It happens I could use remote USB port functionality.

(Right now I want to run, on my laptop, a device that requires a Windows driver and Windows-only software. I have remote access to a Windows platform with the software and driver installed. If I could export a laptop USB port to the Windows machine, it would solve my problem.)

So NetUSB is vulnerable. Is there an open source replacement for it? (Doesn't need to be interworking if there are both a Linux port server and a Windows client-pseudodriver available.)

I skimmed the start of the paper. If I have this right:

  - Essentially all the currently-deployed web servers and modern browsers have the new, much better, encryption.
  - Many current web servers and modern browsers support talking to legacy counterparts that only have the older, "export-grade", crypto, which this attack breaks handily.
  - Such a server/browser pair can be convinced, by a man-in-the-middle who can modify traffic (or perhaps an eavesdropper-in-the-middle who can also inject forged packets) to agree to use the broken crypto - each being fooled into thinking the broken legacy method is the best that's available.
  - When this happens, the browser doesn't mention it - and indicates the connection is secure.

Then they go on to comment that the characteristics of the NSA programs leaked by Snowden look like the NSA already had the paper's crack, or an equivalent, and have been using it regularly for years.

But, with a browser and a web server capable of better encryption technologies, forcing them down to export-grade LEAKS INFORMATION TO THEM that they're being monitored.

So IMHO, rather than JUST disabling the weak crypto, a nice browser feature would be the option for it to pretend it is unpatched and fooled, but put up a BIG, OBVIOUS, indication (like a watermark overlay) that the attack is happening (or it connected to an ancient, vulnerable, server):
  - If only a handful of web sites trip the alarm, either they're using obsolete servers that need upgrading, or their traffic is being monitored by NSA or other spooks.
  - If essentially ALL web sites trip the alarm, the browser user is being monitored by the NSA or other spooks.

The "tap detector" of fictional spy adventures becomes real, at least against this attack.

With this feature, a user under surveillance - by his country's spooks or internal security apparatus, other countries' spooks, identity thieves, corporate espionage operations, or what-have-you, could know he's being monitored, keep quiet about it, lie low for a while and/or find other channels for communication, appear to be squeaky-clean, and waste the tapper's time and resources for months.

Meanwhile, the NSA, or any other spy operation with this capability, would risk exposure to the surveilled time it uses it. A "silent alarm" when this capability is used could do more to rein in improper general surveillance than any amount of legislation and court decisions.

With open source browsers it should be possible to write a plugin to do this. So we need not wait for the browser maintainers to "fix the problem", and government interference with browser providers will fail. This can be done by ANYBODY with the tech savvy to build such a plugin. (Then, if they distribute it, we get into another spy-vs-spy game of "is this plugin really that function, or a sucker trap that does tapping while it purports to detect tapping?" Oops! The source is open...)

Ever since they changed it so I have a goddamned horizontal scroll (are they on crack?) I've only come by occasionally to look at journals.

Look, Dumbass Holdings Idiots, there's no reason whatever short of GROSS incompetence to introduce a horizontal scroll on a widescreen format notebook!! I'm all for hiring the handicapped, but you don't hire Ray Charles to be a bus driver and you don't hire the educationally handicapped to code...

Although I suspect it may be retarded PHBs than retarded coders. Someone is obviously VERY stupid. The idiotic mistakes I see should NOT happen at a so-called "nerd" site.

I know what you mean. Next we'll be reading an article about client-server renamed to something with a C... It's a crazy world out there.

If you do that you have to double the used web space, and that can be expensive. I'm already almost at the upper limit for my site and will have to go to the next tier of hosting soon. As it is, only three of the well over a hundred pages on my site need a special mobile version, and I would imagine a lot of other folks are the same way.

Having it first look for m.sitename, falling back to mobile.html if it exists and m.sitename doesn't, then index.html if there are neither m.sitename or mobile.html might be a good idea, though.

The inadequately-configurable trackpads, in positions where they detect the palm resting on the laptop (or brushing them) and randomly jump the cursor or highlight whole paragraphs so the next keystroke replaces them, are no help, either.

What do you mean by inadequately configurable? There's usually an option to disable while typing somewhere.

It's there. It's on. Didn't help. Don't know if it's that Ubuntu 14.04 doesn't support it properly on these two machines or if it doesn't do the job I want done.

What I'm looking for is NOT there: A threshold level for touch sensitivity. If you're going to put a BIG touchpad on a laptop's palm rest, you need to either put it where the palms won't brush it, or you need to make it possible to turn down the sensitivity so that a feather-light brushing of the pad doesn't register as a mouse motion or button click.

Two different manufacturers (Lenovo and Toshiba) have used exactly the same layout, and exactly the same hair trigger, non-adjustable, touchpad sensitivity. (Also exactly the same sort of wafer-thin flat tile keys, which is how we got into this digression.)

He's the one that made the claims. He said he did it, and then went to the FBI to explain how he did it. Other than finding the tampered box lid, all the "evidence" is in his claims.

I could knock a panel loose and then claim I hacked the in-flight entertainment system and made an airplane into a sperm whale and then a potted plant. That doesn't make it real, even if I showed them a box containing an infinite improbability drive. Funny thing about that, when most people see it, they see an empty box. How improbable.

NASA already has the answer. Glitter filled Super Balls are the best thing for the job. As we all know, they are infused with magic energy. A 10kg payload traveling at 11.2 km/s could deflect an object the size of the moon.

It does have risks though. Once set in motion, the Super Balls would be set loose on the universe, potentially disrupting entire galaxies.

For the sake of the universe, I hope we never have to deploy such a weapon.

Sounds to me like they just said they WILL offer free upgrades to pirates right there in the summary.

They also have an abundance of people who wear funny hats.

The problem I have with current keyboards is not just the short travel and lack of clickyness, but the tiny height of the keys.

Instead of the tall keys with space between them for fingernail clearance, there are these thin squares maybe an eighth of an inch above a solid surface. If I don't keep all my fingernails cut short, when they go past the side of the key they hit the panel and the key doesn't "strike". Letters get dropped. (So I get to pick between typing well and playing the guitar. I pity those who must keyboard for a living but want long nails to maintain their social life.) The short travel means there's little margin for finger variation, so some letters, where my fingers don't depress the keys as far, normally, don't strike, while others, where I support the weight of my hands, do strike when they shouldn't, or strike multiply.

After over a year I haven't been able to adjust. You may have noticed that my spelling has gone to hell as a result: I have to do a lot more correction and sometimes miss fixing things up.

(The inadequately-configurable trackpads, in positions where they detect the palm resting on the laptop (or brushing them) and randomly jump the cursor or highlight whole paragraphs so the next keystroke replaces them, are no help, either.)

On the other hand, when the nails do hit the key, they quickly wear through the top level of black plastic, exposing the backlit transparent light below it. I replaced a laptop about a year ago and after about six months about a half-dozen heavily-used keys had their pretty letters obscured by the giant glow of the scoured away region.

I had been running on older thinkpads and toshibas, with classic keyboard-shaped keys, or at least the little fingertip cup and substantial fingernail clearance. Switching (in a two-dead-laptops-in-two-weeks emergency) to a lenovo z710, then to a company-supplied toshiba s75, both with the stupid "I'm so thin", square, low-travel, no-finger-cup keys has been a disaster.

It depends on how the theoretical spaces work. You can have multiple things in the same space. Just where you're sitting, there is air, light, heat, radio waves, sound waves, gravity, probably a few neutrinos.

I just used "spaces" because I couldn't think of a more appropriate word.

By trying to silence the guy who tells you how to beat the polygraph (a useless test by all accounts, as far as the 'science' involved), they have basically told every torrent site to start seeding the way to do it online.

Thanks Government!

I'd be preaching what I don't practice; my favorite phone was the Razr. Tiny thing. Big phones are fine for those who carry purses, but mine stays in my pocket. The one I have now is about as big as I can stand.

I'm about to post a journal with a suggestion for the W3C and mobile browser makers.