Greg Can't Spell

Philly. Destroyer of Stereotypes. Awkward.

Pictures of me

Recent Tweets @gregs

Posts I like

Post via oursecretobsessions

I need to stay off One Direction blogs. I just woke up from a very sexy (but now disappointing) dream

Post via oursecretobsessions
Photo via heyitsjoel

I don’t want to get out of bed. I should be half ready for work already.

Photo via heyitsjoel
Photoset via thegreyking

bouncybat:

gentleman-monster:

jayshaydar:

sarahtypeswords:

princessu:

ohno789:

Cards Against Humanity is a party...

Photoset via thegreyking
Question via iamdrewseph
gregcantspell asked: unf =]

If you snuck in my room I would:
- [] Go back to sleep
- [] Kick you out
- [x] Cuddle with you
- [] Be like wtf?
- [] Let you sleepover
- [] Beat your...
Question via iamdrewseph
Post via erikolson100

I need to get fucked after a night like this...ugh

Post via erikolson100

Posts tagged "technology"

Election hacked, Futurama's Bender elected to school board →

RSA 2012 Security experts have warned that electronic voting systems are decades away from being secure, and to prove it a team from the University of Michigan successfully got the foul-mouthed, drunken Futurama robot Bender elected to head of a school board.

In 2010 the Washington DC election board announced it had set up an e-voting system for absentee ballots and was planning to use it in an election. However, to test the system, it invited the security community and members of the public to try and hack it three weeks before the election.

“It was too good an opportunity to pass up,” explained Professor Alex Halderman from the University of Michigan. “How often do you get the chance to hack a government network without the possibility of going to jail?”

With the help of two graduate students, Halderman started to examine the software. Despite it being a relatively clean Ruby on Rails build, they spotted a shell injection vulnerability within a few hours. They figured out a way of writing output to the images directory on the compromised server, and of encrypting traffic so that the front-end intrusion detection system couldn’t spot them. The team also managed to guess the login details for the terminal server used by the voting system. This wasn’t exactly difficult, since the user name and password were both “admin”.

Once in, the team searched the government servers for additional vulnerabilities and system options. They found that the cameras installed to watch the voting systems weren’t protected, and used them to work out when staff left for the day and so wouldn’t spot server activity. More worrying, they also found a PDF file containing the authentication codes for every Washington DC voter in the forthcoming election.

The team altered all the ballots on the system to vote for none of the nominated candidates. They then wrote in names of fictional IT systems as candidates, including Skynet and (Halderman’s personal favorite) Bender for head of the DC school board. They also set up systems so that any further ballots would come under their control.

According to the log files the team found, plenty of people were also busy trying to get into the system. They spotted attempts to get in from the Persian University, as well as India and China. Using their inside access, they blocked these attacks. Finally, they inserted the word “owned” onto the final signoff screen of the voting page, and set up the University of Michigan football fight song to play after 15 seconds.

It took two days before the authorities discovered they’d been pwned, and they were only alerted to that fact when another tester told them the system was secure, but that they should lose the music on the sign-off screen, as it was rather annoying. Halderman has now published a full account of the attack.

The attack demonstrates several of the flaws in electronic voting systems, and at numerous sessions at the RSA 2012 conference in San Francisco, experts have consistently warned against the dangers of this technology. In the US, there are 33 states that have introduced some kind of electronic voting systems – and none of them are secure enough to resist a determined attacker said Dr. David Jefferson from Lawrence Livermore National Labs.

“The states are in the habit of certifying voting systems, typically without testing them or seeing the source code,” he said. “In many cases the voting system uses proprietary code that government can’t legally check, and the running of the systems is outsourced to the vendors. This situation is getting worse.”

E-voting was a national security issue, he said. Financial attacks by hackers are relatively easy to detect – because at some point money has to leave the system. But if an election is hacked then we may never know, because it’s a one-time action that typically isn’t checked after the results have been announced and officials elected.

It will be decades before we have the technology to vote securely, Jefferson said, if indeed it is even possible. At stake is democracy itself, but politicians don’t seem to understand the problems of electronic voting, and both Jefferson and Halderman expressed fears for the future if current systems become more popular. ®

Judge: Americans can be forced to decrypt their laptops for the police →

American citizens can be ordered to decrypt their PGP-scrambled hard drives for police to peruse for incriminating files, a federal judge in Colorado ruled today in what could become a precedent-setting case.

Lesser-Known Technology Laws and Other MIT WebPub Wisdom →

Parkinson’s Law: Work expands to fill the time available for its completion.

Wadsworth Constant: The constant is 30 percent, which is alleged to be the portion of an Internet video that can be skipped at the beginning without missing anything important.

Mooers’ Law: An information retrieval system will tend not to be used whenever it is more painful and troublesome for a customer to have information than for him/her not to have it.

Hick’s Law: Describes the time it takes for a person to make a decision as a result of the possible choices he or she has. The more options someone has, the longer it takes for decisions to be made.

Gall’s Law: A complex system that works is invariably found to have evolved from a simple system that worked. The inverse proposition also appears to be true. A complex system designed from scratch never works and cannot be made to work; you have to start over, beginning with a working simple system.

Brook’s Law: Adding manpower to a late software project makes the project delivered later. Often people assume that adding more people late to a project will cause the project to speed up, but the ramp-up time for initiating someone to the project, as well as the change in communication dynamics often causes the opposite to be true.

Amara’s Law: We tend to overestimate the effect of a technology in the short run and underestimate the effect in the long run.

Dunbar’s Number: The maximum amount of stable, social connections someone can sustain. While there is no definitive number, most people estimate this number to be around 150. This number was identified by Robin Dubar in 1992, but it is interesting to reflect on this number with the rise of connections people have made through social media channels like Facebook and Twitter.

Hofstadter’s Law: It always takes longer than you expect, even when you take into account Hofstadter’s Law.

Segal’s Law: A man with a watch knows what time it is. A man with two watches is never sure. In other words, conflicting info adds another layer of confusion.

Sowa’s Law: Whenever a major organization develops a new system as an official standard for X, the primary result is the widespread adoption of some simpler system as a de facto standard for X.