Tuesday, July 22, 2014

iPhone back doors - Apple supplies the tools to hack your phone, and you'll never know.

While I believe the iPhone is more secure than android, that's sort of damming with faint praise.  Neither phone is secure.

Here's a recent article by a computer forensics guy about the API in iOS that let's people with the know how, log into your phone and download - well pretty much everything, including stuff you can't access yourself - all with out a password.

So how does apple protect this rather massive security hole in their system - which they put there, on purpose - they don't document it.  Yeah, that helped a lot.  

What we need is a new OS, open sourced, built with the following priorities.

Security
Portability
Cross Platform development tools
Size/Speed
Extensibility

I'm not sure if you could start with any existing OS, as none of them were designed with Security as the primary design criteria.

Each and every decision made needs to be evaluated for potential security issues.  There are hurdles, big ones.   I'm not sure it's possible given the linkages between existing processors, bluetooth, and wifi.  Starting with a new hardware platform would be better, but unless someone has a few spare billion laying around to start a new phone company....  You'd have to source a processor from your own manufacturing to be sure they didn't build back doors into the chip itself, and work your way up. No Chinese made processors, or hardware.  No NSA involvement - and how do you filter out the NSA spies from the development team?   Yeah, I'm not sure either.

Sadly, security ultimately relies on human beings an frankly - that's not a very trustworthy foundation to build anything on.


Note to self

Never hire anyone who went to school at the University of Wisconsin - Madison (probably any U of Wisconsin school)

Monday, July 21, 2014

Gaystapo strikes again

Looks like the Gaystapo is at it again.   Why is it that the perpetually offended insist that every one celebrate their life choices.   They're offended by a Christian College having an anti-gay stance - well no shit, and so what.  Let me see... constitution.... bill of rights... Ah there it is,  1st Amendment.

Congress shall make no law respecting an establishment of religion, or prohibition the free exercise thereof; ....
Okay, let's review how this works....

If congress can't do it because it's unconstitutional then guess what - neither can a state, or a county or a city.   Oh, and neither can the Gaystapo. 

Sorry folks, you are provided equal rights - not superior rights, you don't get to determine how religions run their institutions.  


Thursday, July 17, 2014

Screwed up terminology


Illegal immigration - no such thing.  If you're not here legally, it's not immigration, might be occupation, but it's not immigration.

Illegal alien - someone in the country illegally.  Specifically the crossed the border with out a visa  - and I don't mean the credit card, or their visa has expired.

It's impossible to grant immigration amnesty to someone who isn't a criminal.

I'm getting tired of the media switching terms around trying to make criminals sound good.  

U.S. Attempts to create a Zombie Army

I can't think of a single other reason why The US sends 14,000 draft notices to men born in 1800s

Oh -wait - complete and utter incompetence might explain it.


Wednesday, July 16, 2014

Arming Police with Cameras

It's a simple solution, and one early experiment seems to show some positive results.

Realto, CA has attached video cameras to it's officers in an attempt to reduce the unnecessary use of force and complaints associated with that abuse of power.  Abuse of power has reached epidemic proportions from the federal level all the way down to the locals.  It must stop.  

I would take the process one step further and  require all the footage to be available to the public 24/7 on the web.  I'd also look for a volunteer group to review the video from all personal interactions between officers and the public for say two years, then cut back to just interactions that resulted in anything more than a simple citation.  Why?  simple, I want the sheep to have some control over the wolves - we've seen what happens when the police police themselves - it's rarely justice for the public.

Privacy concerns need to be addressed before any video is made available to the general public. I would want the non-officer identity protected - blurred images, names redacted from the sound track.  The police, as a public employee don't get a claim on privacy when operating in the public.  The original versions must still be available.  I'd be will to say that only video covering contacts that resulted in a complaint by the public should make it to the web, just to save costs.


Thursday, July 10, 2014

Facebook Delete

Well I finally got around to deleting my Facebook account.

The reasons are legion - the most recent - is this crap  (From the PA Gun Blog - thanks Bitter)

One of the things that brought on my recent frustration with the issue is the Facebook scandal involving Kendall Jones, a young female hunter. She posted pictures from lawful hunts, and Facebook took them down for violating community standards. However, the “Kill Kendall Jones” page is allowed to remain because Facebook says that doesn’t violate any community standards. Now, a Democratic former Congressional candidate is offering$100,000 to anyone who will publish naked pictures of Kendall Jones simply because he doesn’t like that she hunts and wants to see her personally destroyed.

Oh, and this   The Facebook Listening Feature 







And This: 

A whole new invasion of privacy: Facebook can identify your face 97% of the time



And This:  

You Thought You Had Privacy Before the NSA Leak? What About Facebook?


And This:  

Why Graph Search Could Be Facebook's Largest Privacy Invasion Ever


And This:  

Iran Spies on U.S. Officials By Facebook Friending Them


And This:

And This:

Ok, I can go on and on and on and on and...............  But if you have't figured it out by now, then you either just don't care, or you think you're getting more from the experience than they are (their stock price would indicate you're probably wrong)  or maybe you're just... bhaaaah