Hahahahahahahaha
Couldn't have happened to a more deserving company.
I hope they got all the executives emails so we can find out who knew what about Horizon.
401 publicly visible posts • joined 26 Sep 2007
Even if you steal the TPM chip you wont be able to recreate the state of the PCR registers in another machine so it wont be able to decrypt the VMK, you'd have to steal the whole computer and then snik the key.
Use TPM and PIN the TPM enforces anti hammer so you get i think 30 attempts at the pin then it locks for an hour per guess and it wond decrypt the VMK until you get the PIN correct.
What do you think a TPM actually does?
Its basically just a grumpy oracle that might or might not decrypt some data for you depending on how it feels and you can change how it feels by hashing data into its PCR registers.
For TPM only bitlocker the VMK is encrypted by the TPM and stored in the bitlocker metadata, then when the machine boots the bootloader takes the encrypted VMK from the metadata and sends it to the TPM in a message saying "Decrypt Plz?" if the TPM is in a good mood (ie the PCR registers 7 and 11 have the right value) it will decrypt this and send the VMK back (which you can sniff with a logic analyser)
Its a bit more complex for TPM+PIN as you have to send the correct pin to the TPM before it will talk to you but its not some super secret deep state control chip™
Thats pretty much it, thats all it does it either does or doesn't decrypt some data if its happy or not.
Perhaps with a simple search and replace the same law they are proposing could be applied to the process of making legislation where those failing to anticipate every corner case of their legislation could be held liable for the damages.
That would, im sure, lead to the same improvements they are expecting this legislation to lead to.
I cant wait for the blazing performance of the 100MHz dual core 6805 they will come up with, perhaps they will see great sucess running the no doubt fantastic mobiles they will use for the Emergency Services Network handsets when they finally switch off airwave some time in the mid 2050's
Debian by design doesnt support non-free drivers or firmware out of the box you have to specifically enable that and that position will never ever change as its somewhat central to debians ethos.
Its quite likely that your network chip and gfx card require firmware and/or non free driver to operate.
You might want to look into installing the appropriate nonfree firmwares or at least whatever your network interface needs, then enableing the non-free repo and installing the rest.
You can also get unnofficial install media with the nonfree drivers builtin which might be easier for you.
https://cdimage.debian.org/cdimage/unofficial/non-free/cd-including-firmware/
Yeah how dare you *checks notes* clone a repo from github.
Dont you know everything on github is a private secret not meant to be cloned by the public.
Some of the responses are making me wonder how many people here are keeping private photos on imgur.com and are going to act all shocked pikachu when they find out everyone can see them.
I presume the "figure of 10,000 compromise attempts over five years was a conservative one" as they didnt count all the UK's operations or the ones were we were merely tampering with a linkedin profile in transit as that doesnt count.
https://www.theregister.com/2013/11/11/gchq_used_fake_linkedin_profiles_to_access_belgian_telco/
Doesn't this mean that their sales team are going to stop caring once a sale gets beyond ~9 million or so as they won't get any increase in comission beyond that?
So difficult to negotiate £27 million contracts will become super easy to negotiate £10 million contracts? granted possibly not quite so extreme.
In fairness the CoL havent exactly covered themselves in glory running Action Fraud:
https://www.thetimes.co.uk/article/action-fraud-investigation-victims-misled-and-mocked-as-police-fail-to-investigate-wlh8c6rs6?
But then aslong as its individuals being defrauded and not one of their paymasters in the financial services industry they aren't going to care.
Given that the whole world has been trained to click the piss off button on any popup (we use cookies/gdpr/use the app instead etc etc) that gets in the way like they were some kind of demented pigeon, so they can do what they were trying to do, even multiple clicks is not safe.
The other way to look at it is that ISP 's are businesses and will look to monetise any asset they control so they are probably selling that data, theres a reason they started squealing about mozilla adding DoH support https://www.theregister.com/2019/07/10/ispa_clears_mozilla/
I just googled this case and found an article on the whitchurch heralds website* that quoted the judge as saying:
"All parties need to take a long, hard look at themselves. I suspect if the residents of Whitchurch saw those emails, they would be deeply shocked."
Which seems to be in reference to:
"[Young] found herself the subject of criticism from some councillors, which affected her health," said Mr Hanratty. "Including 250 emails from two councillors in a short period of time.
As they seem to have been evidence in court can you FOI request the emails so the residents of Whitchurch, and us in the peanut gallery, can read them and be deeply shocked?
*https://www.whitchurchherald.co.uk/news/18312091.whitchurch-town-council-branded-toxic-clerk-fined-deleting-meeting-recording/
I cant think of a worse outcome than creating the conditions that would result in china making tiny ADS-B transmitters, pry one out of a crashed drone, prod the electronics a bit to make it report as being several jumbo jets vaguely near the current location, strap it to a seagull and head to your nearest airport to cause havok
An earlier date to consider, Tea smuggeling in the 18th century:
https://www.bbc.co.uk/news/business-38910968
And with figures like "More than 3,000 tonnes of tea was smuggled into Britain a year by the late 1700s, with just 2,000 tonnes imported legally." That is either a few dishonest people drinking a hell of alot of tea, or or alot of people drinking suspiciously cheap tea no questions asked.
I imagine there will be some market for this in the coming years once we crash out of the EU end up with wto tarrifs and massive customs queues, what sane persons going to bubble up their suplier who's smuggleing in their tea and insulin
I think a more measured headline would have been:
"Pissing tiny speck of radioactive material goes missing, government to spend $275 on replacement"
I have no idea of the cost of the plutonium one but if your in the US and want a 10µC Cesium¹³⁷ standard United Nuclear have got you covered for $145 + $130 if you want better calibration:
http://unitednuclear.com/index.php?main_page=product_info&cPath=2_5&products_id=819
Im seriously tempted by their Spinthariscopes though, but i have no idea if I can get one shipped to the UK:
http://unitednuclear.com/index.php?main_page=index&cPath=2_12
"Gets really nasty to work out why the code doesn't work as expected if a mix are used"
Dont you have a just-fixit script to replace all tabs with 4 spaces? it saves loads of aggro when copying and pasting a mish mash of stackoverflow answers, some with tabs and some with spaces. :P
Paul Hovnanian that was 9 months ago and was likely a leak from a medical isotope making lab, and was in the order of a few micro grams*, and given it has a half life of 8 days after 9 months there will be basically nothing left. It got plenty of sensationalist news at the time but the news didnt get across the incredible sensitivity of the detectors and the tiny amounts involved, It's like me farting in south wales and somebody detecting a whiff of that fart in scotland levels of sensitive.
*https://forums.theregister.co.uk/forum/2/2017/02/23/us_aircraft_iodine_131_leak/#c_3110845
Thats what 802.11p is going to be used for i believe, the roadworks will broadcast the restriction to cars.
https://en.wikipedia.org/wiki/IEEE_802.11p
In europe i believe its all in the ETSI ITS-G5 standard.
I presume america will have a different incompatible standard as is customary.
The raving idiots from the ukranian youtube channel Kreosan have a small scale demo of this with their staggeringly mindboggelingly dangerous magnetron on a stick:
https://www.youtube.com/watch?v=FIU8WZR9DNA
Kind of interesting to see but it made me wince even though im 2000 miles away at the other end of an internet connection.