This is an interesting article: http://harvardmagazine.com/2009/07/jeffersons-conundrum

A more serious crypto breakthrough is described by Bruce Schneier, one of the world's leading security experts, here: http://www.schneier.com/blog/archives/2009/07/new_attack_on_a.html

This attack is effective on 192 and 256-bit AES. It reduces the average number of computations necessary to crack a 256-bit AES key to 2^112. Since the average number of iterations necessary to brute-force 128-bit AES is 2^127, this makes 128-bit AES the most secure version of the AES algorithm. AES is the algorithm that would be used for things like encrypting hard disks; it is also (probably) used to secure online transactions after a key exchange using RSA.

Note that 2^112 is still an unfathomably large number and is far beyond the capabilities of even the most powerful supercomputer, so this attack is currently only of theoretical interest. It is still a troubling development -- future attacks may reduce the algorithm's effectiveness further -- and it is an indication that AES might not be a good choice for future encryption projects. When I finally get around to encrypting my hard drive, I'll probably use a different algorithm. Before, it was a slam-dunk to use AES.

A little background on AES: AES stands for Amercian Encryption Standard. It is a NIST standard replacing the Data Encryption Standard, which had been severely broken due to its key size being too small (56 bits). The Electronic Frontier Foundation demonstrated the severity of the attack by ordering custom-fabricated chips to build a machine, Deep Crack, which could decrypt DES messages within hours.

The AES process was done in an open manner and algorithms were solicited for consideration from the international cryptography community. The five finalists back in 1998 were as follows:

1. Rijndael (which won and is therefore now known as AES)
2. Serpent
3. Twofish (by Bruce Schneier)
4. RC6 (by Ronald Rivest of RSA fame, among others)
5. MARS (submitted by IBM)

All of these algorithms remain secure from a practical perspective, though RC6 is subject to nasty software patent issues. There isn't much reason to use AES192 or AES256 now, though, since AES128 isn't subject to this new attack and imposes less of a performance overhead.

CAST6 appears to be another good cipher choice: [http://en.wikipedia.org/wiki/CAST-256]; its predecessor, CAST5, may also be acceptable. CAST6 was submitted for AES candidacy as well but did not make finalist status.

Were I to start my future hard drive encryption project today, I would consider the following algorithms, in this order:

1. Twofish
2. Serpent
3. Blowfish (probably would be fastest on my old SPARC box ;)
4. CAST6
5. CAST5
6. AES128

Blowfish would be at the top of the list except that Schneier, the designer, now recommends using Twofish instead.

---linuxrocks123

http://tech.slashdot.org/comments.pl?threshold=1&mode=nested&commentsort=0&op=Change&sid=1251017

People on Slashdot talking about their personal experiences while homeless.

---linuxrocks123

Update: I found a more complete version of the poem, which was actually Greek (and so I don't care about the original text):

"To the dead spirit of Cerelia Fortunata, my most precious wife,
with whom for eleven years I lived without a single quarrel.
Do not pass by my epitaph, traveler, but when you have stopped,
hear and learn, then depart.
There is no boat to carry you to Hades,
no ferryman Charon, no judge Aeacus, no dog Cerberus.
All of us below have become bones and ashes.
Truly, I have nothing more to tell you.
So depart, traveler, lest dead though I am
I seem to you to be a teller of vain lies.
Do not favor this monument with sweet smelling oils
or garlands, for it is but a stone.
Do not feed the funeral flames, it is a waste of money.
If you can give, give while I live.
Pouring wine on the ashes will only turn them to mud,
and besides the dead will not drink.
For so I shall be. And you have heaped up earth on these remains,
say that what this was, it will never be again."
[Epitaph of a cynic (Rome, 3rd century C.E. EG 646)]

(end update)

Do not pass by my epitaph, traveler.
But having stopped, listen and learn, then go your way.
There is no boat in Hades, no ferryman Charon,
No caretaker Aiakos, no dog Cerberus.
All we who are dead below
Have become bones and ashes, but nothing else.
I have spoken to you honestly, go on, traveler,
Lest even while dead I seem loquacious to you.

Unfortunately, I cannot find the original Latin. Atheism is certainly not a recent phenomenon :)

---linuxrocks123

http://pipeline.corante.com/archives/2006/03/08/how_not_to_do_it_liquid_nitrogen_tanks.php

This happened over three years ago, but it's still a good read if you hadn't read about it.

---linuxrocks123

A kind friend allowed me to stay in her apartment last night since she'd already left for the summer. I have a sublet for the summer, but I can't move in until about 2 hours from now. All my stuff is moved in, save for two bags which I'm carrying with me. Her apartment is a ways from campus, and I got a little confused taking the buses. I got on the "Orchard Downs Only" bus, which was right, but I waited and waited and for some reason the "2 Red", my connection, never came.

I go to the actual intersection of the stop, instead of the stop itself, but still find nothing. Then, on the other side of the street, I see a bus labeled with what looks at the time like exactly what I need:

5E GREEN /
EXPRESS CAMPUS

Green is the only bus route I know fairly well, and I know it goes where I need it to go and how to get to my office from it. I usually take the 50 Green, but I figured that "E" is close enough to "0". I rush to the other side of the street (the bus had a light), and flag the bus down. The driver grins and lets me on.

"You know where I'm going?"
"Green Street!"
"Heh heh, I'm not getting there til 7:40." It was about 6:50.
"That's fine; I'm not in a hurry."

I was not in a hurry. I couldn't move in until 10 anyway, so I'd either be storing my bags in my office or riding around with them on a bus. Neither option seemed particularly better or worse than the other.

The bus continued on its way, zig-zagging through the city, and I took the chance to look around the city. Then, the bus started turning into neighborhoods, which I thought was rather odd, but I guess it had to go somewhere for those 50 minutes. I began to relax and think about how much I'd like to sleep. (I'd found, at 3am, what I hope was a flattened wolf spider and not a brown recluse that I'd rolled over while attempting to sleep. I gave up sleep attempts after that.)

Then the bus started picking up children. Yes, you read that right. No, not college students. No, not high school students (well, maybe a few were). Mostly elementary to middle-school age children. It was one or two at a time at first, but then 5 or more each time the bus stopped. At one point, the bus stopped at a middle school and most of the children got off, but then it stopped in a parking lot and about 20 more got on. There were at least 28 children on the bus at points. Apparently, "CAMPUS" did not refer exclusively to the University of _____ campus, but also to the elementary, middle, and high school campuses in the local city. I had gotten on what was apparently a school bus for part of its route. It wasn't yellow (not even the Yellow route), but I guess they don't need to be yellow here.

As children go, I guess these weren't particularly bad. None of them talked or sat next to me (even though I moved my bags when the bus filled up completely to be courteous; I guess they were wary of me or just liked to stand), and only a few were really rowdy. Eventually they all got off and the bus turned onto Green and 1st, and the ride was delightfully child-free from that point on.

In that sense ths story has a happy ending: I reached the university campus, and my office, and am now writing this post on my laptop, with the rest of my luggage under my desk. There is now about an hour and a half until I can move into my new apartment, and then I will shower and maybe sleep. And eat. I really need to eat.

At least no one brought pets on the bus.
---linuxrocks123

Reposted from a discussion with someone on Facebook.

---

Swine flu is a deadly virus: of the 245 suspected cases of swine flu in the U.S., one case resulted in death. Normal flu strains are also deadly; approximately 36000 people in the U.S. die from the normal, non-swine flu each year. About 43000 people die annually from car crashes in the U.S. There is no shortage of ways people die.

People are so afraid of this particular way people die right now because it's new and not really well-understood (though we do already know human immune systems and standard antivirals can fight it). In a year, it'll almost certainly be like the bird flu -- still killing people, but totally forgotten. In the meantime, mass hysteria over the swine flu has the potential to do harm, so it's best if everyone not incite mass hysteria.

---linuxrocks123

This is reposted slightly edited from a rant I sent to froeschele over IM.

Doctor Who needs to stop coming up with AWESOME backstories for potential companions and then killing them off or having the Doctor reject them because "OMG I LOST A COMPANION AND I'M IN SO MUCH EMOTIONAL PAIN AND I NEVER WANT TO GO THROUGH THAT AGAIN WAAAAAHH!!!!" or WHATEVER >(

A jewel thief. The Doctor could have been traveling through space and time with a JEWEL THIEF!!!! The writers come up with an AWESOME character and then throw her away after one episode!?!?!?!?!

And, this isn't fhe first time they've done this. I count 4 one-off companions that probably should have been more. So far, the only companion they DID bring back after using her in a one-off episode was Donna! I actually thought Donna wasn't so bad, but her semi-bumbling self-importance did get old. They should have just used HER in one episode and used Astrid or the CAT BURGLAR JEWEL THIEF for a whole season.

List of Doctor Companions:
Rose: bored girl who works in clothing store, which burns down
Martha: medical student whose building happens to go to the moon (temporarily)
Donna: secretary/temp who is deperate to find a man but has a bad taste in men (married man who was poisoning her to use her body as the key to unlock a spaceship full of alien spiders at the center of Earth to devour humanity)
Reinette: 18th century French aristocrat who has seen the Doctor every so often since she was 5 due to a weird door in time through her fireplace
Astrid: alien young woman working on a space cruise liner so she can see the stars a little closer
Lady Christina: English noble whose family lost everything, so she became a JEWEL THIEF with MAD SKILLZ!
River Song: the Doctor's future wife, who recognized him from her past (the Doctor's future)

OF THESE CHARACTERS, the writers used Rose, Martha, and Donna, and threw away Reinette, Astrid, Lady Christina, and River Song after one episode each :( Rose, Martha, and even Donna weren't bad, of course, but they had really lame backstories compared to the one-off companions. Donna's was the coolest backstory of the three permanent ones, and they meant her as a one-off companion!!!

WRITERS, STOP KILLING OFF YOUR BEST-DESIGNED CHARACTERS!

Thank you. I'm done now.

Disgruntled fan,
---linuxrocks123

Opinion here: http://volokh.com/files/BoucherDCT.1.pdf

I of course don't think this is a particularly spectacular ruling from the point of view of civil liberties, but it seems very tailored to the specific facts of this case, which really only arose due to spectacular stupidity on the part of both the defendant and the border agent. Hint to defendant: do not, under any circumstances, type the password to your kiddie porn stash into your laptop for the officer. Hint to border agent: do not, after looking through said kiddie porn stash, turn the computer off so that the encryption key is erased from RAM. The logic of the ruling only applies since the government already knew enough to be able to be able to subpoena the contents of the encrypted volume.

Quote:

Second Circuit precedent, however, does not require that the government be aware of the incriminatory contents of the files; it requires the government to demonstrate "with reasonable particularity that it knows of the existence and location of subpoenaed documents." In re Grand Jury Subpoena, 1 F.3d at 93.


This leaves open the possibility that the subpoenaed documents could be, "the contents of the laptop hard drive" in a normal case, for a fully encrypted volume; I'm not sure whether that would fly. Nice tricks like hidden TrueCrypt volumes aren't covered: the "existence" part of the test almost certainly would fail in that case: the subpoenaed hidden volume very well might not exist, and the government has no way of knowing unless the defendant gives the password for it.

This was a district court decision. An appeal to the Second Circuit has already been filed, so we'll have to see how that goes. The penalty for not complying with a subpoena is very severe: the court can put you in prison for contempt indefinitely if you are able but refuse to comply with a court order. I've never felt this was particularly fair, and, if I ever develop a terminal condition and have weeks to live, I hope I'm subpoenaed to testify information I have but don't wish to reveal, just so I can colorfully tell the judge to sodomize himself with a retractable baton.

---linuxrocks123

http://vimeo.com/2598878

This video is a graphical representation of 2008's edits to OpenStreetMap, an open-source street map database. This is a very cool project and is an important prerequisite for open-source GPS systems.

Also, the video looks awesome :)

---linuxrocks123

Since the Cloudbook has taken the Zaurus's old name of Spellbinder, I will now refer to the Zaurus as Torchwood. I'm not really sure what to do with Torchwood now, so, when I get a chance, I'm going to install Angstrom on it.

http://www.angstrom-distribution.org/2007-12-r18-images-available-poodle
http://linuxtogo.org/gowiki/ZaurusPoodle

---linuxrocks123

Mild spoiler warning.



House and Cameron on their one and only date. (Cameron would only agree to work for House again if he took her on a date.)
Cameron: I have one evening. One chance. And I don't want to waste it talking about what wines you like or what movies you hate. I want to know how you feel -- about me.
House: You live under the delusion that you can fix everything that isn't perfect. That's why you married a man who was dying of cancer. You don't love; you need. And now that your husband is dead, you're looking for your new charity case. That's why you're going out with me. I'm twice your age; I'm not great-looking; I'm not charming. I'm not even nice. What I am is what you need: I'm damaged.


I just love this show.

---linuxrocks123

"You pretend you're above the system. You pretend to be a rebel. You claim to hate rules, but all you do is substitute your own rules for those of society. That's a nice simple rule. Tell the blunt, honest truth in the starkest, darkest way, and what will be, will be. What will be should be. And everyone else is a coward. But you're wrong. It's not cowardly to not call someone an idiot. People aren't tactful or polite just because they're nice. They do it because they've got an ounce of humility. Because they know that they will make mistakes. They know that their actions have consequences. And they know that those consequences are their fault. Why do you want so bad not to be human, huh?"

House is awesome.

---linuxrocks123

The article that forced Salman Rushdie into hiding: http://www.nytimes.com/2001/11/02/opinion/02RUSH.html
Muslim revolt against bin Laden: http://www.nationalpost.com/opinion/story.html?id=575609
American Culture of Fear: http://www.guardian.co.uk/commentisfree/2008/dec/05/bush-fear-terrorism-mumbai-911

---linuxrocks123

http://www.groklaw.net/article.php?story=20081128005538214

First, the facts of the case: a 13-year-old girl was being teased by another 13-year-old girl (shock!), and the mother of the teased girl responded by creating a fake MySpace account supposed to belong to a 16-year-old boy, befriending and indicating romantic interest in the teaser, then "dumping" her, saying, "the world would be a better place without you". The dumped girl committed suicide.

It is obvious that the mother acted not only inappropriately, but inexcusably. Sympathy in this case lies entirely with the dead girl, and there's a gut feeling that something should happen to the mother for being such a horrible person.

But, there doesn't seem to be a law covering what she did. Even though what she did should probably be illegal, the best prosecutors could come up with is claiming she "hacked" MySpace by using the website in a normal manner, but in violation of the MySpace Terms of Service since she created a false identity.

This is a jury case. Juries, like most groups of people, do not have a very good record when it comes to considering future consequences of their actions; fortunately, jury decisions don't often have much precedent value. However, this case could be dangerous if it's held on appeal: making a felon of anyone who violates a website's terms of service is a very Bad Idea, as the amicus curiae brief points out.

---linuxrocks123

http://news.bbc.co.uk/1/hi/world/americas/7743214.stm

I'm not sure I'd ever be able to forgive myself if I were one of the people who had been watching that but did not report it to the police.

---linuxrocks123

http://online.wsj.com/article/SB122660041840925005.html

I'd heard about the shipment of rubber ducks that had capsized before. They're called "Friendly Floatees", and have a Wikipedia article: [http://en.wikipedia.org/wiki/Friendly_Floatees]. From what I can find, the company appears to have been quite cooperative, even offering a $100 US savings bond in exchange for toys turning up in certain parts of the world.

---linuxrocks123

Monk is a TV series about Adrian Monk, an extraordinarily gifted detective whose neuroses constantly threaten his ability to function independently.


It's a jungle out there,
Disorder and confusion everywhere.
No one seems to care;
Well, I do!
Hey! Who's in charge here?

It's a jungle out there,
Poison in the very air we breathe.
Do you know what's in the water that you drink?
Well, I do!
It's amazing!

People think I'm crazy
To worry all the time.
If you paid attention, you'd be worried to.
You'd better pay attention, or this world we love so much...
Might just kill you.

I could be wrong now,
But I don't think so!
'cause there's a jungle out there.
There's a jungle out there.


---linuxrocks123

http://ars.userfriendly.org/cartoons/?id=20081110

But, read it.

---linuxrocks123

http://blogs.computerworld.com/world_without_linux

I tend to hope that without Linux, the BSDs would have picked up the slack, but trying to prove a counterfactual like that is a hopeless endeavor. European Space Agency woes not withstanding, I'm glad Linus chose computer science :)

---linuxrocks123

A member of my family is very concerned about a rumor currently spreading through conservative news outlets and web logs claiming that Barack Obama plans to create a "Civilian National Security Force" with funding equal to that of the army. The only piece of real evidence for this claim seems to be the following 20-second YouTube video clip from a speech Obama made back in July:

http://www.youtube.com/watch?v=Tt2yGzHfy7s

I did some searching on the Internet and think I remember watching another part of that speech, and my conclusion is that Obama is talking about doubling the size of the Peace Corps. However, the aforementioned family member is still concerned, so if anyone else has more information about this, please let me know.

---linuxrocks123