Category: Politics

Steven Levy interviewed Google’s Bradley Horowitz about Google+:

Wired: Some users are chafing at Google’s insistence that they provide real names. Explain the policy against pseudonyms.

Horowitz: Google believes in three modes of usage—anonymous, pseudonymous, and identified, and we have a spectrum of products that use all three. For anonymity, you can go into incognito mode in Chrome and the information associated with using the browser is not retained. Gmail and Blogger are pseudonymous—you can go be captainblackjack@gmail.com. But with products like Google Checkout, you’re doing a financial transaction and you have to use your real name.For now, Google+ falls into that last category. There are great debates going on about this—I saw one comment yesterday that claimed that pseudonyms protect the experience of women in the system. I felt compelled to respond, because I’ve gotten feedback from women who say that the accountability of real names makes them feel much more comfortable in Google+.

Notice that Horowitz did not answer the question, and what he did say was just ridiculous nonsense. Steven Levy at Wired didn’t seem to notice, or care.

Horowitz tries to make us think that we need our real name when making a financial transaction.  Thousands of years of currency proves that is not the case.

Horowitz then goes on to blurrily equate making a financial transaction with sharing videos of cats on Google+.

And then the cherry on the top: Google+ protects women.

This was the closest there was to a serious question in the whole interview and Horowitz just laughed out of his arse at it.

(more…)

The CIA Freedom of Information website had the dumbest security hole in it.  With all the recent hoo har about the “Family Jewels” documents, you’d expect they’d do a quick once over on this stuff.  All the textual content on the document view pages is generated directly from variables passed in the url – with no input validation.

This opens them up to cross site scripting attacks (XSS) and really is just stupid.  Lucky they aren’t the GUARDIANS OF THE LARGEST CACHE OF SENSITIVE INFORMATION IN THE WORLD or anything – *phew*.

Anyway, using this bug, I made a website where you can write your own documents and publish them on the CIA FOIA website:

http://geekz.co.uk/cia-foia/

I guess that from tomorrow, any mail for me should be addressed to Guantanamo Bay.

Actually, technically you’re the ones doing the exploiting by using the links my site provides – so, you know, at your own risk and all that.

An example here.

The High Definition DVD encryption got cracked a couple of months back, but recently the AACS licensing authority have been threatening people who discuss it. At the core of this is the processing key, which can be used to decrypt all HD DVDs. The key is just a big number. The AACS assert that the number is illegal to disclose.

If you were counting a large number of something, you’d have to skip this particular number (or whisper it) because the AACS believe they control it.

Anyway, we don’t quite have the DMCA here in the UK, so I can write that number here:

09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0

Without this work, you could not play legally bought HD DVDs with free software applications.  You could not play legally bought HD DVDs that were from another country.  You could not transfer legally bought HD DVDs to your hard disk for easy access, or to your portable movie player.

One might argue that you shouldn’t be purchasing goods from a company that is at war with you. Whilst I agree, it’s not that easy to find companies that aren’t at war with you and I support work like this to take back our freedoms.