Re: So, of course...
"Our pissy little game needs access to your e-mail, your location, your contacts list, your photographs, your fingerprints, your blood group..."
You missed the iris pattern and DNA sample.
2274 publicly visible posts • joined 7 Dec 2012
What is really funny is, how many here consider it a quality control issue.
It could as easily be one of the same type of glitches that everyone else gets in their space missions.
The last thing they want to ever do is reboot, it's a case of "What if the damned thing doesn't boot up again?".
Of course, it could also be that the mechanical hand got stuck while trying to give a three finger salute.
"...and Bears poo in the woods..."
Well, there are numerous studies on that one, complete with an analysis of what the bear ate and what the residue was like.
Now, there's a study on idiots wandering about not watching where they're walking.
Test me, you'll see normal walking. When walking or driving about, it's a hearty "screw whoever it is" while I moving about.
They can damned well wait for me to get where I'm going.
Beats me, the usual max I've seen in the US has been $600 daily maximum, anything over requires special dispensation of the money pope.
$10k is totally out. However, transfers have a different limit, with some institutions having no limitation for some accounts. But, one isn't transferring funds into an account that is not one's own at an ATM.
It's interesting that state charges were filed, as it was a federal crime as well.
Of course, both federal and state charges could easily be filed for the ringleaders. RICO statute, computer crimes act, etc.
Naw, they didn't rip off a corporation or wealthy person, so they'll get the minimal treatment. Had they ripped of a large corporation or one of the top 5%, they'd get the deluxe treatment of state and federal charges, with sentences applied consecutively.
I love how El Reg switches state like a nice flip flop. One story about how climate change isn't happening, another how it is.
Oh well, gotta keep the advertisers happy, I guess.
Rather like the US political leadership, the best government that money can buy.
It's in the chairs!
They run off and get new chairs.
It's in the mousepads!
New mousepads.
It's in the monitor!
New monitors.
It's in the keyboards!
New keyboards, just for the hell of it, new computers.
It's in your glasses!
New glasses.
It's in...
The NSA swoops in on the going out of business sale.
NSA hacked DES ages ago.
External parties have won prizes breaking DES, the fastest being in a day in 2007.
All, of course, with dedicated hardware.
Now, 3DES is a bit more complicated. Which keying option is being used? What mode is being used? More than one block?
There is more than one moving part, making someone who hasn't a clue, which is obvious considering the call for help, isn't going to get in anytime soon.
But, they may well get help soon.
Help into a jail cell.
If it's stored on your card, how can you change it at your bank or by phone to your bank?
It's stored on your bank's computers.
So, the account number and PIN go to the transaction server. It verifies with your bank if your account number and PIN are correct, as well as attempts to debit the amount of the sale (OK, it's a *bit* more complicated than that, but that's the mile high view).
Here's the ATM side of how it works, the POS side only has a few more moving pieces.
http://sidekick.windforwings.com/2008/02/how-are-atm-pins-validated.html
True. I'd kill for a 12x12 work area and sell my immediate family to get a 24x24 work area, with high precision and multiple heads (as well as a larger variety of workstock).
Well, like any other industry, baby steps, then giant leaps.
But, for a really, really basic unit, it would be nice to have around the house. Print out replacements for the various odds and ends that break, such as the brake on my father's rolling walker.
Now, something to *really* shake the market would be a scanner that scans an object into the computer and it spits out the design for the printer to print.
Let's use some critical thinking here.
So, is the NSA interested in millions of small businesses around the world?
That is what product line is impacted, small business networking products for mom and pop shops, small insurance agencies and similar small businesses.
Really, now, do you honestly think that the NSA gives a tinker's damn about them over, perhaps, Fortune 100 companies or even better, Fortune 500? Or even better, every broadband provider, where they can slurp down all traffic to their heart's content?
Even better, try Hanlon's Razor.
Erm, the POS systems belong to the store, not the credit card company.
Now, how did the POS systems, aka cash registers, manage to have a path out, which is required for that information to leave the system and land in someone outside's computer?
POS systems should not be able to route traffic to each other, especially not offsite in another store. They should also not have the ability to route traffic to the internet at all. To and from the transaction servers only.
"Either that, or they use wireless somewhere and don't realize how easy it is to hack so-called "secure" wireless, and someone broke in from a parking lot."
Blather.
Cracking into *one* store network or even a region's stores won't get you 40 million cards and customer PII.
Not if the network was properly configured. There is no reason to permit cash registers from different stores and/or regions to be able to communicated with each other, they only need to communicated with their transaction server.
Truth be told, I'm a battery hater, a fuel cell lover, etc.
That said, I do love rhubarb and sugar.
A strange thing from a Yank that was born and bred of non-UK linage.
Strawberry-rhubarb pie is exceptional!
Now, turn a nice treat into fuel, *beyond cool!*, if it actually works in a real world environmental condition.
Or can add to such a condition.
"As to "without warning" you do need to remember you are talking to geologists, and they tend to think in slightly different time scales to the rest of us."
Not all. Remember, volcanologists think in both long and extremely short timescales.
If they see the earth bulging up tens of meters, they think in extremely short timescales. And rapidly depart the area.
That's assuming it's a classical nova and not a variable accreting to its final end.
The "pinking" isn't very concerning, it's hydrogen getting excited. Something not really unusual after the outbursts involved with a red giant finally flashing.
So, we'll await a lot more results of observations to see what was there, what remains there and what the spectra shows, from radio to gamma.
The laugh is, it's most likely a ploy to get a better deal on subsequent contracts.
Meanwhile, the ignorant think that *only* the US is spying, not realizing that every nation on the plant with any level of technological capability *has long* been doing so.
It's only that the US never met a secret it could keep, much to the chagrin of the UK.
To be honest, I have heartburn over their capability of detecting such kit.
The entire region is addicted to hiring the cheapest of Indian labor, including the more professional fields.
Sorry, I see this as a bid in a contract negotiation. Especially as they have not disclosed the mythical breach, which anyone else would have done to back up the claim.
But then, I've spent a half decade negotiating with Arabs in the region.
Annoying:
My router incessantly reboots, up to five times per day.
Second unit, which rebooted twice as often.
Compromised hardware? Not likely.
More likely, it's a POS design, whose engineering team should be horsewhipped over, but more likely got bonuses for saving money in their shitty design.
I say, shoot the lot of them! Right out of the biggest circus cannon one can find and straight into the composting pond of the nearest sewage treatment plant.
OK, not really. I'd suggest sacking them, but even money, they were long ago downsized and outsourced.
Lead pipes tend to have lethal effects.
Now, a fine old fashioned telephone ring generator can make even the dumb sing like a canary.
Or a dissected photo strobe unit.
Or, the old US standby, waterboarding, which is not a torture per those who never experienced it.
At least you spotted the common denominator, the vendor making the hardware, rather than the various companies who contracted that hardware from that vendor.
As it's a company rooted in Taiwan and Taiwan is still sore with the US over the "one China policy", I strongly suspect not.
I actually wonder if there may be a PRC root in there.
Still, Hanlon's razor must apply.
A dumb fuck engineer left the back door in on production units is the most likely.
Besides, what benefit would the NSA have in trashing your router configuration? Especially since between them, the PRC, RBN, various other state run organizations all own the network routing points, your traffic is already theirs to begin with.
Or do you honestly thing that it's *only* the UK and US doing that?
I know as a fact it most certainly is not.
"The "minnow" nations without the presence to mine there, or the military muscle to stop others, with bleat and bitch (e.g. the UK) but the other nations (USA, China etc) will go ahead."
Except that the USA and PRC both signed that pesky treaty that prohibits exploiting the mineral resources of Antarctica.
Now, that said, I do recall a loophole wherein resources can be exploited for humanity as a whole.
Hanged if I can figure out how diamonds could do that. The only use for those is for specialty uses, industrial grit, high temperature semiconductor research (of course, those are man made diamonds), diamond anvil units, etc.
And as I mentioned, we now can manufacture diamonds in quantity. There's even an outfit in the US that will turn a few ounces of human cremains into diamond jewelry.
"So, yes, now the media will holler and scream about TOR."
At least in the US, most of the media don't even know what TOR is.
I'd not be in the least bit surprised to hear it reported as toro.
A least until the lawnmower company complains.
"Maybe it's a good thing we don't have laws that would add jail time for being stupid."
Well, if we criminalized stupid, we could clear out a hell of a lot of lousy politicians, all over the world, in no time flat!
"That said: what they have now is circumstantial evidence; traffic that left the university network for the Tor network, co-incidentally at the same time, incoming traffic from the Tor network to the university mail servers."
Even SNORT detects TOR traffic, with the originating internal IP to the external IP.
Traffic analysis of the TOR network can do the rest.
But, the point is, start the traffic, it is logged that TOR was initiated at time X from IP B to TOR node Y. Disconnection from TOR at time A from IP B was also logged.
Circumstantial, but much tighter.
Message traffic from TOR to Gorilla at time C, if not lagged to send later, Gorilla immediately sends to university server at time C+ a few milliseconds at worst case.
Not a really brilliant plan.
"One of my mum's pet peeves too: news commentators referring to clearly-adults as 'boys', 'kids' etc."
I'll plead guilty on using the term kid in reference to the 30 and under crowd.
But hey, when you are military (retired now) and serve with men who are younger than your children by a lot, you tend to call them kids.
Knowing full well that they're men, but...
"Hey, does that new Lieutenant kid's parents know that he's out playing Army?"
"Making point to point communication untraceable should be a fundamental part of infrastructure."
Sorry, but on my networks, I want to know where traffic originates and where it goes to.
It makes threat detection much, much, much more possible.
Before sensitive company documents find their way to the competition.
"Maybe one day you could clone people, just to fuck with them."
Clones would have different fingerprints. As many studies of identical twins have proved.
"You could make latex 'false fingers' and then murder hobos & hitchhikers and pin the deed on someone else."
Doesn't work well, leaves telltale signatures.
"You could use the finger prints and DNA in black magic rituals and mail little voodoo dolls with their DNA and fingerprints to their enemies and publicize it, just to be creepy and menacing."
That might work, just have to figure out how to collect *that much* DNA. Usual DNA swabs are quite small in the amount of DNA collected.
As to laws, impersonation of a public official, harassment, conspiracy, fraud, libel all come to mind for starters. The various nations then have other charges as well. Interestingly enough, harassing a public official tends to be a felony in every nation I'm aware of.
But, collecting the fingerprints and DNA tends to not be illegal in many jurisdictions. A discarded drink cup, a used tissue all tend to be fair game, as one is collecting discarded trash.
Next up: Prohibiting trash picking. It would take care of such collection methods and in the US, criminalize one more way that the homeless feed themselves.