Re: [Trisquel-users] Easy guide to secure and privacy respecting VPN
Supertramp One thing seems obvious to me: if there are no logs then there is nothing to hand the coppers when they come for it. For this very reason, any VPN should not keep any logs at all. They would avoid themselves a lot of trouble and offer their customers **real** privacy. But unfortunately I suspect (I'm not an optimist) very few of them do so. Which ones do so? I have no idea! I agree 90 percent with you on this one, the other part you forgot to add The region and country were is the VPN originating> for EXAMPLE: If the vpn service provider is from the USA he is subject to state and federal laws that we call "obstructive" but if you are in some other nation that is not subject to the USA laws, pretty much is Open and liberal, Is best you do your work and homework and learn the pro's and counters advantages. READ THE FINE PRINT before signing for it.
Re: [Trisquel-users] Why sudo when you can avoid sudo?
Que mucho sudo cuand uso el judo!
[Trisquel-users] http://www.netrunner.com/
Netrunner Last Update: 2017-01-03 01:28 UTC [Net runner] OS Type: Linux Based on: Debian, Kubuntu, Arch, Manjaro Origin: Germany Architecture: x86_64 Desktop: KDE Category: Beginners, Desktop, Live Medium Release Model: Fixed, Rolling Status: Active Popularity: 38 (297 hits per day) Netrunner is a KDEneon-based distribution featuring a highly customised KDE desktop with extra applications, multimedia codecs, Flash and Java plugins, and a unique look and feel. The modifications are designed to enhance the user-friendliness of the desktop environment while still preserving the freedom to tweak. A separate "Rolling" edition, based on Manjaro Linux, was launched in 2014. http://www.netrunner.com/ According to the website, they are a supporter of the FSF since 2016. Even do there is nothing to read on their web site about their type of GPL licensing. They are not listed on any of the FSF Operating software been sponsor neither, that is meeting the fsf criteria. I'm confuse with this one. I am approaching this one carefully, Any comments are welcome.
Re: [Trisquel-users] http://www.netrunner.com/
SuperTramp83 Agreed! it has a mix of proprietary software. For that reason,I decided not even loaded into any of my test drives. I'm still evaluating, analyzing and studying other FSF operating software, that are not dormant and still alive and well supported. Thanks Brother Any suggestions are welcome.
Re: [Trisquel-users] How could trisquel help in avoiding hacking and avoiding a disaster that could kill hundreds or thousands of innocent people
Personally, I got little respect towards hackers who threatens other peoples life for their own PERSONAL SELFFISH BULLSHIT BELIEVES.
[Trisquel-users] How could trisquel help in avoiding hacking and avoiding a disaster that could kill hundreds or thousands of innocent people
SF Muni hack contained. Next transit hack could be train wreck The San Francisco transit system avoided paying a ransom and restored its systems. But the hack shows US infrastructure is vulnerable. File it under "Bad, but could have been worse." The SF Municipal Transportation Agency fell victim to a hacking attack in which someone or some group tried to extort about $73,000 from the transit service in exchange for giving back control of its computer systems. Rather than pay ransom, the agency, called Muni by locals, took back control after three days. While Muni was restoring its systems, cybersecurity experts ended up hacking the transit hacker, poring through the servers and emails used by whoever is behind the attack and sharing the information with reporters. Hacks of public services and government systems are becoming routine. In 2015, a hack of the US Office of Personnel Management led to the theft of data of more than 22 million federal employees. During the countdown to the 2016 US election, hackers accessed data on 200,000 Illinois voters from the state's voter registration database. With the hack on Muni, it's clear attacks on government-run infrastructure are possible -- and the next hack on a transit agency could be much more dangerous than this one was. n fact, this might be the rare hack that doesn't turn into a PR disaster. That's because Muni, which runs San Francisco's bus, light rail and trolley car systems, had a backup of its system and no customer data was stolen. Muni lost money by giving away free rides over the weekend, but it didn't pay the 100 bitcoins in ransom demanded by a hacker or hackers calling themselves "Andy Saolis." Instead, Muni restored its systems with help from the agency's internal tech team. What's more, the hack wasn't as bad as the hacker claimed in an email sent to CNET and other news agencies, a Muni spokesman said. "Our customer payment systems were not hacked," Muni said in a statement Monday. "Also, despite media reports -- no data was accessed from any of our servers." Thomas Pore, director of IT and services at cybersecurity company Plixer, said the the attack could have been "far worse" if Muni hadn't been able to restore its systems from backup copies of its data. The attack also lost some of its oomph because it didn't directly affect transit service in San Francisco. Instead, the hacker locked out some Muni personnel from their workstation computers and left the agency without access to some of its systems over the weekend. The attack started Friday and plagued the agency until Sunday night. The so-called Saolis gave a different account of the attack, gloating about his ability to compromise Muni systems. The hacker claimed Monday to have stolen 30 gigabytes of Muni employee, customer and technical data, in addition to hacking payment kiosks. Saolis has been responding to questions sent to an email address registered with Yandex.com, a Russian email service. The email address was displayed by the attacker on Muni workstation screens. In broken English, Saolis detailed these supposed achievements and said he was showing the world how bad the cybersecurity at Muni is. "Welcome !" he wrote in an email. Saolis also provided a Bitcoin wallet in case anyone wanted to send a donation in gratitude for his hack. Muni is the bad guy here, Saolis seemed to insist. "They give Your Money and everyday Rich more! But they don't Pay for IT Security and using very old system's !" Saolis wrote in the email. The fact that Muni was able to restore its systems from backups suggests the agency is following the FBI's general recommendations for fighting this type of attack. Called ransomware, the attack often gets victims to click on malicious links, then downloads malicious software that scrambles up the victim's data. Then hackers demand a ransom to get it back. Saolis reportedly asked for 100 Bitcoin (about $73,000) in return for decrypting the agency's systems. Beware of ransomware Pay up or else: Ransomware is the hot hacking trend of 2016 Hackers sweet-talked their way into the CIA director's email account Hacking trust: Fears of election-tampering shake faith in US democracy Muni "never considered paying the ransom," the agency's statement said. Muni doesn't yet have an estimate on how much money it lost by giving away free rides over the weekend, said spokesman Paul Rose. He added that the ransomware used to target Muni spreads through links in pop-up ads. While Muni is looking smart right now for backing up its data and systems, the hacker, it seems has become the hacked. Security writers Brian Krebs of KrebsOnSecurity and Thomas Fox-Brewster of Forbes each reported Tuesday that a cybersecurity expert contacted them to say they'd accessed the servers of the person behind the Muni hack. The expert, who spoke with
Re: [Trisquel-users] How to change DNS?
Tramposo
A smart person will try to change the dns on the router settings but if the
router is locked out on that option, then you have to change on your
computer. In the other hand I use OpenNic to search for the closer geographic
location https://servers.opennicproject.org/
example: for my world location I will use either Singapore, honk Kong or
japan.
I will start pinging the dns from your location to study the latency then I
will start using tracer to study how many hops from your computer to the
final destination. For example if you ping with a latency of 57ms or 150ms is
a very close. but if your latency is lower in 200 ms or higher then you are
too far away. I always using opennic servers.
There is Ways to change your dns on your adsl. It works for me.
1- How to configure a PPPoE internet connection on a Debian box
Assuming your computer has a direct connection (with no router between it and
the DSL modem), the configuration is pretty straightforward.
Here’s the tutorial for beginners:
Login and elevate your permissions to ‘super user':
su
Make sure the resolvconf package is installed:
apt-get install resolvconf
Create the directory /usr/etc/ppp:
mkdir -p /usr/etc/ppp
Open your favorite editor (I’m using vi/vim here, so some commands are
specific to that editor, like ‘vi’ to use the editor and ‘ :wq’ to
write and close. Edit; You may find the Nano editor easier to use), create a
new file and enter as many OpenNIC nameserver IPs as you like in, your
nearest ones are here.
vi /usr/etc/ppp/resolv.conf.opennic
Enter the following: (The IPs shown here are German, you would probably want
the nearest servers to you).
nameserver 78.138.97.33
nameserver 178.63.26.172
nameserver 2a00:e10:1000:10:1586:0:33:53
rotate
Write and save the file
:wq
Note: The “rotate” option helps dividing the requests between the
nameservers listed.
Create the following little script:
vi /etc/ppp/ip-up.d/zzz_opennic_resolvconf
#!/bin/sh
# some providers insist on the 'usepeerdns' option, hence
# we reinitialize the resolver to opennic servers after
# all is done. this hook script will be run automatically by
# pppd after it successfully established a connection.
set -e
# before we start: if anything went wrong with pppd, the $PPP...
# variables will not exist.
test -n "$PPP_IFACE" || exit 0
# Logging: use /var/log/ppp-ipupdown.log if it exists (then it is open
# for writing, see ../ip-up). Else use syslog:
blather () {
local whereto
if [ -e /var/log/ppp-ipupdown.log ]; then
whereto="echo $0: $@"
else
whereto="logger -i -t $0 $@"
fi
eval $whereto
}
SYSTEM_RCONF="/etc/ppp/resolv.conf"
# the file we just created:
LOCAL_RCONF="/usr/etc/ppp/resolv.conf.opennic"
test -f $SYSTEM_RCONF || { blather "$SYSTEM_RCONF does not exist. Exiting.";
exit 0; }
test -f $LOCAL_RCONF || { blather "$LOCAL_RCONF does not exist. Exiting.";
exit 0; }
cat $LOCAL_RCONF | /sbin/resolvconf -a $PPP_IFACE
cp $LOCAL_RCONF $SYSTEM_RCONF
blather "Resolver configured for OpenNIC namespace."
Write and save the file
:wq
Make the script executable
chmod 0755 /etc/ppp/ip-up.d/zzz_opennic_resolvconf
Restart your network:
/etc/init.d/networking restart
And that’s it!
Enjoy!
Re: [Trisquel-users] First development alpha iso images of Trisquel 8.0 "Flidas"
I Thank You but I will rate you a minus because you took for ever to talk to us,Is about time we get this update Dammit i STILL want TO DIGITALLY commit feces and urine in your desk for been late...Thank You again..
Re: [Trisquel-users] Trisquel boycott by Libreboot
Super tramp stole my candy, then I will send more candy so he could sweeten hes life more often
Re: [Trisquel-users] How about we send a mail to the fsf, Trisquel could use some help.
sUPERTRAMP SAID: I think it is best to send it as a collective letter. What do you think? Well, brother here is my 2 centavos collectively in the matter. 1- send them a formal letter about your concerns 2-If that wont provoke a response, then send them a messenger pigeon, make sure the pigeon lands in Ruben shoulder and stains his shoulder with pigeon crap, for a notification notice of customers waiting for a honest reply. 3- If that wont work, send him a DIGITAL REPLY in the form of a FART, full of A pending response, for a crappy service. 4- Last resource will be, to pour in Rubens desk chair in his office, JUST Digital urine and feces for a crappy service. This just joking, but GIVE US A RESPONSE! that WILL BE MY TERMS!
Re: [Trisquel-users] firefox addons spy on you, what to do?
Ill have to disagree with the incredibleness, deficient and eloquent users. Best to block any HTTP, HTTPs or URL inside your routers. Is more effective than your web browser, even do I'm able to block in the browser such as Mozilla.
Re: [Trisquel-users] Test message, please ignore
Yes, I know my paradox is riding butt naked my Harley Davidson somewhere in Europe. Specially know that the British have gain their own independence from the euro... But I still use dollars SuperTramp83 said No and no, but I am speciuall .
Re: [Trisquel-users] Development updates
Distribution Release: Parabola GNU/Linux-libre 2016.07.27 Gents, I downloaded this version and updated into one of my desktops and honestly, it is real nice. Even do I use using Debian libre version, but compare to trisquel is way more updated,and still part of the FSF family available free OS. Notes from Distrowatch. André Fabian Silva Delgado has announced the release of a new version of Parabola GNU/Linux-libre, a distribution built from Arch Linux, but repackaged to include "libre" software only. The new release, version 2016.07.27, comes in three variants - "Main" (CLI-only installation medium), "MATE desktop" (a live DVD featuring the MATE desktop environment) and "TalkingParabola" (installation CD adapted for visually impaired users). >From the release announcement: "New install medium 2016.07.27. ChangeLog: fixed read and write permissions in $HOME folder; added instant messaging and video calling applications mate-extra, linphone, qtox; added octopi-cachecleaner, octopi-notifier and octopi-repoeditor since it is needed for octopi that is our powerful Pacman frontend by default; added lightdm as default display manager; added sudo by default to allow members of group wheel to execute any command" Parabola GNU/Linux-libre is an unofficial "libre" variant of Arch Linux. It aims to provide a fully free (as in freedom) distribution based on the packages of the Arch Linux project, with packages optimised for i686 and x86_64 processors. The goal is to give the users complete control over their systems with 100% "libre" software. Parabola GNU/Linux-libre is listed by the Free Software Foundation (FSF) as a fully free software distribution. Besides a standard installation CD image, the project also provides a live/rescue DVD image with MATE as the default desktop environment
Re: [Trisquel-users] Free and Open Google Hangouts/ Skype Alternative?
I like decentralized MESSAGING!
Re: [Trisquel-users] ¿Which email service do you recommend?
For one Peso Filipino someone could clean my As.er for free
Re: [Trisquel-users] When will Trisquel 8.0 (Flidas) release?
If I have to wait two years for a new release of Trisquel, I rather eat other flavors of yogurt Ice cream. This trisquel started to taste like an expired by date paico,,,
Re: [Trisquel-users] New security addons
I agree to certain extent, yet we need JavaScript for some functionality of programs. Not defending, Java has been around for a long time. Yet we have be careful with it. There is other methods to help modified the capture of Metadata.
Re: [Trisquel-users] Windows 7 and 8 users are starting to disable Windows Update entirely. Yikes.
I still use both versions, I did disable all the updates in both versions, because I don't like non of it. Still I prefer Debian.
Re: [Trisquel-users] forced to Cisco proprietary
Yeap, chickens and pigeons, they all die a miserable death of baldness..LOL
Re: [Trisquel-users] forced to Cisco proprietary
I agree with you, separate machines to keep the jobs secluded from each other,
Re: [Trisquel-users] forced to Cisco proprietary
SuperTramp83 you forgot to add my feather pen and my china ink... That is why any feather bird never like me at those days
Re: [Trisquel-users] forced to Cisco proprietary
MR 404 To be or not to be. Have you ever cut grass for weeks or months at the time for a 20 bucks? I did, To many times at young life. Have you ever painted a house and scrape iron fences from rust to be repainted again? Done that.. Did you ever had to shine shoes and boots for someone? been and done that, it pay for my meals. Did you ever got up everyday at 5:00 am to deliver 50 newspapers to customers,during rain,snow or shine? surely I never drop the schedule it pay for my needs at younger age. Did I ever flip burgers? Yes I have.It surely paid for my needs. Did you ever work at a gas station? while watching your friends party and get drunk? surely for many years. Good thing, I always had my own hard earn money, my own nice cloth and shoes. While others look like " someone crap on them" Did you ever finish High School? Surely I did, while working my butt off. Have you ever held a job that pays 60 to 70 thousand a year? I did and I'm proud about it. The skills that I learn are applicable in every way. Have you ever dream of retiring at early age? Surely, I did and I love my hard earn monthly retirement. I do see others get up early to work, while Im drinking coffee and read my own newspaper everyday. Do I have depend for survival on proprietary or not proprietary hardware and software? Partially, I understand the differences. I could make better choices more wiser, since I learn to recognize them. Still is not a perfect world. Computers are not humans, just stupid machines. Would I depend on this for the lively hood of my family? I personally wont, as long I got people and mouth to feed at home that I'm responsible for. Reality is other. So Quit intoxicating your body with fermented beer and wine, and take your happy soul to work or study! and yes, I did finished my college degree, got my certifications from Microsoft A+, Cisco Ccent and my ccna. Do I regret it? Nope I don't, again it help my me a lot with knowledge, improve my skills sets and decent paying Jobs. I forgot to add: Yes, Recently, for 3 years I build my own company, my own investment, I became my own boss, which I recently sold for a decent profit. Unfortunately, this former purchaser of the company I sold too, did not understood a few things; the definition of smart business practices, to work hard, able to lead and train your teams proficiently and make them technical savvy with knowledge and to be a team player. My former purchaser was not capable and could not handle the pressure, the budget, and honor the warranty agreements. The former purchaser of my previous owed company was a failure in disguised. Yes again I'm on my own venture. Failure is not an option.
Re: [Trisquel-users] Wacom tablets
Jabjabs I was wondering If I could use Krita oN older wacom tablets
Re: [Trisquel-users] New York Wants To Know: Have You Been Texting And Driving?
SuperTramp83 You are taking my trolling moment of glory away with your statement.
Re: [Trisquel-users] Who legally owns the Trisquel or 'Asociacion Trisquel'?
So my Italian leader shoes are machine made by robots.
Re: [Trisquel-users] Who legally owns the Trisquel or 'Asociacion Trisquel'?
The USD conversion sums too 9172.80 EUR. per year,in my opinion, what Europeans appreciate the most is their universal health care. The entitlement of UN-employment benefits In the USA varies from state,. Varies in amount per month, and it limited in duration. still we pay taxes on it. Normally, it will last 6 months, 235 dollars per week after that you are screw royally. Depending on the length of employment is a big factor. Yet medical is not free, you have to paid for it. So don't complain Europeans.
Re: [Trisquel-users] Wish list for Trisquel 8
I'm glad that I switch to Debian 8, everything works fine "out of the box", still withing the guidelines of FSF not BEEN posses.
Re: [Trisquel-users] Icecat language is not set into system language
Supertramp said: Here is the lnguage packs folder -> ftp://ftp.gnu.org/gnu/gnuzilla/38.7.1/langpacks/ I would like to get lnguage packs folder in. the. martian language. What is Inguage? Is that a developers new language? I could speak and write geringosa, you want to learn?
[Trisquel-users] Has anyone seen supertramp83
My dear friend My dear friend If you are in a different dimension, an unexplored constellation, or kidnap by E.T. Try drops us a line in the form of a text e-mail. In case you already had departed this world, then it has been a true friendship to know you. I'll see you in the after life my friend, Yet, is not my time for me. Your true friend Jodiendo
[Trisquel-users] Warning to all Abrowser user
To whom it my concern Recently, I just updated my trisquel Abrowser. Once download and during the reboot process of all my abrowser extensions: example :HTTPS Everywhere, Privacy Badger, and Ublock disappear. I had to download them and install them again. That never happen before. Everything is working fine for know on my Abrowser. I'm just sharing my experience to others. Thank You Jodiendo
Re: [Trisquel-users] Warning to all Abrowser user
Lembas Actually, I did checked it. Everything looks normal.
Re: [Trisquel-users] Need for compromise in Free software? With Richard Stallman
Would you compromise by using other software and OS? , but yet they are still part of the philosophy the FSF HAS Taught US. Dammed I will, as long it maintains the same scope! That is were the licensing comes on play.
Re: [Trisquel-users] Need for compromise in Free software? With Richard Stallman
I saw the video. Interesting point of views, the reality is very real. A lot of us, that have business to manage and making profitable the "compromise zone' is always a big resolution to play with.
Re: [Trisquel-users] [POLL] What is your preferred desktop environment of Trisquel 8 ?
Here is my favorite song for my desktop Songwriters KURT COBAIN Polly wants a cracker I think I should get off her first I think she wants some water To put out the blow torch It isn't me We have some seed Let me clip Your dirty wings Let me take a ride Don't cut yourself I want some help To please myself I've got some rope You have been told I promise you I have been true Let me take a ride Don't cut yourself I want some help To please myself Polly wants a cracker Maybe she would like some food She asks me to untie her A chase would be nice for a few It isn't me We have some seed Let me clip Your dirty wings Let me take a ride Don't cut yourself I want some help To please myself I've got some rope You have been told I promise you I have been true Let me take a ride Don't cut yourself I want some help To please myself Polly said Polly says her back hurts And she's just as bored as me She caught me off my guard It amazes me, the will of instinct It isn't me We have some seed Let me clip Your dirty wings Let me take a ride Don't cut yourself I want some help To please myself I've got some rope You have been told I promise you I have been true Let me take a ride Don't cut yourself I want some help To please myself
Re: [Trisquel-users] Creator of Debian committed suicide…or beign murdered?
Legimet That is Exactly what happen, to me few times; as I further my reading on Murdock forum, I realize, too many grammatical errors, Bulgar expressions, racial profiling, very incoherent. Someone else was writing for him and not himself. Spme people only read, what ever they want to hear and not the WHOLE STORY.
Re: [Trisquel-users] I present myself :D
You are Welcome and enjoy your freedom "Word of Advise" Don't donate any kind of money to no one, Yet! Neither to support hardware or software. Until you have try out the functionality of each free gnu/linux versions. Practice installing the programs at home, test all the FREE gnu/Linux versions available. Learn the difference of EVERY one, Then later you could donate the amount you desire, to who ever you DESIRE. There is nine free gnu/linux versions to test and learn from. All sponsor by FSF. Again enjoy.
Re: [Trisquel-users] Creator of Debian committed suicide…or beign murdered?
I suspect that he was murder by someone, who knew him well by his success and achievements, and by his wealth. I read the transcript and defiantly someone order his death, just trying to derail hes commitment to the community. They knew his weakness and did maximize it. Why not hire a private body guard? and let friends about hes fear? Hes death was intentional and not suicidal. It is so wrong and shady! Did he reach someone to help him out. Sad loss
Re: [Trisquel-users] Docky Fix or Alternative?
When I was a Corsario, my Spaniard prisoners walk the plank. When I was a Pirate, my Spaniard Prisoners they plunge to their deaths by docky their necks, while their severe heads rolled out to the sea. When I was a Buccaneer, my English prisoners we used to pin their ears to the wooden planks. I managed to find a solution to it, but for the life of me, I can not remember what was it.
Re: [Trisquel-users] Need for compromise in Free software? With Richard Stallman
SuperTramp83 It's not like the FSF is a church. I am certainly not a church fanatic nor am I an FSF fanatic, although I'd like it very much if Stallman baptized me within the high walls of an Emacs church X_x LOL, We share and have TOO MUCH IN COMMON.
Re: [Trisquel-users] Skylake Desktop Graphics Test Results
For laptops Compare both processors. I rather buy a laptop that uses a Broadwell chip that is equal or even better than Haswell chip for its ability to stay cool,battery life, etc etc. Yes, I prefer a desktop for gaming anytime, but a lot of games are playable that are using broadwell chips. compare both specs http://ark.intel.com/compare/80343,85212 reviews http://www.pcworld.com/article/2940489/the-truth-about-intels-broadwell-vs-haswell-cpu.html I hope you make your decision based on your needs and purpose.
Re: [Trisquel-users] beagleboardblack fully free software?
I don't care if you down vote me! But rest assure I'm still your sissy and dissident guy.. Debian rocks! Debian rocks! and it will always rock you! For those about to Rock with Debian! We salute you!!
Re: [Trisquel-users] beagleboardblack fully free software?
Super tramposo I don't care if you down vote me! But rest assure I'm still your sissy and dissident guy.. Debian rocks! Debian rocks! and it will always rock you! For those about to Rock with Debian! We salute you!!
Re: [Trisquel-users] Untransparent Bloatware
Lembas How could you welcome new trolls? They are always hungry, malnourished and suffering starvation. Not even The World Food Program want to to feed them. The solution is to feed them, to our old trolls that have gotten fat and lazy.
Re: [Trisquel-users] Its time to nominate your free software hero(s)!
Vote for me as the best "TROLL AWARDEE"
Re: [Trisquel-users] Feud between Chris & Francis Over! (I think)
That it is a wise advice, because Laptops in France speak frog!
Re: [Trisquel-users] Alternate proposal for FCC's (indirect) ban on free software : require the release of code
Chris I read their docker document that they submitted to the FCC and the sponsorship they gather is huge!
Re: [Trisquel-users] What can I do with a RYF router?
Chris said: You get the improvements/security fixes/etc from upstream such as bufferbloat that fixes latency issues (ie pages load faster) Chris You don't mind elaborating more on how this buffer-bloat latency is been fix on this router and how to avoid it?. Thank You
Re: [Trisquel-users] Excelent Write Up Of The FCC Story Saga
Update: Proposed Rule; Extension Of Comment Deadline. https://www.federalregister.gov/art...-time-for-comments-on-equipment-authorization A Proposed Rule by the Federal Communications Commission on 09/01/2015 In this document, the Federal Communications Commission's (Commission's) Office of Engineering and Technology Bureau (Bureau) extends the deadlines for interested parties to submit comments and reply comments in response to the Equipment Authorization and Electronic Labeling for Wireless Devices
Re: [Trisquel-users] The FCC is asking for comments on a proposal to to lock down computing devices (routers, PCs, phones)
Chris and everyone We could all take the Rebels view and see this as a power grab and the knee jerk reaction is "hands off my WiFi!" I don't believe the FCC is there to hinder innovation, at least I hope not.. this is not typically how the FCC works.. but I've seen them throw out straw-man proposals to engage the public, and this might be one of them. So if, and when, you do submit comments, and in the US, as a citizen, this is your right, give it some thought and consideration as these are taken into the next steps on how the FCC will move. Don't flame them, that just gets ignored... be reasonable and thoughtful in what you say. If anyone in interested in understand FCC Frequency Spectrum, and 5 GHz Unlicensed Spectrum (UNII) then follow the links. http://www.ntia.doc.gov/files/ntia/publications/2003-allochrt.pdf https://apps.fcc.gov/edocs_public/attachmatch/FCC-13-22A1.pdf https://www.fcc.gov/document/5-ghz-unlicensed-spectrum-unii It's a very good thing the FCC decided to extend the time to comment for another two months, because we really all need to study what the FCC is actually proposing to do. What I do know, in the past, having dealt with the FCC on a couple of projects, is that they are very receptive to input from the public - they're required to, it's in their charter - so raise a voice directly... it is your right to do so. if one feels strongly enough, hit up your Representative and Senators, and that makes even a better impression, they will take consideration here -- but again, but thoughtful in your comments and objections. With the Representative/Senators - I've always got a response back, not a form letter, but a signed response in Snail-Mail - I make my comments there, and yes, I do it often for issues I care about - just costs a stamp.. You want to read more in details take your time in doing so.
[Trisquel-users] How many Lesbian bisexuals, homosexuals and transensuals t are on the Trisquel forum?
Hello A few hours ago someone ask how many men and woman are part of the Trisquel's community? But someone forgot to add the other genders. Do you think Trisquel is equal to all genders? So. I decided to post it only in the Trisquel's main forum. Even do I believe, it should be asked in the troll hole. Let's see the answers. Of course, lets hear your input. Even do I consider myself a trisquel user.
Re: [Trisquel-users] returned to trisquel7
I could vouch for super tramp that he does not use any proprietary drivers. I would like someone to feed me this guy to me, I got my Southern deep fry pan ready to pinch his soft-side of a troll coming from my repertoire of a nasty troller.
Re: [Trisquel-users] The FSF's statement on Windows 10
Trying to stop someone from making an obsolete argument! SO WHAT HAPPENS Specially when they are already using the forum to advertize EXPENSIVE cheap skullcap items? just because they feel they got something special and FREE!! Get real people!
Re: [Trisquel-users] The FSF's statement on Windows 10
chaosesqueteam I probably would ZAP you for good! WITHOUT HESITATION AND REMORSE! Just for GP! Lets see who will be first, to the draw
Re: [Trisquel-users] FCC Rules might force Wifi router vendors to lockdown their firmware!
Chris Said: There is some other motivator behind this I suspect. I got to agree with you on this one.
Re: [Trisquel-users] FCC Rules might force Wifi router vendors to lockdown their firmware!
Agree, well that will be an issue for those 3rd party software for routers.
Re: [Trisquel-users] FCC Rules might force Wifi router vendors to lockdown their firmware!
chaosesqueteam I tell you what, I believe the person that is not free is you!
Re: [Trisquel-users] FCC Rules might force Wifi router vendors to lockdown their firmware!
Apparently some people ACT PARANOIAC AND draw conclusions, without BOTHERING RESEARCHING INTO THE MATTER. The FCC is only wanting to control VERY SPECIFIC items, like transmission power and frequency. The FCC has zero interest in any other aspect of the devices. The FCC ONLY cares about the settings that have any (direct) impact on the RF transmissions. Too Simple, read the FCC article.
Re: [Trisquel-users] 70% OFF ANY AMAZON ITEM
Could I release my stomach gas that is UNDER THE GPL license agreement for personal FLATULENCE?
Re: [Trisquel-users] A mail provider based in Bulgaria, using 100% open source software, Tor-friendly and no javascript friendly.
Since I read your posting, I did open an e-mail account with them. Matter fact, I'm looking and researching to setup a e-mail server for us. My colleagues agree and vote for it, All 14 employees voted unanimously. I'm committed to my employees because of their vote! My employees would like it to be functional in 6 months. Anymore suggestion are welcome.
Re: [Trisquel-users] What you think of LibreSSL?
Only a few days old, OpenSSL fork LibreSSL is declared “unsafe for Linux” I'm not an expert but testing a software program, before is release is essential in my books. Openssl nor libressl has not been tested sufficiently to me. So Ill stay away from it! Follow the links and read the articles. http://arstechnica.com/security/2014/07/only-a-few-days-old-openssl-fork-libressl-is-declared-unsafe-for-linux OpenSSL code beyond repair, claims creator of “LibreSSL” fork http://arstechnica.com/information-technology/2014/04/openssl-code-beyond-repair-claims-creator-of-libressl-fork/
Re: [Trisquel-users] free drivers for Broadcom Corporation BCM4313 802.11bgn Wireless Network Adapter [14e4:4727] (rev 01)
xyz123 Tihs is MY version of being nice to you. How do you like it? Sorry for my tone and attitude, I was in the middle of a business call. Did not realize my tone was a bit over board until I read my reply again. The conference call and the expected customer did not go to well. I refuse his offer, hes numbers did not match my numbers. All because they lack knowledge, when it comes to WiFi installation at a commercial level. My apologies again.
Re: [Trisquel-users] testet free software ring.cx encrypted audio, video calls?
I downloaded http://ring.cx/en. I will tested sometimes this week. I have to uploaded into my testing desktop for functionality. Ill post later my results later this week.
Re: [Trisquel-users] Plank docky
SuperTramp83 Yes captain! you dock like duck! but you never walk the plank!
Re: [Trisquel-users] will there be an updated 6.0 iso ?
I reinstall a new electron but my electrode rejected the firmware..
Re: [Trisquel-users] anyone using Trisquel for music production?
I use mucoaitis for my music player.
Re: [Trisquel-users] How do I access my computer from anywhere in the world from another computer?
Sorry for my off-sheet comments, it was a big typo on my behalf. After all, Yes, you could use your smartphone LED lights to shine light through the fiber strands to check for continuity. Excuse me again, but my current response is only related to your fiber optic response. Call me Master optical fiber Troll. Sorry again!
Re: [Trisquel-users] How do I access my computer from anywhere in the world from another computer?
Use your smartphone as a fiber optic tester
Re: [Trisquel-users] New Updates: Opensource/Free FPS standalone mod of Xonotic (ChaosEsque) version 42 etc.
Maybe it is a waste of time to download as an iso, yet I prefer to download on my favorite and desired archive format. Sorry, But I refuse totally the game as an ISO. This is just my opinion. Yes I played the ver 8 and not your version.
Re: [Trisquel-users] New Updates: Opensource/Free FPS standalone mod of Xonotic (ChaosEsque) version 42 etc.
chaosesqueteam I actually downloaded the game and I do enjoy it, very much. I liked the best when the server is fully loaded. Lots of actions. Thank You.
Re: [Trisquel-users] Share your Desktop!
all those desktops they should like runaway desktops made by prisoners.
Re: [Trisquel-users] Libreboot X200
Still you are a drunk GNU! Hobbits are rude little creatures.
Re: [Trisquel-users] Any freedom friendly 802.11ac routers or adapters?
Good luck waiting 10 years of WIFI martyrdom, I hope someones recommends you for a badge of extreme pain.. If you choose to stay with the Legacy WIFI, then I'll recommend you the one the penguin store sells. If you choose to venture from your crib of invisibility, to AC cryptonite, Ill recommend you, to start reading real carefully and choose what ac BANDWIDTH you want and what specs you are looking forward. There is a lot of good excellent AC routers in the 1700 and 1900 ac class, the problem is technology itself is fast developing and evolving when it comes to routers and budget is critical always.
Re: [Trisquel-users] What are (or could be) the dangers of wifi only devices?
Gnuser You ask: What are (or could be) the dangers of wifi only devices? Here is my 2.5 band penny question to you? What is WIFI? What is a secure WIFI connection? Dude! I'm sorry but you need to search for correct answers on the net, since everybody have different opinions or want to sound intelligent with their answers. In my opinion, all depends on what you are looking for and use..
Re: [Trisquel-users] Share your Desktop!
How do I copy and paste my desktop from Trisquel from my trisquel machine to the forum?
Re: [Trisquel-users] Tax Calculator
Avoid logging and registration mandates at all cost! There is hundreds of Free on-line calculators at your disposal on the web. There is thousand of free tutorials on-line, design to teach or refresh your math skills. If you need other calculator programs for your PC, Trisquel has a very good repositories on calculators. If you really need to install from the GNU repositories then visit http://directory.fsf.org/wiki/Main_Page and do a search for it.
Re: [Trisquel-users] sudo make you system less secure
sudo-, prefix meaning sweat: sudogram, sudokeratosis, sudorrhe
Re: [Trisquel-users] Evolution + GPG = me going nuts!
read the manual!
Re: [Trisquel-users] Evolution + GPG = me going nuts!
Again read the manual! to encrypt is not easy, neither to decrypt read the manual! and practice by sending your self a test encrypted e-mail to your other e-mail account that you probably own. Are you using trisquel 7 or 6,?
Re: [Trisquel-users] Spying software hidden deep within hard drives made by Western Digital, Seagate, Toshiba and other top manufacturers
davidnotcoulthard said: What would happen to them if you were the ruler, if there were no limits placed upon you as ruler? They'd be subjects to a monarch, namely me? If you was a dictator or some crazy religious cult trying to annihilate and decimated our friends, family and constitutional rights our way of life, then someone in a remote location probably will go the length to snipe you. Either with social network, politically or just decommission your existence from this planet!
Re: [Trisquel-users] Spying software hidden deep within hard drives made by Western Digital, Seagate, Toshiba and other top manufacturers
chaosesqueteam said Heather: How does it make you feel that posters here hate DARPA, the military, the NSA, the USA, etc? They hate your father. They may hate all of your family. Is it not like biting the hand that feeds one? What have you done for me lately type think, etc? What do you think should happen to these people? What would happen to them if you were the ruler, if there were no limits placed upon you as ruler? What are you trying to day?-
Re: [Trisquel-users] free drivers for Broadcom Corporation BCM4313 802.11bgn Wireless Network Adapter [14e4:4727] (rev 01)
Broadcom BCM4313 802.11bgn Wireless Network Adapter Wireless First of all, some of the original drivers of that modem are not compatible to GNU-LINUX libre programs. The close drivers are proprietary, but the other Open drivers are under the GPL license, for everyone to download and study. but those GPL drivers will sometime, disable some of the functionality of the modem itself. Because the firmware demand the proprietary drivers own by the manufactures. When I encounter issues like this, the first step is, What are the GPL firmwares supporting this product? I'll be polite to you, but you need to do your homework first AND RESEARCH THEIR WEB SITE for the GPL drivers THEY ARE USING! and take it from there. Wrong web site to teach others How to flash firmwares. Why don't you buy a compatible Mini WIFI card from Think Penguin? I had purchased 1 mini PCI for my laptop and still working without issues so far.
Re: [Trisquel-users] Spying software hidden deep within hard drives made by Western Digital, Seagate, Toshiba and other top manufacturers
more updates from the Electronic Frontier Foundation Russian Researchers Uncover Sophisticated NSA Malware Defending your rights in the digital world February 19, 2015 | By Eva Galperin and Cooper Quintin Russian Researchers Uncover Sophisticated NSA Malware Over the weekend Russian IT security vendor Kaspersky Lab released a report about a new family of malware dubbed The Equation Family. The software appears, from Kaspersky's description, to be some of the most advanced malware ever seen. It is composed of several different pieces of software, which Kaspersky Lab reports work together and have been infecting computer users around the world for over a decade. It appears that specific techniques and exploits developed by the Equation Group were later used by the authors of Stuxnet, Flame, and Regin. The report alleges that the malware has significant commonalities with other programs that have been attributed to Western intelligence agencies; Reuters subsequently released an article about the report in which an anonymous former NSA employee claims that the malware was directly developed by the NSA. Among the most interesting and advanced features of the malware is its ability to compromise and rewrite hard drive firmware. Reprogramming the hard drive itself in this way is a deeper level of compromise than infecting an operating system, and can let the malware re-install itself from a hidden sector of the hard drive even if the drive is securely wiped and reformatted and the OS is reinstalled from scratch. Conventional wisdom about reinstalling operating systems in response to suspected infections may therefore not be enough for the victims of attacks like Equation's. Antivirus companies regularly try to improve their products by doing malware research—trying to find and analyze new malicious software in the wild. They are in a very good position to see the entire landscape of malicious software and attacks, which today increasingly includes government-sponsored malware. Some observers found it significant that Kaspersky—a Russian firm—was the only company to release a report about the Equation Group, Kaspersky's shorthand name for the anonymous authors of the malware. Many antivirus companies are based in, or have important business interests in, countries that develop government malware, such as the Five Eyes (the U.S., United Kingdom, Australia, New Zealand, and Canada), and these companies may come under pressure to conceal government malware. Having antivirus companies, security companies, and malware researchers in a variety of different jurisdictions is valuable in that they can collaborate on their research and resist this sort of pressure. The hard drive firmware capabilities of the Equation Group malware and code names that are described in the report match up closely with NSA capabilities and code names previously disclosed in Der Spiegel. That lends credibility to the hypothesis that Equation Group is part of or affiliated with the NSA, which would mark one of the first times that programs or capabilities exposed by journalists were specifically found in the wild. This is a very exciting development; it will be interesting to see if researchers continue to succeed in publicly documenting samples of other nation-state malware and attack tools whose existence has been reported or conjectured. The report also mentions that the Equation Group used several different 0-day exploits to spread their malware. Some of these exploits were later used by Stuxnet. One of the exploits used was originally used in the 2009 Aurora attack; it was later repurposed by the Equation Group to be used against government officials in Afghanistan. This raises some interesting questions—is the NSA stockpiling 0-day vulnerabilities? Is it doing any reporting of 0-days to the affected companies? How does NSA decide whether or for how long to stockpile such knowledge? EFF filed a lawsuit last year demanding that the NSA answer these questions. Another important question was promptly raised in the press: given that the Equation Group's software can infect a broad range of hard drives, replacing their firmware with maliciously customized versions, did the hard drive companies collaborate with governments to develop this firmware? Based on the information we have now, it's hard to draw a reliable conclusion one way or the other. A Kaspersky researcher claimed that there is “no way that hard drive firmware could be reverse engineered using public information.” Yet at least two published projects from years past have demonstrated otherwise: a team of researchers in 2013 created a full-fledged hard drive firmware backdoor akin to that used by Equation Group, using only publicly available information and reverse engineering; and that same year an individual researcher achieved a comparable level of
Re: [Trisquel-users] Spying software hidden deep within hard drives made by Western Digital, Seagate, Toshiba and other top manufacturers
updates (Reuters) - The U.S. National Security Agency has figured out how to hide spying software deep within hard drives made by Western Digital, Seagate, Toshiba and other top manufacturers, giving the agency the means to eavesdrop on the majority of the world's computers, according to cyber researchers and former operatives. That long-sought and closely guarded ability was part of a cluster of spying programs discovered by Kaspersky Lab, the Moscow-based security software maker that has exposed a series of Western cyberespionage operations. Kaspersky said it found personal computers in 30 countries infected with one or more of the spying programs, with the most infections seen in Iran, followed by Russia, Pakistan, Afghanistan, China, Mali, Syria, Yemen and Algeria. The targets included government and military institutions, telecommunication companies, banks, energy companies, nuclear researchers, media, and Islamic activists, Kaspersky said. (reut.rs/1L5knm0) The firm declined to publicly name the country behind the spying campaign, but said it was closely linked to Stuxnet, the NSA-led cyberweapon that was used to attack Iran's uranium enrichment facility. The NSA is the agency responsible for gathering electronic intelligence on behalf of the United States. A former NSA employee told Reuters that Kaspersky's analysis was correct, and that people still in the intelligence agency valued these spying programs as highly as Stuxnet. Another former intelligence operative confirmed that the NSA had developed the prized technique of concealing spyware in hard drives, but said he did not know which spy efforts relied on it. NSA spokeswoman Vanee Vines declined to comment. Kaspersky published the technical details of its research on Monday, which should help infected institutions detect the spying programs, some of which trace back as far as 2001. The disclosure could further hurt the NSA's surveillance abilities, already damaged by massive leaks by former contractor Edward Snowden. Snowden's revelations have hurt the United States' relations with some allies and slowed the sales of U.S. technology products abroad. The exposure of these new spying tools could lead to greater backlash against Western technology, particularly in countries such as China, which is already drafting regulations that would require most bank technology suppliers to proffer copies of their software code for inspection. Peter Swire, one of five members of U.S. President Barack Obama's Review Group on Intelligence and Communications Technology, said the Kaspersky report showed that it is essential for the country to consider the possible impact on trade and diplomatic relations before deciding to use its knowledge of software flaws for intelligence gathering. There can be serious negative effects on other U.S. interests, Swire said. TECHNOLOGICAL BREAKTHROUGH According to Kaspersky, the spies made a technological breakthrough by figuring out how to lodge malicious software in the obscure code called firmware that launches every time a computer is turned on. Disk drive firmware is viewed by spies and cybersecurity experts as the second-most valuable real estate on a PC for a hacker, second only to the BIOS code invoked automatically as a computer boots up. The hardware will be able to infect the computer over and over, lead Kaspersky researcher Costin Raiu said in an interview. Though the leaders of the still-active espionage campaign could have taken control of thousands of PCs, giving them the ability to steal files or eavesdrop on anything they wanted, the spies were selective and only established full remote control over machines belonging to the most desirable foreign targets, according to Raiu. He said Kaspersky found only a few especially high-value computers with the hard-drive infections. Kaspersky's reconstructions of the spying programs show that they could work in disk drives sold by more than a dozen companies, comprising essentially the entire market. They include Western Digital Corp, Seagate Technology Plc, Toshiba Corp, IBM, Micron Technology Inc and Samsung Electronics Co Ltd. Western Digital, Seagate and Micron said they had no knowledge of these spying programs. Toshiba and Samsung declined to comment. IBM did not respond to requests for comment. GETTING THE SOURCE CODE Raiu said the authors of the spying programs must have had access to the proprietary source code that directs the actions of the hard drives. That code can serve as a roadmap to vulnerabilities, allowing those who study it to launch attacks much more easily. There is zero chance that someone could rewrite the [hard drive] operating system using public information, Raiu said. Concerns about access to source code flared after a series of high-profile cyberattacks on Google Inc and other U.S. companies in 2009
Re: [Trisquel-users] Spying software hidden deep within hard drives made by Western Digital, Seagate, Toshiba and other top manufacturers
old news but it is real. SPIEGEL ONLINE 12/29/2013 09:19 AM Shopping for Spy Gear Catalog Advertises NSA Toolbox By Jacob Appelbaum, Judith Horchert and Christian Stöcker After years of speculation that electronics can be accessed by intelligence agencies through a back door, an internal NSA catalog reveals that such methods already exist for numerous end-user devices. Editor's note: This article accompanies our main feature story on the NSA's Tailored Access Operations unit. You can read it here. When it comes to modern firewalls for corporate computer networks, the world's second largest network equipment manufacturer doesn't skimp on praising its own work. According to Juniper Networks' online PR copy, the company's products are ideal for protecting large companies and computing centers from unwanted access from outside. They claim the performance of the company's special computers is unmatched and their firewalls are the best-in-class. Despite these assurances, though, there is one attacker none of these products can fend off -- the United States' National Security Agency. Specialists at the intelligence organization succeeded years ago in penetrating the company's digital firewalls. A document viewed by SPIEGEL resembling a product catalog reveals that an NSA division called ANT has burrowed its way into nearly all the security architecture made by the major players in the industry -- including American global market leader Cisco and its Chinese competitor Huawei, but also producers of mass-market goods, such as US computer-maker Dell. A 50-Page Catalog These NSA agents, who specialize in secret back doors, are able to keep an eye on all levels of our digital lives -- from computing centers to individual computers, and from laptops to mobile phones. For nearly every lock, ANT seems to have a key in its toolbox. And no matter what walls companies erect, the NSA's specialists seem already to have gotten past them. This, at least, is the impression gained from flipping through the 50-page document. The list reads like a mail-order catalog, one from which other NSA employees can order technologies from the ANT division for tapping their targets' data. The catalog even lists the prices for these electronic break-in tools, with costs ranging from free to $250,000. In the case of Juniper, the name of this particular digital lock pick is FEEDTROUGH. This malware burrows into Juniper firewalls and makes it possible to smuggle other NSA programs into mainframe computers. Thanks to FEEDTROUGH, these implants can, by design, even survive across reboots and software upgrades. In this way, US government spies can secure themselves a permanent presence in computer networks. The catalog states that FEEDTROUGH has been deployed on many target platforms. Master Carpenters The specialists at ANT, which presumably stands for Advanced or Access Network Technology, could be described as master carpenters for the NSA's department for Tailored Access Operations (TAO). In cases where TAO's usual hacking and data-skimming methods don't suffice, ANT workers step in with their special tools, penetrating networking equipment, monitoring mobile phones and computers and diverting or even modifying data. Such implants, as they are referred to in NSA parlance, have played a considerable role in the intelligence agency's ability to establish a global covert network that operates alongside the Internet. Some of the equipment available is quite inexpensive. A rigged monitor cable that allows TAO personnel to see what is displayed on the targeted monitor, for example, is available for just $30. But an active GSM base station -- a tool that makes it possible to mimic a mobile phone tower and thus monitor cell phones -- costs a full $40,000. Computer bugging devices disguised as normal USB plugs, capable of sending and receiving data via radio undetected, are available in packs of 50 for over $1 million. 'Persistence' The ANT division doesn't just manufacture surveillance hardware. It also develops software for special tasks. The ANT developers have a clear preference for planting their malicious code in so-called BIOS, software located on a computer's motherboard that is the first thing to load when a computer is turned on. This has a number of valuable advantages: an infected PC or server appears to be functioning normally, so the infection remains invisible to virus protection and other security programs. And even if the hard drive of an infected computer has been completely erased and a new operating system is installed, the ANT malware can continue to function and ensures that new spyware can once again be loaded onto what is presumed to be a clean computer. The ANT developers call this Persistence and believe this approach has provided them with the possibility of permanent access. Another
Re: [Trisquel-users] Spying software hidden deep within hard drives made by Western Digital, Seagate, Toshiba and other top manufacturers
northernarcher Excellent question! Stay libre, be libre, eat libre, have sex with protection, respect the law. know your constitutional laws and what they stand for. Read libre, breath libre and run libre. I will tell you tomorrow, right know I'm beat!!
Re: [Trisquel-users] 3G modems coming integrated with Next Gen Intel Atom (for real this time)
tomlukeywood said: i hear that you can easily make a toy prosessor that would run at 100khz Tom If you want a toy processor make sure it barks like a Dog to chase your cat and Has an embedded spell check software for the word prosessor like you wrote.
Re: [Trisquel-users] Spying software hidden deep within hard drives made by Western Digital, Seagate, Toshiba and other top manufacturers
Very interesting to say: Todays modern computing software programs that are available or sold are use for forensic tools. Knowing this, I'm assuming they could be re-engineer. Example of hard drive forensic tools. EnCase Portable The Sleuth Kit Informer http://www.sleuthkit.org/informer/sleuthkit-informer-20.txt http://www.sleuthkit.org/informer http://sleuthkit.sourceforge.net/informer File System Forensic Analysis Hiding Data in Hard-Drive’s Service Areas http://www.recover.co.il/SA-cover/SA-cover.pdf http://www.vidstrom.net/stools/taft/ TAFT is an ATA (IDE) forensics tool that communicates directly with the ATA controller. It can retrieve various information about a hard disk, as well as look at and change the HPA and DCO settings. HDD Guru http://hddguru.com/ Hidden Disk Areas: HPA and DCO https://utica.edu/academic/institutes/ecii/publications/articles/EFE36584-D13F-2962-67BEB146864A2671.pdf Device configuration overlay https://en.wikipedia.org/wiki/Device_configuration_overlay\ Device configuration overlay (DCO) is a hidden area on many of today’s hard disk drives (HDDs). Usually when information is stored in either the DCO or host protected area (HPA), it is not accessible by the BIOS, OS, or the user. However, certain tools can be used to modify the HPA or DCO. The system uses the IDENTIFY_DEVICE command to determine the supported features of a given hard drive, but the DCO can report to this command that supported features are nonexistent or that the drive is smaller than it actually is. To determine the actual size and features of a disk, the DEVICE_CONFIGURATION_IDENTIFY command is used, and the output of this command can be compared to the output of IDENTIFY_DEVICE to see if a DCO is present on a given hard drive. Most major tools will remove the DCO in order to fully image a hard drive, using the DEVICE_CONFIGURATION_RESET command. This permanently alters the disk, unlike with the Host Protected Area (HPA), which can be temporarily removed for a power cycle https://en.wikipedia.org/wiki/Host_protected_area Host protected area From Wikipedia, the free encyclopedia The host protected area (also referred to as hidden protected area[1]) is an area of a hard drive that is not normally visible to an operating system (OS).
Re: [Trisquel-users] Join the Trisquel Cafe!
quantumgravity said: You got it wrong... this thread is NOT the trisquel cafe ;) Quantum YOU JUST GOT FISHED IN WITH MY FISHING LURE! I'm reeling you, WITH MY Master Troller FISHING POLE! LOL ANOTHER FAT FISH TO THE PAN!
Re: [Trisquel-users] Spying software hidden deep within hard drives made by Western Digital, Seagate, Toshiba and other top manufacturers
http://www.wired.com/2015/02/nsa-firmware-hacking/ ANOTHER ARTICLE How the NSA’s Firmware Hacking Works and Why It’s So Unsettling By Kim Zetter 02.22.15 One of the most shocking parts of the recently discovered spying network Equation Group is its mysterious module designed to reprogram or reflash a computer hard drive’s firmware with malicious code. The Kaspersky researchers who uncovered this said its ability to subvert hard drive firmware—the guts of any computer—“surpasses anything else” they had ever seen. The hacking tool, believed to be a product of the NSA, is significant because subverting the firmware gives the attackers God-like control of the system in a way that is stealthy and persistent even through software updates. The module, named “nls_933w.dll”, is the first of its kind found in the wild and is used with both the EquationDrug and GrayFish spy platforms Kaspersky uncovered. It also has another capability: to create invisible storage space on the hard drive to hide data stolen from the system so the attackers can retrieve it later. This lets spies like the Equation Group bypass disk encryption by secreting documents they want to seize in areas that don’t get encrypted. Kaspersky has so far uncovered 500 victims of the Equation Group, but only five of these had the firmware-flashing module on their systems. The flasher module is likely reserved for significant systems that present special surveillance challenges. Costin Raiu, director of Kaspersky’s Global Research and Analysis Team, believes these are high-value computers that are not connected to the internet and are protected with disk encryption. Here’s what we know about the firmware-flashing module. How It Works Hard drive disks have a controller, essentially a mini-computer, that includes a memory chip or flash ROM where the firmware code for operating the hard drive resides. When a machine is infected with EquationDrug or GrayFish, the firmware flasher module gets deposited onto the system and reaches out to a command server to obtain payload code that it then flashes to the firmware, replacing the existing firmware with a malicious one. The researchers uncovered two versions of the flasher module: one that appears to have been compiled in 2010 and is used with EquatinoDrug and one with a 2013 compilation date that is used with GrayFish. The Trojanized firmware lets attackers stay on the system even through software updates. If a victim, thinking his or her computer is infected, wipes the computer’s operating system and reinstalls it to eliminate any malicious code, the malicious firmware code remains untouched. It can then reach out to the command server to restore all of the other malicious components that got wiped from the system. Even if the firmware itself is updated with a new vendor release, the malicious firmware code may still persist because some firmware updates replace only parts of the firmware, meaning the malicious portions may not get overwritten with the update. The only solution for victims is to trash their hard drive and start over with a new one. The attack works because firmware was never designed with security in mind. Hard disk makers don’t cryptographically sign the firmware they install on drives the way software vendors do. Nor do hard drive disk designs have authentication built in to check for signed firmware. This makes it possible for someone to change the firmware. And firmware is the perfect place to conceal malware because antivirus scanners don’t examine it. There’s also no easy way for users to read the firmware and manually check if it’s been altered. The firmware flasher module can reprogram the firmware of more than a dozen different hard drive brands, including IBM, Seagate, Western Digital, and Toshiba. “You know how much effort it takes to land just one firmware for a hard drive? You need to know specifications, the CPU, the architecture of the firmware, how it works,” Raiu says. The Kaspersky researchers have called it “an astonishing technical accomplishment and is testament to the group’s abilities.” Once the firmware is replaced with the Trojanized version, the flasher module creates an API that can communicate with other malicious modules on the system and also access hidden sectors of the disk where the attackers want to conceal data they intend to steal. They hide this data in the so-called service area of the hard drive disk where the hard disk stores data needed for its internal operation. Hidden Storage Is the Holy Grail The revelation that the firmware hack helps store data the attackers want to steal didn’t get much play when the story broke last week, but it’s the most significant part of the hack. It also raises a number of questions about how exactly the attackers are pulling this off. Without an actual copy of the firmware
Re: [Trisquel-users] Join the Trisquel Cafe!
Once a wise man told me: Try to have sex, while standing up, at the same time eating a granola bar with a glass of milk. I did today, only in my dreams...
Re: [Trisquel-users] Amazon donates 0.5% of the price of your eligible AmazonSmile purchases to the charitable organization of your choice
Indeed that is about Amazon, but this forum should be under other news forum folder. Do we have that folder available? No we don't! By Reading the community forum guidelines, Some of guidelines could be read and interpret very differently. It is not specific and still vague with generalization. Thai is just my opinion, everyone else is entitled to their own. All I'm asking is a little bit of reorganization with More alternative forum folders. It will be good For any user to post properly in their proper forums, as need it. That will help, folder indexing and topic location, avoiding the over crowding of the main forum, it will help at the long run. Everything has its rightful place. Yet, If the admins of this Trisquel website, don't mind non-related Trisquel topics to be place anywhere? Then is there headache, resources, time and money. Specially, When downtime and maintenance schedules take longer from the normal. This matter needs to be address properly. Respectfully and don't scream at me. I'm all ears...
Re: [Trisquel-users] computer monitoring software
Indeed that is about Free Software compatibilities, but this forum should be under free software issues forum folder. Do we have that folder available? No we don't! By Reading the community forum guidelines, Some of guidelines could be read and interpret very differently. It is not specific and still vague with generalization. Thai is just my opinion, everyone else is entitled to their own. All I'm asking is a little bit of reorganization with More alternative forum folders. It will be good For any user to post properly in their proper forums, as need it. That will help, folder indexing and topic location, avoiding the over crowding of the main forum, it will help at the long run. Everything has its rightful place. Yet, If the admins of this Trisquel website, don't mind non-related Trisquel topics to be place anywhere? Then is there headache, resources, time and money. Specially, When downtime and maintenance schedules take longer from the normal. This matter needs to be address properly. Respectfully and don't scream at me. I'm all ears...
Re: [Trisquel-users] are there free software cameras with batteries?
tomlukeywood Indeed that is about Free Software, but this forum should be under free software issues forum folder. Do we have that folder available? No we don't! By Reading the community forum guidelines, Some of guidelines could be read and interpret very differently. It is not specific and still vague with generalization. All I'm asking is a little bit of reorganization with More alternative forum folders. For user to post their forums as need it. That will help folder indexing and topic location, avoiding the over crowding of the main forum, it will help at the long run. Everything has its rightful place. Yet, If the admins of this Trisquel website, don't mind non-related Trisquel topics? Then is there headache, resources, time and money. Specially, When downtime and maintenance schedules take longer from the normal. This matter needs to be address properly. Respectfully and don't scream at me. I'm all ears...
Re: [Trisquel-users] Watching vidoes on youtube
Indeed that is about Youtube and alternatives that are Free Software compatible, but this forum should be under Youtube forum folder. Do we have that folder available? No we don't! By Reading the community forum guidelines, Some of guidelines could be read and interpret very differently. It is not specific and still vague with generalization. Thai is just my opinion, everyone else is entitled to their own. All I'm asking is a little bit of reorganization with More alternative forum folders. It will be good For any user to post properly in their proper forums, as need it. That will help, folder indexing and topic location, avoiding the over crowding of the main forum, it will help at the long run. Everything has its rightful place. Yet, If the admins of this Trisquel website, don't mind non-related Trisquel topics to be place anywhere? Then is there headache, resources, time and money. Specially, When downtime and maintenance schedules take longer from the normal. This matter needs to be address properly. Respectfully and don't scream at me. I'm all ears...
Re: [Trisquel-users] OS X, iOS and Linux have more vulnerabilities than Windows!!!!!
Is this forum about Trisquel? or just everyone likes to post bull-crap, about non trisquel issues all the time? This post should be post it in the TROLL HOLE!
Re: [Trisquel-users] dr. gnu i have to heal my apple hw how?
Is this forum about Trisquel? or just everyone likes to post crap, about non trisquel issues all the time? This post should be post it in the TROLL HOLE!
Re: [Trisquel-users] are there free software cameras with batteries?
Is this forum about stupid cameras? or just everyone likes to post bullshit, about non trisquel issues all the time? This post should be post it in the TROLL HOLE!
Re: [Trisquel-users] computer monitoring software
Is this forum about Trisquel? or just everyone likes to post shit, about non trisquel issues all the time? This post should be post it in the TROLL HOLE!
Re: [Trisquel-users] A company tracked 530 million mobile phones in Asia with drones
Is this forum about stupid mobile phones or just everyone likes to post shit, about non trisquel issues all the time? This post should be post it in the TROLL HOLE!
Re: [Trisquel-users] replacement for adobe after effects?
quantumgravity Try using blender for the background effects, combine with pitvi it work for me. I did a small movie, ONLY A MINUTE MOVIE for my daughters birthday. READ CAREFULLY the link that Supertramp post it.
