Skip to main content

Search

Items tagged with: Filter


 
fail2ban and apache-badbots filter
There seems to be a wrong definition of failregex in the apache-badbots configuration of fail2ban.

The original line
failregex = ^<HOST> -.*"(GET|POST).*HTTP.*"(?:%(badbots)s|%(badbotscustom)s)"$

should be replace by the follwing line

failregex = ^<HOST> -.*compatible;.*(?:%(badbots)s|%(badbotscustom)s)

Then your defined badbots are catched and blocked by fail2ban

#fail2ban #bots #crawler #security #filter
found: https://gauss-development.com/fail2ban/

 
Bild/Foto

The Intel Management Engine: an attack on computer users' freedom and privacy


The #Intel Management Engine (frequently abbreviated as ME) is a separate #computer within Intel computers, which denies users #control by forcing them to run #nonfree #software that cannot be modified or replaced by anyone but Intel. This is #dangerous and #unjust. It is a very serious #attack on the #freedom, #privacy, and #security of computer users.

The Management Engine started to appear in Intel computers around 2007.

It could, for instance, be used to remotely:
  • Power the computers on and off.
  • Boot computers from remote #storage located on the system administrator's #machine or on a #server, and take control of the computer that way.
  • Retrieve and store various #serial #numbers that #identify the computer hardware.
Over time, Intel #imposed the Management Engine on all Intel computers, removed the ability for computer #users and #manufacturers to disable it, and extended its control over the computer to nearly 100%. It even has access to the main computer's #memory.

It now constitutes a #separate computing environment that is designed to deny users the control of their computer. It can even run #applications that implement Digital Restrictions Management ( #DRM ). See Defective by Design to learn why DRM is bad.

The remote administration is done through applications running inside the Management Engine, such as AMT (Active Management Technology). AMT gives #remote system administrators the same control they would have if sitting in front of the computer. AMT can also control Intel #Ethernet #interfaces and #Wi-Fi cards to #filter or #block #network traffic from going in or out of the computer.

We could correct all these problems if the users were able to run fully free software on the Management Engine, or at least, make it not run any code, effectively disabling it. The former is impossible because the Management Engine will only run code that is #cryptographically signed by Intel. This means that unless someone finds a flaw in the #hardware that enables users to bypass the signature check, users are effectively denied the ability to #install the software they wish in the Management Engine.

Despite all Intel's efforts to make the Management Engine inescapable, software developers have had some success with preventing it from loading code. For instance, the #Libreboot project disables the Management Engine by removing all the code that the Management Engine is supposed to load on some #Thinkpad computers manufactured in #2008, including the R400, T400, T400s, T500, W500, X200, X200s, and X200T.

Also, many Intel computers manufactured in 2006 have the ancestor of the Management Engine which is disabled from the start, such as the Lenovo Thinkpads X60, X60s, X60 Tablet and T60, and many more.

A free software program named intelmetool is capable of detecting if the Management Engine is absent or disabled. With more recent hardware, it is not yet possible to fully disable the Management Engine, as some of the hardware needs to be initialized by it. It is however possible to limit the amount of nonfree software running on the Management Engine by removing parts of the #code and/or by configuring it to not run some code.

Independently from the Management Engine, other issues affect computers users in very similar ways:

Many computers use nonfree boot software (like #BIOS or #UEFI or equivalent) and/or require it to be cryptographically signed by the hardware manufacturer. This raises similar concern for the freedom, privacy, and security of computer users because the boot software is responsible for loading the operating system, and has more control over the computer than the operating system. This issue also affects computers using other architectures such as #ARM.

#AMD computers made after 2013 also have a separate computer within the computer, called PSP (Platform Security Processor), which has similar #issues.

Because of Intel's attack on users' freedom, to avoid being denied freedom, privacy, and security, computer users wanting to use a machine with an Intel processor must use older computers with no Management Engine, or whose Management Engine is disabled.

Whenever companies follow Intel's path, we will need to design our own hardware to keep being able to escape such attacks on freedom, by ensuring that users can run fully free software on it. This will also create the necessary building blocks that will enable users to benefit from hardware #freedoms in the #future, when manufacturing technologies are easily available to end users.

At the moment the only way to avoid this universal backdoor is to use computers that have been certified to respect your freedom (RYF).


#NSA #spyware #spy #mass #surveillance #technology #laptops #CPU #processor #universal #backdoor #malware #Corei3 #Corei5 #Corei7

 
Bild/Foto

The Intel Management Engine: an attack on computer users' freedom and privacy


The #Intel Management Engine (frequently abbreviated as ME) is a separate #computer within Intel computers, which denies users #control by forcing them to run #nonfree #software that cannot be modified or replaced by anyone but Intel. This is #dangerous and #unjust. It is a very serious #attack on the #freedom, #privacy, and #security of computer users.

The Management Engine started to appear in Intel computers around 2007.

It could, for instance, be used to remotely:
  • Power the computers on and off.
  • Boot computers from remote #storage located on the system administrator's #machine or on a #server, and take control of the computer that way.
  • Retrieve and store various #serial #numbers that #identify the computer hardware.
Over time, Intel #imposed the Management Engine on all Intel computers, removed the ability for computer #users and #manufacturers to disable it, and extended its control over the computer to nearly 100%. It even has access to the main computer's #memory.

It now constitutes a #separate computing environment that is designed to deny users the control of their computer. It can even run #applications that implement Digital Restrictions Management ( #DRM ). See Defective by Design to learn why DRM is bad.

The remote administration is done through applications running inside the Management Engine, such as AMT (Active Management Technology). AMT gives #remote system administrators the same control they would have if sitting in front of the computer. AMT can also control Intel #Ethernet #interfaces and #Wi-Fi cards to #filter or #block #network traffic from going in or out of the computer.

We could correct all these problems if the users were able to run fully free software on the Management Engine, or at least, make it not run any code, effectively disabling it. The former is impossible because the Management Engine will only run code that is #cryptographically signed by Intel. This means that unless someone finds a flaw in the #hardware that enables users to bypass the signature check, users are effectively denied the ability to #install the software they wish in the Management Engine.

Despite all Intel's efforts to make the Management Engine inescapable, software developers have had some success with preventing it from loading code. For instance, the #Libreboot project disables the Management Engine by removing all the code that the Management Engine is supposed to load on some #Thinkpad computers manufactured in #2008, including the R400, T400, T400s, T500, W500, X200, X200s, and X200T.

Also, many Intel computers manufactured in 2006 have the ancestor of the Management Engine which is disabled from the start, such as the Lenovo Thinkpads X60, X60s, X60 Tablet and T60, and many more.

A free software program named intelmetool is capable of detecting if the Management Engine is absent or disabled. With more recent hardware, it is not yet possible to fully disable the Management Engine, as some of the hardware needs to be initialized by it. It is however possible to limit the amount of nonfree software running on the Management Engine by removing parts of the #code and/or by configuring it to not run some code.

Independently from the Management Engine, other issues affect computers users in very similar ways:

Many computers use nonfree boot software (like #BIOS or #UEFI or equivalent) and/or require it to be cryptographically signed by the hardware manufacturer. This raises similar concern for the freedom, privacy, and security of computer users because the boot software is responsible for loading the operating system, and has more control over the computer than the operating system. This issue also affects computers using other architectures such as #ARM.

#AMD computers made after 2013 also have a separate computer within the computer, called PSP (Platform Security Processor), which has similar #issues.

Because of Intel's attack on users' freedom, to avoid being denied freedom, privacy, and security, computer users wanting to use a machine with an Intel processor must use older computers with no Management Engine, or whose Management Engine is disabled.

Whenever companies follow Intel's path, we will need to design our own hardware to keep being able to escape such attacks on freedom, by ensuring that users can run fully free software on it. This will also create the necessary building blocks that will enable users to benefit from hardware #freedoms in the #future, when manufacturing technologies are easily available to end users.

At the moment the only way to avoid this universal backdoor is to use computers that have been certified to respect your freedom (RYF).


#NSA #spyware #spy #mass #surveillance #technology #laptops #CPU #processor #universal #backdoor #malware #Corei3 #Corei5 #Corei7

 

News | Telepolis: Politische Filter in der Wikipedia?


Im Online-Lexikon kommen Filter zum Einsatz, die das Entfernen von Worten wie "Verschwörungstheorie" oder "antiamerikanisch" erschweren. Mitverantwortlich ist ein Präsidiumsmitglied des Unterstützervereins Wikimedia

Die deutschsprachige Wikipedia sorgte zuletzt für Schlagzeilen mit ihrer eintägigen Abschaltung aus Protest gegen die EU-weite Einführung von Uploadfiltern. Weniger bekannt ist, dass innerhalb der Wikipedia selbst schon seit einiger Zeit automatisierte Filter existieren, die Bearbeitungen einschränken. Ursprünglich zum Schutz vor Vandalismus eingeführt, haben sich diese Filter, die von Administratoren der Wikipedia programmiert und verwaltet werden, mittlerweile zu Instrumenten entwickelt, die teilweise die politische Ausrichtung von Artikeln beeinflussen...

Tags: #de #news #wikipedia #filter #politische-filter #zensur #telepolis #2019-03-27 #ravenbird #2019-03-28

 
Bild/Foto
Bild/Foto

Bild/Foto

#foto #fotografieren #mywork #Demo #Uploadfilter #Artikel13 #CDU #niewiedercdu #EU

#Wütend


Ja, dass war mal ein #Statement, welches mir am besten gefallen hat. :-)

Ein wenig kritisch fand' ich die #Aussage:
Wir haben schon genug #Filter auf #Instagram!
Ehm, hüstel, selber Schuld. Denk' mal nach junger Mann!

Die Demo in #Paderborn war jetzt nicht sooooo groß, aber wichtig dass auch hier #Farbe bekannt wurde. Auch hier waren es viele junge Leute aber meist männlichen Geschlechtes. Ist das ein #Männerthema oder was?

So, und nun habe ich noch ein #Problem:
Laut #Bild sind wir alle bezahlt worden. Yeah!
Hier ist der #Antrag um das #Geld abzurufen (Die Links finde ich jetzt echt süß :-) ):

Antrag

Wie trage ich das #Geld nun bei meiner #Steuererklärung ein? Sind dies jetzt #Einnahmen aus selbständiger #Arbeit, ist dies eine #Schenkung oder eine Spende? Ich bin da voll überVosst!

 
Bild/Foto
Bild/Foto

Bild/Foto

#foto #fotografieren #mywork #Demo #Uploadfilter #Artikel13 #CDU #niewiedercdu #EU

#Wütend


Ja, dass war mal ein #Statement, welches mir am besten gefallen hat. :-)

Ein wenig kritisch fand' ich die #Aussage:
Wir haben schon genug #Filter auf #Instagram!
Ehm, hüstel, selber Schuld. Denk' mal nach junger Mann!

Die Demo in #Paderborn war jetzt nicht sooooo groß, aber wichtig dass auch hier #Farbe bekannt wurde. Auch hier waren es viele junge Leute aber meist männlichen Geschlechtes. Ist das ein #Männerthema oder was?

So, und nun habe ich noch ein #Problem:
Laut #Bild sind wir alle bezahlt worden. Yeah!
Hier ist der #Antrag um das #Geld abzurufen (Die Links finde ich jetzt echt süß :-) ):

Antrag

Wie trage ich das #Geld nun bei meiner #Steuererklärung ein? Sind dies jetzt #Einnahmen aus selbständiger #Arbeit, ist dies eine #Schenkung oder eine Spende? Ich bin da voll überVosst!

 
Bild/Foto
Bild/Foto

Bild/Foto

#foto #fotografieren #mywork #Demo #Uploadfilter #Artikel13 #CDU #niewiedercdu #EU

#Wütend


Ja, dass war mal ein #Statement, welches mir am besten gefallen hat. :-)

Ein wenig kritisch fand' ich die #Aussage:
Wir haben schon genug #Filter auf #Instagram!
Ehm, hüstel, selber Schuld. Denk' mal nach junger Mann!

Die Demo in #Paderborn war jetzt nicht sooooo groß, aber wichtig dass auch hier #Farbe bekannt wurde. Auch hier waren es viele junge Leute aber meist männlichen Geschlechtes. Ist das ein #Männerthema oder was?

So, und nun habe ich noch ein #Problem:
Laut #Bild sind wir alle bezahlt worden. Yeah!
Hier ist der #Antrag um das #Geld abzurufen (Die Links finde ich jetzt echt süß :-) ):

Antrag

Wie trage ich das #Geld nun bei meiner #Steuererklärung ein? Sind dies jetzt #Einnahmen aus selbständiger #Arbeit, ist dies eine #Schenkung oder eine Spende? Ich bin da voll überVosst!