Sam Odio, who runs the BluWiki mentioned the other day as host of the iPodHash project, has posted a followup on the legal tussle in which Apple has engaged the iPodHash project for attempting to reverse-engineer the hash used to encrypt the iTunesDB in recent iPods. He writes in that post: "I've received a flood of emails from interested individuals who want to help. Most importantly, I was contacted by Fred von Lohmann from the EFF. They're currently evaluating whether they will represent us against any potential Apple litigation. This would be great, because it will enable BluWiki to continue to host the project while working with EFF to address Apple's concerns. However, before the EFF commits to representing us against Apple, they want to speak to the author of the [iPodHash] project. I'm posting this public plea hoping that the author, or someone who knows the author, might read it." Update: 11/23 04:25 GMT by T : Due to a shortage of brain cells, I flipped the actors here as this post was originally rendered: To be clear, Sam Odio of BluWiki is seeking the person behind the iPodHash project, not the other way around. Mea culpa.

An anonymous reader writes "The NYTimes is running a front-page story about lawyers for suspects in terrorism-related cases fearing government monitoring of privileged conversations. But instead of talking about the technological solutions, the lawyers fly halfway across the world to meet with their clients. In fact, nowhere in the article is encryption even mentioned. Is it possible that lawyers don't even know about PGP?" The New Yorker has a detailed piece centering on the Oregon terrorism case discussed by the Times.

Titus Germanicus writes to tell us that a recent attack has compromised somewhere in the neighborhood of 500,000 pages with a SQL injection attack. The vulnerability seems to be limited to Microsoft's IIS webserver and is easily defeated by the end user with Firefox and "NoScript." "The automated attack takes advantage to the fact that Microsoft's IIS servers allow generic commands that don't require specific table-level arguments. However, the vulnerability is the result of poor data handling by the sites' creators, rather than a specific Microsoft flaw. In other words, there's no patch that's going to fix the issue, the problem is with the developers who failed follow well-established security practices for handling database input. The attack itself injects some malicious JavaScript code into every text field in your database, the Javascript then loads an external script that can compromise a user's PC." Ignoring corporate spin-doctoring, there seems to be plenty of blame to go around.

freakxx writes "India sets a world record after launching 10 satellites in one go using its workhorse, the Polar Satellite Launch Vehicle (PSLV). All the satellites were put into their respective orbits successfully. It was the core-alone version of the launch vehicle weighing 230 tonnes with a payload of 824 kg in total. Two of the satellites were Indian satellites, while the rest were from different countries. By this launch, the ISRO has proven its credibility and it is going to boost India's image in the attractive multi-billion commercial market of satellite launches. This was the 12th successful launch of the PSLV."

Andy King writes "Within the last five years, the size of the average web page has more than tripled, and the number of external objects has nearly doubled. While broadband users have experienced somewhat faster response times, narrowband users have been left behind." The article breaks down a number of changes besides just page size, including image types and video duration.

Deviant writes "Speaking as an IT consultant, the one big gap in the Linux stack is in messaging / collaboration. MS Outlook with Exchange is a fine product on which many businesses truly rely, and it is almost impossible to match on Linux — server or desktop. The one competitor to MS in this space has been IBM's Lotus Notes / Domino, which has always had the general reputation of being expensive, bloated, and unfriendly. I certainly wouldn't have considered it for the small businesses that we usually sell on MS's SBS server product. That is why I was truly surprised to hear about the new Domino Express Licensing and Notes 8. This is a product that has native server and client versions for both Mac and Linux. Notes 8, now written in Eclipse, also includes an integrated office suite, Lotus Symphony. This could conceivably let a user do all of their work in one application. And you can now license the server and client components together for as low as $100/user. It's packaged for companies of 1,000 seats or fewer. Is this the silver bullet to take out the entire MS stack — server, client, and Office? Or will IBM drop the ball yet again?"

timholman writes "After a series of burglaries and auto break-ins in my neighborhood, I'm thinking about adding some video security cameras to my home. To me, the object isn't just deterrence — if someone tries to break into my house or my car (parked on the street in front of my house), I'd like to provide a high-quality image of the perpetrator to the police. Inexpensive video surveillance systems, with their atrocious image quality, are nearly useless. The problem is being able to get good image quality at an affordable price. After some research, I've decided that using network cameras to FTP images to a central server over a HomePlug network is the best solution. However, good megapixel network cameras (e.g. Stardot or Axis cameras) can easily cost more than $1,000 each. Has any of you dealt with a similar situation? Is there any way to get reasonable quality (preferably open source) daytime and nighttime video surveillance equipment for home use without paying an arm and a leg? Is it better to go with a couple of expensive cameras, or a multitude of inexpensive cameras? Is paying two to three thousand dollars simply unavoidable if I want to monitor my front and back yards?"