Geekery – Page 40

Image (S)Hack

At the very least you could have posted your manifesto in *text* guys.

(I would like to apologise in advance for this post – it’s full of ill informed ranting. This is nothing unusual of course, but in this case it’s pretty bad. Hey, why don’t you go and read some other, more sensible post instead? Please?)

Apparently overnight the image hosting site Image Shack has been hacked by a group of people calling themselves “the Anti-Sec movement”. They’ve replaced (presumably) tens of thousands of images hosted on the site with a manifesto opposing the “full disclosure” method of publicising security flaws, and threatening “through mayhem and […] destruction” to force the abandonment of the same.

Well.

On the one hand I have to agree with some of their points. Full disclosure does have its share of problems – the main one being that the black hat hackers and the software companies get the same information at the same time, starting a race to patch the issue before it can be exploited (a race that the black hats usually win). That said, I do have some issues with the Anti-Sec manifesto as it currently stands.

(Edit: As it turns out that’s actually wrong – full disclosure policies almost always have a delay built in so that the companies responsible are told first and get time to patch the hole before the black hats find out about it. So Anti-Sec are basically talking out of an orifice other than their mouths.)

The first is the problem of security through obfuscation. Anti-Sec seems to be suggesting that if you discover a security hole you should shut up and sit on it so that no one can exploit it. This would work fine if it could be guaranteed that you’re the only person who would ever find it. This is, of course, ridiculous. Someone else will discover the same exploit and they may not have the same, upstanding community attitude that you do. The sensible thing would be to report the flaw to the company responsible so they can patch it before the knowledge becomes public. Anti-Sec may well support this method, but their manifesto says nothing about it.

(Edit: Actually they’re actively opposing it.)

The second problem I have is with their methodology. Let me quote…

It is our goal that, through mayhem and the destruction of all exploitative and detrimental communities, companies and individuals, full-disclosure will be abandoned and the security industry will be forced to reform.

How do we plan to achieve this? Through the full and unrelenting, unmerciful elimination of all supporters of full-disclosure and the security industry in its present form. If you own a security blog, an exploit publication website or you distribute any exploits… “you are a target and you will be rm’d. Only a matter of time.”

This isn’t like before. This time everyone and everything is getting owned.

Right. Well, opening a debate is one thing. Opening a debate and then forcibly silencing everyone with a dissenting viewpoint is completely another. And when that forcible silencing is achieved via threats and “unrelenting, unmerciful elimination” it’s basically terrorism.

So, it’ll be interesting to see how this thing plays out. If indeed it does play out and Anti-Sec don’t just vanish into the digital woods they suddenly emerged from like so many other online ‘movements’.

They’ll like it in Seoul

Letting demonic forces loose in the capital of the UK for fun and profit

Ok, so I’ve been thinking (oh-oh) lately about the not terribly successful MMORPG Hellgate London.

For those unfamiliar with it (ie: just about everybody) it’s set in a future London after demons have taken over the Earth. You play as a member of resistance group fighting against the demons with both high power weaponry and magic, and taking shelter in the Underground (which was apparently constructed with demon resistant properties by a farsighted conspiracy of Freemasons).

The game didn’t garner much in the way of praise and the company that made it has now gone bust – although some servers are struggling on in South Korea (is there any game that doesn’t do well in South Korea?). Nonetheless I’ve always thought the basic concept was kind of cool (I am after all a devoted Londiniophile).

Anyway I was thinking about how some games (exploiting the various location technologies present in phones and other handhelds these days) are starting to take advantage of geolocation. And it struck me – how cool would a cut down version of Hellgate London be if you actually had to play it in London?!

Think about it. Your character is sent out to battle some Demons at Trafalgar Square. In order to complete the quest you actually have to physically go to Trafalgar Square. You then sit there outside the National Gallery, fighting demons on your handheld until the quest is complete. Afterwards, when your character needs to rest, trade and replenish supplies you have to physically go to an Underground station (or at least stand outside one – making people pay for train tickets to play the game seems a little harsh).

Now naturally this approach would have some problems. The market would be restricted to people actually in London (although you could probably set up games located in plenty of major cities), there’d be plenty of gamers who wouldn’t be interested in tramping around the streets when they could be sitting inside, sucking down doritos, and the National Gallery might not want hordes of nerds standing outside playing with their iPhones. But for those people who got involved it would be an extra level of immersion – superimposing the game world over the real world in a fairly unprecedented way.

So that’s my idea. I’m sure they’d like it in Seoul.

A Grand Night!

You mean you didn’t figure it out?

So, the other night it was my 20 year high school reunion (which is weird, since I graduated in 1993, but hey, whatever). The entire year (which seemed a lot bigger that I remembered) was assembled in the school gym, waiting for the festivities to begin. After a few minutes the Principal appeared on stage and after some preliminary remarks told us to pair up with our dates from the ’93 graduation ball.

Now this was easier said than done for me, as my date for the graduation ball had fled the state rather than attend with me. As it turned out however she was at the reunion and swung by to say hi (she’s blonde now, go figure). She wouldn’t pair up with me, but that cool by me since we’d been set up by the school in the first place, so I just wandered around nonchalantly, more or less daring the staff to ask why I was by myself.

A few minutes later the staff swung into action and got us to sort ourselves into those ridiculous house lines they used to make us sit in during assemblies. Once we were thus arranged we were made to sit on the floor. The Principal launched into a speech, which was quickly interrupted when he noticed a guy in the green house who (for some reason) had a large, bronze, Chinese incense burner sitting next to him, pumping out a considerable amount of smoke.

The Principal leapt of the stage and – flanked by several staff members – charged towards he of the incense. Unfortunately only half way across the gym he collapsed with what was obviously a massive cardiac arrest. His supporting staff (helped by several parents who were sitting at the back of the gym) rushed to his aid, and he was quickly taken out to an ambulance. We former students – sensing trouble – tried to scatter, but a group of us were corralled by that insane maths teacher I never liked who charged us with tracking down the ne’erdowell whose incense incapacitated out beloved leader.

We started searching around the Gym. After a quick word with the Principal’s son (who I must say didn’t seem overly concerned about his father, being much more worried about his prematurely grey hair) I headed outside to both seek the culprit and see what had changed in the last twenty years. Here I ran into one of the Damiens and the Black Douglas, who were similarly admiring the additions – which seemed chiefly to consist of several staircases, some confusing walls and some excitingly landscaped mounds and pits. We were just exploring these when some joker decided to turn on the water, revealing the pits to be ornamental ponds. I struggled my way out and found myself on the oval, so I headed around to the back entrance of the gym – along with a bunch of other former students.

Despite the distraction of the large radio telescope array that had sprung up on the far side of the oval I noticed some of my comrades in arms from my days back at the SGC in the crowd. Realising that they would be just the people to help track down the incense man I grabbed them and explained the situation. Happy to be united back into our unit we (that is to say myself, Colonel Jack O’Neil, Daniel Jackson and Teal’c) proceeded to the back entrance where the sentry on duty told us entry was prohibited. Our protests that we were the famous SG1 cut no ice until we proved that Teal’c was a Jaffa by pointing out the large scar left on his forehead by the removal of his First Prime insignia. This satisfied the guard and he let us through.

I left the other members of SG1 examining the rear wall of the gym while I checked out the stage. The speaker arrays were extremely loud and I had to block my ears to prevent severe hearing damage. The musicians (by means of gesture) indicated that they were wearing special, German manufactured earplugs. I flew up to the walkway behind the stage, but it was occupied by some girls who knew nothing about the incense man, so I flew back down.

In the main body of the gym a fete was being set up. My mother turned up and explained that she was running my brother and father back home, but she’d come back later to pick me up. I said that it was fine, and I’d find somewhere to crash locally. I decided to take a flight around the gym (aerial surveillance and all that) but the overhead bunting from the fete tents was so thick I couldn’t find a safe place to take off from.

I think I woke up at the point…

I did not invent it…

Yes, it’s Harry Potter doggerel. I can only apologise. To everyone.

…I wrote it down in order to get it out of my brain.

When you’re walking home from work and an appalling piece of doggerel appears fully formed in your brain like an apparition of a rhinestone studded, cheeseburger scoffing Elvis, what can you do except write it down somewhere to get it out of your head? So here we go (brace yourself – this is a bad one).

Mouldy Voldy, afraid of death,
Terrified by his final breath,
Show him a boggart and he will behold,
His very own body, lying there cold,
Riddle, oh Riddle, oh Riddle named Tom,
His father a muggle, his mother long gone,
Hater of half-bloods because he’s ashamed,
That the blood of a muggle runs strong in his veins,

I’m sorry. I’m so very sorry.

Notebookery

As if I don’t have enough on my plate!

Despite the fact that I’ve got a bazillion things going on at the moment I’ve got myself tied up in this…

Notebookery

For those of you two lazy or disinterested to click the link it’s a project where a sturdy notebook (most probably a Moleskine) is going to be sent around the world to dozens of participants, each of who will fill in a few pages with whatever kind of creativity they feel like before sending it on to the next person. Sort of like an artistic chain letter, but (one presumes) without the threats or begging for money.

Each contribution will be scanned and sent off to the project website for documenting in case the worse happens and the notebook gets damaged or stolen or sent to Murmansk or something (nothing ever comes back from Murmansk). But if all goes well it will eventually make it back to the project headquarters where it may be auctioned off for charity (that part is still up in the air).

I jumped on board as soon as I heard about it, and already have all kinds of madness in mind.

So, if you’re interested hop on over to the website and get involved (unless you’re an American in which case you’ll need to wait until a new notebook relay starts, sorry!)

The Octopus!

Medical Cephalopods. What?!

Once again there’s a remake/remodel thread over at Whitechapel, which I’d take part in if…

a) I wasn’t an anti-social weirdo with an aversion to message boards
b) I could draw

As neither of these conditions apply I shall instead dabble in the black arts of pen-portraiture to inflict my idea upon the world.

The brief from Warren, such as it is, is as follows… (as it is is as?)

One of the more outré of the pulp characters—and given the genre, that’s quite saying something, believe me—the Octopus was actually the villain of the piece in his single issue, The Octopus v1 #4, 1939, written by…well, it’s not exactly clear. It might be Norvel Page, or it might be Ejler and Edith Jacobsen. A rather over-the-top mad scientist, the Octopus worked from a big city hospital and plotted world conquest. His appearance might explain his desire to dominate the world; he’s sea-green, with four “suction-cupped weaving tentacles” set above “hideously malformed” legs. He wears a small mask, and behind it can be seen two enormous, luminous, purple eyes. He was the leader of the Purple Eyes, a cult bent on world domination and mass destruction. The Octopus’ chosen method was an “ultra-violet ray” which devolved men and women and turned them into deformed, life-hating monsters hungry for human flesh and glowing with “ultraviolet purple.” Against the Octopus was set Jeffrey Fairchild, a young millionaire philanthropist (he eventually stopped the Octopus, of course). He had three identities. The first was Jeffrey Fairchild, hospital administrator. The second was was kindly Dr. Skull, the old man who made a practice of helping the poor in the slums. (His good works didn’t help him when everyone thought that he was the Octopus, however) In his other identity he was the “Skull Killer,” who fought crime and left a skull-imprint, ala the Spider, on his enemies. Fairchild was assisted by Carol Endicott, Dr. Skull’s nurse.

My idea is to turn this all on its head…

Observe if you will St Brendan’s Hospital, a run down and poorly funded medical facility on the waterfront close to where the river rolls it’s tribute of chemicals, fertilisers, PET bottles and dead dogs into the open sea. Twenty-five years ago a young octopus polyp was inadvertently sucked into the hospital’s cooling system. Against the odds it survived, feeding on biological waste, cafeteria remnants and bathing in the drug-residue soaked waters of the hospital drains – a lifestyle that caused it to change, developing super-human intelligence and a photographic memory…

Today the Octopus lurks in the hospital’s walls, pipes and air conditioning system. After a quarter century of observation (not to mention late night study in the medical library) it is a better diagnostician and surgeon than most of the hospital’s poorly paid staff. In the early hours it sneaks unseen from it’s bolt holes and performs life saving procedures on misdiagnosed patients, earning the hospital an increasing reputation for ‘miracle’ cures.

Posed against the Octopus is the dastardly Chief of Medicine, Doctor Jeffrey Fairchild. More than happy to pose for the press with the latest miracle recovery, he desperately searches the Hospital for the phantom that cures the patients he would rather let die. For Doctor Fairchild is embezzling the Hospital’s funding into his own personal accounts and every cure draws more attention, endangering his nefarious schemes…

So yeah, that’s my crazy idea. A medical octopus and an embezzling doctor. Surely that’d sell comics! 😀

Firefox Boosts World Population by Factor of Thousands

Your daily dose of Pedantry

I had reason to visit the Firefox download site the other day (http://www.getfirefox.net/) and was most impressed at their current usage statistics…

Firefox the award winning Web browser is absolutely free and easy to use. Join the over 500,000,000 million people worldwide enjoying a better and faster web browsing.

500,000,000 million people? If my maths is correct that’s about 77,000 times the entire population of the planet. I knew Firefox market penetration was good, but I didn’t realise it was that good!

Also, what the heck is a “web browsing”, and how can it be better and faster? 🙂

(Once I pointed out these issues my colleague Bevan sent Mozilla an email, so they’ll probably be fixed up soon. Probably.)

Late 2010

Actually it turns out that getfirefox.net has nothing to do with Mozilla at all and (as discussed by New Scientist’s “Feedback” section when I alerted them to it) they were/are actually collecting data on people visiting the page. Interesting….

A Poor Attempt at Mimicry

An attempt at channelling the style and spirit of Warren Ellis

In reference to this monstrosity…

Fabes: I am surprised they could afford the materials for this project, after getting ripped off $15/month for playing WoW to begin with….

Me: Well it looks like they’re university students so their government is probably paying them all sorts of grants to get up late, play Warcraft into the early hours of the morning then occasionally stumble into class where their lecturer asks “What are you doing for your big design project?” and they mutter out “… uh.. design… project… raid… caverns of num-yabisc… Warcraft….” and they then have no choice but to build some crappy hut with $12.50 worth of plywood claiming that the shitty design and finishing is so it resembles structures in the game and isn’t because they had zero time to work on it between carrying out mass raids and shovelling microwaved mac and cheese into their drooping maws while ogling at 3D models of elf maidens in armour so skimpy that it wouldn’t stop a mosquito let alone the axe of an orc on wolfback who probably carries mosquitoes with him anyway as a consequence of bad hygiene and all the blood he wears as war paint the bastard.

(This is an attempt at sounding like Warren Ellis. If he ever finds out about it he may well hunt me down and kill me 🙂

(Oh, and the guys who built the thing obviously put a great deal of thought and effort into it – I’m just being evil for humourous effect)

Another Status Update

Games, Trains and Toilet Fame

The game on Sunday went pretty well. The players floundered around like freshly landed fish until I gave them some fairly hefty shoves in the right direction, but they seemed to enjoy it. I finally got to play out the big climactic scene that’s been in my head for a good seven years (ever since I came up with the adventure in the first place) and it seemed to go over fairly well – even if it was consistently interrupted by Fabian’s character threatening to shoot everyone ;D

I also managed to score a mention on Worst of Perth with my infamous tale of the Fasta Pasta toilet DVD (definitely NSFW). It seems to have been accepted fairly well by the community, even getting a few songs composed about it in the comments.

Finally I stumbled over this site last week and have to say that it’s one of the best designed (in a visual sense) sites I’ve seen in a long while. If I wasn’t happy with the hideous visual hodge-podge of Wyrmworld I’d seriously consider appropriating the colour scheme, if not actually stealing the layout wholesale. Well done fellows! Well done!

OK, that’s it.

Late 2010

Um, yes. N-Scale Limited’s layout. Um. Nothing to see here, move along… 😉

Status Update

The wildest night Manjimup has ever seen…

We’re playing that Wild Southwest game this weekend. So the players don’t have to rely on their memories I’m updating the Adventure page on the WSW site with their antics from the last session. Just in case anyone’s interested…