tag:blogger.com,1999:blog-55328722024-03-06T12:42:05.452+11:00Morgan Storey's Journal.Just my personal journal has been going for years now...Morgan Storeyhttp://www.blogger.com/profile/10406049887224934659noreply@blogger.comBlogger123125tag:blogger.com,1999:blog-5532872.post-58087637930821205702017-06-26T20:30:00.000+10:002017-06-29T14:14:30.011+10:00The SimsNope sorry not the game, some philosophy I've mulled over for a while.<br />
So the <a href="http://simulation-argument.com/simulation.html">Simulation argument</a> is an interesting one to be sure, but absurd really.I recently heard the counter summed up very well;<br />
<br />
<blockquote class="tr_bq">
<i>"A simulation so convincing that is indistinguishable from reality is, for all practical purposes, reality to those that have consciousness in such a simulation. Besides, what would a simulated consciousness have to compare except perhaps a simulation that it constructed with its own conscious "inhabitants"? Its an infinite regression." - Facebook quote</i></blockquote>
<br />
My other issue with it, is it is likely that it can never be disproved, which simply makes it a bad hypothesis at best. The reason it can't be disproved it usually put thus; if we can make a simulation that has conscious minds in it, then we are not the bottom, we could be the top, but are likely not. If we can't then we are likely the bottom. It is only really disproved on humanities demise or on our technical epitome minus consciousness creating simulations.<br />
<br />
<br />
Another issue I have with it, is something I also like about it. The Post-hoc evidence that people "find" to prove that we live in a simulation. I like this as I can add to it and chuckle at the outcome. Things like if you have a simulation you would want to limit the processing power required, so you'd put in certain limits... like the speed of light (and information travel) being finite, or the other seemingly immutable laws. You'd have a simulation that would have a defined bit density (resolution), so the whole simulation could be stored in x number of bits... well we have that with the plank length/time being the smallest possible unit of space-time.<br />
<br />
Regardless, I like playing around with the idea. Recently I saw the Doctor who episode <a href="http://www.tvmaze.com/episodes/1060433/doctor-who-10x06-extremis">Extremis</a> <u><b>(Spoilers to follow). </b></u><br />
Extermis is actually part of the overall story arc. Essentially revolves around the Doctor discovering he is in an Alien simulation of our universe as a way to model an easy way to take over the world. The Doctor determines he is a sub-routine and emails his findings out of the system (somehow) out to the real world and the real Doctor.<br />
<br />
Incredibly interesting idea, each human consciousness being a subroutine. Sub-routines interact with other sub routines, but can also cause others to crash if they do the right thing. Heck a single subroutine given the right vulnerability could cause the whole OS (universe in this analogy) to crash out... fun. I guess this is basically the story of the Matrix trilogy, he's a subroutine that somehow gets super-user powers, not quite root though :)<br />
<br />
To continue with the aforementioned post-hoc evidence for living in a simulation, I even thought of a few while writing this. You'd want your subroutines to consume the smallest amount of resources to do the job they needed to, ala you'd make consciousness occasionally stop for some period (aka sleep and varying levels of sub-conscious action), heck you might even make beings with consciousness that acts on <a href="https://en.wikipedia.org/wiki/Electroencephalography#Wave_patterns">cycles</a>.<br />
<br />
<br />
<br />
<br />
The other interesting thing I thought on from the Doctor Who episode Extermis, was the way they eventually determined they were in a simulation. The episode goes that a philosopher in ancient times worked out they where in a simulation by writing down some random numbers, then asking someone else to write down some numbers without seeing the list he wrote. The lists where the same. The tome this philosopher wrote was secreted away in the Vatican, as all who read it promptly commited suicide... I don't know why the committed suicide, as mentioned in my quote at the start if it feels real and you know no different, then it is real. <br />
The Doctor explains the determination that they are in a simulation by saying, computers are generally bad at random number generation so over enough time subroutines such as these conscious ones will generate the same list of random numbers... like humans <a href="https://xato.net/10-000-top-passwords-6d6380716fe0">do now.</a> <br />
<br />
Humans are generally terrible at random generation of data, especially passwords. With something like the top few million password being used by 95% of people... So, perhaps we are living in a simulation and those with poor passwords are the subroutines given the least amount of CPU and RAM... the rest of us, might be given slightly more.<br />
Now how do I perform some buffer overflow to get me more money :P<br />
<br />
Peace out all, especially our future selves simulating this jalopy, or some Alien race that inadvertently simulated us when the main sim is happening light years away.Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-59652054962488794362016-06-10T20:00:00.000+10:002016-06-12T20:53:46.907+10:00Election 2016<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj9GuxMGhRJvZg_zzc-pA8hUcfSY3nKx9R_OiM04GEx8GQLtg2f5pGd1wa4HlyGtP2EkvAV7E3kdyVwHCsoT-76-nGiVo8WlrQSEqmo-V-A1fh8d-fkc8BaaLL0-jYCxG347xn-xw/s1600/choice.jpg" imageanchor="1" style="clear: right; float: right; margin-bottom: 1em; margin-left: 1em;"><img border="0" height="244" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj9GuxMGhRJvZg_zzc-pA8hUcfSY3nKx9R_OiM04GEx8GQLtg2f5pGd1wa4HlyGtP2EkvAV7E3kdyVwHCsoT-76-nGiVo8WlrQSEqmo-V-A1fh8d-fkc8BaaLL0-jYCxG347xn-xw/s320/choice.jpg" width="320" /></a></div>
I put this together in late 2014, saving it for the federal election
this year in 2016, it is really just some points that I picked up from
looking at their policies, they may have changed since then and I will
try and update.<br />
Saw this which is a funny interlude; <a href="https://www.youtube.com/watch?v=6HFd6zGUM3k">https://www.youtube.com/watch?v=6HFd6zGUM3k</a><br />
<br />
<br />
<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj4-53Vl52uJUmvcy9WsmIuWMAlNAejHSPg2NyLR3eo8jzmnwbtLPq8TCXX2T-XTlKYy0nW-sO_mKAVffnXYNH09TRZlcERLXsnuhtuEjFLiOFK9DcHKiDsCRGcoLdVuCSN-adqKQ/s1600/13413675_988445084585877_7062562874285625361_n.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj4-53Vl52uJUmvcy9WsmIuWMAlNAejHSPg2NyLR3eo8jzmnwbtLPq8TCXX2T-XTlKYy0nW-sO_mKAVffnXYNH09TRZlcERLXsnuhtuEjFLiOFK9DcHKiDsCRGcoLdVuCSN-adqKQ/s200/13413675_988445084585877_7062562874285625361_n.jpg" width="200" /></a></div>
<a href="https://www.liberal.org.au/our-plan"><b>Liberal</b></a>: Forgetting about the narcissism displayed by having their leaders face on display 5 times on their policy page. Also in the interests of Full disclosure, I've met Malcolm Turnbull, he seemed fairly nice.<br />
Liberals policies though aren't great; Their environment policy says they will protect the reef, yet they have allowed holes to be blown in it for new ports to be built and allowed increased shipping damaging it possibly beyond repair. Repealing the mining tax and carbon tax (didn't make electricity more expensive despite their claim it did) also doesn't make good environmental or long term economic sense. <br />
There polices don't talk about the bad things that have been snuck in to the last budget, things that are their policies, things that are going to hurt the low-middle class, students and people who can't afford their own healthcare. No-jab no-pay is their only outright good policy.<br />
NBN, no FTTP, but FTTN and wireless last leg... I feel like they haven't actually engaged any of their IT advisors on this one, as they would have all said nope bad idea.
Fiber is infrastructure of the 21st century as rail was for the 20th,
yes fixed wireless has come a long way, but it can't compete with fiber
for latency and robustness.<br />
Their infrastructure policy doesn't discuss that they are ensuring this infrastructure is sold off, including Sydney's rail and tolls on all these new roads, reducing the public transport along these corridors.<br />
Carbon tax repeal, stupid, every major
country is doing it and then using the tax to create renewable jobs. GP
co-pay and cuts across the board to medicate, Terrible. I am actually paid well but I go to a bulk
bill doctor as I can't afford to spend $40 on healthcare and pay for
food and rent in one of the most expensive cities in the world. I have
no idea how those on less that I do it. I know the Libs have abandoned cuts to some medical treatment, but there are still sweeping cuts to nurses pays and GP rates.<br />
Stop the boats...
pahlease, most refugees and non-visa holding or overstays comes via
plane, those that come by boat are actually usually the most in need of
asylum. I guess Labor was pretty much going to do the same thing here.
Manus/Nauru island is under investigation for human rights abuse, it is a
disgrace.<br />
Terrorism... "growing terror threat", still more likely to be killed by a marauding cow than a terrorist. Waste of money. Not to mention spending billions on Sub's we don't need, and <b>shortrange </b>fighters in a country with the largest continuous border in the world.<br />
Mining tax, most of the profits of the minerals mined is
actually going overseas or into the hands of the super-rich. A mining
tax now could be used to build infrastructure and as a rainy day fund
for when the mineral good times end, and they will.<br />
Environment at the expense of profits.<br />
<br />
<br />
<br />
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg8NzsJDvCHM_JejleobT3YmPcvqTkaJv7WfluvN15o9aYSI4aPg-9AzfS3_jf-myuucZPAfuwelt-XINLDMNjLxKhm1Ag2SWgkGHMnLNzJz1wOrCfvPsuZALOXF2LoArYA4JzLrw/s1600/13124727_1704813429774413_9019449554699830833_n.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg8NzsJDvCHM_JejleobT3YmPcvqTkaJv7WfluvN15o9aYSI4aPg-9AzfS3_jf-myuucZPAfuwelt-XINLDMNjLxKhm1Ag2SWgkGHMnLNzJz1wOrCfvPsuZALOXF2LoArYA4JzLrw/s200/13124727_1704813429774413_9019449554699830833_n.jpg" width="200" /></a><a href="http://www.100positivepolicies.org.au/"><b>Labor</b>:</a>
Perhaps I spoke too soon, Shorten's face is all over the ALP page. So many policies they split <br />
it out to a separate site.<br />
Carbon tax, yep the tax is a good idea... implementing it as a fund
that goes to low-middle income earners is interesting, it will put more burden on means testing by centrelink. Either go to a universal basic income or use it to
build renewable infrastructure and reduce our need for carbon emissions,
reduce energy prices to low income earners.<br />
Investing in
manufacturing. The reality of this is we are not the best country for
manufacture, it can be done cheaper and better elsewhere, we need to
invest in Science and technology, if we want to manufacture we should be
doing automated manufacture like Japan, not trying to compete with
low-wage China with manual manufacture the scale just can't get there
due to population.<br />
School chaplains, yeah this is a quarter of a
billion dollar waste in my opinion. Counselors are much better equipped
and trained to help children, especially vulnerable and special needs
kids. But I guess Libs support this too. Yes I know counselors are more expensive, but you get what you pay for.<br />
Jobs at the expense of
the Environment, this seems to be an almost running theme. Great you
want employment, what are those loggers going to do when there are no
old-growth left, what are the miners going to do when there is nothing
left to mine. As with Liberals there doesn't seem to be a sustainable
long term plan here, just enough to get elected and stay in for a term
or two (this seems to be the plan of most democratic governments worldwide).<br />
Pandering to the religious right and left, Guillard went
and talked to Muslim demonstration, further funded chaplains and deemed
SRE/SRI a great idea, as well as increasing funding to private religious
schools. Not the best track record.<br />
They seem to mainly be going after penalty rates and Medicare, both things that need to be protected, some of their other policies are of questionable worth.<br />
<br />
<br />
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgknDgpQYKmEQDhcVnH8-kn9h8VnDjnyoIQ3LOx862IPsw529odzNtdwUp5cFDqM5Qm5bKttnh6E8uYur_zFT66_LebLMZC6UPx7gstsl4WScrfGt8Hbr2XgNLMq60nmE5WSB13rg/s1600/keep-calm-gmo-safe.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgknDgpQYKmEQDhcVnH8-kn9h8VnDjnyoIQ3LOx862IPsw529odzNtdwUp5cFDqM5Qm5bKttnh6E8uYur_zFT66_LebLMZC6UPx7gstsl4WScrfGt8Hbr2XgNLMq60nmE5WSB13rg/s200/keep-calm-gmo-safe.png" width="171" /></a><a href="http://greens.org.au/policy"><b>Greens</b></a>: Anti-GMO, Anti-nuclear, anti-built up housing. Running theme is environment over everything else, even science and economics. I heard of one Greens member discuss closing Australias research nuclear reactor at Lucas Heights, there would go our <a href="http://www.dailytelegraph.com.au/news/lucas-heights-nuclear-base-new-facility-to-help-global-expansion-as-cancerfighting-drug-maker/news-story/2b6c6c287371b4535f96b12171ab3c27">nucelar medicine industry</a>.<br />
They have had polocies previously against built-up housing which seems counter to being green, as surely it is greener to clear less land for houses and stack your humans up in apartments.<br />
Full
disclosure; I have met John Kaye and although we disagreed he was a great person. The honorable Mr Kaye recently passed away. I met him after a panel I attended, he gave me a lift in his very
beat-up old hatch to the after do. I argued with him then that I like a lot of what the
Greens stand for, but can't abide by the aforementioned anti-science. He argued the
dangers of Nuclear energy, weapons and waste. Of
course, weapons and waste are eliminated if you go Thorium, was my
reply. He said why not go renewables, my reply because they will take
too long to spin up, better to have a multi-pronged plan, traditional
power plants (all-be-it nuclear) to handle the evening and other peak load, and then
wind, solar and hydro to supplement, evidence based Nuclear is still the
cleanest source of energy as there is energy wasted (and thus carbon
emitted) in creating photovoltaics and wind power is not usually near
centers of population. I will admit I was somewhat wrong here, a recent paper shows that renewables can supply base and peak loads for Australia fairly quickly, if government and the public push for it, still GMO and built up housing a big black marks for this party.<br />
<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEisfRx9Bf58bX4wMcSU67qDkap0Y8hJVgYRUsYoYqBJzBtRp-pGxj-hcND-ijAlUzXW2UNnr498jGdFdOtP4-CK67AFjBuMG1JP4sRrdTarS6GOH71AZXMeEfi7NMxH9gpXn_ir7Q/s1600/23760_10150992174817325_1873732893_n.jpg" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEisfRx9Bf58bX4wMcSU67qDkap0Y8hJVgYRUsYoYqBJzBtRp-pGxj-hcND-ijAlUzXW2UNnr498jGdFdOtP4-CK67AFjBuMG1JP4sRrdTarS6GOH71AZXMeEfi7NMxH9gpXn_ir7Q/s200/23760_10150992174817325_1873732893_n.jpg" width="128" /></a></div>
<b><a href="http://ldp.org.au/policy/">The Liberal Democrat party</a>:</b>This party gained 20 odd members in <a href="http://www.news.com.au/lifestyle/gay-marriage/disgruntled-with-a-party-which-continues-to-ignore-its-stated-principles-liberal-party-members-are-switching-to-the-liberal-democrats/story-fnizhakg-1227482132692">mid 2015</a>
due to the Liberal party suppressing a conscience vote on marriage
equality. So obviously they are fine with marriage equality. I am fine
with some of their stances. They are however for lowering government spending, and everyone for themselves, which is very scary type of social Darwinism that Libertarians love to espouse.<br />
Of course over-libertarian can be just
as bad as over authoritarian, they oppose governments role in welfare,
healthcare and schooling. Which will leave the most vulnerable behind, I
think a society should be judged on how well it treats its most
vulnerable.<br />
<br />
<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh2j0FPDj1J1oOxdG4Yr0ay9Vt4NQZC4hyphenhyphenLXMyan4hNmzJDocKAIhYAT31K2ziJk09v9kRBo3tblM6Somhp8rNRDmrVCqq0LK3_89nTxZJdjx3p1HOOJ-Jk8YGEf64ODMBqDU_CLw/s1600/529353_10151411094896715_370002655_n.jpg" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="150" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh2j0FPDj1J1oOxdG4Yr0ay9Vt4NQZC4hyphenhyphenLXMyan4hNmzJDocKAIhYAT31K2ziJk09v9kRBo3tblM6Somhp8rNRDmrVCqq0LK3_89nTxZJdjx3p1HOOJ-Jk8YGEf64ODMBqDU_CLw/s200/529353_10151411094896715_370002655_n.jpg" width="200" /></a></div>
<a href="http://www.sexparty.org.au/policies"><b>Sex Party</b></a>: Full disclosure; I have met Fiona Patten, she is incredibly nice, and extremely well spoken.<br />
Some excellent policies there, including taxing religions that don't carry out charitable enterprises, and ending a lot of forms of discrimination. There is one specifically about making our science and research protected through election cycles. I just think there name will
put a lot of people off voting for them, so while they can definitely
get a few seats in the government, they will never likely lead the
country. Though seeing <a href="https://www.youtube.com/watch?v=HS_gR6ahd3o">Fiona in a debate against Family first</a> election before last, I can say I wish she would lead the country.<br />
That being said the old advertising example goes; SEX... now that I have your attention buy my crap. So who knows.<br />
<br />
<br />
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgAua0daR6Was5v9XYsbkpuLbrDSeB-VHcfLxpF4Vm947I2n-J-XtrxTaUwUSdVb8ukFUpYnaATw26fQ6rFhIYrmLKReqYzdhXsexsKfFx8G0OrW7OkP5ev_YuXC8KNSEFBxKhzzg/s1600/Questionable.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgAua0daR6Was5v9XYsbkpuLbrDSeB-VHcfLxpF4Vm947I2n-J-XtrxTaUwUSdVb8ukFUpYnaATw26fQ6rFhIYrmLKReqYzdhXsexsKfFx8G0OrW7OkP5ev_YuXC8KNSEFBxKhzzg/s1600/Questionable.png" /></a><a href="https://pirateparty.org.au/wiki/Platform"><b>Pirate Party</b></a>:
Excellent policies, including a bill of rights, and basic income,
awesome. My big issue is they are removing a heap of taxes (replacing
the GST which is overly complicated with a consumption tax is OK, but it
isn't enough money unless the tax goes to something like 35%) and
increasing spending is not going to work. With their flatter tax the
rich will get taxed more heavily, but likely just move their assets and
wealth overseas to avoid this, also no mention of the mining tax which I
fully support as Australia's nest egg, all-be-it this may now be too
late, like someone starting to invest in their retirement at age 55... I did re-read their policies while updating this post before publishing and they have one around taxing international transfers, an interesting idea to be sure. I know it will only affect the rich, but it could also stifle investment from outside Australia and into Australia. That all being said, I really like the idea of a universal basic income and think it could drive creativity and novel solutions, and prepare us for a more automated future.<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjDhG8ceW4zs9j_NK1QaXaVaWO9uPy5eC98F4TxoMoOFMIODQXR8bL_hVXJEjzG4lGqSN3WlOKd404J9sZbUmMl8Q4Vgo6-84l6MK5IuTmCO56XPy7Gy_aIj41i8rmXacQa9uNyMw/s1600/13177760_1091977657531676_4144845749787007118_n.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="193" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjDhG8ceW4zs9j_NK1QaXaVaWO9uPy5eC98F4TxoMoOFMIODQXR8bL_hVXJEjzG4lGqSN3WlOKd404J9sZbUmMl8Q4Vgo6-84l6MK5IuTmCO56XPy7Gy_aIj41i8rmXacQa9uNyMw/s320/13177760_1091977657531676_4144845749787007118_n.jpg" width="320" /></a></div>
<br />
<a href="http://secular.org.au/"><b>Secular Party</b></a>: Full disclosure; I know a few of the founding members of this party. <br />
Another
set of excellent policies, I really like their policy that
Complementary and alternative medicines that have not been proved to
work will not get a medicare rebate, I also like their Taxes for the
non-charitable aspects of religious institutions, and essentially a
mining tax called the resource rent tax. I also like that they state
explicitly that as part of policy they will investigate the viability of
Nuclear.<br />
Like the sex party I think the word secular and
secularism will put people off, I know when I was young the USSR was
pointed to as an example of a secular state, this made secularism in my
mind as a child growing up in the 80's a dirty word.<br />
<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgahtWq_9IPHWS5Dr6jcCtdAjvAiJ2TWy6lui2RztJHmmnh6gO0mW9ZiJZqKrCBAEJ4x5EkgD30i4LAMHODQAxw-ByNfF931nReXZZRLfu6XXgIRWeEmU0ohUXBtwp2tvMQfY3A3g/s1600/science.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgahtWq_9IPHWS5Dr6jcCtdAjvAiJ2TWy6lui2RztJHmmnh6gO0mW9ZiJZqKrCBAEJ4x5EkgD30i4LAMHODQAxw-ByNfF931nReXZZRLfu6XXgIRWeEmU0ohUXBtwp2tvMQfY3A3g/s200/science.jpg" width="133" /></a></div>
<b><a href="http://www.scienceparty.org.au/federal_policy">Science Party</a>:</b> New one, only seemingly announced shortly before this election was called. On further investigation renamed from the FutureParty, science party is a much better name. People buy into science, to paraphrase NDT you only need to look at the religions of late to see that marketing Church of Science, and Scientology. <br />
There policies look really good, infrastructure developments, charter city (awesome name too "Turing"), pro-nuclear, pro-renewables, pro-science obviously.<br />
Again fair disclosure I have met at least two of their <a href="http://www.scienceparty.org.au/candidates">candidates</a>.That all being said, it looks like only one of their candidates has funded their electoral deposit, hopefully they are all on the final ballot as they could get a decent turnout from varied voters.<br />
<br />
<a href="http://www.justiceparty.com.au/#!justice-in-sentencing/v54ui">Justice Party</a>: One I wasn't actually going to pay any mind too. Started by Australias own Derryn Hinch, ex-current affairs show host, turned radio host.<br />
His platform is a good one, mainly going after spousal abusers, sex offenders etc, moving for tougher sentencing. Euthanasia is a good one, so too is marriage equality. Not a huge list of policies, but they all seem good.<br />
<br />
Special mention;<br />
<a href="http://www.scienceparty.org.au/anti_science_party_could_get_elected_by_mistake_help_stop_them">Health Australia Party</a>: Don't let the name fool you when you vote, they are against vaccinations, and all for non-scientifically backed treatment... Oh yeah and they want a ban on chem-trails... something that there is no evidence exists. I want a ban on Leprechaun's sequestering Gold... They actually have some good policies on Gun control, Euthanasia, and energy production. Then policies that assume corruption inside scientific research, think fluoride needs to be removed from our water, and vitamins and disproved treatments be government subsudised. <br />
I didn't want to give them bandwidth, so the link to their policy actually goes to the science parties article about them<br />
<br />
Fair call here, there are a load of other parties, such as the Chrisitian democrats, Family first, the Kater Australia party (KAP), One Nation, the wikileaks party etc, etc. I am not likely to vote for any of these either they are single issue parties or just plain opposed to my views and like the smaller parties mentioned above none of these are likely to get more than a couple senate seats, with the exception of KAP, GLOB help us... Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-5861990910529799372015-01-24T20:51:00.001+11:002015-01-24T20:53:21.079+11:00UpdateWow this blog is almost 13 years old... and it has gotten worse. Less updated and shorter posts, ah well. I have moved to posting more on the specialized topics on the right there.<br />
I was looking back through some old posts from 2002, interesting how much I and my life has changed, two kids, still in love with Fiona, although now married, still work in IT, although focused on IT security as the blog on the right alludes.<br />
Not much else to report, should really update this one at least every year or so :)<br />
<br />
Oh I did see the below today, freaking awesome. I used to love my archery, always wanted a basic re-curve bow like the one used in the video, would love to try the way he shoots too.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<iframe allowfullscreen='allowfullscreen' webkitallowfullscreen='webkitallowfullscreen' mozallowfullscreen='mozallowfullscreen' width='320' height='266' src='https://www.youtube.com/embed/BEG-ly9tQGk?feature=player_embedded' frameborder='0'></iframe></div>
<br />
<br />
Peace out all.Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-61647963970878596822013-11-27T20:30:00.000+11:002013-11-27T20:30:01.523+11:00The state of the internet nationThis one is a little IT heavy, but is more an indictment on our society, so I decided to put it on my personal blog. Besides I have been blogging a fair bit at my other two blogs, links on the right.<br /><br />So I was looking at the new top level domains (the current ones are .com, .gov, .net etc) that are coming out <a href="http://domainia.com/tlds">here</a>; and I though it was a bit interesting. There are a lot of car companies; who really needs domain.fiat or worse domain.alfaromeo, but also who needs domain.adac which was applied for by a German Car club. <br />But the thing that really got me, the lack of science type names in the list. There is no .lab for example, no .physics no .math. There sure are stupidly long ones like JPMORGANCHASE, NORTHWESTERNMUTUAL, and TRAVELERSINSURANCE. But no one thought a nice short multi-use one like .lab or .labs would be useful. Heck there is a discussion <a href="http://forum.icann.org/tldreport/3A131E020000044B.html">here,</a> about it from 2000, 13 damn years ago.<br /><br />This is why we can't have nice things, this is why the world is in a mess, because we spend money only to make money, any advancement is incidental and only made by people altruistic enough to spend their time and energy to better mankind.<br /><br />Science is what made the internet, and now they are almost forgotten, which is kind of sad.<br /><br />
Oh and the below one is interesting, I am wondering why that applicant applied for it as Google will surely come down on them with all their might should they register something.youtube...<br /><br />
Proposed new domain name Applicant<br />
YOUTUBE <b>Charleston Road Registry Inc.</b><br /><br />
Peace out all, except scientifically illiterate, corporate shills...<br />Unknownnoreply@blogger.com2tag:blogger.com,1999:blog-5532872.post-1306987314088949372013-09-04T16:34:00.001+10:002013-09-09T17:01:16.936+10:00Google goodness and BirthdaySometimes Google is just too cool... I saw my phone had backed up a few of my photos and it had detected these photos seemed to go together and auto stitched them together. This from Geoffrey's recent birthday. Thank you Google.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiv6IllZszgXpAKPFpUOg0SyilhAhd15wbKI3rCBAP7KzSFkhKOpyQkgN4zDDsr-C9DTXbXMYKR3vGZ2SR96_SPoKbtq-zffIqfibTJwuJ0_2YWymQ0o-OEs2QWhQJpnWDexmSaPQ/s360-c/photo.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="320" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiv6IllZszgXpAKPFpUOg0SyilhAhd15wbKI3rCBAP7KzSFkhKOpyQkgN4zDDsr-C9DTXbXMYKR3vGZ2SR96_SPoKbtq-zffIqfibTJwuJ0_2YWymQ0o-OEs2QWhQJpnWDexmSaPQ/s360-c/photo.jpg" width="320" /></a></div>
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
Peace out all, especially those awesome software devs and support peeps at google.Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-37227094557116040402013-06-18T22:46:00.000+10:002013-06-18T22:46:34.616+10:00DystopiaFinally something to post that didn't fit in the other two blogs.<br />
<br />
I was invited out to see a play, and it is a comedy about a dystopian future. I then realised how much I like dystopian future stories and decided to lookup a <a href="http://en.wikipedia.org/wiki/List_of_dystopian_films">few</a><br />
I realised not only have I seen a vast majority of these films, I have liked every single one I have seen... I even liked Waterworld...I am sorry that I was the only one Mr Costner.<br />
I don't know why I like these films. Is it the sci-fi element, is it the world in ruin, is it that I want to see how not to fix things?<br />
<br />
I don't know, it is very odd. I like the idea of a utopia as much as the next person, I will talk at length about utopian ideals like freedom of information and expression, that I believe everyone is intelligent in some way and that Gene Roddenberry and his utopian picture is glorious :)<br />
So why do I watch anything dystopian that comes my way, as one of my mates used to say "team of therapists, round the clock, Morgan". Hmm, maybe I am just being subconsciously contrary?<br />
Oh well now to collect then watch all the movies on that list I haven't seen, does anyone know where you can get "<a href="http://en.wikipedia.org/wiki/The_World,_the_Flesh_and_the_Devil_%281959_film%29">The World, the Flesh and the Devil</a>" on DVD?<br />
<br />
Peace out all.Unknownnoreply@blogger.com2tag:blogger.com,1999:blog-5532872.post-32752781369050339022012-05-30T22:58:00.000+10:002012-05-30T22:58:05.088+10:00Yikes it has been a while since I posted. Well to recap the long amount of time since then. We moved back from Brisbane in 2011 after things didn't work out with schools the way we had planned. I miss Brisbane to some extent and made friends up there after going to a board game group for twelve months. I am still with the same company, and despite being fairly busy still loving it.
I guess one of the main reasons I hadn't updated this blog was that google decided to drop support for publishing from blogger to other platforms. I have moved my blog wholly over to google now, so I can ditch my cheap hosting altogether. This should also result in the site being a bit quicker than the cheap hosting I have, or the old days when I had this all hosted on my own server on the end of a slow DSL link.
Geoffrey has started school, Anne has started pre-school and they are both growing into beautiful little people.
You may notice a fair few of the links on the sidebar don't work, I am still working out some of the content heck it hadn't had an update since 2004 prior to Geoffrey being born, but they should be fixed eventually. You may also notice a new blog on the left there, if the subject's don't interest you then don't read it.
Well that's it for this quick update. Peace out all.Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-12862609947727065932009-12-28T23:53:00.002+11:002009-12-29T00:30:55.906+11:00Moving up northWell its official I am moving to Brisbane. Work has approved the move, and we researched schools and suburbs, and looked at distances to my companies various offices and finally decided on a suburb and have signed the lease on a place and put down a deposit. We have also started packing (mostly Fiona's work) and gotten several quotes for methods of getting our possesions up there, and settled on one.<br />To those who want to drop in you already have my mobile and email, drop me a line.<br />I feel nervous but another chapter of my family and my life is about to start.<br />If you want to catch up before I go, give me a call/email/im/carrier pidgeon.<br />Peace out allMorgan Storeyhttp://www.blogger.com/profile/10406049887224934659noreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-33171313021624684442009-02-20T18:25:00.000+11:002009-02-20T18:25:00.357+11:00Random post funnyTaken from another friends blog <a href="http://metaphor123.livejournal.com/76701.html">here</a><br /><br />RULES:<br /><br /> 1. Put your iTunes / media player on shuffle.<br /> 2. With each given question, press next and that is your answer.<br /> 3. Write down the song name no matter HOW silly it sounds.<br /> 4. If you have any comments, write them in brackets below your answer.<br /> 5. Don't cycle through until you find a funny one (added this rule cause it sounds fair, and removed rule 5 as chain anything sucks)<br /><br />a) If someone asks you out, you say:<br />Way to Go! - Rogue Traders<br />(heheh)<br /><br />b) You see your crush. You think:<br />Clint Eastwood - Gorrillaz<br />(A bit harsh, Clint is an ugly man)<br /><br />c) You stub your foot and yell:<br />Bicycle Race - Queen<br />(Not likely that I would stub it in a Bicycle race, no bike, and I don't race)<br /><br />d) Your pants are full of:<br />Stand Up - Flobots<br />(That they are...)<br /><br />e) Your favorite video game is:<br />Coin-Operated Boy - The Dresden Dolls<br />(I think this game would not be pg-13)<br /><br />f) Your t-shirt says:<br />I'll Kill Her - SoKo<br />(hahah, awesome song though)<br /><br />g) Your favorite video consists of:<br />Toy Soldiers - Martika<br />(I actually like the movie toy soldiers)<br /><br />h) This is what's crawling up your pant leg:<br />We are the Champions - Queen<br />(Champions, oh oh)<br /> <br />i) You like him / her because of:<br />Do you hear the people sing - Les Misérables<br /><br />j) Your friend has:<br />One Four Five - The Cat Empire<br /> <br />k) What you'll be when you grow up:<br />This Is How You Remind Me - Nickelback<br /> <br />l) The song that'll be played at your child's birth:<br />Sweet Lullaby - Deep Forest<br />(hehe what a coinkidink)<br /> <br />m) Your "summer song":<br />Black Bugs - Regurgitator<br /> <br />n) Your friends' pants are full of:<br />Grace Kelly - Mika<br />(I bet they wish)<br /> <br />o) You like to:<br />I Go Off - Diana ah Naid<br />(Another funny, I am pretty placid)<br /> <br />p) Your mom changed her name to:<br />Walking on the sun - Smashmouth<br /> <br />q) You changed your name to:<br />Killer Queen - Queen<br />(well it is my favourite queen song)<br /> <br />r) Your battle cry:<br />House of the Rising Sun - The Animals<br /> <br />s) Your porn movie will be titled:<br />Big Yellow Taxi - Joni Mitchell<br /> <br />t) Your wedding song:<br />Good Time - Leroy<br />(ah how true)<br /> <br />u) Your new last name is:<br />Castle On a Cloud - Les Misérables<br /> <br />v) Your genitals are called:<br />No Aphrodisiac - The Whitlams<br />(A bit harsh)<br /> <br />w) Your pet cat is named:<br />Doctorin' the Tardis - Timelords<br /> <br />x) Your pet dog is named:<br />Red and Black - Les Misérables<br />(A red and black dog would be interesting, I think I wouldn't name it so obvious though; Kerberos)<br /> <br />y) Your new nickname will be:<br />Bohemian Rhapsody - Queen<br /> <br />z) When posted, you will title this:<br />Crazy - Gnarls Barkley<br />(Oh god that is a classic ending)<br /><br />Well that was mildly amusing.<br />Peace out all, I will post more normal stuff promise.Morgan Storeyhttp://www.blogger.com/profile/10406049887224934659noreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-45872986015929453672009-02-09T23:27:00.001+11:002009-02-09T23:33:19.551+11:00Another post in only a few days very surprising, well I have a bit to say and forgot to say it the other day.<br />I had a wonderful Christmas, and lots of fun with the kids. I thought I posted about it but obviously not. <br />Fiona got me a Doctor Who sonic screw driver and an incredible present of a portrait of Geoffrey, painted by our favourite painter (<a href="http://www.marshstudio.com">Fred Marsh</a>), it was a picture of possibly my favourite picture of Geoffrey to date.<br />We ate lots of seafood over Christmas but managed to put on little weight which was good.<br />We also managed to get a really good Family Photo with Santa Claus, and I think Geoffrey gets Santa and Christmas are good things now, especially with the inundation of presents he received, don’t worry Anne got her fair share as well.<br />Then after the initial Christmas orgy of presents, Fiona got me another present, I don't know why I deserved it but she got it anyway, a Flickr Pro account, so go to <a href="http://morganstorey.com">morganstorey.com</a> and click on MobileBlog to be redirected there. I upload photos from my phone all the time so it is sure to be updated, more often than my blog has been :P<br />In other news and on to the topic of this post, public humiliation. I read an interesting blog post the other day <a href="http://www.coinbycoin.com/2009/01/01/public-and-humiliating-failure/">here</a>. <br />To surmise though it quotes <a href="http://en.wikipedia.org/wiki/Paul_Graham">Paul Graham</a>, programmer, entrepreneur and venture capitalist who says:<br /><i>One of the most interesting things we’ve discovered… is that [people] are more motivated by the fear of looking bad than by the hope of getting millions of dollars. So if you want to get millions of dollars, put yourself in a position where failure will be public and humiliating.</i><br />So on that note, I am going to let the world know of my intentions in a plan to humiliate myself into succeeding.<br />By the end of next year I hope to have my CISSP; an extremely high certification in IT Security. Not only that but before then I hope to have the following certifications; CCNA, CCNA:Security, CCSA, CCSE, LPIC 1, LPIC2 and LPIC 3:Security, OSPC, Security+, CEH, and finally Upgrade My MCSE to MCITP:Enterprise.<br />I have told people this off hand, but never written it in public, and let the world know. I am doing these only really for self satisfaction, and to get my knowledge recognized. It does however take time to fill in the gaps. So after 6 months of being to tired, busy, or interested in what my rack is doing or what is on TV, I started back on my boring CCNA the other night.<br />Wish me luck.<br />Peace out all.Morgan Storeyhttp://www.blogger.com/profile/10406049887224934659noreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-7188416740028795412009-02-07T16:32:00.001+11:002009-02-07T19:52:44.654+11:00Hot, damn hot...So damn hot at the moment. My Google weather toolbar says it is only 30 degrees, but I think that is taken from the city so it isn't comparable to anywhere that isn't directly on the water, least that's my excuse for my whinging and I am sticking to it.<br />We have made some radical changes to Geoffrey and Annes diet's, and seen dramatic changes. It all started because my new boss while I was down in Melbourne told me that his son is Gluten intolerant, and most of the symptoms bar the height matched Geoffrey.<br />So Fiona looked into it. Glue ear is one of the big symptoms, so we are rather annoyed that no one in the process of him getting his grommets in his ears suggested maybe changing his diet or even getting him checked? We can get him checked but it requires putting him back on the gluten, with the radical change in his personality, his rash clearing up and him seeming happier than he ever has since cutting it out, I think we will wait to do the test.<br />Geoffrey has gone back to a kindy that we found and is really enjoying it, his teachers are wonderful, and he really enjoys it there I think, so much so is that he gets upset on days when he isn't going, of course he doesn't want us to leave when we drop him off either.<br />Anne is also really coming along, yesterday on the way home for work she said Geoffrey, I turned to Fiona and said did she just say Geoffrey, she replied that she did, and then she said it again, confirmation. Geoffrey wasn't as impressed as he will be in years to come when he realises he is her first two-syllable word, with Mummy and Daddy being close firsts.<br />Anne has also started to assert herself and really show off her personality. She is very tough and not afraid to stand up for herself if Geoffrey is in her way. That being said Geoffrey has showed his softer side a lot. If she cries he hugs her, or cries to, if Geoffrey and Fiona are going to play he will hold the gate/door open and hold his hand out to Anne.<br />I had an interesting moment the other night, while trying to get to sleep in 30+ degree heat, I was thinking about the age old riddle. If you where in a boat with your young child, it capsized and you where the only one of your family not incapacitated, who would you save?<br />Pre children to the above quandary I would have answered; my Partner. I think even when Fiona and I were considering children I would have answered the same thing. Well my answer the other night was opposite, a very interesting change I would think. It comes back to that saying only a parent knows.<br />I am going to start posting this on livejournal as well as here, as people are too lazy to get a blogger account to comment here.<br />Peace out all.Morgan Storeyhttp://www.blogger.com/profile/10406049887224934659noreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-41298216034547043232008-11-13T17:17:00.004+11:002008-11-16T16:10:48.855+11:00Makes the blood boil.So if I haven't already ranted at you in some way shape or form, you may not know of the Australian government's short-sighted plan to add us to the ranks of oppressive regimes such as Iran and China. In fact that is unfair as Iran's proxy is considered to be looser than the one Senator Conroy wants to implement.<br />The long and short of it is that Conroy wants to restrict what pages are available to Australian internet users. Sure it is for the kids (won't someone think of the children)… But as I have said to people I would rather my children see the entirety of the disgusting underbelly of the internet than have one single thought provoking site blocked. Not to mention the degradation to performance in a country that is already considered one of the worst in the world for connectivity. In Sweden groups appealed to the government saying 100mbps is welfare. Here most people are still on 1/200th that speed, and with Conroys plan that 1/200th would lose anywhere from 2-80% of its speed, welcome back to dial-up days.<br />There are a plethora of sites that are likely to be blocked because they aren't "kid" friendly. June next year you will probably see the below when going to user content generated sites such as Youtube and Facebook:<br /><img width="605" height="383" src="http://morganstorey.com/blog_files/2008/Australia-403.jpg"><br />Here is a news flash senator; kids get hold of porn even if you restrict it, even in the pre-internet days. So what your doing will only have negative effects. Parents with no IT knowledge will have a false sense of security and not monitor their kids browsing habits, these same kids will find ways round your precious filter, and these methods that will become popular may even make it harder for parents and educators to monitor their usage. <br />The filter will slow down internet access and again the people with little IT knowledge will have no idea how to get around it for legitimate sites that are blocked. Then there is the cost which you are expecting ISP's to mostly cover off their own bat, which will increase internet costs in a country that already pays too much for too little.<br />Way to go Senator you deserve your award:<br /><img src="http://morganstorey.com/blog_files/2008/conroy-award.jpg"><br />I feel lost; I don't know what to do. I feel as though someone has decided freedom of information is a bad idea, so let's mandate it. Then what do you do. Once the book burning starts it is hard to stop.<br />I have emailed the Senator and his opponents, and the letters are in the mail.<br />I urge everyone to look at the following sites and take action: http://nocleanfeed.com your silence is all they need to pass this and then you are no better than them.<br />Peace out all, except Conroy and his supporters who can just unplug their computers, televisions, and burn their books for the same effect they are trying to mandate.<br /><br /><br />PS: I am starting up a dedicated security Blog as I want to separate the two, this of course crosses both blogs so expect to see it on both. My new Security blog is linked on the left or here: <a href='http://security.morganstorey.com'>http://security.morganstorey.com</a>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-79024728775927108692008-09-29T20:19:00.004+10:002008-09-29T22:16:53.143+10:00Lets get PhysicalOn the way back from a very interesting an informative Microsoft Security Summit the other day and I noticed something that caught my eye.<br />Too many people concentrate on the hardware and software, and leave gaps. Gaps in the physical security, or gaps in the training of staff.<br />This photo shows off both.<br /><a href="http://www.flickr.com/photos/changlinn/2898538146/" title="29/09/2008 by changlinn, on Flickr"><img src="http://farm4.static.flickr.com/3137/2898538146_bca2520fb4.jpg" width="375" height="500" alt="29/09/2008" /></a><br />Seems a cleaner at the train station near me had left the door open to the area that she kept her cleaning supplies, the same area that had a rack with server, fibre switch, ethernet switch, patchpanel and other miscelania. Whats that you spy, yep the rack door is unlocked too. Click click and a bad guy is on the network, just plug in a wireless router and see what traffic you can capture, doesn't matter if this network is firewalled the best in the world, or even airgapped, game over.<br />Back on the security conference I attended it was very interesting, it was all covered under an NDA, except the bit at the end which I already talked about. I am starting a security group in Sydney, sponsored by Microsoft. So Jeff Alexander let everyone know, I had a heap of business cards handed over for people that wanted to be kept in the loop, it is very exciting that we have this much interest already.<br />Well Peace out all, and please lock your racks and don't put them in a room with a sink for the cleaner to use.Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-24100128046310019632008-09-15T12:30:00.003+10:002008-09-15T17:35:54.399+10:00Sydney IT Security GroupSo I had a chat with <a href="http://blogs.technet.com/jeffa36/">Jeff</a> about starting up a Security group in Sydney similar to counterparts in <a href="http://www.aususergroups.org/security">Canberra,</a><a href="http://www.aususergroups.com/miag">Melbourne,</a> and <a href="http://www.aususergroups.org/big">Brisbane.</a><br />It is really a great opportunity and I have been looking for a security group in Sydney for years now, making do with going to security topics at other groups. I don't think it will detract from these other groups just expand on the security theme, going places other groups may not want to go as they are too focussed.<br />I'd like to get some comments here on what people would like to see and what night etc, but people rarely comment on my blog. So I will setup a site for the group shortly and we can duke it out there.<br />Peace out all.Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-87125693191507412772008-08-27T23:46:00.002+10:002008-08-28T00:00:21.668+10:00Pretty lightsMore on DNS I know. May as well be another person beating a dead horse. But I give you pretty: http://www.doxpara.com/?p=1206<br />It is a video of the patched and not patched world wide. It intrigues me that there is a blinking light on the map of Australia about 3 hours north of Adelaide, I doubt it is Alice Springs, to south, maybe Coober Peadie if my geography serves.<br />Onto some more supposition by me (mainly in reply to Dan [the guy who discovered the Researched the DNS flaw] <a href="http://www.doxpara.com/?p=1215">here</a>); <br />I agree with what has been said, that we need more security on an inherintly in-secure network. But some (percieved) anonymity and some plain text is good, and what the internet is all about. <br />Could you imagine every site moving to https, for starters what is the point, who needs to read my blog through an encrypted channel? Really why, I don't really have any direct post functionality, and only a handful of readers, it is not like I am directing them to blindly do anything either.<br />Onto DNS, I was thinking the other day of another way to fix the issue. Deploy a port knocking technique on the reply based on the query, so that ports would have to be knocked in the correct order on the DNS server pre accepting back the lookup. Similar to the way a person gets into a safe, knowing the numbers isn't good enough you need to know the sequence. This would stop NAT being an issue as the DNS server can make the request out on all ports getting an auto map back on these ports. And would be more secure as the attacker would have to guess the right ports to knock on the way back, or read the request and then generate the reply and reply back, but if they can do that they are already in the middle and its game is over.<br />What do you think?<br />Peace out all, especially Dan, good job.Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-83255714034036806622008-08-14T21:35:00.000+10:002008-08-14T21:35:00.270+10:00DNS woes continue... sortaSo as I said, and the original discoverer Dan said, it was just a patch. Not a fix, not a be-all and end all solution. A temporary patch. We already know some nat devices break the patch's fix. But from the looks <a href="http://tservice.net.ru/~s0mbre/blog/devel/networking/dns/2008_08_08.html">here</a> and <a href="http://www.nytimes.com/2008/08/09/technology/09flaw.html?_r=1&oref=slogin">here</a> it can be broken. The first link even details how, but there is a caveat. It is not easy, and a lot of bandwidth with low latency is required.<br />The first article explains how they did it over Gige in 10 hours. So most DNS servers that are doing resolves for clients, are probably not even on 20mbs of bandwidth, and latency 10+ times that of ethernet, not including the clients themselves causing some load. So you could say it would take 10+ times longer to do this over the internet, so 100hours. Someone will hopefully notice at around hour 20… But it isn't that simple, what if some baddie hits a server with a mere 100 clients... (Most botnets are 10 times this size). Chaos again. We need a better fix. I mentioned before some kind of signed DNS, I am the first to admit I have gaps in my knowledge as I have never heard of DNSSEC, now I that have listened to the Blackhat talk I have heard about it. I had a quick look at <A href="http://en.wikipedia.org/wiki/DNSSEC">wikipedia</a> and the <a href="http://www.dnssec.net/">official site</a> and it is interesting. Of course windows servers only support it as a secondary, also the glaring-hole of non NSEC3 servers allowing enumeration of sites is just plain silly. Seriously just hash The users request domain “Not Found” and add it to the RFC, done.<br />I think it should include the option for encrypting replies, may as well, could be useful for higher secure organisations.<br />This is a very real and very now threat, there are at least two pieces of software out there to attack it, one being the very good, but very newbie friendly <a href="http://www.metaploit.com">metasploit.</a><br />Well I am pretty much just re-iterating and expanding on my comments on <a href="http://www.darknet.org.uk">darknet</a> but there you go.<br />Peace out all.Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-6671265549151687532008-08-14T17:26:00.003+10:002008-08-14T17:32:48.322+10:00Geoffrey talking, and going loopySo Geoffrey gave me a heart attack today (not literally) Fiona came in to have lunch with me and we went to the park. It was a lot of fun and really shows how he will talk if he wants something, "up again" kept coming when he wanted me to pick him up to the flying fox.<br />But the scary bit was when we were having fun, I was pushing him on the swing, when he decided to flip forward just after I had pushed back, he flipped over fortunately caught by the chain as he was in the little kids swing. I lunged forward and caught him... phewww.<br />Other than that is was a lovely lunch, Marion brought beautiful ham sandwiches and soft-drink, and Geoffrey and I ran around the play equipment like madmen.Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-77763661442839075022008-08-10T18:48:00.000+10:002008-08-10T18:48:00.840+10:00Social EngineeringI think possibly the equal first security threat facing all business today is that of Social engineering. I say equal first, because a lot of insider threats would probably fall under this banner. The employee, lets say his name is John calls up the helpdesk, he tells them his name is Sam, and that he has forgotten his password. You of course see where I am going with this, the helpdesk happily resets Sam's password, John knows Sam is out to a long lunch and has access to files he doesn't. He logs in as Sam, gets the files he needs and then logs out, maybe even leaving a post-it on Sams screen saying the helpdesk had to reset his password to blah, so the helpdesk doesn't get another call and get suspicious.<br />John know has all the files on his cheap USB disk, or in hard copy and does with them whatever it is nefarious people do with data to make a buck.<br />I have seen mitigation techniques for the one I mentioned above, all users have a password reset word, something they wouldn't have as a password and stored in plain-text for the helpdesk to see. This will mitigate it, unless John says he forgot it and to send someone down, the helpdesk guy may not know John or Sam, and as long as John is in Sam's office still acting like he owns the place he will probably get away with it.<br />Social Engineering is scary for another reason in that even non-technical users can do it. I remember I had a client once who had a relitively new employee call up asking for some permissions to files he needed for work. I knew his role was to do with those files and I knew his voice over the phone (as funnily enough he had moved from one client to another). Still I decided to call his manager to get the ok. She didn't give it, and was a bit distrubed that he had asked for the access. Horray one for the good guys.<br />Have a look <a href="http://www.5min.com/Video/How-to-Get-Into-Any-Club-14234755">here</a> at how easily some guys doing a sprite commercial pulled off some non-harmful social engineering.<br /><a href="http://www.securityfocus.com/infocus/1860/1">Here is a very thourough article on the subject.</a><br /><a href="http://www.cafepress.com/greatgeekgifts.292971928">And here is my first shirt design on cafepress, totally on topic.</a><br />Really though combine some social engineering with technical knowledge the smarts to think of the good-guys mitigation techniques and the connections to make money off your exploits and you have a major foe to be reaconed with.<br />I think in future we will need to audit our people as much as we do our security systems. Having someone who won't suffer the repricussions of the law come in randomly and do spot checks would keep people on their toes, but it also comes down to having the personal touch, knowing people by name, by their voice, by their face. Maybe the solution is smaller decentralised IT departments, say one for each department and at least one at each site, this lessens the body of knowledge but increases the likelyhood of the staff member knowing the other. I don't know, someone will come up with a solution eventually.<br />I have decided to use tags to seperate the posts, so no more personal stuff in the security tagged posts.<br />Peace out all.Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-88278226855900604872008-08-10T17:33:00.004+10:002008-08-10T17:38:58.874+10:00Off to the zooSo today we went to the Zoo and Geoffrey let something interesting go. He knows how old he is about to be. When asked when he felt like it he replied with are hearty THREEEE. Ahh it is good to see. It has been about six months since his operation and he is picking up new things everyday.<br />Anne is walking and has added to her repitore of Mama and Dada and Baba other interesting little noises and words. She got a new little outfit that was terribly cute, a pair of stockings with a bustle at the back, to go perfectly with her little yellow dress with pedicoat. We had lots of fun at the zoo before the down-pour began.<br />Speaking of downpours I heard it snowed again in NSW, just south of Wollongong last week. That makes two 100+year events in the last few weeks, the weather certainly is variable at the moment. I heard a good saying the other day "Climate is what you expect, weather is what you get", it certainly is what we have been getting lately: Short bursts of rain, followed by nice hot days, when will it end.<br />Peace out allUnknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-25619038396062016352008-07-25T08:37:00.005+10:002008-07-27T19:59:20.799+10:00DNS VulnerabilityThere has been some speculation and even backlash on the internet about the recent DNS vulnerability, I posted about it <a href="http://www.morganstorey.com/2008/07/101-posts-yay.html">here</a>. Interestingly <a href="http://addxorrol.blogspot.com/2008/07/on-dans-request-for-no-speculation.html">some people</a> are saying that the vulnerability should have been disclosed when discovered. <br />This is plain silly. To put it in simple terms with a car analogy (I love car analogies); if a saftey tester discovers that every single Toyota Corolla on the market (the number one selling car, 35million world wide) bursts into flames (props to fight club, note: Corollas don't afaik) if you crash at exactly 35 kilometers per hour. If he just posts this on his blog a few things will happen; everyone will know in about two seconds. The next day 35million Corolla owners will demand a refund, either destroying or severly damaging Toyota and its employees, and hooligans will wander around car parks with sledghammers hoping to hit one with the lucky 35kph speed.Basically what I am saying in a rather confused and overly long analogy is if this had been disclosed pre-vendor patch-release their would have been lost confidence in the whole internet, there would be lost jobs and money from the lost <br />confidence alone. Then the real fun would begin, prior to the patch being released someone would write a script to take advantage of the vulnerability, this script would then be morphed into several gui tools, and every script kiddie and his bot army would take down sites worldwide for fun and profit. <br />I am not saying it would have been an internet dooms-day, it could have, but the internet is pretty robust. But it would have been very damaging had the vendor patch not been released, there would have been loss of income and loss of jobs.<br />I agree with the way it was done, but maybe it could have been done a little sooner if you do a google search DNS cache poisoning is not new in the slightest, have a look at the <a href="http://en.wikipedia.org/wiki/DNS_cache_poisoning">wiki article</a>. Birthday attacks are a common similar variant, I have even been involved with a cache poisoning issue a couple of times, first back in 2003. Both times I couldn't capture the culprit, there was just too many packets to wade through, but the problems were solved.<br />I do agree with what I have now read, maybe we need to move across to some kind of signed DNS, either SSL Dns or some kind of signed cert, like gpg and its signed keys.<br />We could setup the root servers all with a cert or signed key that all DNS servers are set to trust, just roll it into an update or new DNS installs then slowly cut over, then if you want to say use your ISP's servers as forwarders you could simply implictly trust the key or they could buy a signed cert (I can hear Verisign/Thawte licking there lips from here).<br />Supposedly due to some disclosure there maybe a script kiddie tool out soon to exploit this vulnerability, and with most NAT devices (see routers) turning patched servers into vulnerable ones and some of these routers not being patched/patchable it is only a matter of time. So everyone PATCH your servers please.<br />In other news, today was a snow day...yay. That won't be exciting for most northern hemisphere residents, but us here in the southern hemisphere, rarely see snow. We would have got about an inch or two, so Geoffrey and Anne saw snow for the first times in their lives; see my <a href="http://flickr.com/photos/changlinn">Flickr here,</a> and see the video I uploaded to <a href="http://youtube.com/changlinn">my Youtube here.</a><br />Peace out all, even those naysayers that say snow ain't cool.Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-24611799412687654552008-07-21T22:28:00.004+10:002008-07-22T10:58:56.267+10:00<h3>Here be dragons</h3><br />If you haven't seen this <a href="http://xkcd.com/195/">yet</a> have a look. Yes the brilliant webcomic xkcd sometime ago did a Map of the internet, I used to have this posted on my wall at work so the newer employees could come have a look when they were visiting to ask a question, it really shows how immense it all is.<br />But then while looking at one of my bookmarks on network security using <a href="http://www.team-cymru.org/Services/darknets.html">darknets</a> for a post on an internet forum I found this: <a href="http://www.team-cymru.org/Monitoring/Malevolence/hilbert.html">a map of malisciousness.</a> Awesome. It really is interesting to see the concentrations of either compromised machines or general evil-doers in the world. The thing that gets me and got me when I first looked at it was why is the 10.0.0.0 range have so many hits, its a private range, then I looked closer. Why are a few of the "bogan" address ranges getting hits. The only thing I can think is IP spoofing, and if so who would spoof a 10 address. Why not spoof 1.3.3.7 (fun) or something else, everyone knows 10 is internal... anyway post your thoughts.<br />Oh yeah we haven't quite won the DNS thing yet either. The multi-vendor patch was just that a patch, there are still inherent flaws in the system. Like the new one disclosed with DNS that passes through NAT (see most DNS servers as NAT means some decent IP sharing) it is annoying but it is a fight we have to keep on. See <a href="http://taosecurity.blogspot.com/">here for the article.</a> It is basically NAT routers being lazy and not letting the port be the random one that the DNS server wants it to be. This randomness doesn't make DNS invulnerable to the poisoning attack I mentioned earlier, it just makes it much, much harder. So to have some routers (people like netgear don't release patches after it is 5+ years old) destory the hard work must be really annoying.<br />Yep I am dedicating this blog now to more security related topics like the one above. I am still going to keep an update on the kids and all things family. Like little Anne who all of sudden decided she didn't want to be immobile and is not only started crawling in the last few weeks but also pulling herself up to stand and also taking little steps (as long as her hand is held, or holding on to something). She has even said Mama, and what sounded like more after she stole a biscuit from me.<br />Geoffrey is really coming along too, he is saying Daddy and Mommy more and more, and when annoyed Morgan and Fiona come out too.<br />Peace out all, except those to Lazy to fix their NAT code.Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-40421304922081817482008-07-13T18:21:00.000+10:002008-07-14T16:30:48.105+10:00<h3>DNS vulnerabilites and Sydney IT Security Group</h3><br /><h4>101 posts, yay.</h4><br />Not really as I imported all those journal entries from 2003 and before, so it is more.<br />On family news, Anne is trying to walk, and Geoffrey is in potty training. She is only 9 months old, and only crawls when on carpet but she is stubborn. She sees Geoffrey walk and wants to run after him, she pulls herself up onto the coffee table or kiddie couch and looks around, heck she even tries to stand on the spot; which just means she ends up with her bum in the air, her legs straight and her hands stretched down to the ground to steady herself.<br />I have been going at my new job now for a few weeks and am starting to get the hang of some things. It is a little odd though with all of the people in my team being in a different state than me, and having met none of them other than my boss Jamie, who came up my first week to train me.<br />I am getting to know the guys in the different groups around me, from technical services, and Infrastructure. We play table tennis on Fridays and I am not the worst one here...YAY.<br />This is why we run Linux at home: <a href="http://blog.seattlepi.nwsource.com/microsoft/archives/141821.asp">(even Billy G has issues with Windows) </a>, you want to install something, no need to run a web browser to find all the bits you need. Then hunt, hunt, fill out a form telling them your name, date of birth and pant size. Just either apt-get install "program name" and it gets all the stuff it needs. Or run synaptic.<br />*Now onto security.<br />As you may or may not have heard there was a big update released for basically the whole internet. See <a href="http://www.kb.cert.org/vuls/id/800113">here</a> and <a href="http://doxpara.com/">here for a test of your own dns.</a><br />Basically it boils down to a bad guy being able to put incorrect entries into your ISP or works DNS cache that would point you to the wrong site. So instead of going to google.com it could take you to a hackers version, or whatever. This would also effect email.<br />Now this kind of thing does happen occasionally, but this was seen as such a big issue (it could basically destroy the internet if unchecked and unpatched), that CERT who handles these issues let all the Vendors and developers know. Giving them time to write a patch for release on the same day. Very, very impressive.<br />Not only Microsoft but Unix, Linux, BSD , Cisco, Checkpoint, all of them released a patch for their varied DNS implementations. Yahoo who uses an older *nix implementation of DNS, Bind8 managed to simply comit to abandoning it in favour of the newer patched Bind9.<br />The question I put forward, is this finally a time of security as an institution. Security how it should be done, globablly. Sure it is still relying on Admins at the other end, but with Auto updates being the norm, it should be fine. This to me seems a step in the right direction, and I am sure even a couple years ago this wouldn't have happened. Will this one day lead us to a security utopia free of vulnerabilites and insecurites, no. But it may lead to sharing and assistance cross platform.<br />Speaking of security, there is talk of an IT Security group being started up in Sydney, and I maybe taking the reigns. It will be sponsored by Microsoft but if I take the reigns I plan on being vendor neutral, all-be-it Microsoft has some nice claims to fame, and even with all their foibles and hatred that is flung at them, they do try and do some stuff right. Operating systems are tools, you should use the right tool for the right job.<br />Peace out all, specially those lovely CERT engineers.Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-62877168203765446352008-06-22T21:57:00.004+10:002008-07-22T10:59:45.057+10:00<H3>The times they are a changing.</H3><br />I have decided to remove the old standard picture up the top to make the blog more central. It has been there since I had my website on geocities in 97, so it is over 10 years now.<br />Other changes have happened. I got a new job and have started: Internal to a company as a Security specialist. I started Wednesday. So far it has been a very good experience, almost everything I have seen has been setup in a way that I would do, which is a good sign. Even have a table tennis table and I am not the worse player in the IT team.<br />In other news Marion bought us a yearly Zoo pass so Geoffrey, Anne, Fiona and myself have gone to the Zoo a couple of times now, check my <a href="http://flickr.com/photos/changlinn/">flickr</a> for some of the photos. Another photo you will spot there is our care hitting 666km.. heheh. It has gone well beyond that ominous number now, and even had it's first service.<br />Today we had a nice morning tea with Anthea and Michael, and Geoffrey was sad to see them go. Geoffrey has started drawing and painting, he has chalk and loves chalking the coffee table, so I am looking over at our chalked table... He is cute, he has started playing mummy and daddy against each other too, when one of us says no, he looks at the other for input.<br />Well I guess that is enough of my inane ramblings.<br />Peace out all.Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-43787742331579576392008-05-22T16:37:00.003+10:002008-05-22T17:16:53.072+10:00<h3>Happy birthday to me</h3><br />So my birthday has been and gone, probably not the best in memory, but it happens. I did however get a new job, in dedicated security, which is awesome. We also got our new car, a Hyundai Elantra.<br />Anne is now crawling, and Geoffrey is talking more and more when he feels like it, saying things like thankyou, and apple, best yet has been trying to say helicopter he said applecopter.<br />My site is now hosted externally and backed up to my servers at home, as our power bill and the heat in (even though it is winter) in the server room was ridiculous. When I have time and more money, I will get the site back locally, but the superb performance of Google apps has really turned me towards outsourcing the hosting of our stuff, it is not like there is any data in our email or websites that is confidential.<br />I even found an add-on for firefox that allows me to use GPG through my google apps, so that is soon to be setup with my old morganstorey.com key.<br />Scary change in the world of security, see <a href="http://www.informationweek.com/news/security/privacy/showArticle.jhtml?articleID=207401604">here.</a> The good ole US of A, has decided to pass legislation that all devices that can store data coming into the USA can be copied in its entirety to their storage. This data can be kept indefinitely. I am sure this will mean that it will be indexed, anything encrypted will be brute forced and broken, and hey some senator may make a fortune when he sells it on to marketers, spammers, and the like.<br />The general consensus is to backup, delete then wipe your drive of pretty much any personal data or corporate data, something like <a href="http://www.heidi.ie/eraser/">eraser</a> works well here, then simply fetch the data over some kind of VPN or secure connection from your server when you need it. People have even gone to lengths of removing their "home" hard drive, and plugging in their "traveling to the Draconian states of America" drive.<br />Sure their could be some terrorist smuggling in data on how to build a bomb... there could be but couldn't he/she just surf the net and find 70billion ways to do this when he gets into the country.<br />I can see how this is going to increase the need for teleconferencing, and reduce people's desire to take business trips to the USA. It is already happening with some companies moving their head office's elsewhere in the world.<br />Well Peace out all, especially the American's they need it the most.Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-5532872.post-15576129816482696162008-04-28T23:36:00.002+10:002008-04-28T23:41:03.106+10:00<H3>Happy birthday Anthea</h3><br />Sorry for not calling I have been flat out with work, then home to more work... lovely, but it pays the bills I'll call tomorrow I promise.<br />In other news Anne has started holding onto stuff and sorta standing for a second before Mummy catches her, gonna post a picture to my <a href="http://flickr.com/photos/changlinn">flickr</a> now. Oh yeah I got <a href="http://flickr.com/photos/changlinn">flickr</a> and <a href="http://youtube.com/changlinn">youtube</a> , and <a href="http://facebook.com">facebook</a> . Yay I am (cringe) web 2.0.<br />Well I am beyond exhausted now, I had 5 hours sleep last night and have been working since 8am, so I am off to bed.<br />Peace out all.Unknownnoreply@blogger.com0