You do realize that encryption is security through obscurity ... right? ActiveX is just a plugin system, just like XPCOM in firefox, but you know that too ... right?

Please don't quote shit that you utterly fail to understand. The only part you got right was that IE was buggy as shit. Of course, so is Firefox, but you ignore all the security fixes it has gotten. The only thing is does better, and that Microsoft sucks at is time to fix, which while extremely important, is only part of the equation.

+5 insightful ... the ignorance runs deep here.

So its pretty much useless then? I realize the point of what its doing, but its fairly trivial with software running at or near exit nodes to figure out who's doing what and who they are. I have no doubt the NSA is capable of doing it. Put me in an IRC channel with 20 people I know and have chatted with for some time, randomize their nicks, give me an hour and I can tell you who most of them are based on their conversation patterns alone, and I'm just observant, not software combing EVERYTHING you do.

Doesn't mean you shouldn't try to be anonymous, but just that its PRETTY FRAKING HARD to do if you're doing it in public view, regardless of how hard you try to hide.

Because

The answer to your question is the reason you're asking the question in the first place.

Instant stop? You can stick your finger into the blade at full speed and it will stop before it breaks the skin.

Both my table and chop saw have it, and I have all my digits in full working order, which is important for someone who uses their fingers all day long (Software engineer)

Because the insurance industry won't allow it.

Obamacare is nothing more than a free ride and bonuses for the insurance industry. It brought them more customers at higher rates than they had before. EVERYTHING about Obamacare favors insurance companies.

There is no way thats going to end without a massive shift in public perception. As long as people keep thinking Obamacare is a good idea, the insurance companies win.

An error code which is fairly unique and stands a good chance of returning the correct, related web pages if you search for it in any search engine.

Where do you get imap mail that doesn't offer some form of webmail? Even Exchange does.

Second, ruling out the most common user errors/issues is the FIRST thing you do. Other applications generally give different styles of error messages in their rejections, allowing you perhaps to figure it out easier.

When you hear hooves stampeding in America ... you look for horses, not zebras.

I hope you don't do desktop support or consider yourself a good debugger, you seem to have no experience.

Why would it piss the government off? All it does is distract you from what they are doing while you dance around like you've scored some big win.

Its no different than Obamas' peace prize. Its stupid and shows just how much of a sheep people like you are.

Yay! Prizes for everyone ... even thought they haven't done anything.

Congratulations, you're EXACTLY the kind of person that causes these sort of problems to go so long without anything being done about it because you're more concerned with a pat on the back than resolving the issue.

Where is the law that makes it illegal to spy on our allies?

Citation needed

No he doesn't. Nothing he did promoted any values associated with any current Nobel prizes. Perhaps you should learn what the Nobel prizes are about rather than just spewing 'give him an award' first. You can certainly argue that he deserves recognition if you want, but the Nobel prizes aren't things that just get thrown around ...

On that same note, nothing the Guardian nor WaPo did in this case makes them worthy of a Pulitzer. Someone else did all the work for them.

Oh shit, nevermind, I forgot that getting a Nobel prize now days is pretty meaningless, hence Obama has one, it just goes to show how meaningless they are with Barak Bush Jr getting one before he ... did the same thing as the guy everyone hated, but more so, exactly the opposite of what he said he was going to do.

No, I don't even approve of how Snowden went about doing what he did, but a Nobel prize is just insulting at this stage. (I do approve letting the American public know the NSA was spying on its own people, full stop)

That and memset in windows doesn't zero by default, as an optimization, until the page is hit (or some such pattern that I don't fully recall)

Theres a specific kernel API for zeroing memory because memset, even if called, may choose not to do anything. ZeroMemory is the generic way, SecureZeroMemory removes the 'option' to actually do the zeroing from the kernel and always does it.

Using memset to scrub memory on Windows, then not doing anything with it that requires the memory to actually be in active use ... the memory will never be written too.

Yes ... you can meta-audit ... how's OpenSSL working for you?

Open source is only useful if someone looks AND has the skills to understand it.

Just being open source doesn't mean dick and you fanboys really should get that through your head. You all stand around waxing on about how 'many eyes' see it ... assuming SOMEONE ELSE is looking ... and no one actually is because ... because ... 'its open source! anyone can look!!@$!@%!@%&'

When are you guys going to actually come back to reality. OSS is great for many reasons, but that doesn't magically make it better than any particular piece of non-OSS. Stop pretending it does.

The NSA doesn't target anymore than a fisherman targets every tuna.

They are doing a dragnet, if you become a person of interest ... THEN they have this big collection of data on you to use, but before that, you're just another random datapoint that they aren't expending resources on ... or wasting their precious exploits on.

If you find a back door, you publish it IMMEDIATELY, and let the NSA found out that you know about it by reading it on Google News.

Their security letter doesn't do much at that point.

What do you do, find the bug and then go ask them if you can publish it?

I don't think you understand whats going on. PBKDF has absolutely nothing to do with 'protecting' your password. Its done because passwords suck ass for encryption keys.

TrueCrypt is taking your password and turning it into something USEFUL as a key for encryption, not 'protecting it'.

Standard passwords are pathetically low on entropy, a full twitter or SMS post is still not 256 bits of useful entropy, and its unlikely your passwords are anywhere near that. I admit I don't know your password, but if you're only using the standard character set, I can safely say its pathetically low on entropy. You need full binary keys generated from good random sources, but you'll never remember that, will you? Imaging trying to type it somewhere.

What the hashing does is takes your password and contorts it into a larger key that is more useful than whatever pathetic string of text you throw at it. It does so in such a way that, like all hashing processes are supposed to, you can't go backwards because bits are discarded along the way.

2000 rounds is pretty low, but thats only a tiny small part of the encryption/decryption process. And your password (as I understand true crypt) really just projects are larger private key, which is what is actually used for encryption. Its been a while since I've looked at or used TrueCrypt, so I may be wrong about that last particular bit.

For a full description: http://en.wikipedia.org/wiki/P...

I do write encryption software for a living. And again, its not about protecting your password or making it harder to guess, its about turning your crappy password into a useful encryption key, nothing more.