lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date: Thu Dec 29 14:59:14 2005
From: leife at dls.net (Leif Ericksen)
Subject: Spy Agency Mined Vast Data Trove and other tales

Yup got to go after the politicians and those folks that worked for the
three letter agencies or unnamed agencies or otherwise can be decent
folks.  They just have a job to do.  Education of the masses is key.  We
can not whine about something that is in progress.  
It was not done at before year XXXX, but now they are doing it what has
changed what is the law or presidential writ/act (for us in the US) that
allows this to take place.  Then you have to start calling your reps and
let them know that their job is potentially at risk by letting them know
your stance on the issue and that will follow the issue and vote
accordingly.  Be careful, do not make it a threat...  Just express your
stance on the issue they will know that you might not vote for them if
they do not go your way.  The other problem is you have to convince many
other folks that your view point is one that needs to be listened to.
Give facts, not complaints they can not do this.  Give it emotion and
feeling, let those you educate know that they themselves could be
impacted in a positive or negative way so that they will want to take
your stance on the issue as well..

Has any body ever had the issue were you are told DON'T LOOK what is one
of the first things that normally happens?  HUGH, what and you look to
were the voice said don't look?  I know it has happened to me (as the
looker) more than once.

How many people have been tempted or have actually gone places they
should not have?  you see a sign that states "do not enter", "no
trespassing"  has it ever peaked an interest to the likes of hum, what
is behind that door, what is in the way back of that property?  :)

Soem people will just poke around at the boarder while others will try
to cross and find out up close.

The heck with curiosity killed the cat. 
--
Lhe
On Wed, 2005-12-28 at 22:01 -0800, Steve Kudlak wrote:
> 
> It is kind of think it is a "UFO story" to say that PGP and the likes 
> don't work and have been quietlty changed to make them easy to break. 
> The inventors being compromised is pretty much an MIB story. It is open 
> code so you can read it and see if it is possible to break and how 
> easily given current open knowledge. Now if the mathematicians in the 
> NSA know things about factoring we don't well oh well.  What is depended 
> on is that most people don't encrypt and most things are sent in the 
> open. This includes most transactions that can be used to build a sort 
> of profile. If I were to start spending other than cash quietly and 
> using banks in any way at least my bankers would know some improvement 
> had taken place and they at least have agreed to release a lot of 
> information to competent authorities. Also this stuff is sent pretty 
> much encrypted. SO there is a lot of information out there to gather and 
> much of the idea about datamining is to get things out of easily 
> available unencrypted  sources. The same with phone calls. Very few 
> people have STU phones or equivelent.  it is amazing how stuff just gets 
> known because people can't or most often won't be careful. The big 
> problem with datamining is getting pattern out of data and telling what 
> that pattern means. This is a problem in a lot of fields, there is a 
> storm sitting out in the Pacific over a relatively sensor rich area and 
> I have all sorts of information about its behavior, about SST (sea 
> surface temperature) etc. but it is hard trying to figure out how that 
> will impact where I live.
> 
> Those of us who have worked on big projects inside of large entities and 
> the like know that the people there are often like you and me, despite 
> what the X-Files and true believers say. But that scary stuff does make 
> it more romantic. You are right that however that putting pressure on 
> politicos will get them to change, and people in security agencies are 
> human too and not inhuman monsters and many care a lot about the nature 
> of their work and as onme might notice when someone goes too far little 
> leaks sprout.
> 
> 
> Have Fun,
> Sends Steve
> 
> 
> 
> 
> 
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ