Imagine trying to secure a computer with a small but powerful parasitic server on its motherboard; a bloodsucker that can’t be turned off and has no documentation; you can’t login, patch, or fix problems on it; server-based defensive, audit, or anti-malware software can’t be used. Its design is secret and implementation old. It’s also the perfect spy platform: nearly invisible to its host, it can fully control the computer’s hardware and software, and it was designed for remote control and monitoring.
And that’s the good news.
stuff, just stuff
brought by linus n / ln4711 (twitter, pro) / LinusNordberg (twitter, personal)
-
2013-02-01
-
2012-09-03
Sorry, I just doxed you
If i had your contact info, say your first and last name, a phone number or two and an email address, would you like me to hand that out to someone else? Depends on to whom, I’d say. To a common friend? I guess maybe. If that common friend of ours asks me I might just give her your data. It depends on the situation and on our relationship.
But would you like me to hand it out to a company?
To a company in a jurisdiction you or I don’t know anything about?
To a company in the business of collecting data?
To the company presumably already in possession of the largest collection of personal data?
Probably not but that’s what just happened. When I created a Google account from my phone in order to install an application, I gave your contact info to Google.
Except they didn’t ask first.
-
2011-12-05
The FreeBSD subversion port
I use git whenever I can but sometimes there are projects held in subversion that I need to access.
I recently built the devel/subversion FreeBSD port. To my surprise I was unable to check out an https repo. Subversion was unhappy and said
svn: E170000: Unrecognized URL scheme for
Who would have guessed that the option ‘SERF’ is critical for being able to checkout an http/https project?
SERF=on "WebDAV/Delta-V repo access module (serf)"
I didn’t. It might work with the 'NEON’ option too, I never checked.
Are there other options I could have used instead?
-
2011-08-05
And then let’s go ban Google Plus! They mean no good, I think:
Why else arrive as Google “Plus”, when they’re named “Google Inc”?
— https://plus.google.com/116392903945162228075/posts/gfqhESCo8Dv by @nickm_tor
-
2011-07-12
If @foo exists, Perl takes a good guess about [bar] , and is almost always right.
—
http://perldoc.perl.org/perldata.html#Scalar-value-constructors
Why I avoid Perl?
-
2011-03-31
-
2011-03-14
[swe] Töllborg anmäler Sverige för fördragsbrott
Efter att Töllborgs anmälan av VISA och Mastercard tidigare i år blivit avfärdade av Finansinspektionen och Konkurrensverket anmäler nu Töllborg Sverige till EU-kommissionen för fördragsbrott.
Det handlar om VISAs och Mastercards vägran att vidarebefordra betalningar till WikiLeaks och Sunshine Press.
Töllborg yrkar att Kommissionen ålägger Sverige att se till att Konkurrensverket och Finansinspektionen i sin tur ålägger VISA och Mastercard att avbryta sanktionerna mot Wikileaks och Sunshine Press.
-
2011-02-10
[swe] Swedish government puts 150 MSEK into digital democracy
There’ll be a meeting in Stockholm 2011-03-10. We should email ideas for the meeting within two weeks from now (no later than 2011-02-24).
-
2011-02-02
[swe] VISA och Mastercard anmälda till FI och KV
Dennis Töllborg, professor i rättsvetenskap, anmäler VISA och Mastercard till Finansinspektionen och Konkurrensverket. I och med att de i slutet av 2010 stoppade betalningarna till WikiLeaks följer de enligt Töllborg inte lagen om insättningsgaranti. Genom missbruk av sin dominerande ställning bryter de även mot lagen om betaltjänster.
Töllborg kräver att Konkurrensverket “omedelbart ålägger VISA samt Mastercard att upphöra med sin spärr av betalningar till Wikileaks” och att Finansinspektionen “beslutar ålägga VISA och Mastercard högsta möjliga straffavgift”.
-
2011-01-17
We are the generation that bought more shoes and we got what we deserve