NSA and AT&T: Massive Illegal Surveillance Through Carriers Spy Hubs
https://theintercept.com/2018/06/25/att-internet-nsa-spy-hubs/ SAGUARO etc docs in article. The NSA considers AT&T to be one of its most trusted partners and has lauded the company's "extreme willingness to help." It is a collaboration that dates back decades. Little known, however, is that its scope is not restricted to AT&T's customers. According to the NSA's documents, it values AT&T not only because it "has access to information that transits the nation," but also because it maintains unique relationships with other phone and internet providers. The NSA exploits these relationships for surveillance purposes, commandeering AT&T's massive infrastructure and using it as a platform to covertly tap into communications processed by other companies. While network operators would usually prefer to send data through their own networks, often a more direct and cost-efficient path is provided by other providers' infrastructure. If one network in a specific area of the country is overloaded with data traffic, another operator with capacity to spare can sell or exchange bandwidth, reducing the strain on the congested region. This exchange of traffic is called "peering" and is an essential feature of the internet. Because of AT&T's position as one of the U.S.'s leading telecommunications companies, it has a large network that is frequently used by other providers to transport their customers' data. Companies that "peer" with AT&T include the American telecommunications giants Sprint, Cogent Communications, and Level 3, as well as foreign companies such as Sweden's Telia, India's Tata Communications, Italy's Telecom Italia, and Germany's Deutsche Telekom. “It’s eye-opening and ominous the extent to which this is happening right here on American soil,” said Elizabeth Goitein, co-director of the Liberty and National Security Program at the Brennan Center for Justice. “It puts a face on surveillance that we could never think of before in terms of actual buildings and actual facilities in our own cities, in our own backyards.” "he and his colleagues found it strange that they were asked to suddenly reroute all of the traffic, because “there was nothing wrong with the services, no facility problems.“We were getting orders to move backbones … and it just grabbed me,” said Long. “We thought it was government stuff and that they were being intrusive. We thought we were routing our circuits so that they could grab all the data.” During his employment with AT&T, Eslambolchi said he had to take a polygraph test, and he obtained a government security clearance. “I was involved in very, very top, heavy-duty projects for a few of these three-letter agencies,” he said, in an apparent reference to U.S. intelligence agencies. “They all loved me.” “You put a gun to my head,” he said, “I’m not going to tell you.” The company provides “voluntary assistance". The agency appears to primarily collect phone calls, emails, online chats, and data from internet browsing sessions. All Tier-1 Telcos and Internet Providers in on it... and refuse to comment. We're Fucking You All.
Re: Intel Fail: OpenBSD disables Intel HyperThreading, Lazy FP State Restore
Funny watching benchmarks of Intel CPUs plummet 10's of percent... exploit after mitigation after exploit after microcode after... "Intel just took a further shortcut" -- World "Protecting our customers and their data continues to be a critical priority for us." -- Intel
Are jump if parity flag set instructions subject to speculative execution?
Are jump if parity flag set instructions subject to speculative execution?
Re: Intel Fail: OpenBSD disables Intel HyperThreading, Lazy FP State Restore
On Mon, Jun 25, 2018 at 05:22:11PM +0300, Georgi Guninski wrote: > On Wed, Jun 20, 2018 at 07:44:21PM -0400, grarpamp wrote: > > https://www.mail-archive.com/source-changes@openbsd.org/msg99141.html > > According to journos intel won't fix this: > https://www.theregister.co.uk/2018/06/22/intel_tlbleed_key_data_leak/ > Meet TLBleed: A crypto-key-leaking CPU attack that Intel reckons we > shouldn't worry about > How to extract 256-bit signing keys with 99.8% success > > Intel has, for now, no plans to specifically address a side-channel > vulnerability in its processors that can be potentially exploited by > malware to extract encryption keys and other sensitive info from > applications. Surely a simple and far less impactful "solution" to this problem is for applications to disable hyperthreading when they enter the critical sections of code - generating (and using?) crypto keys and random numbers for example? OpenBSD is understandable of course - "security or die" - but perhaps they will relax their HT disabling over time as they sure app the HT barrier code required to implement the above…
Re: Persecution of Julian Assange Must End
On Sat, Jun 23, 2018 at 08:45:05PM +0100, Ben Tasker wrote: > On Sat, Jun 23, 2018 at 6:46 PM, Ryan Carboni wrote: > > > > > > > Of course Assange is an Ecuadorian citizen, so if they wanted to, they > > could have him leave the embassy through temporary diplomatic status, > > particularly since he isn't accused of any crime by the British. > > > > No, no they couldn't. > > The host country grants/approves diplomatic credentials, so it's up to the > UK Government whether he gets that status. You can already guess what the > answer would be. Also, Assange is accused by the British courts of failing to abide by the bail conditions to appear in court for sentencing/ extradition, instead he went into the Ecuadore embassy. They call that contempt of court, which is a jailable "offence". Unfortunately it is only the individual's "offences" against the state which go punished in many cases, and not the states offences against the individual. Assange is due one mighty exemplary compensation payout at the end of the day...
Sweet Honey Berliner: Smell Like a Biscuit
>juan juan.g71 at spookmail.com >Thu Jun 14 18:20:07 PDT 2018 > >judeo-christian Why be redundant ? 'jew' is plenty accurate for all abra[ham]ic slave systems. >white >anglo >fascist "White" includes mexican-spanish speaking populations such as yourself. "Anglo" is a ded breed of mixed-race Germanic larpers. "Fascist" means "bundle" or "group", and we all know the only people permitted to organize politically is marxist jews. Ironic that you are shilling against individuals uniting in opposition to religous hegemony, which is what is meant when using those words as an insult. >in the "real world" Confirmed B.O.O.M.E.R. terrosist. Reported. >exploiting their fellows Confirmed never worked with own hands. **fapping don't count** >socialism/nationalism/statism These are not the same things. "Socialism" is bottom-up "Communism". "Nationalism" is family-first "Socialism". "Statism" is top-down "Communism", also called "Marxism". Reminder that "Communism" is "Community-ism". Without it, people would be driving on private roads, reading in private libraries, and shitposting on private internets. Pic related.
Man waifus bitter ape, has twins...
>Steve Kinney admin at pilobilus.net >Fri Jun 22 16:20:36 PDT 2018 > >learn human behavior >learn This isn't even possible and you know it. >4chan Stop spamming your chink webservices. >regurgitation using pseudorandom word selection >human Pick only one. >parrot >crackers You do know that "insult" isn't one. It means "whip cracker". Unironically using it to describe Europeans is an act of subservience, since it was slaves getting whipped; an act of stupidity, since the Irish and Scot populations were enslaved alongside Africans and also whipped; and because Africans were "slave owners", as well. >white trash >t. Steve "thinks north florida is white" Kinney. Imagine being this jewish. Pic related.
Observed Diffusion of More Cooler Seasons than Hot Just Penned
>Ben Tasker ben at bentasker.cu.ck >Sat Jun 23 12:45:05 PDT 2018 > >No, no they couldn't. Do you have a license for that opinion mate ?
Re: Intel Fail: OpenBSD disables Intel HyperThreading, Lazy FP State Restore
On Wed, Jun 20, 2018 at 07:44:21PM -0400, grarpamp wrote: > https://www.mail-archive.com/source-changes@openbsd.org/msg99141.html According to journos intel won't fix this: https://www.theregister.co.uk/2018/06/22/intel_tlbleed_key_data_leak/ Meet TLBleed: A crypto-key-leaking CPU attack that Intel reckons we shouldn't worry about How to extract 256-bit signing keys with 99.8% success Intel has, for now, no plans to specifically address a side-channel vulnerability in its processors that can be potentially exploited by malware to extract encryption keys and other sensitive info from applications.