Bush Considers Microsoft Passport as National ID

[Ameesh]

<<

<< LOL i love it you can search for games by how well they work HAHAHAHAHA >>



sounds like 6 years old.



<< It really shows yours since he wasn't mentioned in the article once, asshat. >>



we have a bunch of kindergarten toddlers today. >>



i sound like a six year old?

 

[alm4rr]

nah

 

[NorthenLove]

Hmmmmm.....First thought...good intentions..... Second thought......road paved to hell..

 

[NorthenLove]

<<

<<

<<

<< it's the mark of the beast. i'm going all Linux. >>



you have fun with that. me, im gonna go play a game that requires Direct X. >>



Welcome to the Linux community then! >>




LOL i love it you can search for games by how well they work HAHAHAHAHA >>

Sigh....Yeah we Linux users don't have much to look foward to when it comes to gaming.

http://dsfh24.hypermart.net/DeskToppics/MD8.2-KDE3.0-CounterStrike1.3-WINEX2.0.jpg

Sigh......

 

[Nemesis77]

First of all: Kerberos & Passport. Didn't MS make some "modifications" to their Kerberos-implementation, making it more or less incompatible with the standard Kerberos? Think "Embrace & Extend".

Second. Having a convicted monopolist controlling your personal ID? Not a good idea.

Third: Having a company who'se security track-record is a disgrace to the industry controlling your personal ID? Yeah, that's a REALLY good idea!

 

[Ultima]

Being Canadian, I couldn't care less if you americans choose to be slaves to big corporations insofar as it doesn't affect us. It looks like it's heading that way with crap like this.

 

[BaliBabyDoc]

After the Sept. 11 attacks, some politicians and business leaders have called for a national identification card, but Forman said that's not in the works. "We don't have any plans for a national ID card," he said.

The White House is instead pursuing an "e-identification" initiative, an effort to develop ways to authenticate people and businesses online who already have government identification numbers such as Social Security, business-registration and employer-identification numbers

Not a bad idea . . .

But getting the United States to use Passport to authenticate its 285 million citizens online would be a coup for the Redmond software company. It would also be a large step toward fulfilling Microsoft Chairman Bill Gates' stated goal of getting everyone on the Internet to use Passport as their sign-on tool.

Umm, yeah . . .

Damn Dave stop picking on the kiddies . . .

 

[venk]

Does W even know what a computer is ?

 

[Pliablemoose]

BG for Pres...

 

[Ameesh]

<<

<<

<<

<<

<< it's the mark of the beast. i'm going all Linux. >>



you have fun with that. me, im gonna go play a game that requires Direct X. >>



Welcome to the Linux community then! >>




LOL i love it you can search for games by how well they work HAHAHAHAHA >>

Sigh....Yeah we Linux users don't have much to look foward to when it comes to gaming.

http://dsfh24.hypermart.net/DeskToppics/MD8.2-KDE3.0-CounterStrike1.3-WINEX2.0.jpg

Sigh......

>>



ohh my bad you have CS on LInux! do you guys play quake 3 also? man playing such new titles must be fun

 

[UltraQuiet]

<< Damn Dave stop picking on the kiddies . . . >>


Sorry

 

[BuckleDownBen]

<< Does W even know what a computer is ? >>



I think he is more familiar with games consoles. I hear he plays Nintendo a couple hours a day.

 

[Ameesh]

<< First of all: Kerberos & Passport. Didn't MS make some "modifications" to their Kerberos-implementation, making it more or less incompatible with the standard Kerberos? Think "Embrace & Extend".

most OSs dont have implementations of kerberos, Microsoft tested interop with MITs in house version and it worked fine, its compliant with the RFC so anybody who is also will interop

Second. Having a convicted monopolist controlling your personal ID? Not a good idea.

the courts found no incindence where the consumer was abused, netscape and sun are just a bunch of whiney bitchs

Third: Having a company who'se security track-record is a disgrace to the industry controlling your personal ID? Yeah, that's a REALLY good idea!


Top Vulnerable Packages 2001 Check the second table.

Win2K is ahead of Linux and Solaris, you want this bull$hit liberty alliance instead, run by the bunch of hacks that work at Sun?




>>

 

[Hayabusa Rider]

Remember-
If you arent breaking the law, then you have nothing to fear from the government, and if this saves one life it will be worth it.

 

[Nemesis77]

<< the courts found no incindence where the consumer was abused, netscape and sun are just a bunch of whiney bitchs >>



And the fact remains that two separate courts agreed that MS has broken the law. Sorry, you lose.



<<

<< Third: Having a company who'se security track-record is a disgrace to the industry controlling your personal ID? Yeah, that's a REALLY good idea! >>



Top Vulnerable Packages 2001 Check the second table.

Win2K is ahead of Linux and Solaris, you want this bull$hit liberty alliance instead, run by the bunch of hacks that work at Sun? >>



I knew you would brint that up. Few points regarding securityfocus stats:



<< There is a distinct difference in the way that vulnerabilities are counted for Microsoft Windows and other operating systems. For instance, applications for Linux and BSD are often grouped in as subcomponents with the operating systems that they are shipped with. For Windows, applications and subcomponents such as Explorer often have their own packages that are considered vulnerable or not vulnerable outside of Windows and therefore may not be included in the count. This may skew numbers. >>



So, in short: Security-holes in IE or Outlook for example (which seem to be dime a dozen. Just recently it was announced that using the back-button in IE opens up a security-hole (LOL!)) are NOT included in the number of Windows security-holes. Whereas security-holes in one Linux-app (say, X for example) gets multiplied several times since that app is used in several distros. It makes it seem like there are alot of holes in Linux, when in reality there might be just one hole in one optional software.

In even shorter words: Security-holes in some "Operating-system components" (that is what MS calls 'em) are not included in in Windows-figures, whereas one Linux-hole is multiplied over and over again in every distro.

Sorry, you lose (again!). Come back when you have some REAL arguments . Otherwise, stop wasting my time.

 

[NorthenLove]

<<

<<

<<

<<

<<

<< it's the mark of the beast. i'm going all Linux. >>



you have fun with that. me, im gonna go play a game that requires Direct X. >>



Welcome to the Linux community then! >>




LOL i love it you can search for games by how well they work HAHAHAHAHA >>

Sigh....Yeah we Linux users don't have much to look foward to when it comes to gaming.

http://dsfh24.hypermart.net/DeskToppics/MD8.2-KDE3.0-CounterStrike1.3-WINEX2.0.jpg

Sigh......

>>



ohh my bad you have CS on LInux! do you guys play quake 3 also? man playing such new titles must be fun

>>





Name one new game worth playing ? I could get Q3, UT, Tribes 2, or RTCW for Linux or I could setup MoHAA, Max Pyne or Jedi Knight 2 up with WineX but I rather play CS, DoD 2.0, D2-LoD and IWD-HOW, BG-2. Nothing out there right now that I see is worth the playing or worth the hassle in getting IMHO.

 

[Ameesh]

stop skiritng the real issue you brought up which is Kerberos.

 

[Nemesis77]

<< stop skiritng the real issue you brought up which is Kerberos. >>



I ripped your antitrust arguments wide open, I annihilated your security-claims, so you focus on the one thing that I didn't mention ? Kerberos was not my real issue, all three were. But if you insist:

Link1



<< NT 5.0 will indeed use Kerberos. However, Microsoft has "embraced and extended" this protocol by adding a digitally signed Privilege Attribute Certificate (PAC) to the Kerberos ticket. The PAC will contain information about the user's 128-bit NT unique id, as well as a list of groups to which the user belongs.

The NT PAC unfortunately is not compatible with the PACs used by the Open Software Foundation's Distributed Computing Environment (DCE). It is also somewhat debatable whether the NT PAC is legal with respect to RFC-1510, the IETF Kerberos V5 protocol specification. The original intent of RFC-1510 prohibited what Microsoft was trying to do, but Microsoft found what it claimed to be a loophole in RFC-1510 specification. >>



Link2



<< Microsoft's implementation of Kerberos gained additional notoriety last year, when the company's legal heavies demanded that Slashdot remove postings which detailed Microsoft's own proprietary extensions to the open protocol. Slashdot stood firm, and the threat petered out. >>



Link3



<< Microsoft released Win2000 Feb. 17, with Kerberos replacing the weaker NTLM security protocol. But outside observers noted angrily that PCs using Win2000 Professional couldn't exchange authorization information via standard Kerberos with Unix servers and others. This keeps the servers from providing access control in a domain -- unless the servers are Win2000.

Critics said Microsoft's change to the standard was part of an "embrace, extend, and extinguish" strategy. "They want to force everyone to use ... a Win2000 server," said Ted Ts'o, a former member of MIT's Kerberos development team, in the April 2000 Linux World (see www.linuxworld.com/linuxworld/lw-2000-04/f_lw-04-vcontrol_3.html).

On April 28, after my last column had been written, Microsoft posted on its Web site a document that explains the changes (see www.microsoft.com/technet/security/kerberos/default.asp). Microsoft had made use of an Authorization Data field that IETF had left undefined for future use.

The posting only raised more suspicions. To run the self-extracting file that installs the document, you must click OK to accept a nondisclosure agreement. It states that the information in the document is a "trade secret of Microsoft" and you aren't licensed to use future versions or extensions of the standard. >>



Do you really want me to continue? Now, go back to your cave, drone.

 

[nd]

Good work, Nemesis!

I'm glad someone around here took the time to point out his foolishness

 

[hans007]

why is it such a bad idea. if we do have national ID cards, the technology would have to be developed by someone, most likely the tech would be outsourced to an independant contractor. the government is just trying to save us money by seeing what is already out there.

 

[alm4rr]

>Hayabusarider
>Remember-
>If you arent breaking the law, then you have nothing to fear from the government, and if this saves one life it will be worth it.



LOL!!!
Yea, cuz nobody who is innocent ever goes to jail!! It's an imperfect system run by imperfect people. In terms of policy, it's not a matter of saving one life to make MS even more monopolistic, it's a much broader social, legal, and political issue that does not have a definition (yet).

As for national ID cards, as the link I posted previously points out, there is no strong push for a National ID card - no one really has been taking them seriously; it's too dramatic a step all at once. What may happen is a sort of convergence of state drivers' licenses that will form the base for any future national card. I don't see the states implementing smart card technology in drivers' licesnses anytime soon, tho.

 

[DigDug]

Remember-
If you arent breaking the law, then you have nothing to fear from the government, and if this saves one life it will be worth it.


Wow. Do you speak in monotone when you say that?

It some point buddy, what YOU consider normal WILL be in violation of the law. And what do you do then, my little sheep?

 

[UltraQuiet]

We are implementing smart cards for military ID's. The plan is that they will contain all of your medical, dental, pay and service records updated periodically. They are also supposed to replace the seperate security badges that many of us now have.

 

[alm4rr]

Dave: Thanx for the info on the military as I wasn't aware of that.
The military is different in terms of this discussion, tho, as it is under the purview of Pentagon and Administration officials. The concept of National Id's for the public, however, is where the jumblejamble begins.

 

[Geekbabe]

Hmmm.. I'm an MS gal all the way but this is too Pinky and the Brain like to even contemplate. FYI, a "national ID" card is something I think we should resist by every means possible.