Forgot your password?
typodupeerror

+ - Quick and dirty redaction->

Submitted by spge
spge (783687) writes "Want to redact your documents effectively (unlike some recent #failures)? You can follow the NSA's advice (linked to by this article) or you can save time and energy by using the technique described by Simon Edwards.

Basically it involves creating a PDF and then reprinting it to another PDF while flattening the document into an image. This is essentially the same as printing the document out and then re-scanning it. Only with better image quality and a lot of time savings!"

Link to Original Source
Desktops (Apple)

+ - Mac OS X Security (2002)->

Submitted by
spge
spge writes "Ten years ago I wrote an article about OS X security for Mac User magazine.

The article noted that Mac users were now using a new operating system that was far more likely to face threats such as malware.

In light of the recent Flashback threat, and the resultant interest in Mac threats, I've re-posted it. Most of it is still relevant today."

Link to Original Source
Piracy

+ - Pirate or Puppet->

Submitted by
spge
spge writes "Hacker groups, illegal software distributors and even those who access cable TV services with stolen codes could be being manipulated by big business.

Ironic, considering how those who undertake such activities often consider themselves freer than those who do not."

Link to Original Source
Security

+ - Murdoch faces allegations of sabotage-> 1

Submitted by
Presto Vivace
Presto Vivace writes "Neil Chenoweth, of the Australian Financial Review, reports that the BBC program Panorama is making new allegations against News Corp of serious misconduct. This time it involves the NDS division of News Corp, which makes conditional access cards for pay TV. It seems that NDS also ran a sabotage operation, hiring pirates to crack the cards of rival companies and posting the code on The House of Ill Compute (thoic.com), a web site hosted by NDS.

ITV Digital collapsed in March 2002 with losses of more than £1 billion, overwhelmed by mass piracy, as well as technical restrictions and expensive sports contracts. Its collapse left Murdoch-controlled BSkyB the dominant pay TV provider in the UK.

Chenoweth reports that James Murdoch has been an advocate for tougher penalties for pirates, “These are property rights, these are basic property rights,” he said. “There is no difference from going into a store and stealing a packet of Pringles or a handbag, and stealing something online. Right?""
Link to Original Source

+ - Fake anti-virus software hacks PCs for cash->

Submitted by spge
spge (783687) writes "I've spent the last couple of months locating malicious websites and testing anti-virus software, and one thing that's very clear is that fake anti-virus programs are all over the place. The ones we've seen tend to install themselves automatically, as a 'drive-by download', although it's perfectly possible to download and install them directly from certain websites intentionally.

When Symantec announced that it has identified 250 different types we thought it might be useful to write a news story about it and to use video footage taken in our virus lab to illustrate what these fake anti-virus programs look like. As you'll see if you click through to the story, they are pretty convincing!"

Link to Original Source

Comment: Re:IWF *do* have a "licence" (Score 1) 203

by spge (#27250701) Attached to: UK Gov. Clueless About Own Internet Blacklist
I'm not sure I understand what "quasi-statutory" means. I think that the whole point about this debate is that the main players are either clueless or toothless. The ACPO (http://www.acpo.police.uk/about.html) is, as you say, not a governmental organisation. The fact that it has drafted a memo that states, "We encourage Chief Crown Prosecutors and Chief Officers of Police to adopt this Memorandum" surely indicates that things are still not settled properly.
So, imagine you are working in a job that involves viewing child abuse images (if you can). Do you feel immune from prosecution because a private company claiming to represent the police has written a document encouraging the CPS to recognise your role as a useful tool in the fight against kiddie porn?
There is no agreement from the CPS in this matter. There is no license issues to the IWF, as far as anyone can make out. They are not official delegates, as you suggest.
The Internet

+ - UK Gov clueless about own internet blacklist

Submitted by
spge
spge writes "Computer Shopper magazine has interviewed the UK Home Office about its relationship with the Internet Watch Foundation and discovered that the governmnent doesn't actually know what the IWF does, although it still plans to force UK ISPs to subscribe to the IWF's blacklist.

The main story makes for interesting reading, but the best (i.e. funniest) bit is the full transcript of the interview.

If you don't want to RTFA, know that the IWF investigates suspected child porn websites and adds any it finds to a list that ISPs can use to block these sites. Also know that uk.gov wants ISPs to use this list. However, the ITW is not an official government organisation, does not appear to have legal permission to view child pornography and quite possibly is breaking the law by doing so."

Comment: Re:FON and Co (Score 1) 432

by spge (#21997368) Attached to: Schneier Says 'Steal this Wi-Fi'
All this FON sharing is well and good, but it's easy to forget that many (most?) UK ADSL broadband deals that offer 'unlimited' quantities of data throughput actually employ a 'fair use' policy of nGB. While most normal users will rarely, if ever, exceed a few GB/month themselves, they are far more likely to run into problems if they open their connection to others - even if the other users are not using P2P etc.

In addition to that, the idea of allowing other people to connect to the internet through your gateway is bonkers for a number of reasons. Most consumer devices won't hold extensive logs so you don't know what your 'users' are doing or where they have come from. The forensics team won't be able to tell either. So even if you don't get prosecuted, you could be partially (morally) responsible for enabling a crime. And even if a court won't find you guilty for someone else's abuse using your connection, imagine the stress and inconvenience of going through even the initial stages of the legal process.

Imagine also the stigma of being associated with certain online crimes (hacking, child porn, credit card fraud), even if you are not charged or if you are found not guilty. Will your girlfriend/wife/colleagues look at you in the same light again? "No smoke without fire," and other unfair thoughts...

Allowing random people to connect to your network also increases the chances of them knowingly or unknowingly introducing malware to your systems. Worms bouncing around behind your firewall is not a great situation, even if you use a good desktop AV product on your PCs (and Macs to a lesser degree). Yes, you could set up a DMZ - but honestly, why bother with the hassle just to give others free and unfettered access to the connection *you* pay for?

Compare this list of inconveniences to taking the short and basic security steps of enabling WPA, hiding the SSID (I know the latter is a fairly pointless defense against a knowledgable attacker) and not handing out passphrases to your neighbours. It's a no brainer and, in terms of risk/cost, very effective.

I appreciate that sharing can be a wholesome thing, but it does not always make sense.

The key elements in human thinking are not numbers but labels of fuzzy sets. -- L. Zadeh

Working...