Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - kmfkewm

Pages: 1 ... 220 221 [222] 223 224 ... 249
3316
Security / Re: DEA concerns. Paranoia?
« on: March 02, 2012, 08:20 am »
Quote from: topple on March 02, 2012, 12:12 am
Quote from: morningRain on February 28, 2012, 12:25 am
Tor is probably off limits [for a large scale attack by a federal agency] but the technical aspects of p0wning this market doesn't seem out of reach for a reasonably skilled architect with a level of funding that is probably well within the budget of typical DEA operations. Some of the grunt work and project management could even be farmed out to Rent-a-Coder or wherever. The architect and operators could all remain completely anonymous, with milestone payments [to them] made [ironically] through SR.

I think they would be hesitant to do so for diplomatic reasons, however.  Tor is partially funded by the US State Department since it allows e.g. Iranian dissidents to communicate anonymously.  Given its legitimate (to the gov't) uses, I don't see them compromising it any time soon.

Bitcoin, on the other hand, is a much more likely target.  Someone like Palantir is probably already mapping out the blockchain for intelligence purposes.  While Bitcoin also has legitimate uses in the commercial sector, it provides no direct benefit to the government itself, and I think they would be happy to see it go away.

It would be a useful tool to pay intelligence sources who prefer to stay anonymous.

3317
Security / Re: DEA concerns. Paranoia?
« on: March 02, 2012, 07:59 am »
Quote from: sourman on February 27, 2012, 11:50 pm
^Being paranoid is the way to go. You should certainly be careful of fingerprints if you are a vendor as the postal inspectors are known to dust the entire package for prints, inside and out.

Some people do tend to over do it though, and end up forgetting crucial, basic stuff while building a faraday cage around their room and crafting tinfoil hats. An example is using the "Gutmann method" to wipe hard drivers or (lol) SSD media. You only need one overwrite using random data to destroy a file. There are no magic microscopes that can be used to recover it, unless it's a secret capability used on national security threats. Even then, they sure as hell can't use non-forensic, unstable data captures as evidence in a criminal trial, unless your cousin Vinny is representing you.

Plus they will just pull data from the edge of the track if you don't use the Secure Erase firmware that lets you put the head slightly off track

edit: Said it was debated if single pass was enough, but it seems there has been some definitive forensic research done on this that has essentially officially determined that one pass is enough. Last time I did much research on this, there were people in the forensics community who argued both ways. Now I can find test results that show who was correct :P. I guess it is note worthy that the department of defense still does not consider data wipes to be enough to sanitize a drive, requiring complete degaussing and physical destruction.

3318
Security / Re: DEA concerns. Paranoia?
« on: March 02, 2012, 07:44 am »
Quote
HOWEVER that type of stuff is typically reserved for cases relating to the RICO act, which SR is not an organized crime syndicate/'racket' but instead a p2p network.

SR actually meets every single requirement to be charged under the RICO act, and as far as the DEA or government are concerned, SR is a drug trafficking organization and a drug syndicate:

Quote
Under RICO, a person who is a member of an enterprise that has committed any two of 35 crimes—27 federal crimes and 8 state crimes—within a 10-year period can be charged with racketeering.

Rico requires at least two of the following offenses (incomplete list):

illegal gambling (check)
drug trafficking (check)
murder
kidnapping
extortion
arson
robbery
bribery
obscene matter
money laundering (check)
terrorism
criminal copyright infringement (check)
embezzelment
financial fraud
obstruction of justice (which using proxy and encryption programs HAS been determined to be, check)
counterfeiting (check, fake ID are counterfeits)
theft
fraud (check, mail fraud)

to be carried out within ten years of each other by the same group of people, in a pattern as defined as
Quote
"have the same or similar purposes, results, participants, victims, or methods of commission, or otherwise are interrelated by distinguishing characteristics and are not isolated events."

SR is overly qualified to be charged as a RICO organization.

3319
Off topic / Re: Good idea to expatriate? EU?
« on: March 02, 2012, 07:18 am »
Why move to a place with laws similar to USA, or worse? If anywhere you should move to a more free country :P. IMO language barrier wont be much of an issue in a lot of Europe, because a lot of people speak English particularly in western Europe (although I guess in France even if they speak english they will pretend not to). Of course you should learn the language of the country you are in though. Study hard for six months to a year and you will be able to get by imo. I also don't think you will run into a lot of hostility towards Americans in most of Europe, the people you would want to associate with will be smart enough to not judge individuals by their birth country.

3320
Security / Re: US customs running massive check on all inbound mail
« on: March 01, 2012, 03:45 pm »
I'm not sure but I imagine it can have a minimum sensitivity level that would prevent it from triggering with a pin test.

3321
Silk Road discussion / Re: Why The Armory Is A Bad Idea
« on: March 01, 2012, 03:26 pm »
Quote from: Locrian on February 29, 2012, 05:59 am
Several thousand soldiers killed, out of how many?  And do you really think they've "called it quits" over there?  That's hardly a cut-and-dry example to support a point.

Not to mention the logistics of deploying armed forces halfway around the world to oppress a foreign nation is entirely different than doing it in your own backyard, where you can mobilize any given number of forces to any point in no time flat.  It's just not comparable.  Not to mention you would likely have a decent percentage of the population supporting the actions of the government against "traitors."

But in Iraq they can drop bombs and such, but if they start bombing American cities to fight an American insurgency they are just going to get more Americans joining the insurgency, not to mention they are really just dropping bombs on themselves. If USA drops a nuke on new york city to fight the insurgents there, then I guess the insurgents just managed to nuke NYC.

An American insurgency has a few advantages. For one, they can not really be targeted with heavy weapons. For two, they would most likely try their best to remain anonymous, making targeting difficult. Not to mention they would not be very geographically concentrated, making heavy weapons ineffective even if they could be used without being counter productive. I agree that small arms will not be the most effective though, I think anonymous mini-UAVs, booby traps and anonymously delivered packet bombs would be much more effective.

I still say if the police can have guns we should be able to have guns though. Although using an anonymously placed pre-positioned gun on a turret that can be remotely aimed and fired from behind the Tor network would probably be more effective than keeping it on you yourself ;).

3322
Shipping / Re: Bulk RC Shipment Stopped At Customs
« on: March 01, 2012, 02:59 pm »
Really doesn't matter what she tells them she just posted on SR exactly what she had intercepted and from where and via which shipping service, chances of customs not knowing that that shipment belongs to foxy from SR are pretty much zero at this point.

3323
Off topic / Re: Good idea to expatriate? EU?
« on: March 01, 2012, 07:57 am »
In Czech republic all drugs are decriminalized for personal use amounts, they are not even confiscated or a fine or anything. I think it is one of the most libertarian countries in the world actually, on many different issues. You could always bounce back and forth between two different countries with a tourist visa in each of them, cept EU countries most all use the same Visa.

3324
Off topic / Re: Evidence of just how stupid US Government Officials can be when it comes to drug
« on: March 01, 2012, 07:54 am »
from erowid effects page:

small risk of death; approximately 2 per 100,000 users have extreme negative reactions resulting in death (rare)

3325
Shipping / Re: how long does the quality last?
« on: March 01, 2012, 07:49 am »
LSD and some of the research chemicals, like 4-x-x anything pretty much, are far more sensitive than coke, and even they barely degrade at all even in slow international mail.

3326
Shipping / Re: Bulk RC Shipment Stopped At Customs
« on: March 01, 2012, 07:42 am »
Quote from: respect on March 01, 2012, 03:38 am
Quote from: enddox on March 01, 2012, 03:18 am
I can say WITHOUT a doubt that LE (from various if not most countries) are archiving the forums on a constant basis. Considering how little effort would be involved (as another poster said they would simply use a page scraper) there really is no reason to think otherwise. Never, ever say something on the forums that you wouldn't want your worst enemy to know about.

Is that just because of how technically easy it would be to do, or do you have some solid source of information? Because, I can also tell you that such activity would be easily detectable and stopped by a competent sysadmin, which I hope and would think SR is employing with all the buku dollars they're supposed to be raking in. And, just because something is ridiculously easy in technical terms, don't automatically assume LE is doing it. They've got some very capable contractors, I'm sure. But your standard LE operations are drawing from the same HR pools as the rest of us, and incompetence abounds.

EDIT:
I might also add, SR may have become politically significant because we're a bold publicly accessible slap in the face against a tyrannical system of control, but operationally we're a teensy weensy drop in the bucket of illegal drug smuggling and distribution. And nobody's getting killed, tortured, enslaved and raped over the dope getting moved here. (They should BE so lucky if all drug activity were to go online, lol). Trust me, infinitely more resources are allocated elsewhere. We are not as important as we might like to believe, lol.

good luck to stop scraping on a hidden service, maybe you could detect it if they scrape like idiots but even that would be difficult to do. I would be surprised if hell if LE don't scrape this entire site and have at least a small team of intelligence analysts reading every single post.

3327
Security / Re: US customs running massive check on all inbound mail
« on: March 01, 2012, 07:00 am »
Quote from: anarcho47 on March 01, 2012, 04:57 am
Quote from: QTC on March 01, 2012, 04:29 am
The original idea of interception detection chips came from a vendor on OVDB. These chips would have RFID UARTs, RAM, ROM/NVRAM, and at a minimum a photoresistor/photovoltaic cell. When a vendor's making their pack, they'd throw this chip under the outermost layer, seal up the package, then program it wirelessly with an integer of their choice which they'd then send to the customer. The chip would use the secret integer and the value of epoch at the current time in combination with some hash algorithm to generate a string with a predictable value which would then be broadcast in response to an interrogation with another preprogrammed secret string (kind of like port knocking). If LE intercepts the package and opens it up, the chip (sensing this via the photoresistor) would wipe the secret integer from its memory, throwing off the value of the string that it's transmitting. When the customer receives the pack via mail or GPS dead drop or whatever, they can simply aim their RFID gun at the pack and send the interrogation string. If the response is an expected value depending on the time of day the pack hasn't been opened, if not the pack has been intercepted and can be either abandoned at the drop or have the delivery refused. You can add stuff like oxygen/NMR/x-ray sensors in addition to the light sensor for maximum measurement intelligence.

I should add this probably wouldn't be used for SR as the chip would cost $10 or so to fab plus $20 (?) in parts. It's more for the vendors who vend to the vendors, and are slanging stuff like keys of molly/cocaine as opposed to LSD crystals. ;-)

I feel we're really on the brink of using technology and cryptoanarchy to blow the arms race between us and the feds wide open, somebody needs to do this soon so why not me?

I would be all over this for overseas bulk shipments...

i'm in contact with someone who is making a design for these right now, but instead of using photovoltaic cells they want it to measure the electrical resistance of the package, which will change if it is ripped open but wont change (according to them anyway, but they seem to know their shit) if it is dropped or shaken etc. That way even if it is opened in a dark room it will trigger, since it actually is the act of opening the package (which changes its electrical resistance) that causes the chip to trigger, rather than the more secondary effect of light hitting the photovoltaic cell. They can probably even make it have a certain sensitivity level so merely punching a small hole in the pack wont change it enough to trigger.

You might as well make a design for it too QTC, the more people working on it the sooner one of them will get done with something, and also using different techniques etc is never a bad thing.

3328
Security / Re: Is Privnote secure?
« on: March 01, 2012, 06:50 am »
privnote url can be mitmed and you will never realize that it was read

gpg public key can also be mitmed though which is why it isn't a bad idea to send it through multiple channels or through a channel where the sender can verify it anonymously

3329
Security / Re: Molecules of contraband permeating packages... A Geographical Profiling Tech?
« on: March 01, 2012, 04:40 am »
professionals?

3330
Security / Re: US customs running massive check on all inbound mail
« on: March 01, 2012, 04:30 am »
Quote from: SuperDimitri on March 01, 2012, 01:40 am
Quote from: chronicpain on March 01, 2012, 12:12 am
Ive received a couple of packages from across the pond in the last two weeks. What i did notice is that they punched a tiny hole at the top. I assume that this is to help with their digital sniffers. I saw a thing on tv about how customs are using digital sniffers instead of dogs. they said that they are much more reliable and dont have to take them poop..

Seriously though. if its packaged well and is vacuum sealed I would manage it would be ok (as long as its not a smelly substance like pot).. I dont order very much overseas,  but this is the first time i have ever noticed a tiny hole at the very top...

customs and uspi are not part of usps

That hole is for a camera. The sniffers are like dogs, they pick up certain molecules, and can 'see' through packages.
I find it odd that the postal system just had a 2 billion dollar cutback,30% of the labor force is being let go, but they have $$ and time to check EVERY package entering the states......

Pages: 1 ... 220 221 [222] 223 224 ... 249