From d2d at attrition.org Thu Aug 2 02:14:13 2007 From: d2d at attrition.org (d2d) Date: Thu, 2 Aug 2007 02:14:13 +0000 (UTC) Subject: [attrition] rant: When the cats are away, the nice will play Message-ID: http://attrition.org/news/content/07-08-01.001.html Thu Aug 01 22:00:00 EST 2007 d2d No, attrition hasn't been defaced. Not in the traditional sense anyways. Hold down the fort, they said. As the junior staffer here, I've had the pleasure of dealing with a lot of crap over the past several months. "Script enhancement request" emails seem endless, as does Lyger's famous "Got 5 minutes to..." Yes, I always have five minutes to, but I'd rather spend it watching porn, which, and this may come as a surprise to many, is in short supply here at attrition. I expected a significant repository of it prior to "volunteering" here (not dissimilar to how socio-economic factors encouraged Lyger's mom to "volunteer" to a life of crime). Instead, there's a significant repository of feline porn, which I'll delve into shortly. Point being: They are off having fun while I'm here writing this rant. Of course, I'm not upset about it. Unlike Lyger who bitches and moans about being Jericho's man-bitch, I prefer to see the bright-side of sub-ideal situations. While the senior members are off gallivanting in Las Vegas, no doubt enjoying themselves at all the edu-tainment the wonderful Sin City has to offer, I've taken it upon myself to bring about some much needed change here at attrition. For one, the black on red just wasn't working for me. [...] From lyger at attrition.org Mon Aug 6 22:41:14 2007 From: lyger at attrition.org (lyger) Date: Mon, 6 Aug 2007 22:41:14 +0000 (UTC) Subject: [attrition] rant: We're baaaaaaaack.... Message-ID: http://attrition.org/news/content/07-08-06.001.html Mon Aug 06 17:45:22 EDT 2007 Lyger and Jericho So, we're sitting at the Shadow Bar in Caesar's Palace last Wednesday night, enjoying foo-foo Vegas drinks and quality b00bz, when someone walks by our table, hand over mouth, looking at us, pointing and snickering. Another walks up, leans over to us and cryptically says "pretty in pink?", and then walks away. Sensing something might be wrong at the ranch, Lyger fires up Midpssh on the Crackberry and checks in. Box looks normal, load average good. Using the Crackberry browser, we see differently: When the cats are away, the mice will play Normally, we would have jumped right in, locked out d2d's account, flipped the CSS back to the usual black and red, and called it a night. After all, this IS attrition, and we can't have any tomfoolery going on here. Not us. Always dead serious and down to business. But in this case, we said this: "just remember that the simple minded are easily amused." So we let d2d, which actually stands for "dick-2-dick" (his favorite pasttime), have his fun. The only reason Carlos Mencia says "DEE DEE DEE" is because he was afraid about copyright infringement if he says "DEE TWO DEE", which was clearly his original intent. Just to make d2d jealous, here are a few things we did in Vegas that he TOTALLY missed out on: [...] From jericho at attrition.org Wed Aug 8 02:53:27 2007 From: jericho at attrition.org (security curmudgeon) Date: Wed, 8 Aug 2007 02:53:27 +0000 (UTC) Subject: [attrition] Munge is moving to Thailand to pursue a career in crime. Message-ID: http://news.yahoo.com/s/afp/thailandpolicecartoonoffbeat BANGKOK (AFP) - Thai police said Monday they have recruited Hello Kitty, the moon-faced global icon of cuteness, as a new disciplinary tool for officers found engaging in "inappropriate" behaviour. Officers who speak too aggressively to civilians, who fail to turn off their engines when they park their cars, or commit other minor violations of proper conduct will be forced to wear bright pink Hello Kitty armbands as punishment, police Colonel Pongpat Chayaphan told AFP. Previously such offences were punished by a written reprimand, but Pongpat said that seemed to do little to deter future breaches of conduct. He said he hoped the Hello Kitty armbands would shame officers into shaping up. "I chose this symbol because it is pink and easy to see," he said. In addition to wearing the cartoon cat on their sleeves for one day, the officers will also have to be accompanied by whoever is the deputy chief on duty for the day, Pongpat added. "This is intended to engender their feelings of guilt," Pongpat added. Second offences will be dealt with by a disciplinary panel that could decide to detain the misbehaving officers, he said. From d2d at attrition.org Mon Aug 13 01:06:22 2007 From: d2d at attrition.org (d2d) Date: Mon, 13 Aug 2007 01:06:22 +0000 (UTC) Subject: [attrition] postal: in search of klingon ass Message-ID: http://attrition.org/postal/p0015.html when it's love international diplomacy another satisifed customer tired AND cranky heart failure? more like heart attack it was funny at first the proof is in the pudding we love guessing games swervin' and pervin' thanks for the offer From lyger at attrition.org Mon Aug 13 21:15:30 2007 From: lyger at attrition.org (lyger) Date: Mon, 13 Aug 2007 21:15:30 +0000 (UTC) Subject: [attrition] blog: Oops! SSNBreach.org exposes students' personal info in Google Message-ID: http://www.pogowasright.org/blogs/dissent/?p=582 On July 18th, SSNBreach.org ("SSNB") was launched by Liberty Coalition and Aaron Titus. The site's stated purpose was to assist and empower those whose personally identifiable information had been accessible via the web due to the Louisiana Board of Regents. ("LBR") failure to password-protect over 200 files containing confidential student and employee records. Less than three weeks after its launch, SSNB's own files on some of these students are being indexed by Google. Despite being notified of the problem on August 7, the problem isn't fixed, with more students. names and files appearing in Google every day. The History of SSNBreach.org: "Finders, Keepers" On or before June 18, Titus, a self-described "privacy advocate" and "privacy expert," discovered that the LBR files were accessible via search engines and cache. He did not inform LBR. Instead, he contacted the media. WDSU broke the story on July 17, after they had notified LBR. While they left LBR in the dark about the exposure and the files accessible to cybercriminals, Titus and the Liberty Coalition were busy using the contents of those sensitive and confidential files to create their own database on everyone affected. When it was pointed out to them that they did not seek or secure permission to use information from files which "the reasonable man" would realize had been accidentally exposed and were intended to be confidential, Ostrolenk responded: "You are correct that we do not ask permission to retrieve online information. In fact, I cannot recall a single instance when I have contacted the proprietor of a website to ask permission to view information placed in the public domain." Of course, Titus and the Liberty Coalition did much more than just view the information that had been unintentionally exposed. They used it. An identity thief might make the same statement they did. [...]