I’ll Make a Note for Next Year

I didn’t realize it was turn right in front of bicyclists without signaling day. Had I known that, I might have made other transportation plans.

Your Privacy, Sold (Again)

If you watched the last season of South Park, you know what can happen if your entire Internet history is made public. Riots, divorce, the collapse of civilization. But did you know that your Internet Service Provider can keep track of every Web site you visit? Forget privacy mode on your browser; that only affects what gets stored locally. It’s mostly good for letting you do credit card transactions on someone else’s computer, or at an Internet Cafe.

It does not keep a host of companies from recording every site you visit.

Up ’till now, those companies haven’t been allowed to share that information. But that’s about to change. The companies that keep that data have cashed in on the current legislation-for-sale atmosphere and have bought a rule change that will enable them to sell that data.

Our President will no doubt sign the bill, and if there’s any silver lining to all this, it’s that his own browsing history will shortly be available for purchase. If he, or other congressional leaders, had any idea what they were signing, they would have realized that they have more to lose than just about anyone else.

For instance, DNS records already made public don’t look good for the GOP. They were collected by a group who thought the Russians were trying to hack the RNC, only to find that the communication went both ways.

Anyone want to guess how much child porn is in The Donald’s browsing history?

Meanwhile, even though I don’t go to any sites that are remotely illegal, I’ll be taking measures I probably should have done long ago to protect my privacy, rather than rely on laws. To be honest, I’m not sure exactly what I’m going to do; I’m not keen on using the Tor Browser (though I’m open to volunteering some server resources to the project). I’ll be looking at VPN’s (Virtual Private Networks) to see if they offer anonymity.

I’d be happy to hear from anyone out there with knowledge in this area. In any case, I’ll report back what I learn.

2

Joseph and the Amazing Technicolor Scientific Survey

Pharaoh heard that in his prisons there lived a man who could interpret dreams. He called for Joseph, and his soldiers brought the young man before him.

“I have had a dream,” Pharaoh said. “In my dream there are seven fat cows, and seven thin cows. The thin cows eat the fat cows but they remain thin. What does it mean?”

Joseph pondered, and quietly asked God for guidance, and said, “it means that there will be seven years of plenty, and Egypt will prosper like never before. But there will follow seven years of hardship, and unless Egypt prepares now, by saving as much of the plenty as this great nation can, there will be great suffering.”

Pharaoh nodded, seeing the wisdom of Joseph’s words. It only made sense to prepare for hard times while things were going well, even if the precision of Joseph’s prediction was questionable.

“Um… Pharaoh,” said the trusted advisor on his left, the chief architect of the pyramid project about to launch, “Seven years of plenty! That’s great! If you ignore this man’s advice, I can make the monument to you even more magnificent.”

On his right, another adviser spoke. “If bad times follow the good, it is the will of the gods. WE will survive, our families will not starve, even if millions of the working class who just finished your pyramid die. That, too, is the will of the gods. The workers will die happily, knowing they contributed to your eternal might.”

Joseph listened to this discourse and said, “No, seriously, It’s going to be bad. I’m 99.9% sure it’s going to be really really bad.”

“Aha!” cried the architect. “So you’re not sure!

Pharaoh looked from his advisors to Joseph and back. “Make the monument bigger,” he said.

2

That Carbon Dioxide Tipping Point

I file this under politics because it is politics that is blinding us.

The oil industry* and their paid shills (known as deniers)** made a few waves recently when, in a carefully-worded survey of climate scientists, fewer than half were willing to single out carbon dioxide as the single greatest contributor to global warming.

“Half of all Scientists disagree with climate change!” was the nonsensical conclusion. A slightly-less-nonsensical conclusion was “Humans create carbon dioxide; if that’s not the primary driver of global warming, then warming is not because of humans.”

But let’s look at that for a moment. There’s another conclusion, and while it’s much more reasonable, it’s also much more scary: Carbon Dioxide isn’t the the primary driver of global warming any more. We’ve crossed a tipping point.

Meet Methane, and the point of no return.

While CO2 was the problem, there was something we could do about it: produce less CO2. Let the algae and the rain forests (whoops!) absorb the surplus back, and let our planet return to its previous equilibrium. We dithered, and denied, and the tundra began to thaw. Now the tundra is burping up enormous amounts of methane.

As a greenhouse gas, methane makes CO2 look like a punk kid with missing teeth.

So if many scientists don’t think Carbon Dioxide is the biggest contributor any more, that doesn’t mean they don’t believe the surface of our planet is getting hotter, it means that the game has changed. It means things have moved to a stage that we cannot reverse just by suddenly not being so selfish and short-sighted. It means there is nothing we can do to stop the change, and the sooner we turn our efforts to dealing with it, the less it will hurt.

But man, it’s gonna hurt.

___
* shorthand for all carbon-based energy companies
** almost all the publicized climate-change deniers are on the energy company payrolls. I say “almost” only because there are probably a few who are just stupid.

When does School Let Out?

Recently I was riding on a path and ahead of me was a small bank of flood-deposited sand and gravel. It looked pretty solid, so I thought I could coast gently over it and be fine.

Nope.

Plunk! and a scraped-up knee, bleeding down my shin as I plodded on to work. “Lesson learned!” I thought to myself. “Unless you have big, fat tires, that’s not the terrain for you.” So at the expense of a little flesh I became a wiser bicyclist.

Yesterday morning I was riding calmly through a little park. Many people walk their dogs on those paths, and I like to give dogs plenty of space when I come up behind them. It’s not fair to the dog to expect them to just step calmly aside when startled from behind. So when the human walking a pretty bulldog didn’t respond to my bell, I did what I often do: I left the sidewalk and circled around on the grass. I made a point of giving him a cheery “Good morning!” as I slogged through the lush lawn.

Only, this particular time, the deep green hid the fact that the step back up to the pavement was rather high. I hit it at too soft an angle, didn’t hop with my front tire, and spilled over the handlebars and onto the pavement. Plunk!

My OTHER knee is now scraped up, and I have a nasty contusion on my thigh where it hit the headlight attached to my handlebars. Lesson learned: Always assume that transition will be dangerous unless handled properly. So at the expense of a little flesh I am now a wiser bicyclist.

I just hope I reach the end of the syllabus soon.

1

Standing Rock and Internet Security

At the peak of the Standing Rock protest, a small city existed where none had before. That city relied on wireless communications to let the world know what was going on, and to coordinate the more mundane day-to-day tasks of providing for thousands of people. There is strong circumstantial evidence that our own government performed shenanigans on the communications infrastructure to not only prevent information from reaching the rest of the world, but also to hack people’s email accounts and the like.

Cracked.com, an unlikely source of “real” journalism, produced a well-written article with links to huge piles of documented facts. (This was not the only compelling article they produced.) They spent time with a team of security experts on the scene, who showed the results of one attack: When all the secure wifi hotspots in the camp were attacked, rendering them unresponsive, a new, insecure hotspot suddenly appeared. When one of the security guys connected to it, his gmail account was attacked.

Notably, a plane was flying low overhead – a very common model of Cessna, but the type known to be used by our government to be fitted with just the sort of equipment to do this sort of dirty work. The Cessna was owned by law enforcement but its flight history is secret.

What does that actually mean? It means that in a vulnerable situation, where communication depends on wireless networks, federal and state law enforcement agencies have the tools to seriously mess with you.

“But I only use secure Internet connections,” you say. “HTTPS means that people between you and the site you’re talking to can’t steal your information.” Alas, that’s not quite true. What https means is that connections to your bank or Gmail can only be monitored by someone endorsed by entities your browser has been told to trust completely. On that list: The US Government, the Chinese government, other governments, and more than a hundred privately-owned corporations. Any of those, or anyone any of those authorities chooses to endorse, or anyone who manages to hack one of those hundred-plus authorities (this has happened) can convince your browser that there is no hanky-panky going on. It shouldn’t surprise you that the NSA has a huge operation to do just that.

The NSA system wasn’t used at Standing Rock (or if it was, that effort was separate from the documented attacks above), because they don’t need airplanes loaded with exotic equipment. But those airplanes do exist, and now we have evidence that state and local law enforcement, and quite possibly private corporations as well, are willing to use them.

The moral of the story is, I guess, “don’t use unsecured WiFi”. There’s pretty much nothing you can do about the NSA. It would be nice if browsers popped up an alert like “Normally this site is vouched for by Verisign, but this time the US Government is vouching for it. Do you want to continue?” But they don’t, and I haven’t found a browser plugin that adds that capability. Which is too bad.

Edit to add: While looking for someone who perhaps had made a browser plug-in to detect these attacks, I came across this paper which described a plugin that apparently no longer exists (if it was ever released). It includes a good overview of the situation, with some thoughts that hadn’t occurred to me. It also shows pages from a brochure for a simple device that was marketed in 2009 to make it very easy for people with CA authority to eavesdrop on any SSL-protected communication. Devices so cheap they were described as “disposable”.

Moving On

Well, Donald Trump got almost as many votes as Hillary Clinton (some people’s votes don’t count as much as others), and now he’s going to be our next president. I’m going to have to take the same advice I would have given Trump’s supporters had the election gone the other way: “Suck it up, buttercup.”

In the interest of healing a fractured nation, and focussing my resolve, I will no longer (publicly) insult Trump. I will certainly criticize flaws in his policies (should he ever articulate any policies), and I will comment on all current and new criminal investigations brought against him. But no more (public) name-calling.

The same goes for his followers. Some of them will realize, as time passes, that their jobs are NOT coming back — in fact they’re vanishing faster than ever — and the community college system they could have used to move to a new career is withering and dying. They will realize that even more people are being grievously hurt by drinking their own tap water, and that pollution from fracking is killing their children. They will notice that terrorism didn’t just vanish.

Some of the people who voted for Trump yesterday will realize that they’ve been hoodwinked, and perhaps make another decision in four years. Others will continue to blame whatever scapegoat they are handed next and respond with the logic “If Trump’s not getting it done, what we need is more Trump.”

There’s not much I can do about that latter group, but name-calling won’t help. All I can do is be civil, provide a contrast to the shouting coming out of their noise-boxes, stand up for the truth, watch out for my neighbors, and hope that after four years the thieves leave with all they can carry but don’t actually light the house on fire.

Whoops. This is going to be really difficult.

2