About
Accounts
Friends
-
Loading…xmw about 6 hours ago -
Loading…lazzzor 16 days ago -
Loading…noisetales about 8 hours ago -
Loading…biguns 4 months ago -
Loading…e-gruppe about 11 hours ago -
Loading…riot about 9 hours ago -
Loading…FreXxX about 22 hours ago -
Loading…finkregh 2 days ago -
Loading…squall 1 day ago -
Loading…devloque about 17 hours ago - +27
Click here to check if anything new just came in.
May 11 2012
Netz-Sperren in Schulen: NRW zensiert Piratenpartei
In Nordrhein-Westfalen sperren manche Schulen das Wahlprogramm der Landes-Piratenpartei. Sie setzt sich für die Legalisierung von Cannabis ein, also wurde die Seite der Kategorie “illegale Drogen” zugeordnet. Die Herstellerfirma weist die Verantwortung von sich.
Kai Schmalenbach postete heute einen Screenshot, laut dem die Seite http://www.piratenpartei-nrw.de/landtagswahl-2012/wahlprogramm/ in einer Schule in Soest nicht aufrufbar ist:
Fukami bestätigte die Echtheit, Benedikt Fuest berichtete auf Welt Online.
Die eingesetzte Software ist Schulfilter Plus der Firma TIME for kids Informationstechnologien GmbH. Dort wirbt man gleich auf der Startseite: “Pornografie, Drogen und Gewalt müssen Schüler nicht mehr ertragen.”
Von netzpolitik.org damit konfrontiert, wollte TIME for kids nicht Schuld sein. Man stelle lediglich eine Software und eine Sperrliste zur Verfügung, aber “wir sperren nicht”. Verantwortlich für die Sperren sind die Kunden, also Schulen. TIME for kids betreibt eine Filterdatenbank von IBM, die das Web crawlt und Seiten anhand von Algorithmen kategorisiert, auch eine händische Eintragung oder Bearbeitung ist möglich. Dabei kommen “immer mal wieder Fehlkategorisierungen” vor, aber “unser Filter hat einen guten Ruf”.
Das Wahlprogramm der Piraten thematisiert nun mal Cannabis und das ist illegal. Kein Wunder, dass es in die Kategorie “illegale Drogen” zugeordnet wurde. Dass die Seite aber in einer Schule gesperrt wurde, sieht man auch als Fehler. Schuld sei wieder die Schule, immerhin ist die verwendete Filterliste schon einige Jahre alt und nicht mehr aktuell.
Vor zwei Jahren war durch TIME for kids Software auch netzpolitik.org an manchen Schulen gesperrt.
Diese Vorfälle zeigen beispielhaft die Probleme mit Internet-Filtern a la Zensursula und Jugendmedienschutz-Staatsvertrag. Einen Filter ohne Overblocking gibt es nicht.
maha_online via
return13
Grafische Darstellung der gesamten Wassermenge der Erde im Vergleich zum trockengelegten Globus (Illu.). | Copyright: Jack Cook, Woods Hole Oceanographic Institution / USGS)
Wie Jack Cook von der Woods Hole Oceanographic Institution und der USGeological Survey (USGS) erläutert, beträgt der Durchmesser einer solchen Kugel gerade einmal 1.386 Kilometer (s. Abb.), was in etwa der Entfernung zwischen Paris und Warschau entspricht und weniger ist als die Hälfte des Durchmessers des Mondes.
rumpelstilzkin via
noisetales
rumpelstilzkin via
FreXxX
May 08 2012
The Internet Kill Switch; With Global Wiretapping Capability?
One company to rule them all
One company to find them;
One company to bring them all
And in the darkness bind them
Nice, innit? See the "Last Updated" part also.
The brand-protecting, anti-piracy company MarkMonitor Inc. has had all these DNS names under its control for several months now.
They also control the Wikimedia name services, even though that doesn't show up on the Wikimedia.org whois record. There are many others. Apple.com falls under their jurisdiction, as does ubuntu.com. Nokia.com? Yep, under MarkMonitor. See a pattern here?
MarkMonitor also is a trusted Certificate Authority; they have, in essence, the means to fabricate safe-looking SSL connections for you, to whichever host they want. Your browser will not sound any warnings of possible man-in-the-middle attacks.
MarkMonitor is a company that can own most people's "Internet" in minutes. It now controls all three top free e-mail providers directly, and I suppose it's safe to say, most currently active social media sites too.
See for yourself. Whois yahoo.com, whois google.com, whois gmail.com, whois facebook.com, whois fbcdn.com, whois hotmail.com, whois msn.com... the list seems endless.
How'd all this happen?
This company has acquired complete access to monitor, eavesdrop, censor and fake any user of these popular Internet services in about one year (2011). In almost complete silence. For several of the sites, it also provides "firewall proxy" services, which means it is actually paid to intercept all communications. In and out.
The situation reminds me of Joseph Lieberman's 2010 initiative to create an "Internet kill switch" for the U.S.
The government only needs to control this one company, and most social media, most free e-mail, most search engines will be under its control. Not to mention most operating systems, for both computers and mobile devices.
Not only inside U.S., but globally. One company to rule them all.
I, for one, would like to ask; WTF is going on? How did these guys, this relatively small domain-hogging and pirate-chasing company, get the resources to simply acquire the DNS records of all the most popular Internet services? How can this be so totally ignored by the media, and even privacy advocates? Even conspiracy theorists seem to be completely ignoring the situation.
Secure communication is an illusion
Only one company to rule them all? As if all this doesn't sound bad enough, the problem is far more widespread. MarkMonitor could easily act as a global "kill switch" for the sites under its rule. But as it turns out, most anyone with some resources could just as easily impersonate MarkMonitor itself.
Because, as one might have noticed in the past few months, the whole SSL certificate scheme is broken. Not in a technical sense - there's no known inherent weakness in the algorithms. But the whole SSL protection is based on trust, and that trust has failed us.
According to several sources, SSL CA certs are routinely given out to anyone willing to pay for them. As The Register points out in its analysis on TrustWave spying scandal:
"Those defending Trustwave suggested that other vendors probably used the same approach for so-called "data loss prevention" environments - systems that inspect information flowing through a network to prevent leaks of commercially sensitive data."
...
"In fact Geotrust was openly advertising a 'Georoot' product on their website until fairly recently."
http://www.theregister.co.uk/2012/02/14/trustwave_analysis/
Oh, so the ability to impersonate anyone is normal day-to-day practise for big business? Just imagine what government agencies must be doing - for example in Sweden, where the military intelligence organisation FRA has the mandate to monitor all traffic across borders.
Who can seriously claim they trust all the hundreds of different CA companies, several of which have been caught red-handed with selling out their customers' security, or covering up very serious breeches (up to and including their root certificates being stolen).
http://nakedsecurity.sophos.com/2011/04/06/eff-uncovers-further-evidence-of-ssl-ca-bad-behavior/
MarkMonitor is a "brand-protecting" company. Traditionally its business has been reserving domains to protect brands. You buy its service, it makes sure that nobody else can have "mybrandsucks.com".
Also, they're an anti-piracy outfit. Their entire business is based on protecting IP.
http://www.marketwatch.com/story/markmonitor-to-exhibit-at-internet-tech-policy-exhibition-and-reception-to-be-held-on-capitol-hill-2012-01-24
Just saying, someone should probably question them and their customers. Why does Google, who always "do things themselves", externalise these vital parts of its network? How come all the competing phone and OS vendors, who sue each other all the time, suddenly trust this one company?
And then there's all those competing social media companies, who practically thrive on what others call "IP theft", including their users sharing text, images, music, videos and links?
Big questions. Defy common sense. Need answers.
Freeminder23 via FreXxX
May 05 2012
abaddon
stechlinger
useyourillusion
deusexmachina via
devloqueMay 03 2012
scythe via noisetalesMaybe Soup is currently being updated? I'll try again automatically in a few seconds...
