    Snowden gave the world the "citation needed" to speak up, be heard and make real hardware and software changes.