Monday, September 18, 2006

Long, repetitive, and not much new.

http://www.nytimes.com/2006/09/18/technology/18hp.html?_r=1&oref=slogin

Hewlett Review Is Said to Detail Deeper Spying

By DAMON DARLIN September 18, 2006

A secret investigation of news leaks at Hewlett-Packard was more elaborate than previously reported, and almost from the start involved the illicit gathering of private phone records and direct surveillance of board members and journalists, according to people briefed on the company’s review of the operation.

The effort received some degree of supervision from three officials — Patricia C. Dunn, the company’s chairwoman, along with its general counsel and another staff attorney — but was quickly farmed out to a network of private investigative firms early last year, according to descriptions of the findings. It is still unclear how much they knew of the details.

Those briefed on the company’s review of the operation say detectives tried to plant software on at least one journalist’s computer that would enable messages to be traced, and also followed directors and possibly a journalist in an attempt to identify a leaker on the board.

... But the review reveals that the investigation by its detectives was notable for a lack of close supervision by company officials.

Those briefed on the internal review said that at various times, questions were raised about the legality of the methods used. They did not identify who raised the questions, when, or to whom they were addressed. But a crucial legal opinion, its origins previously undisclosed, was supplied by a Boston firm that shares an address and phone number with a detective firm on the case.

... Representing themselves as an anonymous tipster, the detectives e-mailed a document to a CNET reporter, according to those briefed on the review. The e-mail was embedded with software that was supposed to trace who the document was forwarded to. The software did not work, however, and the reporter never wrote any story based on the bogus document.

... At at least one point, the company’s lawyers sought a legal opinion. But it did not come from Hewlett-Packard’s own outside counsel, Larry W. Sonsini of Wilson Sonsini Goodrich & Rosati, an eminent Silicon Valley law firm.

Instead, the company asked one of its contractors, Security Outsourcing Solutions, which turned to a Boston lawyer, John Kiernan of Bonner Kiernan Trebach & Crociata, for the opinion. Mr. Kiernan’s office shares a Boston address and phone number with Security Outsourcing Solutions.



Not a bad article. If he has the phished passwords, he also has your email address. In other words, he's halfway to stealing your identity.

http://yro.slashdot.org/article.pl?sid=06/09/17/137215&from=rss

Analyzing 20,000 MySpace Passwords

Posted by CmdrTaco on Sunday September 17, @09:15AM from the thats-kinda-scary dept. Privacy Security

Rub3X writes "Author found 20 thousand MySpace passwords on a phishing site and did some tests on them. They were tested for strength, length and a number of other things. Also tested was the most popular password, and the most popular email service used when registering for myspace."



http://it.slashdot.org/article.pl?sid=06/09/17/1522236&from=rss

CryptoDox: Encyclopedia on Cryptography & Info

Posted by CmdrTaco on Sunday September 17, @11:41AM from the soemthing-to-learn-about dept. Security Encryption

xorgb writes "CryptoDox is an online encyclopedia on Cryptography and Information Security. The data is being made available under the GNU Free Documentation License. The site is powered by MediaWiki and in the few months that it has been online it has got some good articles on the basics of cryptography. It is currently looking out for contributors to enhance its database of articles. Check it out!"



http://www.bearware.dk/

TeamTalk

This is the home of the voice conferencing application TeamTalk which allows you to talk with your friends and colleagues using the internet or your local area network as audio carrier. TeamTalk is available for desktop PCs running Windows and for Windows-based Pocket PCs.

Unlike many other internet voice conferencing applications (or internet phones) TeamTalk allows any number of people to participate in a conversation and can use channels to organize conversations. Having numerous people in a conversation sets high demands to your network connection's capabilities but TeamTalk features a variety of configuration options which allows you to select the audio quality that best fit your connection speed.

The primary goal of TeamTalk is to provide a conversation with high quality sound and minimum transmission delay so that it becomes as close to real-time conversation as possible.



Hello, hello, hello, what's this then? Stay right where you are, I've got your mum on the line and she wants a few words with you!”

http://yro.slashdot.org/article.pl?sid=06/09/17/1656258&from=rss

CCTV Cameras In UK Get Loudspeakers

Posted by kdawson on Sunday September 17, @01:01PM from the 6079-smith-w dept. Privacy

An anonymous reader writes, "Big Brother is another step closer in the UK where the ever ubiquitous CCTV cameras are being fitted with loudspeakers so that camera operators who spot activities deemed 'anti-social' can berate the citizens below. In January 2004 there were more than 4,285,000 CCTV cameras in the UK (roughly 1 for every 4 households). No data about the number of CCTV cameras now in use in the UK is available."



You should probably run this as a matter of course...

http://www.bespacific.com/mt/archives/012515.html

September 17, 2006

Pathfinder on Locating a Lost Pension

The Pension Benefit Guaranty Corporation, in conjunction with the Pension Action Center at the Gerontology Institute, University of Massachusetts Boston, published this booklet in August 2002: Finding a Lost Pension (39 pages, PDF), which will assist you in planning and conducting a search for funds that are in your name, or funds which may be payable to you as a surviving spouse. Worth a look, and thanks to Michael Ravnitzky.



At a minimum, whoever loses will cry foul.

http://www.bespacific.com/mt/archives/012514.html

September 17, 2006

Maryland Voting Debacle and Wider Ramifications for the Nation

Following up on this September 13, 2006 posting, Security Analysis of the Diebold AccuVote-TS Voting Machine, the fallout from an array of problems experienced by more than ten thousand Maryland residents who tried to vote in the primaries on September 12, continues. As follows:



http://techdirt.com/articles/20060918/013609.shtml

Professor Tries To Sell His Lectures Online For Those Who Miss Class

from the one-idea dept

While it's become quite common these days for professors to put recordings of their lectures online for students who missed class, one professor at North Carolina State decided that if the students were going to miss class, they might as well pay. John points us to the story of Dr. Robert Schrag who has been told to stop selling his lectures online, while the new department dean decides if it's okay or not. The professor had uploaded the lectures to an independent music site that charges for downloads, though he claims he's not profiting from any downloads. What's most interesting, though, is the idea that the school administrators aren't sure they like the idea (though, it's not clear if they'd prefer him to give away the audio tracks, or not offer them at all).



Evidence gathering?

http://digg.com/linux_unix/See_Images_From_Nearby_Wifi_Traffic

See Images From Nearby Wifi Traffic!

bayonetblaha submitted by bayonetblaha 1 day 3 hours ago (via http://www.ex-parrot.com/~chris/driftnet/ )

Driftnet is a program which listens to network traffic and picks out images from TCP streams it observes. Fun to run on a host which sees lots of web traffic.


Evidence gathering – how would you subpoena this?

http://www.techcrunch.com/2006/09/17/the-carbonite-solution-to-online-backups/

The Carbonite Solution to Online Backups

Michael Arrington September 17 2006

We’ve been tracking online storage for nearly a year, and for good reason. As the PC becomes the center of our digital lives, having backups of email, photos, videos and music becomes increasingly important. Solutions like Foldershare and USB hard drives help with the problem, but what consumers really need is a dead simple service that backs up your entire hard drive to the Internet regularly.

Boston based Carbonite is the closest to perfection we’ve seen so far. It requires a simple installation, and users choose to back up their entire hard drive or just parts of it. Carbonite then begins the backup process, uploading 2 GB per day over broadband until finished. Files are encrypted, and there is no limit on total storage. If you delete a file, Carbonite keeps it stored for 30 days in case you change your mind. Carbonite monitors files [just like spyware! Bob] that are changed and backs them up right away.

And if you have a problem and need to get the data downloaded to a reformatted hard drive or new computer, Carbonite will download at up to 15GB per day over broadband until your system is restored.

Carbonite says that one in eight computers have some sort of data failure. The number one reason is user error, although crashes, fires, floods, theft and viruses all play a part as well. The 30 day cache solves the user-error problem and the fact that data is stored on the Internet solves the fire/flood/theft issue (where USB or network drives may also be affected).

Carbonite has a free 15 day trial (with no credit card required). The service costs $5 per month, with discounts if you pre-pay for a year or two.

The next best solution we’ve found is Mozy, which has a 60GB limit on total storage and costs $5 per month for 30 GB of storage or $10 per month for 60GB. The fact that Carbonite has no limit on total storage makes it significantly more attractive than Mozy.

The downside? It only works on Windows PCs (as does Mozy). Mac users are out of luck for now.

It’s clear that Google is thinking along the same lines with Platypus, their online storage solution. There are fewer details on Microsoft Live Drive, but we can expect a compelling offering from them as well. The holy grail for these services is to be built into PCs and offered to users out of the box. It’s a natural revenue stream for Dell, HP, etc., and they could either build it themselves of partner with a company like Carbonite.

Carbonite has received $7 million in venture capital. Until May 2006 they were focused on photo storage, and launched the current service in May.



I only think in One-D, but perhaps some of you could use this?

http://digg.com/design/3D_animation_tutorials_galore

3D animation tutorials galore

bonlebon submitted by bonlebon 17 hours 13 minutes ago (via http://www.3dtotal.com/ )

Learn at our own pace with these superb tutorials.

No comments: