Filesharing is the democratic choice

18 April 2008

If 20 million people in the UK have been or are involved in filesharing, then that is more people than voted for the government.. With 20 million people, filesharing is not a crime, it is a mandate. The government, policy and the old media industries need to find fresh approaches because the cultural changes at work cannot be undone.

16 March 2008

The end of Britannia

For the ascension of George I, a song was commissioned, one that celebrated both the act of union and the hard fought for independence from Europe, the chorus went:

> Rule, Britannia! Britannia, rule the waves! Britons never, never, never shall be slaves!

Today, all the warships in the Royal Navy won't help when us Britons have become slaves inside our own country, tracked and counted like a flock of cattle.

20 January 2008

Ray Beckerman is a New York Lawyer and the author of Recording Industry vs The People, a blog covering "the RIAA's attempt to monopolize digital music by redefining copyright law, through the commencement of tens of thousands of extortionate lawsuits against ordinary working people".

21 November 2007

Gordon, where are the CDs?

In 1945-6, the British government brought in a system of child benefit, this paid parents a cash payment of 5 shillings per week per child. Today in 2007, for your first child, you get £18.10 a week (38 dollars) per week, and £12.10 (25 dollars) for every additional child.

26 October 2007

Now for something completely different...

Almost everything in computer software today has roots in the work done from the late sixties to the early eighties in universities such as the University of California, Berkeley and the Massachusetts Institute of Technology. Back then, the Computing Industry was dependent on the knowledge and expertise contained within the hallowed labs and bearded academics of such Universities.

04 October 2007

19 September 2007

Tazering is putting around 3,000 kilovolts into a person with significant chance of heart failure or internal or external burns.

Occasionally you hear about someone who was electrocuted by mains electricity, well that is only 240 volts, not 3,000,000 volts.

03 September 2007

A series looking at different models of control:

03 September 2007

The crowd makes the ballgame

There are some horrible diseases such as Alzheimer's, Parkinson's, cystic fibrosis, certain cancers and Creutzfeldt-Jakob disease that involve 'misfolded proteins'. If biologists can better understand protein folding, then it might shed light into how to cure these diseases.

22 August 2007

Autobots Roll Out

I was a subscriber to the British version of the Transformers comic as a child. It gets worse, in the original 1980s movie, the scene when Opitmus Prime died, I burst out into tears (I was 7 or 8 at the time) and I was not the only one by any means. Prime, the personification of good and courage, led the decisive final push that won the battle but he was mortally wounded in the process.

19 July 2007

Three short reflections on binary absolutes:

19 July 2007

Almost every aspect of our modern technology is filled with iconography and metaphors from the Judeo-Christian tradition (i.e. the 'West'), perhaps not surprising as all technologies are man-made systems, made, that is, in the image of their creators. Some of these links are obvious, I am writing this post in a web browser called 'Epiphany', then I will 'save' it, and then it will be available as part of the Ethernet (i.e. the heaven-net). Some of these links are not so obvious. in this post I look at binary numbers, the basis of all computing.

What is truth?

15 July 2007

So following on from part one, we have True and False in Python, which are somewhat equivalent to the Boolean 1 and 0:

> "The two-element Boolean algebra is the simplest Boolean algebra, ... having just two elements, named 1 and 0 by convention." Source

14 July 2007

Iverson VS Boolean?

In my recent post, Python CGI contact forms, I open sourced my little contact form processor I use on my webpage and solicited comments from you, the reader.

27 June 2007

Or why does all discussion end up on the Holocaust?

As you know I am an Arts graduate not a Computer Science one, I have degrees in Economics and Theology, so I thought I would explain one reason why I think open source is so important for the future of society. Apologies if it is a bit too Richard Stallman for some of your taste - I promise not to grow a beard. In the next post, I will talk about something more practical, the BBC and their Microsoft lovefest.

14 June 2007

Mark takes a raincheck on the MicroBucket

Microsoft is rattling the patent sabre again. Software patents are not legal in the UK and nor should they be. Source code is a literary work, and like all other literary works, copyright is the appropriate legal protection. For the reasons for that, I will refer to a recent podcast featuring Ubuntu's Mark Shuttleworth, well worth tuning in.

07 May 2007

I myself have gone for the Creative Commons-type approach of supporting Indie bands to replace the oppressive multi-national companies, rather than filesharing. However, I do not judge people who do fileshare, having been born a Christian, I must take my moral authority from Christ alone and he does not seem to be against it. An early share-alike attribution licence was 'Take, eat, this is my body given for you, do this in remembrance of me'. Sharing is the hallmark of faith and morality (if you do not believe me read Acts 2 or the Sermon on the Mount), more on this subject another day, but suffice to say, the New Testament spread across the globe without the need of a Scripture Association of Nazareth protecting the copyright.

Your belief system may have similar concepts, for example, the sharing of manna in Exodus 16 was a radical shock to the economic values of the ancient Jews. In Buddhism, 'dana', unconditional sharing, is a core part of the route to perfection (dana-paramita).

16 April 2007

Thought for the day

In the last fifty years, modern life has become far more complicated than it has been throughout all of human history. Not a bad complexity, apart from when being ill or in hospital, I have never gone a day without eating, even though that food may come from the other side of the world. We can drink water without getting diseases, even though I have little understanding of the processes of flocculation and filtration that bring this about. I can bring up almost any kind of text and any kind of image at the touch of a button. In the words of Google, "I'm Feeling Lucky".

17 March 2007

Well we have given our money and worn our noses, who ate the chocolate Wallace and Gromit? I'm not sure. For those of you not from the UK, Comic Relief is a bi-annual national charity event culminating in a comedy telethon. I watched the second half of the programme last night and the part that really affected me was the feature on human trafficking during the Russell Brand part of the show.

Young, vulnerable women are tricked or forced to come here and spend many hours every day as prostitutes. Raped, hour after hour, day after day. Some of the Comic Relief money is being used to set up safe-housing and support for victims of this trade, although the ones they know about must be only the very tip of the iceberg. I was wondering last night, why as a society are we not stopping this? How can we let this continue?

11 March 2007

200 years ago, in 1807, Britain abolished the slave trade. Before that,: some argued that Britain would be left out of the world economy, that our actions would not matter as others would just take our place, that it would lead to the end of Britain and the British way of life. William Wilberforce did not care about that, he instead made an "Appeal to the Religion, Justice and Humanity of the Inhabitants of the British Empire". Wilberforce was confident in Britain and Britain's influence over the world. Through our example and our rule of the waves, Britain ended the world slave trade within a few decades.

Now I have been listening on the radio about our country buying a new generation of Trident nuclear submarines. Compared to William Wilberforce, Tony Blair is such a grovelling weaselly wet piece of human mould. He could not lead his way out of a paper bag. His snivelling cronies such as Des Browne are even worse. Their arguments are that Britain will not be respected or listened to in the world without nuclear bombs, that we would committing national suicide. Well Britain has already lost its respect and global voice already by Tony's devoted worship of George Bush and our willingness to follow him into a new Vietnam.

Older

About

Hello, my name is Zeth, I'll be your host here.

Command Line Warriors is about taking control of your own technology, it looks at our experiences of computing; especially using GNU/Linux, the Python programming language, the command-line and issues such as techno-ethics, best practices and whatever is cool now. If you take control of your technology then you are a Warrior too!

This site is your site too which means that you can contribute and get involved. You can leave comments using the facility provided. For me, the comments and discussions are by far the best part of the site. So please do have your say!

Latest Discussions

Zeth

May 16, 2008
To Anonymous, I tried your script with some old SSH keys and it did not manage to break into an apparently vulnerable system. 1. The script requires a known username. My system did not allow root logins. 2. After failed three logins, the script's IP address got added to deny hosts.
→ Swap out your ssh keys

Zeth

May 16, 2008
To Anonymous, I said to do three things: 1. Accept the update. 2. Replace your keys. 3. Don't *have a panic attack about it.* And I still stand by that. Most non-technical users won't even be using openssh-server. While the update, blacklists and instructions on how to regenerate comes down automatically for those that do. Indeed, I think this episode shows how fast the free/open source community can move. Everytime the open source software has a panic attack over an in-theory, technically possible, but not actually being used, 'exploit', then proprietary software people say "Look their software is no better, it is just as insecure as ours". However, that is not true. There is a range of exploits, from theoretically possible with some serious preparation and knowledge about the target system, through to automated attacks that will work against any machine without the need for knowledge about it.
→ Swap out your ssh keys

Anonymous

May 15, 2008
Like stefano says, you are being VERY irresponsible by downplaying this as only "theoretically possible with a supercomputer". Linked on the page stefano mentioned is this: http://milw0rm.com/exploits/5622 That will break into your computer in a couple hours is you're using public-key logins, which are considered the safest kind, and are used on many, many machines that are supposed to be extra secure. This is a horrible, horrible problem, and dismissing it does nobody any favours. I'd really suggest you re-write this article to accurately portray how serious the problem is.
→ Swap out your ssh keys

Ryan

May 15, 2008
Yeah, good layout too. Very clear. :) Better than the last, in fact! I'm another python/django nerd, so I'll be listening even more now. I guess one of the things that's inspiring about Django is they're concerned pretty hardcore with security fixes. Just this week, an email came out and they released new sub-versions for each major Django release to include the fix. Very awesome. For your blog post model, what did you do for entering posts? Do you still use the default admin interface, or did you make your own views for posting and whatnot? I haven't looked into it much, but does django automatically include much in the way of wysiwyg text editors for text fields?
→ How not to program WSGI

stefano

May 15, 2008
Apparently the bug makes a brute-force attack much easier than "theoretically possible with a supercomputer". http://metasploit.com/users/hdm/tools/debian-openssl/ It looks that the buggy code used the process ID as seed for generating the key, and there might only be 32,768 process IDs. Furthermore not all process ID are equally possible and one could use a range of 1000-3000 seeds and having a very high chance of producing a valid key.
→ Swap out your ssh keys

Bug

May 15, 2008
@txwikinger: Thing is, I don't use Ubuntu and I can't remember where did I generate my key [I'm using Archlinux]. @Zeth: You should add the number of comments to the front page.
→ Swap out your ssh keys

Kennon

May 15, 2008
The openssh-blacklist debian package (now available, and required for the latest version of openssh-client and openssh-server) is now available. You should: apt-get update apt-get install openssh-blacklist apt-get upgrade After that you'll have the ssh-vulnkey utility and can check.
→ Swap out your ssh keys

Krispy

May 15, 2008
mkc: debian only provided blacklists for 2048 bit RSA keys and 1024 bit DSA keys. If your key isn't one of those two types, then the blacklist isn't provided in the package. You can download one here: http://metasploit.com/users/hdm/tools/debian-openssl/ but it is nearly 100MB
→ Swap out your ssh keys

Ed

May 15, 2008
@Cristian: it applies to keys. If you generated a key on Ubuntu and then put it in authorized_keys on Fedora, it's possible that someone could brute force their way in to the Fedora server.
→ Swap out your ssh keys

Cristian

May 14, 2008
This vulnerability only applies to ssh servers, right? Aren't they the ones that generate the keys? So if my client is Ubuntu and the server is Fedora everything's okay?
→ Swap out your ssh keys

Taking Control of your Own Technology

18 April 2008

16 March 2008

20 January 2008

21 November 2007

26 October 2007

04 October 2007

19 September 2007

03 September 2007

03 September 2007

22 August 2007

19 July 2007

19 July 2007

15 July 2007

14 July 2007

27 June 2007

14 June 2007

07 May 2007

16 April 2007

17 March 2007

11 March 2007

About

Hello, my name is Zeth, I'll be your host here.

Latest Discussions

Zeth

Zeth

Anonymous

Ryan

stefano

Bug

Kennon

Krispy

Ed

Cristian