* Posts by Thatguyfromthatforum

32 publicly visible posts • joined 4 Jul 2016

Domain name resolution is a Tor attack vector, but don't worry


Bit of FUD really

Most experienced Tor users know to not stray outside of traffic based solely within the network itself, hidden sites in other words. Also https everywhere included in the tails distro should mitigate this.

Not really much of an attack if you're using Tor to not access the deep web, I don't know many Tor users who use Tor for regular internet use, not to mention anything running cloudflare won't connnect your Tor instance to the website of your choice.

However, it's pretty easy to identify Tor nodes on a network based on the packet size, and the size of packets in certain sequences. I studied Tor for my dissertation and was able to identify Tor nodes within otherwise normal networks with above 90% accuracy.

Ladies in tech, have you considered not letting us know you're female?


Re: supply issue

So she must of been a very highly knowledgeable / skilled applicant or you just hired her because "female"? Genuinely interested because I see amazing male cs grads getting the shaft for female grads who don't have the basic level of knowledge to do the jobs they apply for.

Tor veteran Lucky Green exits, torpedos critical 'Tonga' node and relays


So, MIT (with their close ties to the government) announce a "newer and safer" Tor-like network while the Tor network slowly gets destroyed from within. I'm thinking jail time all round for developers or maybe by secret order they're having to comply in some way. Interesting to say the least but as a heavy Tor user I wait with baited breath how this plays out.

It's not our fault we don't hire black people, says Facebook


As a recent cs grad

We had several girls join and leave the course (for free) which was paid for by taxpayers to "get women into stem". Being discriminated against for being male really fucked me off quite honestly. To add insult to injury the 3 black students in my year and the year below got a myriad of freebies, because "reasons". Not to mention they were accepted into this very prestigious British uni without meeting the entrance criteria. Meaning that I had worked extra hard to get a place on a degree course that I could of waltzed into if my skin was a different colour.

Quite ironically I'm mixed race, but being male was too much of a burden apparently when it came to the selection process. I can also say that both girls who graduated recently I our class both relied on everyone to do their work, with one buying her final year project online. Everyone knew but the administration of this uni were too scared to take action, because "sexist".

I got a 2:1, one of the girls also got a 2:1.

Who do you think tech firms will hire, irrespective of talent?

Coup-Tube: Turkey blocks social networks amid military takeover


Re: if you can read this you are probably one of the lucky ones

Furthermore, how would you of felt growing up in the "communist" Ukraine during the Holodomor? Or the purges in other parts of Eastern Europe. Last time I checked communism is an atheist ideology. Maybe the problem is despotic leaders, who twist whatever ideology, whether that be religion or political writing to their own ends. Genuinely it's people like you who are the reason I left the west. Happy to hide from their faux moral high ground and supremacist ideology "we are all so much better here because of x". You cite democracy being a staple of the west, if you really believe that I'll buy a bag of whatever you're smoking. Or maybe you can show me when there was a referendum for the invasion of Iraq, the bailing out the bankers or the legal processes the elites face when exposed in the wakes of scandals like dolphin square. Get over yourself.


Re: if you can read this you are probably one of the lucky ones

Indonesia , Malaysia .. Lots of beautiful places with beautiful people. I've lived in majority Muslim countries for years and what did I find? Hospitable people, nice food and no degenerates filling the streets every weekend. Each to their own I suppose but tarring everyone with x religion is ridiculous. I spent time in the Bible Belt in the US and felt far more curtailed in regards to my own personal freedom than in Muslim countries.

UK gov says new Home Sec will have powers to ban end-to-end encryption


Re: An apt comparison

doubt these pluggable transports can make tor information look perfectly like other packets.>> have you read the technical specifications? You're correct of course that whoever owns the physical network owns the data, but short of cutting off the internet there's little they can do against enthusiasts who fight for freedom.


An apt comparison

In mainland China they banned direct access to the tor network. So the fine folks at tor developed and deployed bridges, then the Chinese gov got all the public accessed addresses of the bridges and blocked them. Tor now allows private bridges. The government blocked traffic that looked like tor traffic, so the tor project brought out "plug able transports" to make the traffic look like Skype data or whatever you wanted and developed obfsproxy to disguise the fact you were connecting to a bridge.

What can we learn from this? Necessity is the mother of invention, and while there are technically skilled people, there will be people who work for freedom. You can take option a, but great minds will have options bcdef in the bag already.

Glad I left the UK, looks like it's turning into a gulag.

Google's Nexii stand tall among Android's insecure swill


"Users often keep their mobile phones for multiple years, so making the right security choice when buying sets you up to be protected against new threats for years to come." Which is why after 7 years of android I joined the fruity crowd. Customise whatever you like on android, but for me security trumps any cosmetic benefits.

Alleged Aussie plum plucker pleads guilty to motel tissue swipe


What the fuck did I just read?


( )( )


( )()


Android malware blocks bank calls


Android malware

Not a week passes without another dollop of fuckery affecting those poor android folks.

You really do want to use biometrics for payments, beam banks


Semi related: has anyone seen those "cashless and proud" visa ads all over the place? Why the fuck would you be proud? I'm all for cash thanks, it means for example if I want to buy political book a from book shop b and not be put into category c, I can.

Microsoft wins landmark Irish data slurp warrant case against the US


Why don't they just call their partners? The nsa of course :)

Congrats, Linux users – you're finally officially alpha males... on Skype


Jitsi + bleep

Surprised no one has mentioned bit torrent bleep, this works quite nicely under wine for file sharing and voice calls. Also jitsi which can be used for video calls and is cross platform? Failing that viber does work under wine too, it just means having the Chinese spy on you vs the 5 eyes.

Meet Riffle, the next-gen anonymity network that hopes to trounce Tor


Re: Given That TOR Was Cracked Years Ago.....

Except the weaknesses have been patched so efficiently that the TLAs are more interested in browser exploits as opposed to trying to beat tor itself.


Yes and no I imagine. Similar attacks (like tagging attacks) won't work (allegedly) due to the integrity checks, but also if it works like other mix nets, it won't send individual traffic to nodes, it'll send packages of multiple packets, they may also use fake delays like i2p and tor.


This sounds like a mix of tor and i2p which distributes authentication based on distributed hash tables, it also means that all users of the network must also function as nodes. I'll stick to tor thanks, but sounds promising.

I'd like to see el reg accessible via tor or at least use https at some point, but that's a side note.

European Commission straps on Privacy Shield


Tor is now mandatory for 99% of my web experience, precisely because the TLAs can't be trusted.

While we are on the subject it's a shame El Reg still doesn't have https by default or the ability to use tor to access it.

You can buy Windows 10 Enterprise E3 access for the price of a coffee


How long until they start charging by bit of data accessed from their "cloud service"?

Google aims to train two million Indian Android devs by 2018


Yet in Europe students are still advised (luckily not in my case) that learning to program is a worth while task which you should pay 9k fees for three years. Zero point when companies are outsourcing in such a major way. Quantity and quality doesn't happen, and having worked with many Indians in many projects I can say I wish Google all the best.

Kim Dotcom pregnant with Bitcoin's mutant offspring


As someone with an entrepreneur spirit, a love of tech and someone who had his life ripped apart and lost his family over less than legit reasons, I hope to see this succeed for him.

FBI won't jail future US president over private email server


Fine, ignore the emails but what about Benghazi?

Get ready for mandatory porn site age checks, Brits. You read that right


I'm not a fan of porn myself, but if you like a knuckle tussle over some that's your business.

With that out of the way, imagine if there's a freephone number for when the filter doesn't work and it's potentially one of those hideous make a selection with your voice services.

"Did you say "just give me some of that Bangkok anal glory? To confirm say: glory, category:Asian"


Side note: I'd believe they were trying to protect kids if half of the establishment weren't elbow deep in them in places like dolphin square.


Re: That could be circumvented by simply lying.

This comment made my day.

A 21 year old Brazilian stripper and a bottle of ky is in the mail .

5 years, 2,300 data breaches. What'll police do with our Internet Connection Records?


They're all widows sons anyway, they've taken an oath to protect each other first and foremost.

The justice system should be spelt "the just us" system, because the plebs are accountable and the enforcers seldom are.

Prominent Brit law firm instructed to block Brexit Article 50 trigger


Quite honestly I don't see why so many reg commentators are pro remain? Surely the fact that centralisation of anything generally increases corruption and makes administration more difficult and therefore less successful is enough to bring people to the obvious leave option? There's also the fact the accounts haven't had a clean audit in decades, or ever?

Judge gives Zuck a US$6 million Brazilian


I don't buy the "your chats are now end to end encrypted and we can't read them" from Facebook. Why? Because when you try to use otr as an extra layer on fb chats they basically block your service. Fuckerberg makes his billions from US and Israeli back deals based on user data. Believing they would do what's best for the user is a pipe dream.

Lenovo scrambling to get a fix for BIOS vuln


Re: Not Again!!! - Because ...

As a side note the quality isn't as high as you'd think. I bought the yoga pro 2 (with the rubber type keyboard) which has fracked along the hinges in less than a year. My friend has the pro 3 with the harder plastic and already one of the 2 USB ports has died. The zen book is quite nice, just a heads up.

Microsoft's Windows 10 nagware goes FULL SCREEN in final push


If my recent degree group is anything to go by, we started off:

90% ms

10% Apple

Finished after 3 years :30% Apple

50% Linux (most dual booting with some of us totally moving over)

20% pure Windows


As a recent cs grad I spent the first year using slurp software via dreamspark (web portal for free software, like visual studio etc) due to the immense cluster fuck which was over half their software, including:

Oracle 11g not working on any student with the student version of 8.1

Visual studio working and after 2 months (while we whittled away on projects) to then behold a message saying "please enter your license key" (which was from their own student system) and telling us "this product is no longer supported".

Problems running unity for our gaming module

Problems migrating from 7 to Windows 8.1

Downloads from their store not installing after download

No less than 3 separate re installs of Windows

My wifi suddenly not working (ideal when renting student digs and have no access to the router because it's in the ceiling)

Office 365 not working 365

Our one drive free storage being cut down massively

I and many others moved over to Debian with wine or just bought MacBooks. I chose to go the Debian route and I wouldn't get back to Windows if you paid me. Soulless, lifeless, difficult bastard of a software company.

Microsoft: Give us better staff


Re: Cost of Education versus Return through Employment

As a side note his book "physics of the impossible" is an excellent read.


As a recent cs grad

From a top 5 recognised university in Europe I can say exactly this:

1: we were told as students that pursuing programming would be a "for the love of it" as opposed to "this is a great paying job". We were advised that due to the regular hordes coming from the third world and bean counters seeing price x versus price y and going with the cheapest option over talent or quality, there really isn't much of a career in Europe. We were pushed moderately to either choose networking ( which I took as I foresee network security being fairly safe) or project management via prince 2 and other methodologies.

2: we had a "partnership" with slurp and they made it very clear that non whites, females and other "minorities" would get first selection irrespective of talent because "reasons", I, along with several students decided to tell the slurp rep that we wouldn't work for a company who don't hire their staff based on talent and choose politics over common sense. As a matter of fact 3 of us have started our own firm, one element is web design and the other is migrating smes away from slurp and over to gnu/Linux solutions instead. Fuck slurp and every company who operate like them.