Re: Presumably then…
"…you'll be required to provide your passport number when making a call from a payphone?"
What's a payphone? I thought Brutish Telecom were removing all of them. Either that or making them credit card only.
229 publicly visible posts • joined 23 Mar 2007
"actually gotten around to properly defining unauthorised access yet?"
What is wrong with the existing definition?
The existing definition consists of two parts:
- the access is unauthorised, that is, the owner has not given permission
- you know the access is unauthorised
The knowledge of what access is unauthorised is a combination of explicit notices and commonly accepted attitudes. If necessary it is a jury that decides.
In a similar way, I don't have a notice on my car listing the people who are allowed to drive it. But, just because the door is unlocked and the key in the ignition it doesn't give you permission to drive it away. This is a commonly accepted attitude. It doesn't need a definition in the law.
"The crime was committed on US soil"
The question isn't new. The law already has a way of resolving the question of the location of a crime. You can stand in one country, fire your gun and kill someone over the border in another country. Does the murder take place where you fired the gun or where the person dies?
It will depend on the definition of the crime. From the definition you can work out the location of the relevant events. I couldn't quickly find an online source, but I guess that murder occurs where the mortal wound occurs. But attempted murder where you pulled the trigger.
So the question in this instance is: does the crime take place where the commands are typed or where the victim's computer is located? Certainly the Computer Misuse Act can apply. But the victim didn't report the problem to the UK police.
A quick check shows some of the domains available for four years time.
londonticketing.net
londonticketing.org
londonticketing.co.uk
londonticketing.org.uk
londonticketing.me.uk
londonticketing.ltd.uk
london2012.ltd.uk
londonolympics.ltd.uk
2012london.ltd.uk
2012london.uk.net
olympicslondon.ltd.uk
olympics2012.ltd.uk
olympics2012.uk.net
olympics2012.gb.com
2012olympics.ltd.uk
londonolympictickets.ltd.uk
ticketsforlondonolympics.org
ticketsforlondonolympics.org.uk
ticketsforlondonolympics.me.uk
ticketsforlondonolympics.ltd.uk
When I was first in IT security
I was gentle, I was sane.
Then I met a Civil Servant
With lots of toys and half a brain.
Rat-tat-tat the olduns told me.
Rat-tat-tat, that’s what you do.
Double-tap between the eyes.
Get ‘em first ‘fore they get you.
“A Blackberry”, says I, “They’ll never need it”.
“A Game Boy is all they need”.
I turned to drop and log the firewall
When the Advisor appeared with requisition greed.
Rat-tat-tat the olduns told me.
Rat-tat-tat, that’s what you do.
Double-tap between the eyes.
Get ‘em first ‘fore they get you.
To sack a Civil Servant’s a dreadful shame,
‘Cos every one’s an Oxbridge son.
Take the ‘userdel’ away from admins
Issue every one a gun.
Now rat-tat-tat with your old Lee-Enfield,
Hand grenade, or blunderbuss.
With the SAS on admin duty
We’ll get ‘em first, ‘fore they get us.
Mine's the one with the Fred Wedlock song book in the pocket.
I'm a clerk in a bank in South Africa and I've found an account that holds 137m Rand (out of the 199m Rand) that was stolen by a group of hackers. They have now been arrested and are unable to recover their proceeds.
I know you are a trustworthy person and I need your help to get this money out of the country. If you help me I will give you a quarter of the money (34m Rand).
Sadly I am only a humble bank clerk and cannot afford the set up the necessary accounts and secure the required paperwork to get this money out of the county. Please send me £1,450 to cover the legal fees.
The telephone industry already keeps records of time, duration, location, volume and number called. The telephone firms need this for billing purposes. We can easily understand the usefullness of this usage data when trying to track criminals, identify associates or locate missing people.
How do you map this onto IP communications in a way that is both useful and affordable? An obvious minimum is time line went active, IP address assigned, duration and data volume. The trouble is, ISPs don't need all this for billing purposes. They may aggregate the data volume for capped services. But the IP address isn't needed for billing. So the first challenge was simply to get the ISPs to retain details of DHCP leases and line up/down activity. The aim is to ensure a minimum set of data is retained by all ISPs. And retained for long enough to be useful.
Other types of record will depend on what services the ISP provides. The Home Office know that they will be unsuccessful if they require large amounts of new data to be collected. For example, most mailers automatically keep logs. But these logs are recycled after a few days. The aim is to ensure that any data that is collected is retained for long enough to be useful.
The scale of the problem is immense. If I've got the figures right the total UK energy consumption is a bit over 1% of the total solar radiation received by the UK. Allowing for conversion efficiency we may need to use 10% of the land area for energy collection.
Please check my figures.
The article says that the UK energy consumption is 2.7 * 10^15 W/year.
The land area of the UK is 2.4 * 10^11 m2.
The insolation at UK latitudes is about 8 * 10^5 W/m2/year.
Giving a total solar radiation of about 200 * 10^15 W/year.
We’re doomed. All doomed.
A quick Google for
<script src=http://www.nihaorr1.com hackersafe
shows three sites that were victims of SQL injection yet subscribe to Hacker Safe.
Currently the Hacker Safe logo shows as a blank space. But the link is still there on the page. Is this really adequate for the customer – the hackersafe logo or a blank? If a site fails to respond surely the image should become “Warning unsafe site”.
I wonder what sort of warning McAfee provided. Certainly these sites failed to modify their code and suffered the consequences.
(1) Access to directory listings of the web site can reveal pages that are not linked in. Perhaps the document with the turnover figures that will be released at noon. Perhaps ini files or server side include files with configuration or authorisation details.
(2) Access to directory listings shows that their system build, configuration and testing process is flawed. If they missed and obvious thing like directory listing what else did they miss.
So the Act will criminalise the depiction of activity "which threatens a person’s life".
Doesn't waving a knife around threaten someone's life? They are not actually hurt. Merely the threat.
But a video of someone actually being raped seems to be okay. No threat to kill, just forceably restrained. No injury. And they are alive and human. No problem.
"I knew it, you're all still racist against the Paddies, aren't you?"
And I'm also prejudiced against the people of Kent who travel to the station Bat & Ball. And the residents of Robin Hood’s Bay in Yorkshire. And Davidson’s Mains area of Edinburgh. And Adam’s Green, Dorset.
Mine's the one with the gazetteer in the pocket.
I'm sure we could debug the code for @Steve Roper. Whether it's the simple ~= should be =~ or the fact that the double quote character " is transformed into the bizarre string &;quot; or that the quote character ' is transformed into a hash symbol #.
This code is fundamentally flawed and is an example of how it is too easy to write a bit of code and believe you are safe. If you are going to filter the input like this then you should allow data that is known to be safe and remove or modify everything else. As we can see from this example, single quotes and double quotes are included but not back-tick. Round brackets are included but not square or curly brackets. What about at or dollar or percent or double hyphen that can have special meaning. The list goes on.
I've seen sites that try to use mechanisms like this. The CEO has to deal with complaints when Mr O'Connor can't book tickets because his name has been garbled.
@umacf24 You are correct. This is an exploit.
@Mark Flingstone - I agree completely.
I wonder .... is the use of a "porcelain device" sufficiently reliable. Just thinking about it creates nausea. But is this enough. Don't you need a Mocha topping from Exlax trigger the right results? Even better - chocolate chip muffins.
It was on the radio earlier this week, a headmaster was discouraged from nicking the chocolate digestive biscuits. Spent the afternoon in a much smaller office.
"Wow... the USA copies the UK for a change"
I wonder who will take the credit?
I doubt if Prudence Brown has had enought time or cosy chats to get the idea across.
So, this must be a parting gift from Saint Tony and his NuLabor.
"I will not be pushed, filed, stamped, indexed, briefed, debriefed or numbered!"
No, no. C02 won't do it. We need something solid.
Soot is carbon particles. We need a lot of soot in the upper atmosphere. This will knit together to form carbon fibre. And we get a global protective jacket. Problem solved.
So, lots more coal fired power stations. And burn all the forests.
Mine's the one with smoke coming out the arms.
"isn't having luddite in illuminated letters (LuddLite anyone?), a bit of a contradiction?"
Ah! I was thinking illiminated as in manuscript, Lindisfarne Bible, etc etc. Nice gothic hand crafted lettering with ornate decoration.
Oh well, I just have to stick to the coat made out of a hand-woven tapestry.
Hey Wacky Jacqui why don't you do something about terrorists?
Why don't you get all Muslims to register their e-mail addresses then you can get YouTube to block them and they won't be able to share their martyrdom videos.
While you're at it, get all the spammers and phishers and 419ers to register.
Go the whole hog. Just ban the Internet.
Mine's the one with luddite on the back in illuminated letters.
A large number of men have been charged with Indecent Exposure. As the policewoman explained: "They all have the equipment. Sooner or later they would have exposed them. We stopped them before this happened. It's really disgusting how men are allowed to go around and don't have to wear proper restraints."
I'm still wearing my flasher mac. Here, take a look.
"You had me going there for a moment, but I thought $53bn was a little steep for BitTorrent (and for Comcast!)."
Where does it say US Dollars?
This morning 53bn Zimbabwe Dollars would pay for one days parking at Heathrow T5. This afternoon it's just about enough for a skinny latte.
Mine's the one with the gold Krugerrands still in the lining.
"originally arrested under the Serious Organised Crime and Police Act which restricts political protest within a kilometre of Parliament."
"Does anyone else find it scary that it is illegal in a country that is suppose to be democratic with free speech to have such a law in place. Does that law not circumvent the purpose of a democratic society."
It really isn't much of a restriction imposed by SOCPA. You merely have to apply for permission a week in advance. Try and find a copy of Mark Thomas' My Life in Serious Organised Crime.
http://www.bbc.co.uk/radio4/comedy/markthomas.shtml
http://www.markthomasinfo.com/audio/default.asp
Apparently the ghost of Sir Winston Churchill applied to hold a demonstration (about free speech) and was given permission. Having received permission for one demonstration Mark Thomas was given a police escort through the middle of an unlawful demonstration by anarchists. He also holds the record for the most lawful demonstrations within 24 hours.
Mass lone demonstrations are held on the third Wednesday of each month.
"Also why do the police keep interfering in civil matters?"
See Section 107 of the Copyright, Designs and Patents Act 1988 titled Criminal liability for making or dealing with infringing articles, &c
http://www.opsi.gov.uk/acts/acts1988/Ukpga_19880048_en_1.htm
It becomes a criminal offence if the copyright infringement is in the "course of a business". In essence, it's a civil offence for users and a criminal offence for dealers.