Re: [Trisquel-users] TP-Link routers are now locked
TP-Link says they use GPL code. http://www.tp-link.us/gpl-code.html They mention GPL version 3 as well as other versions are in the code. Would version 3 allow them to do these kind of locks? If not, who will stop them?
[Trisquel-users] TP-Link routers are now locked
It's been discussed here previously. Now I see this: http://ml.ninux.org/pipermail/battlemesh/2016-February/004379.html "Yes. Less than 24 hours ago I was given the following information from a customer service rep from tplink: Adam Longwill09:10:01 pm downgrading does not work I get an 18005 errror upon attempting to downgrade I want to know if this is because of the FCC's rules regarding broadcast strength and DFS control. Has TP-Link complied with these rules and locked down its firmware and if so, for what models I need to know if I am going to continue purchasing devices from you. Camille09:13:25 pm wait one moment please Thanks for your waiting, right now only these products has limitation on firmware: Archer C7 V2 Archer C1900 V1 Touch P5 V1 Archer C2600 V1 Archer C3200 V1 Archer C2 V1 Archer C5 V2 Archer C8 V1 Archer C9 V1 TL-WR841N V11 TL-WDR3500 V1 TL-WR940N V3.0 TL-WR1043ND V3.0 TL-WR710N(USA) TL-WR841N V9.0 and all products will also limite firmware in the future. Adam Longwill09:26:19 pm Wow. Thank you. I'm impressed with your digging And this limitation is due to FCC rule clarifications in 2015? And not some other reason Camille09:28:15 pm Right, due to FCC Adam Longwill09:28:50 pm Thank you very much. Can you explain why the WDR3600 appears to be locked down? Is it possible that your list is not totally updated? And do you have a method or avenue that people who wish to use other firmware have? Camille09:34:02 pm Yes, wdr3600 as dual band wifi router, is also locked down. And there is no other way to use other firmware. Sorry for that Adam Longwill09:34:19 pm Thank you very much, Camille. You've been very helpful Sorry for the formatting, I'm on mobile." etc., etc., more if you click the link above.
Re: [Trisquel-users] Libre YouTube?
GPL peer-to-peer search: http://yacy.net/en/index.html Maybe that can be folded in somehow?
Re: [Trisquel-users] Is this Librem13 fully free this time?
Excellent discussion. It is great to see the growing intensity of interest on freeing hardware. A couple of years ago there was a similar sense of many things being beyond reach but the pot is simmering now instead of being kind of lukewarm as it was then, which is not all bad.
Re: [Trisquel-users] New article by RMS
Good to see things happening beyond software, at the computer level.
Re: [Trisquel-users] Leaving Trisquel
Yes, that is correct, the regular ISO. I've always had an internet connection so I do not know if an internet connection is required or just nice to have during an install. I used this text install full disk encryption method on a desktop machine and on laptops without any problem. Can even change the filesystem used in the LVM during the install, kind of buried in there, but it works. It almost sounds as if his overall desktop installation wasn't completed if a blank screen/terminal showed up instead of the usual GUI login screen? Svamiji, during the install, near the end, where it asks which packages to install, did you include a desktop package? If not, you'd just get a blank terminal right after booting up. If you chose a desktop, you ought to get the GUI login screen and a regular graphical desktop environment. Since you got past the initial disk unlocking at boot, it wouldn't be the full disk encryption that was wrong or bad. Svamiji, perhaps you need to install a desktop? Maybe someone can provide the command line for the standard trisquel desktop? I don't know it right off.
Re: [Trisquel-users] I'm out of this forum!
Since people are commenting on this I would like to as well. I do not like these vote type things. I dislike reading a post and then asking myself why I may not feel as others do. It's tiring and an unnecessary distraction. I prefer being the judge of which statements I agree with or disagree with--reading in private by myself, without counts of +'s and -'s or colors showing me the score. Also, many times people cover more than a single topic in their post, as I am now doing--saying that I believe people ought to respect a thread and stay within what is being covered there. What if you agree with my second statement but not the first? You get one vote if you feel like voting. What have you voted for and how will other readers know what you meant with your vote? To me, this new system will shape conversations into an inaccurate group-think conformity. I don't like that.
Re: [Trisquel-users] Leaving Trisquel
Are you trying to do a full disk encryption? Use Install Trisquel in text mode when installing. It will guide you into making an encrypted LVM disk. It is very similar to this: http://trisquel.info/en/wiki/full-disk-encryption-install Takes 20-30 minutes.
Re: [Trisquel-users] Librem 15: A Free/Libre and Open Source Laptop That Respects Your Essential Freedoms
seems too good to be true. I had that feeling myself. Don't know what to make of it. Sounds good, feels bad for some reason.
[Trisquel-users] Librem 15: A Free/Libre and Open Source Laptop That Respects Your Essential Freedoms
The Librem 15 will use a Trisquel based operating system. https://www.crowdsupply.com/purism/librem-laptop Sounds pretty good, but I don't know... Haven't seen it mentioned here so I thought I would post something. Do the sponsors of this not hang around here? Strange they mention Trisquel but no post on this.
[Trisquel-users] ISP tracker beacons
From a temporary webpage at http://lessonslearned.org/sniff We are seeing clear evidence across the country of both consumer and enterprise devices having network traffic altered through these tracking beacon headers. Most importantly, when present, ATT and Verizon tracking beacons persist even after changing locations or IP addresses, and do so in spite of any browser privacy settings. In response to many questions about the best defense you can take (short of changing providers), my advice is to use HTTPS wherever possible, or (better) use a VPN service, or possibly a proxy service. Unfortunately, no browser plug-in is going to be 100% effective unless you strictly visit HTTPS sites or trust the plug-in proxy provider. In the case of HTTPS, a VPN or proxy, the HTTP network headers cannot be modified/injected by your cellular ISP. -- Another article is here: http://www.wired.com/2014/10/verizons-perma-cookie/ and here http://www.forbes.com/sites/kashmirhill/2014/10/28/att-says-its-testing-unkillable-tracker-on-customers-smartphones/
Re: [Trisquel-users] LibreTrend - My Vision of Free Software
Luis, Great to hear. As to your goal of a free BIOS, when I looked into that almost a year ago, there were more free options with ARM processors. None were perfect as I recall, but there is potential and lots of interest in ARM processors in general--a much larger base of developers. Good luck.
Re: [Trisquel-users] On the NSA targeting readers of Linux Journal as extremists
If Linux Journal attracts extremists to such a degree that ALL people who visit their website are tagged and filed into some system of suspects, then I just don't know what to say or think. Remember what the original quote was: The NSA is also tracking anyone who visits the popular online Linux publication, Linux Journal, which the NSA refers to as an “extremist forum” in the [XKeyscore] source code. There is more at Linux Journal. http://www.linuxjournal.com/ check out their front page! Linux Journal has a circulation of nearly a million and so does The New Yorker. Newsweek has around one and a half million I think. These numbers seem pretty mainstream to me, hardly the hot bed hangout of extremists. Same with GNU/Linux and all the GPL licensed software. “The GPL licenses more software than MicroSoft and Oracle put together. The GPL is roughly an order of magnitude larger than SAP, the largest commercial producer of software in the European Union.” --Eben Moglin http://youtu.be/FI1CoeqyD5o?t=2m44s When will the hysteria end? Let no one entertain the idea that GNU/Linux or free software is odd, small, or extreme.
[Trisquel-users] On the NSA targeting readers of Linux Journal as extremists
What? The NSA is also tracking anyone who visits the popular online Linux publication, Linux Journal, which the NSA refers to as an “extremist forum” in the [XKeyscore] source code. http://www.wired.com/2014/07/nsa-targets-users-of-privacy-services/
Re: [Trisquel-users] DRM, CDM, EME and Mozilla
1.) How much will Thunderbird be affected? Isn't there quite a bit of overlap with Firefox? Especially plug ins. 2.) Not sure this is related, but...In the past couple of weeks I've started to get notices from PayPal and Youtube and other websites at the top of the browser window saying that they notice I am blocking flash. They give an option for me to allow or never on this website and even though I check never, it continues to ask again and again with each log in. Not sure if the browser triggers that or the website. And which of them will not listen to my choice when I say never? Sadly, trying to browse without javascript, cookies, and flash is becoming a full time job clicking all the buttons needed to view most sites.
Re: [Trisquel-users] Julian Assange: Debian Is Owned By The NSA
jodiendo, I read somewhere (who knows if it is true) that one US government agency had ~1,000 full time analysts who look for bad code to be used for potential exploits. Assuming other countries have something similar, in numbers alone, the free (and open) software movements would need similar thousands--full time equivalent--doing similar work and making fixes, rather than cataloging and saving exploits for later. This approach does not involve trust, which is what you asked about, but may well work better than trust. Just use plain old overwhelm and make the opposition's work more and more expensive and more and more difficult to justify and sustain. The problem with trust is that while it ought to be earned, the world is full of good guys and bad guys and corruptions within both groups who do not make the accounting easy or fair. Ideally they want to dispense trust or safety or privacy; to bless it, to control it, which in turn gives them an indirect control and status over all people who need to believe in those issues. And many people are ok with, and even welcome, a scenario of letting someone else do it, so that kind of trust system works, but doesn't really deliver what it promises. It takes work to accept and deal with trust issues, poor security, and the loss of privacy. Making the work harder is that there is no end point; the work is never finished, it is an ongoing process as they say...because good guys and bad guys keep figuring out new methods to accommodate their ends and needs. Personally I am still waking up to this reality and have difficulty accepting it. I have noticed it however and that is a start. There has been a compelling myth that freely readable software code has many eyes constantly checking and improving it. That myth must die today and no longer be recognized as real. From now on, it needs to become real. How to develop a real system of code checking that overwhelms the opposition would be helpful. How to arrange that? At this time, I do not know. There must be a way however.
Re: [Trisquel-users] Julian Assange: Debian Is Owned By The NSA
Darksoul71: Due to the sheer amount of code for the Kernel itself, all applications used and all the libs included it is close to impossible to validate code for possible implemented weaknesses / back doors. Yes. It seems many eyes saw the Debian bug, but that was not the end of it, it still became a massive mess in spite of the awareness. http://marc.info/?l=openssl-devm=114651085826293w=2 Mr. Roeckx was known. http://pgp.mit.edu:11371/pks/lookup?op=vindexsearch=0x41DC1C907244970B and later http://pgp.mit.edu:11371/pks/lookup?op=vindexsearch=0x2064C53641C25E5D There is the idea that transparency or openness offers an automatic type purity or security to the code so much better than proprietary software, and that may be true...or should be true. However when errors are missed or minimized because of the assumption that so many eyes see the code that someone else will look into it, that is a problem. If too many people think along those lines, nobody is looking at the code, you know.
Re: [Trisquel-users] Julian Assange: Debian Is Owned By The NSA
jodiendo: But, what on earth do we do from here? What are the solutions without compromising and affecting deeper all the GNU/LINUX OSI source code, farther WHO DO WE TRUST? As an illustration, imagine a shantytown built by good people, not designed by architects and not built by licensed contractors. No blueprints, no building codes, no inspectors. The shelters work but are not ideal. Not saying that existing code is a shantytown, however didn't most of it grow into being rather than being planned and designed as a whole GNU/Linux system with exacting coding standards and oversight along the way? An intern is saying he caused the heartbleed exploit. http://www.forbes.com/sites/kashmirhill/2014/04/10/whats-really-scary-about-heartbleed/ Look at the effect of that goof. Given the project budget and manpower, they accomplished a lot, sadly including showcasing the fragility of web security. When you see software or patches uploaded by cloudchild or starlord or whatever, should we be comfortable with that? A corner has been turned. It's going to be harder now, and perhaps less fun, and less innocent. Maybe it is time for a formal community of code auditors and reviewers to be created. Piece by piece, step by step, every line checked, impossible as it seems.
Re: [Trisquel-users] Minnowboard
Realizing that I do not understand this stuff, which is why I posted the question above, I note that Intel's video says uefi secure boot can be disabled http://youtu.be/eAnlhkbMang?t=20s I'm not sure that makes any difference to your discussion but I wanted to mention it.
Re: [Trisquel-users] Julian Assange: Debian Is Owned By The NSA
In late 2010 OpenBSD experienced something similar. It is interesting to look at the details of that case. Awful lot of connections but apparently nothing big came of it or so they all say. http://marc.info/?l=openbsd-techm=129236621626462w=2 A few days later... http://lwn.net/Articles/420858/ I'm not sure what I believe, but I can say that this type of thing introduces distrust which takes more time and energy to overcome or to verify.
Re: [Trisquel-users] Vint Cerf, on TCP/IP security choices made during the 1970's
I don't know about surveillance. He was speaking on authentication and security. In the mid-1970's while he was developing the regular--later to be public internet, he was also working with the NSA developing a secure internet using classified encryption methods. While his colleagues at the time, Diffie–Hellman, had come up with the concept of key exchanges, they had no algorithms and he couldn't say anything to them. He was schizophrenic (his word) in that he wanted to add his view but couldn't. What he was saying in the video, was that looking back, he would have liked to include better authentication and encryption in the regular internet. It was an interesting video. He's done many others as well.
[Trisquel-users] Minnowboard
I didn't see anything on the Free Software Foundation site on Minnowboard. http://www.minnowboard.org/meet-minnowboard-max/ http://ark.intel.com/products/family/29035/Intel-Atom-Processor/embedded Does anyone know more about how free this is?
Re: [Trisquel-users] Minnowboard
Also see that uefi firmware can apparently be developed. I don't understand this kind of thing, the firmware isn't free is it? http://uefidk.intel.com/content/minnowboard-uefi-firmware
[Trisquel-users] Vint Cerf, on TCP/IP security choices made during the 1970's
A father of the internet, Vint Cerf, on TCP/IP security choices made during the 1970's. Some features didn't make it in. He couldn't talk back then, he was working on a project for the NSA. https://www.youtube.com/watch?v=17GtmwyvmWEfeature=sharet=23m1s
Re: [Trisquel-users] Creepy: ARM and Flight MH370
The Freescale losing employees is true as they've issued a news release on it. http://media.freescale.com/phoenix.zhtml?c=196520p=irol-newsArticleID=1907348highlight= The rest? Who knows.
[Trisquel-users] Creepy: ARM and Flight MH370
Interesting news item... ...the people who owned the patent to Freescale Semiconductor’s ARM microcontroller ‘KL-03′ which is a new improvised version of an older microcontroller KL-02 were on the MH-370 flight. The 20 Freescale employees, among 239 people on flight MH370, were mostly engineers and other experts working to make the company’s chip facilities in Tianjin, China, and Kuala Lumpur more efficient, said Mitch Haws, vice president, global communications and investor relations. “These were people with a lot of experience and technical background and they were very important people,” Haws said. “It’s definitely a loss for the company.” http://macedoniaonline.eu/content/view/24972/56/ The LK-03 is likely the base processor to be used for the internet of things.
Re: [Trisquel-users] Linterna Mágica campaign
Is there even a (distributed or federated) directory of all projects? Someway to plug that info together, along with info/directions on how to donate or help a project? There probably is something already that can accomplish this but I am not aware of how I might quickly look at the various software I use/enjoy and easily learn more about it or donate to it. Perhaps there needs to be something more obvious built right in.
Re: [Trisquel-users] Mini USB wifi adapter recommendation
I'm using the ThinkPenguin USB N adapter. https://www.thinkpenguin.com/gnu-linux/penguin-wireless-n-usb-adapter-gnu-linux-tpe-n150usb It works fine, however being so small, signal strength is not the greatest. Still, there have been no problems streaming video or whatever on my ThinkPad X60s. I was already using jxself's kernel updates so when I first plugged in the adapter, it just worked. https://trisquel.info/en/wiki/update-linux-libre-kernel and http://jxself.org/linux-libre/ I've had all sorts of things NOT work for me over the years. I know what that is like. Just saying this combination is working fine for me for whatever that is worth.
Re: [Trisquel-users] Wireless N USB Adapter for GNU / Linux (TPE-N150USB) dropped packets
yrk, I have that exact USB and running your 100 packet test to fsf.org ( ping -c 100 fsf.org ) had zero packet loss with only 2 bars of signal strength.
Re: [Trisquel-users] R Stallman and Trisquel (google)
t3g, You say a community user is often told to fix it himself. Sounds like you have experienced this yourself here? If so, what is the background. I haven't noticed such treatment around here. Also, what is with the urgency of your needing an ASAP new release of Trisquel as if something being 1 year old is already in the graveyard. Personally I don't understand why this matters. And I want to. Why is this so important to you or others? Thank you.
[Trisquel-users] RMS on Alex Jones Tues Mar 11 2014
RMS interviewed by Alex Jones covering many of the usual topics on March 11, 2014. http://youtu.be/G2z6UdUug2c
Re: [Trisquel-users] RMS on Alex Jones Tues Mar 11 2014
Not more Stallman, but related... How the NSA Plans to Infect ‘Millions’ of Computers with Malware https://firstlook.org/theintercept/article/2014/03/12/nsa-plans-infect-millions-computers-malware/
Re: [Trisquel-users] best thinkpad x60 wifi card
Zancudo, Check ebay again, they make an adapter card for half size cards to become full size. Inexpensive.
Re: [Trisquel-users] ARM support
Beaglebone Black is not free last time I checked. Trisquel lead developer has mentioned ARM support during a video speech during the 2013 Libre Planet get together. There must be a copy of it somewhere. Have you seen this thread? A free board and now a libre port, but not Trisquel. https://trisquel.info/en/forum/olinuxino-free-alternative-raspberry-pi
Re: [Trisquel-users] BT backdoors
Please see this page: http://www.gnu.org/licenses/gpl-violation.html
Re: [Trisquel-users] gluglug thinkpad x60 w/ coreboot mini review
Wondering if coreboot removes the digital restrictions on PCIe cards? I have an Atheros wifi card that doesn't work with the standard BIOS, even though it is a Lenovo card. Maybe it will work with coreboot? I have an X60s without coreboot at the moment.
Re: [Trisquel-users] OLinuXino - free alternative to raspberry pi?
A linux-libre for the board would be great. Please keep us informed.
[Trisquel-users] BT backdoors
A paper released earlier this month [December 2013] by a group of security researchers has outlined the technical details behind a potential Computer Network Exploitation (CNE) program likely used by the U.K. Government Communications Headquarters (GCHQ) and their American counterpart, the NSA. Article here: http://m.csoonline.com/article/744697/report-accuses-bt-of-supplying-backdoors-for-gchq-and-nsa?page=1 Better: Download the excellent 60 page report PDF with all the details: http://cryptome.org/2013/12/Full-Disclosure.pdf According to the report, All of the evidence presented is fully reproducible. It is our belief that this activity is NOT limited to the UK.
Re: [Trisquel-users] Secret 3G Intel Chip Gives Snoops Backdoor PC Access
Enlightening talk. Not a dream. http://youtu.be/b0w36GAyZIA
Re: [Trisquel-users] Intel processor microcode security update for Trisquel
Interesting and BIOS related. The specialists at ANT, which presumably stands for Advanced or Access Network Technology, could be described as master carpenters for the NSA's department for Tailored Access Operations (TAO). In cases where TAO's usual hacking and data-skimming methods don't suffice, ANT workers step in with their special tools, penetrating networking equipment, monitoring mobile phones and computers and diverting or even modifying data. Such implants, as they are referred to in NSA parlance, have played a considerable role in the intelligence agency's ability to establish a global covert network that operates alongside the Internet. The ANT division doesn't just manufacture surveillance hardware. It also develops software for special tasks. The ANT developers have a clear preference for planting their malicious code in so-called BIOS, software located on a computer's motherboard that is the first thing to load when a computer is turned on. http://www.spiegel.de/international/world/catalog-reveals-nsa-has-back-doors-for-numerous-devices-a-940994.html
Re: [Trisquel-users] gluglug thinkpad x60 w/ coreboot mini review
Latest Linux Action Show does a short segment on the gluglug. https://youtu.be/08HKcH2GguE?t=26m5s Overall positive, but they don't seem to get the subtle details and tend to focus on specs and refurb, but hey, it's a mention of a freedom option going out to a Linux audience.
Re: [Trisquel-users] Intel processor microcode security update for Trisquel
The non-free BIOS--which is an issue for the majority of computers now available--has troubled me too as there are few (almost no) free options. In general you cannot buy a new modern computer to escape this problem. But how does that have anything at all to do with Trisquel, or Debian? It's hardware. Coreboot in the BIOS isn't Trisquel either. I've considered throwing my computer away two times, once because I had enough of Windows faults and crashes, and about 10 years later I had had enough of OS X! Trisquel and true free software communities offer more. But changing software is only half the solution. Hardware is where more and more controls and unwanted features are. Debian solves nothing over Trisquel in that regard.
Re: [Trisquel-users] Intel processor microcode security update for Trisquel
ZykoticK9, I hear you re: the forum guidelines. True. But arguments aren't interesting?!! What about Jerry Springer? :) https://youtu.be/hCL36ogOFDo?t=2m7s A bit of conflict is good for the soul. So is laughter and lightening up now and then...
Re: [Trisquel-users] Intel processor microcode security update for Trisquel
sebelius, Yes. That is how it seems. When a security company is involved in the following type of activity, where should one go? To another proprietary vendor? Heck no! http://www.reuters.com/article/2013/12/21/us-usa-security-rsa-idUSBRE9BJ1C220131221?type=companyNews
Re: [Trisquel-users] Intel processor microcode security update for Trisquel
Of course I was joking! Given the subject matter, not much is funny you know. Needed a break. :)
Re: [Trisquel-users] A laptop earns FSF Respects Your Freedom certificate
Article on Gluglug laptop http://www.linux-magazine.com/Online/Blogs/Off-the-Beat-Bruce-Byfield-s-Blog/Gluglug-Laptops-Get-FSF-Respect-Your-Freedom-Certification
Re: [Trisquel-users] RMS, in 2001, talked about a 1999 NSA backdoor in MS server software
Interesting speech, thanks for the link. It sounds like he is talking about things that are happening now! There is a citation to Stallman's story on page 5 of this pdf. https://irwinlaw.com/sites/default/files/attached/KP21%2001%20Stallman.pdf Here is the link http://www.cnn.com/TECH/computing/9909/03/windows.nsa/ This article from 1999 and is often cited in many similar-type stories. http://www.heise.de/tp/artikel/5/5263/1.html
Re: [Trisquel-users] Forum moderation
Re: Debian and petty political arguments, please note the video mentioned in this thread: https://trisquel.info/en/forum/rms-2001-talked-about-1999-nsa-backdoor-ms-server-software It shows how Stallman feels about Linux vs. GNU and why he feels that way. Maybe watching that video will provide background that illustrates why freedom is so important an issue and how the slightest deviation from it affects Stallman so strongly.
Re: [Trisquel-users] Forum moderation
I second grimlok's new area idea. At the edges of any debate, there are things to consider, things to ponder. It's uncomfortable there for everyone. However the struggle to express ideas clarifies them. Even though I see RMS's points, and agree with them, I have benefited from reading all the posts. Maybe an area called On Free Software or something like that?
Re: [Trisquel-users] New RPM-based fully free system distribution
Seems like they want to focus on an enterprise system. We will change current Fedora Remix base system for enterprise linux system like CentOS(or other clones) in next GdNewHat release in order to become more stable fully free system distribution.
Re: [Trisquel-users] New RPM-based fully free system distribution
Tried it in a VM and it seems to work pretty well. Updated the software using their tools. All worked. Uses 3.11 Libre kernel now. Very slick interface, gnome 3 out of the box neat and clean. It is very interesting as others have said.
Re: [Trisquel-users] One thing that bothers me about Richard Stallman
Stallman knows what he wants and why. More uncommon, he actually follows up--and uncomfortable or not--does what he needs to do to live consistently with what he believes. That isn't fashionable nowadays, most people would not or could not do what he does. That doesn't make him superior or special as what he does is by his own choice. However if one cannot or will not live respecting their own beliefs, they may feel a sort of failure or an inferiority and have trouble with those who do. They may fault a belief itself, or even the beliefs of others. I am not implying anyone is inferior, the mind plays tricks on people, or maybe it's the devil.
Re: [Trisquel-users] Hey jxself, can we get linux-generic-lts-raring and linux-generic-lts-saucy kernels?
This also reinforces the proof that for a FLOSS project to be successful, it needs a commercial backing (like Canonical, Google, or Red Hat) or be in the top tier of popularity (jQuery, Linux kernel, Python, Firefox) to be sustained through personal and corporate donations in a non profit organization. I wouldn't say Trisquel isn't successful. Trisquel is what it is, and it's pretty darn good. Pehaps you didn't mean it that way but this proof you suggest is unconvincing to me.
Re: [Trisquel-users] OLinuXino - free alternative to raspberry pi?
A similar Olimex board was awfully close to freedom respecting, now they've released a new one...with a box enclosure for ~USD 47. There is an A20 version coming as well. Olimex’s OLinuXino Allwinner A10 http://linuxgizmos.com/tiny-hackable-40-dollar-board-runs-android-and-linux-on-allwinner-a10/ Just updating here in case anyone is interested.
Re: [Trisquel-users] Panopticon documentary
The documentary isn't entirely about tracking and privacy invasions although that is what I took from it because I didn't realize all those systems shown in the film existed. It mostly pointed out ways technology is optimistically being used as a control mechanism and substitute for governance. Sort of asking if governments can continue in that direction and responsibly handle that kind of power.
[Trisquel-users] Panopticon documentary
https://www.youtube.com/watch?v=DU8hg4FTm0g This is good. Non-US. Freedom appears to be gone in so many settings. Tracking and privacy invasions contrary to UN rules, constitutions, whatever. It's great trying to have control over my software and computer, but what about the rest of the my life? Pretty sad out there. More than an uphill battle.
Re: [Trisquel-users] Panopticon documentary
Sorry wrong link, but that was a good (bad) one too! Here is the correct link. https://www.youtube.com/watch?v=jqWXWNhfZQg
Re: [Trisquel-users] Encryption multi-platform and multi-OS
I did not know that. What about ARJ? It's supposed to have encryption, but what kind?
Re: [Trisquel-users] Encryption multi-platform and multi-OS
http://www.7-zip.org/ Simple, AES-256 only. Many front ends, drag and drop.
Re: [Trisquel-users] “badBIOS,” malware that jumps airgaps
If ultrasonic is being used http://alumni.media.mit.edu/~wiz/ultracom.html gives some things to ponder. This is an overview of what is known in general http://www.securityartwork.es/2013/10/30/badbios-2/?lang=en Here is a current thread https://plus.google.com/app/basic/stream/z13tzhpzvpqyuzv1n23cz52wykrrvjjce some very interesting posts there. Newest at the bottom. Crazy weird. Spyware swag http://www.latimes.com/world/worldnow/la-fg-wn-russia-g20-summit-gifts-spy-devices-20131029,0,1499023.story I don't know what to make of this kind of news or reality. It's sad news. Not my thing but it's hard to look away from the gore.
Re: [Trisquel-users] “badBIOS,” malware that jumps airgaps
Yes, that is one article I came across as well. The author is too confident and is a lone voice at this point. I doubt there is 100% truth or lies to be found. There is a lot of uncomfortable stuff being revealed and some will pick at it with interest, others will dismiss it with disbelief. Whatever actually happened, continues to exist. I never posted the link wanting anyone to worry. The WTF aspect was interesting. These types of articles affect what I think/see/know about computers and man, my views have been changing.
[Trisquel-users] “badBIOS,” malware that jumps airgaps
Ruiu said he arrived at the theory about badBIOS's high-frequency networking capability after observing encrypted data packets being sent to and from an infected machine that had no obvious network connection with -- but was in close proximity to -- another badBIOS-infected computer. The packets were transmitted even when one of the machines had its Wi-Fi and Bluetooth cards removed. Ruiu also disconnected the machine's power cord to rule out the possibility it was receiving signals over the electrical connection. Even then, forensic tools showed the packets continued to flow over the airgapped machine. Then, when Ruiu removed internal speaker and microphone connected to the airgapped machine, the packets suddenly stopped. With the speakers and mic intact, Ruiu said, the isolated computer seemed to be using the high-frequency connection to maintain the integrity of the badBIOS infection as he worked to dismantle software components the malware relied on. The airgapped machine is acting like it's connected to the Internet, he said. Most of the problems we were having is we were slightly disabling bits of the components of the system. It would not let us disable some things. Things kept getting fixed automatically as soon as we tried to break them. It was weird. http://arstechnica.com/security/2013/10/meet-badbios-the-mysterious-mac-and-pc-malware-that-jumps-airgaps/
Re: [Trisquel-users] [OT] Mobile telephony survey
Siding with Fernando on this--but not as passionately! :) Clearly there *are* many scientific studies that find trouble with cell phones. A recent new one... http://www.naturalnews.com/042323_brain_cancer_risk_cell_phones_mobile_devices.html There aren't none or no studies. People may disagree with the findings, but studies are there. It's too easy to just laugh them all off as nothing when studies exist. Recently wondering about smart meters, as one was to be installed on my home, I learned even though the government gives money for the meters to the electric company, there are absolutely no studies yet on how safe they are! There is one coming out soon. They say. Industry and government has moved forward without study. Why? If there is so little problem, let them prove it. It ought to be easy. The past and current claims used are that the FCC says the meters are safe. The FCC did no studies with meters, their study had to do with skin warmth/burns when in too close contact with similar radiation on people who work with/install devices for less than 8 hours a day. Even though health effects of devices are to be looked at by the FDA, nothing was done at the FDA re: smart meters. Other studies have shown cause for concern but those studies are no good when compared with what? The FDA study that was never done? This makes it easy for fair and learned discussion, right? :) Back to phones, what I've seen/read says that simply using the speaker or a headset tremendously reduces the negative effects. It is prolonged close use that is of concern--to some. Distance makes a huge difference. As to sources, Infowars does not make up information any more than any other news organization does. They repeat news articles, items, and findings that fit the interests of their audience/readership. It is hyped at times, but I have never found any wrong information in that Infowars is quoting other news organizations, government reports, studies, manuals, and so on. Some claims seem unbelievable but upon a closer look are either entirely true or contain a significant element of truth that has been hyped up. Is there a consistent 100% hype-free news organization anywhere? I have seen Infowars articles with 15-20 or more footnote links. Can't say that about most news organizations. I beg for people here to keep their minds open and consider other ideas and opinions in a civil and helpful way.
Re: [Trisquel-users] DNS Leak
Nice instructions here... https://airvpn.org/topic/5586-prevent-leaks-with-linux-firestarter-also-stop-traffic-when-vpn-drops/#entry5642
[Trisquel-users] [OT] Why Our Privacy Problem is a Democracy Problem in Disguise
Habits, activities, and preferences are compiled, registered, and retrieved to facilitate better adjustment, not to improve the individual’s capacity to act and to decide. Whatever the original incentive for computerization may have been, processing increasingly appears as the ideal means to adapt an individual to a predetermined, standardized behavior that aims at the highest possible degree of compliance with the model patient, consumer, taxpayer, employee, or citizen. The invisible barbed wire of big data limits our lives to a space that might look quiet and enticing enough but is not of our own choosing and that we cannot rebuild or expand. The worst part is that we do not see it as such. Because we believe that we are free to go anywhere, the barbed wire remains invisible. Worse, there’s no one to blame: certainly not Google, Dick Cheney, or the NSA. It’s the result of many different logics and systems—of modern capitalism, of bureaucratic governance, of risk management—that get supercharged by the automation of information processing and by the depoliticization of politics. The more information we reveal about ourselves, the denser but more invisible this barbed wire becomes. We gradually lose our capacity to reason and debate; we no longer understand why things happen to us. http://www.technologyreview.com/featuredstory/520426/the-real-privacy-problem/
Re: [Trisquel-users] Trisquel tablet
Most tablets use ARM processors which are heavily Android based. There are some Ubuntu and Debian versions for ARM that some tablets use. Check ebay and go from there with the product names you find for further research. Aliexpress also.
Re: [Trisquel-users] OLinuXino - free alternative to raspberry pi?
Check the linuxgizmos news site for leads. Many boards there.
Re: [Trisquel-users] Secret 3G Intel Chip Gives Snoops Backdoor PC Access
Noticed the following from Lembas' links... Wake-on-LAN support may be changed using a subfunction of the ethtool command. In Linux, the real time clock alarm can be set or retrieved using /proc/acpi/alarm or /sys/class/rtc/rtc0/wakealarm.[1] Alternatively the rtcwake utility may be used which prevents problems when using local time instead of UTC by automatically processing the /etc/adjtime file.
[Trisquel-users] Core Internet institutions abandon the US Government [OT]
In Montevideo, Uruguay this week, the Directors of all the major Internet organizations – ICANN, the Internet Engineering Task Force, the Internet Architecture Board, the World Wide Web Consortium, the Internet Society, all five of the regional Internet address registries – turned their back on the US government. With striking unanimity, the organizations that actually develop and administer Internet standards and resources initiated a break with 3 decades of U.S. dominance of Internet governance. A statement released by this group called for “accelerating the globalization of ICANN and IANA functions, towards an environment in which all stakeholders, including all governments, participate on an equal footing.” http://www.internetgovernance.org/2013/10/11/the-core-internet-institutions-abandon-the-us-government/
Re: [Trisquel-users] The Real Story of Lavabit's Founder [OT]
NSA and FBI don't always work well together. I'm not sure who has what capability. NSA may have the toys but FBI wanted the keys. Bothers me that Lavabit/Levison suggested even we can't access your email on their website but later admits how easy it would be to do just that with the keys he was required to hand over! Then he takes this noble stand and shuts down his business I feel you deserve to know what's going on... And it took until just a few days ago for GoDaddy to revoke the Lavabit certificate. http://www.forbes.com/sites/kashmirhill/2013/10/09/godaddy-pulls-lavabits-security-creds-because-the-government-got-ahold-of-its-encryption-keys/ Is it lies, people sleeping on the job, foul ups, or strategic kahoots? Something just isn't real enough.
Re: [Trisquel-users] Nomination time for the 16th Annual Free Software Awards
Seconded. Sent my nomination in. Trisquel and its team deserve greater recognition and thanks.
[Trisquel-users] The Real Story of Lavabit's Founder [OT]
…So when the feds said they wanted to monitor the email of the target(s) in real time, and when they asked for Lavabit’s private SSL master key to do so, Ladar deduced that they’d come up with a way to figure out those third keys, the session keys. Until now, uncovering a session key was thought to be theoretically possible but also so difficult that it would be impractical. Ladar realized the FBI had been able to “reduce” the problem such that it had the ability to uncover session keys in real time. This meant that once they had access to the private SSL keys, they would be able to monitor everyone who was accessing Lavabit and examine everything being sent to and from its servers. “Nobody knows that capability exists,” Ladar says. He admits he’s just guessing, but then, he would be in a better position than anyone on the planet to guess about such a thing. “That’s why they were trying to keep it secret. They have figured out how to listen to a large number of encrypted conversations in real time. They’ve probably uncovered a weakness in the SSL algorithm. The feeling I got is that they can do it with a single device that has specialized hardware inside it.” http://www.dmagazine.com/Home/D_Magazine/2013/November/Real_Story_of_Lavabit_Founder_Ladar_Levison.aspx
Re: [Trisquel-users] Free software friendly graphics GPU? (Kickstarter fundraiser in progress)
I wonder what the following means? Software drivers are a challenge, and we will work on providing some level of drivers, with the hopes that the community takes them up and pushes them to new levels and provides problem reports to us. Some level of drivers? That seems to be the case way too often. I like the idea, but I'm not clear on who it is for. Gamers? Regular users? Free aficionados? The direction is not clear, at least to me. Hopefully if you receive an answer to your email, it will make more sense.
Re: [Trisquel-users] Novena laptop will be open source
This is something I do not understand, we start to fall behind the mainline. How much of a delay is there in reality? I am not a programmer and do not understand the implication.
Re: [Trisquel-users] Novena laptop will be open source
I will go over (read and ponder) in detail your link. I've read it more than once in the past and I do not understand some parts. It is not a philosophical break; I do not know the details and the significance of the choices regarding some items due to my non-engineering background and experiences. I will find some specific points and create a new thread or find an old one and get up to speed with this. Hopefully.
Re: [Trisquel-users] Novena laptop will be open source
I am not familiar with those details, and not knowledgeable enough in hardware or software to know how that fits in exactly, however I will add that the chip itself has something like 6000 pages of open documentation and the boot is or can be done via u-boot.
Re: [Trisquel-users] Novena laptop will be open source
Someone brought that up re: WiFi in the comments and other cards are available and can be changed because the computer is made to easily come apart. Initially he doesn't intend to make many units and has suggested that orders be done via github and code, sort of a hackers only thing. Something interesting/different about this attempt, is that it is NOT community designed or built. He's doing it all himself. There are pluses and minuses to that approach. It's amazing to see. The plans and documentation being all open forms a base for others to run with perhaps. As he speaks of using people and parts from an area in China that is full of entrepreneurs and copycats, if the machine sells at all, maybe someone there will make more of them. He seems more open than free as he thinks the Debian teams are tough when it come to WiFi. Somehow, I think the standards are even higher around here and with FSF so he probably doesn't share the depth of purity that many or most folks here appreciate or need. The concept of a custom machine (some people dreamed of cherry wood keys) is something I've never thought of. People (hackers) want little access doors and ways to easily plug things in. A hackbook as someone pointed out...seems a little different from a standard computer or laptop. All the hardware, while not powerful, is some of the most documented, open and available hardware there is, and the chip I believe is inexpensive and used often in automotive, industrial applications and will be around and supported for years.
Re: [Trisquel-users] Some current free software friendly hardware
Every element of the Novena laptop will be open source. Idea originated here in December 2012: http://www.bunniestudios.com/blog/?p=2686 Novena Info: http://www.kosagi.com/w/index.php?title=Novena_Main_Page ZDnet Article: http://www.zdnet.com/building-the-open-source-laptop-how-one-engineer-turned-the-geek-fantasy-to-reality-718987/ Interesting quote: ...what Huang would really like to achieve is to demonstrate you don't need a multi-million RD budget to compete in the hardware space. One of the things I've been trying to do for the past few years is change the way that people think about hardware and [to get over] that it's not just this impenetrable thing that only big companies can do, he said. -- Note that a blob-free driver for the Vivante GPU is available and improving: Wladimir J. van der Laan https://github.com/laanwj/etna_viv https://github.com/laanwj/mesa Looks to be 100% free.
[Trisquel-users] Novena laptop will be open source
Split this off from my original thread https://trisquel.info/en/forum/some-current-free-software-friendly-hardware as this is worth watching on its own. -- Every element of the Novena laptop will be open source. Idea originated here in December 2012: http://www.bunniestudios.com/blog/?p=2686 Novena Info: http://www.kosagi.com/w/index.php?title=Novena_Main_Page ZDnet Article: http://www.zdnet.com/building-the-open-source-laptop-how-one-engineer-turned-the-geek-fantasy-to-reality-718987/ Interesting quote: ...what Huang would really like to achieve is to demonstrate you don't need a multi-million RD budget to compete in the hardware space. One of the things I've been trying to do for the past few years is change the way that people think about hardware and [to get over] that it's not just this impenetrable thing that only big companies can do, he said. -- Note that a blob-free driver for the Vivante GPU is available and improving: Wladimir J. van der Laan https://github.com/laanwj/etna_viv https://github.com/laanwj/mesa Looks to be 100% free.
Re: [Trisquel-users] Some current free software friendly hardware
Interesting way to build your own custom boards quickly and inexpensively, exactly as you want them. Set up fee is waived for now. http://linuxgizmos.com/crowdfunding-a-custom-linux-sbc-the-easy-way/ I am not sure if there are enough (freedom respecting) options there yet. If anyone notices anything positive/negative, please post and let us all know. I don't formally know how to design a board, but was able to easily place objects etc. https://geppetto.gumstix.com/ Here are many boards http://linuxgizmos.com/category/boards/ and devices http://linuxgizmos.com/category/devices/ to check out. I've only spent about an hour so far on this site but I will be thoroughly going through these leads. There sure are a lot of existing products here: http://www.aliexpress.com/category/70803003/mini-pcs.html I am checking out these devices looking for the right mix of freedom respecting components. If anyone has an interest in browsing, reading, picking, noticing, whatever, please update us with your findings.
Re: [Trisquel-users] Secret 3G Intel Chip Gives Snoops Backdoor PC Access
vPro manual from intel http://www.intel.com/content/www/us/en/enterprise-security/3rd-gen-core-vpro-data-protection-paper.html Good discussion at Wilders Security on this topic as well. Sandy Bridge background, intesting post... http://www.wilderssecurity.com/showpost.php?p=2286063postcount=46
Re: [Trisquel-users] vPro technology and thinkpads
vPro manual http://www.intel.com/content/www/us/en/enterprise-security/3rd-gen-core-vpro-data-protection-paper.html
Re: [Trisquel-users] Secret 3G Intel Chip Gives Snoops Backdoor PC Access
Wanted to add a footnote on the 3g, right from the source. Re-read some earlier posts... Jeff Marek, director of business client engineering for Intel, acknowledged that the company’s Sandy Bridge” microprocessor, which was released in 2011, had “the ability to remotely kill and restore a lost or stolen PC via 3G.” https://trisquel.info/en/forum/million-dollar-question-concerning-hardware-we-use#comment-43144
Re: [Trisquel-users] Secret 3G Intel Chip Gives Snoops Backdoor PC Access
The link above from an opinion article published in 2008 contains many details, a must read... Same link here below: http://www.tgdaily.com/hardware-opinion/39455-big-brother-potentially-exists-right-now-in-our-pcs-compliments-of-intels-vpr
Re: [Trisquel-users] vPro technology and thinkpads
More on vPro. Excellent article from 2008, has quite a few specifics. https://trisquel.info/en/forum/secret-3g-intel-chip-gives-snoops-backdoor-pc-access#comment-43317 Also, Intel Anti-Theft, doesn't need vPro to work as far as I know. One of the links has a list of ThinkPads which contain anti-theft features. https://trisquel.info/en/forum/secret-3g-intel-chip-gives-snoops-backdoor-pc-access#comment-43317
Re: [Trisquel-users] Secret 3G Intel Chip Gives Snoops Backdoor PC Access
One is tempted to think well, they would say that, wouldn't they? No one's going to admit to this and see Government and/or military supply contracts lost. Military is different apparently. Go to the bottom of the compatible BIOS list http://www.absolute.com/en/partners/bios-compatibility and look at Xplore Technologies. It says All models except IXC104M Military version So at least one seller on that list offers a military version that does not have these features that we apparently must have. Mistrust is a huge thing now. We can never really trust anyone or anything completely, however when someone has problems, financial difficulty, addictions, whatever, well those things happen and usually in a limited way. The length to which you describe, where infiltration goes to the level of having children with the target, that is very deep, so calculated. There obviously are no boundaries.
Re: [Trisquel-users] Secret 3G Intel Chip Gives Snoops Backdoor PC Access
ARM chips (phones, tablets, some computers) also have something similar. I have not yet found companies supporting those features to the degree of intel, but I haven't looked much yet either. https://trisquel.info/en/forum/some-current-free-software-friendly-hardware#comment-43157
Re: [Trisquel-users] Secret 3G Intel Chip Gives Snoops Backdoor PC Access
Such as was noted by the service provider above, This technology is built into the processor, so this will be activated even before the laptops startup and *will work even without internet* as it is hardwired and it is completely tamper proof. I don't know what that means, but they have stated it clearly. Perhaps it is a radio signal of some kind which gives simple switch like yes/no or on/off instructions, not the real internet, not a cell phone network, not a network in the sense of a standard computer network. I haven't had time to review all the services of the providers intel has listed. I know they don't all offer exactly the same services. From a brief overview, it was startling to see how much they can do. And that they've been doing it for years.
Re: [Trisquel-users] Google brain implants. What do people think?
Until recently I would have thought that publicly available code would be best for such devices too. This link from lembas https://www.blackhat.com/html/bh-us-12/bh-us-12-archives.html#Brossard makes me wonder as the exploit described was quickly built upon coreboot. The openness of the code maybe helped a little too much?
Re: [Trisquel-users] Secret 3G Intel Chip Gives Snoops Backdoor PC Access
MORE Called absolute persistence technology by one of the providers, they say they can send an SMS for immediate lock functionality. http://www.absolute.com/en/partners/alliances/intel With Intel Anti-Theft, Absolute customers can: Trigger an Intel Anti-Theft lock using real-time technology within the Absolute Customer Center, sending an SMS message to the computer and invoking the Intel Anti-Theft lock almost immediately. To take advantage of this SMS-only immediate lock functionality, you will require Intel Anti-Theft supported hardware (Intel Core i3, i5, or i7 notebooks). How it works Hardware The first step is hardware-based and occurs before the device is even built. Through our partnership with computer manufacturers, the persistence module is built into the firmware of desktop, laptop, tablet, and smart phone devices around the world. Each device leaves the factory with the persistence module in place, waiting to be activated. http://www.absolute.com/en/partners/bios-compatibility (Note that even the 7 year old Lenovo X series, considered to be close to free computers, are BIOS and firmware capable for the use of this system.) Software This occurs when the software agent is installed. It’s the step that turns everything on and it’s through this agent that device information is transmitted to IT so they can remotely track, manage, and secure devices. Persistence Even if the firmware is flashed, the device is re-imaged, the hard drive is replaced, or if a tablet or smart phone is wiped clean to factory settings, the agent will simply reinstall and continue to provide hundreds of data points for each device. And it’s a two-way street. The same connection can be used by IT to convey a variety of remote security and management commands back to the device. We’ve provided forensic evidence to close to 5,000 law enforcement members around the world, allowing them to recover over 28,000 stolen devices and put countless criminals behind bars http://www.absolute.com/en/resources/whitepapers/absolute-persistence-technology So, this technology is in the hardware. In a lot of hardware. It needs software to activate it. Many chips now allow installing software remotely even if the computer is powered down, it can be turned on and updated. Not saying this is happening all over the place, it just feels quite out of control to be the owner of a device and be unable to have complete say over what is to be done with it. If alerted to the intent for some control to be added over the machine, that would be one thing. To have the capability to alter the machine without the owner knowing, is not something I wish to pay for or own. These controls make sense in a corporate or government setting, but for personal use, how can one be sure these features are permanently turned off or rendered useless? These are known backdoors. What if we can't be certain they are closed? What about unknown backdoors. It doesn't end.
Re: [Trisquel-users] Million dollar question concerning the hardware we use
…highlights the ability for an administrator to shut down PCs remotely “even if the PC is not connected to the network,” as well as the ability to bypass hard drive encryption. “Intel actually embedded the 3G radio chip in order to enable its Anti Theft 3.0 technology. And since that technology is found on every Core i3/i5/i7 CPU after Sandy Bridge, that means a lot of CPUs, not just new vPro, might have a secret 3G connection nobody knew about until now,”reports Softpedia. Jeff Marek, director of business client engineering for Intel, acknowledged that the company’s Sandy Bridge” microprocessor, which was released in 2011, had “the ability to remotely kill and restore a lost or stolen PC via 3G.” “Core vPro processors contain a second physical processor embedded within the main processor which has it’s own operating system embedded on the chip itself,” writes Jim Stone. “As long as the power supply is available and and in working condition, it can be woken up by the Core vPro processor, which runs on the system’s phantom power and is able to quietly turn individual hardware components on and access anything on them.” The above says it all: a second processor with its own operating system and phantom power supply which doesn't need to be connected to YOUR network (or any existing network you know of) because a secret 3g connection is built in! Free software is great. However once it is installed on a machine with a chip containing these other features, it loses its freedom, as it is at the mercy of the other software built deep inside the hardware chip. It is a huge security and privacy lapse. Encryption is also bypassed. Wow. As RMS says it will take lots of reverse engineering, and perhaps large bounties paid to those who can crack certain features. A never ending cat and mouse game. The apparent old model of disinterested makers of computer hardware who would not reveal their firmware or microcode has changed from disinterest to complete interest in having the power and the benefits of having the keys to the kingdom remain under their control. I can see why they are reluctant to give that power away. And why they often say, What's in it for us if we release the code? It's good to be king.
Re: [Trisquel-users] Google brain implants. What do people think?
A year or so ago (before I bailed for good) when Google changed the way they collect payment for Google Apps, it took 3 tech people 55 minutes to help me find out how they could accept my credit card. Brain implants? Not yet.
Re: [Trisquel-users] Some current free software friendly hardware
A few new things... 1.) ARM processors also have built-in system restriction features available (DRM). http://www.arm.com/products/processors/technologies/trustzone.php PDF http://infocenter.arm.com/help/topic/com.arm.doc.prd29-genc-009492c/PRD29-GENC-009492C_trustzone_security_whitepaper.pdf 2.) Since it apparently is ethically ok to use hardware as is, (Is there such a thing as unethical hardware?) if ARM TrustZone is just another processor mode, can such hardware be used along with free software code to ensure the hardware DRM features for instance are turned off? Can interacting with these features be used to keep things free rather than locked down? 3.) I suppose there could be (are?) backdoors or secret keys in these trusted features? http://comments.gmane.org/gmane.comp.hardware.netbook.arm/7461 http://http://trisquel.info/en/forum/secret-3g-intel-chip-gives-snoops-backdoor-pc-access 4.) Also found this project to build a laptop. http://rhombus-tech.net/community_ideas/laptop/ 5.) Still looking into Loongson options.
Re: [Trisquel-users] Secret 3G Intel Chip Gives Snoops Backdoor PC Access
It's in the chip. This video at around the 50 second mark says laptops do not have to be connected to a network and can still be disabled remotely. How? https://www.youtube.com/watch?v=7S4BUAm68eg Disable lost or stolen laptops, even if the PC is not connected to the network. (With a superscript 8) There is a footnote at the end of the video. ...Requires an enabled chipset, BIOS, firmware, and software... Strangely it says nothing about hardware. Also needs a ...subscription to a capable service provider... List of providers http://www.intel.com/content/www/us/en/architecture-and-technology/anti-theft/anti-theft-service-providers-enterprise.html http://www.allieddigital.net/us/IntelAT/ Intel® Anti-Theft Technology is an intelligent way for you to help secure the mobile assets of your workforce. This intelligent security technology is available on 4 generations of laptops based on Intel® Core™ and Intel® Core™ vPro™ processor families. This technology is built into the processor, so this will be activated even before the laptops startup and will work even without internet as it is hardwired and it is completely tamper proof. http://www.securedisable.in/WhySecureDisable.html Looking at several of the companies on intels service provider list is very interesting. Way lots of control so to speak. Who's to say that like the onStar non-subscribers who are still being tracked, that something similar is not available on laptops to the right people or agencies? http://www.popularmechanics.com/technology/gadgets/news/the-onstar-incident-isnt-about-digital-privacy-6499661
Re: [Trisquel-users] Watching Vevo videos without Gnash
Excellent! Thanks.
Re: [Trisquel-users] Million dollar question concerning the hardware we use
Well, that's bad but there are other things also. Like when timely payments are not recieved, the car can be remotely disabled. http://www.mattberkus.com/blog/miss-your-car-payment-car-gets-disabled/ But what if I have paid in full and now own the car? The feature may still be there. Why should such a thing be on my car once I've bought it?
Re: [Trisquel-users] Million dollar question concerning the hardware we use
Amazing link, thanks. Hardware backdoors. Built on top of free software (coreboot) in 4 weeks. Really, really, really hard to detect as malicious. 230 motherboards affected. Not dependent on an operating system. So much for free software. Laws would be nice, except plausible deniability and non-attribution would make enforcement near impossible. This is good to know, sad as it is to see. Maybe the best hardware in terms of freedom, is no hardware at all. Or at least no hardware that is ever connected to the internet, a never updated separate machine. Hadn't been thinking in that direction. Thanks.
Re: [Trisquel-users] Some current free software friendly hardware
Thank you everyone for those excellent points. The clarity of my definitions are not good, too much of doing my own thing I guess. Usually I do not have to explain things to a high degree of detail. More often I don't have to explain things at all, because no one cares! haha. As I've said I will continue doing my own thing. Your points are well taken. One thing still has me concerned though. Thank you magic b for getting that RMS quote. When he says The microcode was just something that was inside of a chip. It might as well have been a circuit. It was not something we had to care about. But when it became something that users were expected to replace, then it changed into software installed in a computer, which is something we do have to care about. Ok. When ...users were expected to replace, then it changed... what about when something changes the functioning of the hardware and users don't know about it? Is that something we have to care about too in a freedom sense? Will free software provide freedom on such a machine? Does anyone know how vPro works, or DASH features? Can they be opened/closed/started/stopped/changed without the user knowing? Absolutely. The system administrator can do things and the user doesn't have to know. Excellent old vPro demo https://www.youtube.com/watch?v=wlj7u3tOQ9s (start at 1:20) Back then, there were 15 out-of-band features. Does anyone believe there are fewer now? As a private individual using my own money for my own computer, do I need anyone to administrate it besides me? Can I make sure that I can lock out such features? Can I make sure such features aren't there? I know I do not want such features. That, plus I want the ability to run free software. There are still non-corporate secret or spying issues I suppose but those are likely focused on mainstream devices if mass surveillance is the goal. Non-mainstrean products that are simple or basic and are made by small nearly unknown companies seem less likely to have such junk in them. That is the type of hardware source I will continue to look for. If I find something interesting, I will post it here. If anyone is able to correctly interpret what I am looking for and knows of a good lead, please post it here as well. Thank you.
Re: [Trisquel-users] Million dollar question concerning the hardware we use
Privacy and security concerns became more real for more people with the revelations of Snowden. Security is an ongoing and ever-changing thing. Always was. There are new exploits all the time, security is never fully achieved. Always trade offs. Online privacy in the form of being anonymous isn't possible practically speaking. Being pseudonymous is more possible, having separate online identities/habits/hardware and so on. Difficult for most people. If a powerful adversary wants to know something, they will find out regardless of privacy and security measures, probably regardless of law. As a cryptographer and research professor at Johns Hopkins University said recently, Unfortunately active software exploits only work if you have a target in mind. If your goal is mass surveillance, you need to build insecurity in from the start. That means working with vendors to add backdoors. http://blog.cryptographyengineering.com/2013/09/on-nsa.html For decades software was free and the source code was available. That started changing in the 1970's. Stallman believed in those values and saw them slipping away so he did something about it and here we are today. The FSF is against mass surveillance. http://www.fsf.org/search?SearchableText=surveillance Beyond hardware and software there is mind control. This is nothing new. https://en.wikipedia.org/wiki/Panopticon Using an internet of things to implement it is already working. http://techcrunch.com/2013/09/20/apples-iphone-5s-and-5c-launch-draws-big-crowds-including-biggest-ever-line-at-nyc-flagship-store/ CIA Director Promotes Surveillance, Endorses Bugging Home https://www.youtube.com/watch?v=CJBfp7ySHtE Freedom is contrary to this.
Re: [Trisquel-users] Youtube trying xss attacks?
I've gotten that too. I have no idea what it means though.