December 2003 - cypherpunks-legacy

No Subject
by Bovine Remailer 17 Dec '03

17 Dec '03

Timmy `C' May, a product of anal birth, appeared with a coathanger through his head. _______c___c / /_ _\ | ((6)(6)) ( )_ __\\ //__ o___n) (nn)\o/(nn)

1 0

Re: When and where?
by Jeremiah A Blatz 17 Dec '03

17 Dec '03

-----BEGIN PGP SIGNED MESSAGE----- camcc(a)abraxis.com (Alec) writes: > Please post the date when this list will shift to Usenet if that is indeed to > happen. I have not been able to sort out the facts (?) from the speculation, > argument, and gas. > > I have requested my ISP to add alt.cypherpunks to the mail server asap. I hope you misspelled "news server." alt.cypherpunks (and subgroups) is a newsgroup. > I don't want to miss a second of the resurrected (or is that born again?) > c'punks. You should join one of the distributed mailing lists (choose the list admin you like/trust the most). There is supposed to be a gateway between the mailing list and the newsgroup, but it is not up yet. Here's the overview: cypherpunks(a)toad.com is going away. In its place is a distributed forum. This forum is currently made up of a network of mailing lists, which send all their messages to each other. In the future, the newsgroup alt.cypherpunks will be added to this network (posts to the newsgroup go to the mailing lists, mail to the lists goes to the newsgroup). The mailing lists will be faster than the newsgroup, the newsgroup will probably let you use better filtering tools. Your choice. HTH, Jer "standing on top of the world/ never knew how you never could/ never knew why you never could live/ innocent life that everyone did" -Wormhole (Cool, "newsgroup" is the first word in four consecutive lines. I did not do this on purpose, even.) -----BEGIN PGP SIGNATURE----- Version: 2.6.2 iQB1AwUBMwe7G8kz/YzIV3P5AQE/lwMAl9FsFoIKk8KF87nDUfczmO3dxo4bDANe bxaF9/daqiyR+Ck8vuTZw7YNc0DrsmEDY+Mr0WMuUrcybngagIxsQyuo56jETdLC T93ixsHuO7jhW4075ipfH/5MWMkI1zKz =G83r -----END PGP SIGNATURE-----

2 2

Re: Moderation experiment and moderator liability (fwd)
by Sandy Sandfort 17 Dec '03

17 Dec '03

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ SANDY SANDFORT . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . C'punks, Adam has assembled a pretty good history of recent events. The following comments only cover some of the issues raised by Adam. It should not be assumed that I agree with all the statements upon which I do not comment. I have limited myself to commenting on only a few issues with which I am in dispute. On Sun, 16 Feb 1997, Adam Back wrote: > Events: > 9. John made a post to the list announcing that the list would be > moderated for one month from Jan 11 as an experiment, and included > Sandy Sandfort's proposed moderatation policy and offer to act as > moderator. It appeared that the moderation experiment was Sandy's > suggestion, and that John had agreed to go along with it. Moderation was my suggestion, but the moderation policy was not. My suggestion was quite different. In a nutshell I wanted to: a. Limit posts to list members only. b. Promote civility on the list by applying sanction to list members who repeatedly flamed or otherwise breached civil decorum. c. Provide for anonymous or non-member posts by having volunteers act as "gateways" who would forward anonymous--but civil--posts to the list. Curiously, in a subsequent telephone conversation, Tim May proposed almost that exact suggestion as an alternative form of moderation that he said would have been acceptable to him. Go figure. > 21. Tim received a warning from C2Net's lawyers that if he did not > desist from mentioning that Dimitri had posted an article criticising > a C2Net product that he would be sued! Absolutely false. S a n d y ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

1 0

When and where?
by Alec 17 Dec '03

17 Dec '03

-----BEGIN PGP SIGNED MESSAGE----- Friends: Please post the date when this list will shift to Usenet if that is indeed to happen. I have not been able to sort out the facts (?) from the speculation, argument, and gas. I have requested my ISP to add alt.cypherpunks to the mail server asap. I don't want to miss a second of the resurrected (or is that born again?) c'punks. Thanks. Alec -----BEGIN PGP SIGNATURE----- Version: 4.5 iQCVAgUBMwextiKJGkNBIH7lAQEF2gP+LiPlzbHaFKg6lpJZoKSf2RLiMfQAlOkf 7tDQB9M+gtyJLM/xN0GjmkbNQk6blVFyAHuCY4GW7MzoReHoca08FfZ7+tRyFniK AoBwbnqPv8ZQN9MbfaEzt1gjKGMDXHaUM8CCOk0Pt3aPxnd+SsuNVUfZCF7Hg7QS mE47juLt06M= =aqD9 -----END PGP SIGNATURE-----

2 1

Re: Questions about Naughty Robot (fwd)
by Chris Kuethe 1024 17 Dec '03

17 Dec '03

On Sun, 16 Feb 1997, Genocide wrote: > > I got this message (on a system that I am webmaster on) regarding > something that sounded so stupid it made me chuckle...Naughty Robot...I > have enclosed the message below. If any of you have any idea what this > user is talking about, any info would be appreciated. > > Personally it sounds like another "GoodTimes Virus" again... > > Genocide > Head of the Genocide2600 Group It is another fake... this is what my ISP's sysadmin sent me about it... ----Begin Fwd Message---- Subject: NaughtyRobot - DON'T PANIC! Date: Sun, 16 Feb 1997 15:10:38 -0700 From: owner-all-users Reply-To: Zbigniew Indelak <zeebee(a)superiway.net> You may receive (or may have already received) a message that looks like if it was sent from your own account with the subject line "security breached by NaughtyRobot". In the message, you will most likely be told that all of your personal information has been accessed by NaughtyRobot and that you should contact the police, disconnect your phone line, cut up your credit cards and report them as stolen, etc, etc. DON'T PANIC! It's just a bad joke someone is playing on you. For more information on this issue, read the article at http://www.rah96.com/rah96/naughtyr.shtml -- Zbigniew Indelak (ZeeBee) | mailto:zeebee@superiway.net Network Operations Manager | http://www.superiway.net Super i-Way Internet Services | Tel: (403)413-9465 -- Chris Kuethe <ckuethe(a)gpu.srv.ualberta.ca> LPGV Electronics and Controls 'finger -l ckuethe(a)gpu.srv.ualberta.ca' for pgp keys <c100305(a)wolfcreek.cs.ualberta.ca> http://www.ualberta.ca/~ckuethe/ RSA in 2 lines of PERL lives at http://www.dcs.ex.ac.uk/~aba/rsa/ print pack"C*",split/\D+/,`echo "16iII*o\U@{$/=$z;[(pop,pop,unpack"H*",<> )]}\EsMsKsN0[lN*1lK[d2%Sa2/d0<X+d*lMLa^*lN%0]dsXx++lMlN/dsM0<J]dsJxp"|dc`

1 0

We Will Send Your Bulk Email
by Product Link 17 Dec '03

17 Dec '03

*If you want to be removed from our mailing list, please respond to this email and put "Remove" in the subject line. We will send out your bulk E Mail. Period. No qualifiers, no conditions, no nonsense...and we'll do it at the best prices. We are Product Link. We are a business partner with a marketing company which develops buyers for its clients' products through electronic marketing; primarily broadcast fax. Together, we have over a hundred clients, almost 10% of which are Fortune 500 companies. We have numerous staff, and have just begun, at client request, to send high volumes of E Mail. If you're new to bulk E Mail marketing, as we were a short time ago, I can confirm that all the E Mails you've been getting from E Mail software companies about how great E Mail marketing is; well, they're true. However, as those of you who have already purchased software and have tried bulk E mail know, nothing good ever comes easy. Our staff has spent millions of advertising dollars on our clients' behalf; everything from commercials on the Superbowl to ads in the New York Times, to full page spreads in Scientific American.; not to mention the sending of over 1,000,000 marketing faxes a year for major corporations. Bulk E mail has been quite an eye opener. The Internet, the on line services and ISP providers are full of shrill, self appointed "net cops," whose mission in life seems to be dumping on those who have the audacity to sell product via E Mail. I don't wish nor intend to debate the issue here, except to say that if you've purchased bulk E Mail software (or intend to), you've already found out that when you attempt to use it, your ISP provider will shut you down, your E Mail account will be bombed, and electronic flames will become a way of life. Since we have a low tolerance for allowing small groups of vocal fanatics to dictate our business life, we set up our own system to send out Bulk E Mail. This system will be greatly expanded in 30 days or so (we're installing more T lines), but we currently have room on our system to send out Bulk E Mail for a limited number of companies or individuals other than ourselves. We'll send out your order, large or small. We'll do it quickly, and we'll do it at a really great price. You can supply the list, or we'll supply the list. Place an order with us, and we'll give you advice on how to set up your E Mail so your on line service won't shut you down, how to write your material, and much more. We will also write your marketing material, if you so desire. If you supply a list, we can run it through our computer program to sort out all duplicates and bad AOL or CompuServe addresses. If you buy a list from us, we will guarantee that the exact number of names you order will go out; if we send a list for you and a number of addresses are not delivered, we will send out more E Mails until you get delivered exactly what you ordered. We can even tell you how to confirm that your list was sent. We also have programs that can filter out E Mail "bombs" and other irritating toys played with at your expense by people who don't have a life. When we first began exploring bulk E mail, we contacted numerous firms advertising that they would send out bulk E mail. What we got was answering machines, disconnected numbers, and no call backs. The one firm that did contract us would only send limited numbers of E mails for us, and then only if we had already sent the list out once and taken off all the removes (go figure...if we could send out the list once, what did we need them for?). We finally got so exasperated, we set up our own system. And are we glad we did. Speaking as a marketing man with over 30 years experience in major advertising, E Mail marketing will change the face of advertising and cost of sale forever. I do not believe that has ever been a vehicle like it in history to allow anyone of any size and any budget to advertise and sell their products literally overnight. We employ 18 people, and I guarantee you that when you E Mail us back, you'll get a call. Right away. And the office phone number we give you, will have a live person at the other end. Following is a price list to give you an idea of the quality of our company. Please bear in mind that Bulk E Mail is effective in large numbers; i.e., 25,000 and above. Price List To Send Bulk E Mail: Amount Cost Set Up (One Time Fee) 25,000 $150.00 $50.00 50,000 $275.00 $50.00 75,000 $400.00 $50.00 100,000 $550.00 $50.00 Bulk E Mail amounts above 100,000 per sending will be bid on a case by case basis. If you wish to modem us a list, there may be a small charge for down load depending on list size. If you wish us to "clean" your list (remove all duplicates and bad addresses), we will supply a bid on a case by case basis as with writing your marketing materials and other services. If we may be of service to you, please call us directly at (805) 654-4042. Thank you.

1 0

Threats of Legal Action and C2Net/Stronghold Issue
by tcmay＠got.net 17 Dec '03

17 Dec '03

(A copy of this message has also been posted to the following newsgroups: alt.cypherpunks, alt.privacy, comp.org.eff.talk) At 6:07 PM -0800 2/16/97, Sandy Sandfort wrote: >Curiously, in a subsequent telephone conversation, Tim May >proposed almost that exact suggestion as an alternative form of >moderation that he said would have been acceptable to him. Go >figure. The only phone conversation I had was with Doug Barnes, at the request of Doug that I urgently phone either him or Sameer. I called Doug as soon as I got the message. (Doug also said he was the only one in the room at the time, and that the call was *not* being recorded, so I have to surmise that Sandy got his version of things via a recap by Doug.) >> 21. Tim received a warning from C2Net's lawyers that if he did not >> desist from mentioning that Dimitri had posted an article criticising >> a C2Net product that he would be sued! > >Absolutely false. > What Doug told me was that Dimitri Vulis had already been served with a legal notice about his warnings about a security flaw in Stronghold, and that any repetition of Dimitri's claims by me or anyone else would result in similar legal action. Doug said that any repetition of the claims, even as part of a quote, would be seen as actionable by C2Net. "We'll vigorously defend our rights." (as best I can recall) He said he thought my messages, to the extent they merely _alluded_ to the claims were probably OK and that they would certainly go through to the list, as Sandy has already resigned from his role as moderator. (For the record, these messages DID NOT GO THROUGH, and have not gone through as of tonight, 8-9 days later. However, I have forwarded them to several people who requested them.) (I also did not have a recorder running, so I can't claim this is a verbatim summary of what was said. As to what I said about how the moderation thing might have been done differently, Doug and I chatted for a while about various alternatives. I raised the point I've made before, that having a "members only" policy, with some special provision for some amount of remailed messages, would probably best suit the notion of keeping the "community" running. What I told Doug was that my main objection was having Sandy sit in judgement to essays folks might have spent a long time composing, and I cited physical parties, where a host invites those he wants in attendance, but does not micromanage or screen conversations being held at the party. My sense was that Doug agreed, and agreed that the whole thing had been handled in a bad way...but Doug should comment to tell his view of things.) The next day, at the physical Cyperpunks meeting at Stanford, I briefly talked to Greg Broiles, working as a legal aide at C2Net. I told Greg he could "take his best shot," in terms of filing suit against me about my messages, as I'm prepared to fight C2Net in court on this matter, and have the financial resources to hire some pretty good lawyers. (I don't recall if Greg replied, or what his reply was.) In a message to Cypherpunks, I outlined my understanding of the Vulis report on security flaws in Stronghold, and put the claims in the context of messages not appearing on either of the two main lists, but none of my messages were sent to either the Main list or the Flames list. (I also had communication with several members of the list, some known to me and some only pseudonyms. I have taken the precaution of erasing these messages and copying files to the disk on which they resided to head off any attempts by C2Net seize my computer and disks as part of some "discovery" process.) I find it unfortunate that C2Net is behaving in such a manner, and their actions are generating far more publicity about the claimed security flaws in Stronghold than the original Vulis message ever would have generated. Sunlight is the best disinfectant, as a Supreme Court justice averred. And suppression is a breeding ground for all sorts of bacteria, fungi, and ugly growth, as a less articulate person said. Reporters interested in this story have already contacted me. They're interested in the situation surrounding the claims of a flaw. I told one reporter I had no expertise in Stronghold, SSL, etc., and could not say, but that I suspected strongly that the claim was made just as a "tweak" of C2Net. "Truth is an absolute defence against libel claims." (P.S. To repeat, I doubt there is a flaw in Stronghold, either introduced by RSA (Republic of South Africa, of course) or by the NSA, or by C2Net, or by anyone else. I said as much in my messages which never made it to the list.) --Tim May -- Boycott "Big Brother Inside" software! We got computers, we're tapping phone lines, we know that that ain't allowed. ---------:---------:---------:---------:---------:---------:---------:---- Timothy C. May | Crypto Anarchy: encryption, digital money, tcmay(a)got.net 408-728-0152 | anonymous networks, digital pseudonyms, zero W.A.S.T.E.: Corralitos, CA | knowledge, reputations, information markets, Licensed Ontologist | black markets, collapse of governments. "National borders aren't even speed bumps on the information superhighway."

2 2

Re: Moderation experiment and moderator liability
by Adam Back 17 Dec '03

17 Dec '03

Dale Thorn <dthorn(a)gte.net> writes: > Adam Back wrote: > > [summary of events] > > I believe your summary is very accurate except: > > I would add after the paragraph about Dimitri posting the warning > about C2, that C2's lawyers sent an immediate threatening letter > to Dimitri. Agree, that should be added: 15a. Dimitri received a legal notice from C2Net's lawyers about Dimitri's allegations > I would change the paragraph about Tim May receiving a warning from > C2's lawyers to say that Tim May received a warning second-hand that > anything Tim would say to support or reiterate Dimitri's claims > would be actionable by C2 as well. Let's see I wrote: > 21. Tim received a warning from C2Net's lawyers that if he did not > desist from mentioning that Dimitri had posted an article criticising > a C2Net product that he would be sued! Tim explained the situation in fair detail in his recent post, explaining, after Sandy's "Absolutely false." retort to my above claim. Perhaps my wording could be more accurately changed in the light of the further explanation from Tim to: 21. Tim was told by a C2Net employee that if he did not desist from discussing Dimitri's claims about C2Net's StrongHold product, C2Net would take legal action against him! Adam -- print pack"C*",split/\D+/,`echo "16iII*o\U@{$/=$z;[(pop,pop,unpack"H*",<> )]}\EsMsKsN0[lN*1lK[d2%Sa2/d0<X+d*lMLa^*lN%0]dsXx++lMlN/dsM0<J]dsJxp"|dc`

2 1

Re: Moderation experiment and moderator liability (fwd)
by Sandy Sandfort 17 Dec '03

17 Dec '03

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ SANDY SANDFORT . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . C'punks, Adam has assembled a pretty good history of recent events. The following comments only cover some of the issues raised by Adam. It should not be assumed that I agree with all the statements upon which I do not comment. I have limited myself to commenting on only a few issues with which I am in dispute. On Sun, 16 Feb 1997, Adam Back wrote: > Events: > 9. John made a post to the list announcing that the list would be > moderated for one month from Jan 11 as an experiment, and included > Sandy Sandfort's proposed moderatation policy and offer to act as > moderator. It appeared that the moderation experiment was Sandy's > suggestion, and that John had agreed to go along with it. Moderation was my suggestion, but the moderation policy was not. My suggestion was quite different. In a nutshell I wanted to: a. Limit posts to list members only. b. Promote civility on the list by applying sanction to list members who repeatedly flamed or otherwise breached civil decorum. c. Provide for anonymous or non-member posts by having volunteers act as "gateways" who would forward anonymous--but civil--posts to the list. Curiously, in a subsequent telephone conversation, Tim May proposed almost that exact suggestion as an alternative form of moderation that he said would have been acceptable to him. Go figure. > 21. Tim received a warning from C2Net's lawyers that if he did not > desist from mentioning that Dimitri had posted an article criticising > a C2Net product that he would be sued! Absolutely false. S a n d y ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

1 0

Re: More on digital postage
by Timothy C. May 17 Dec '03

17 Dec '03

At 6:36 PM -0500 2/16/97, Cynthia H. Brown wrote: >My understanding is that the legislation restricts commercial >solicitations by phone to: > >- certain times of day (not after 9 PM? unsure) >- one initial call, and no follow-ups if the person explicitly asks >the caller to never phone this number again (again, unsure of legal >details) > >I don't consider this scenario overly restrictive, since it gives >_them_ a chance to sell their product, and _me_ a chance to have them >delete my name from their database. Unfortunately, without some >formal means of redress, very few telemarketers seem to remember that >they are unlikely to find new customers if they call at 7 AM Saturday >for the third time this month. I despise telemarketing calls as much as the next one, and I now let my answering machine do the answering whenever possible, only picking up if it's a call that sounds interesting. (And my cellular phone number I give to only a very few people, as I get charged for incoming calls before 7 p.m.) So, I'm sympathetic to the "problem." However, I try to always "deconstruct" governmental/regulatory "solutions" to see if statist encroachment is lurking in the bushes. In the case of the notion of "have them delete my name from their database," here are some of the issues: * The Armour Spam Company buys its data bases from direct marketing firms, so whose data base is one's name supposed to be removed from? The instance used by Armour in its February 17th contact, or the "parent index" (which is itself an instance) controlled by someone else? How does Armour insist that the data base company from which it bought the data base handle the removal? * If the argument is only that Armour Spam Company not repeat a call, this is generally not a problem, as few companies repeat their telemarketing pitches; counterexamples doubtless exist, but the general trend is not for repeat calls, but, rather, for the same data base to be bought by multiple telemarketing firms. * And there are "freedom of speech" (important in the U.S., though not perhaps in other countries lacking an explicit provision in their constitutions or charters) issues in forcing sellers of legally obtained data bases to reveal internals, to modify them, etc. (Again, it is Armour Spam Company that made the offending call, but they, for this example, only made the call _once_. The fact that N other companies make similar calls, based on the same data base, is a separable issue. Unless the collection and sale of legally-accumulated data bases is regulated, no real remedy exists. I am not, of course, a fan of regulating data bases, but that's a long and involved issue to discuss.) >What means of redress would you suggest, in the absence of >legislation / fines, to someone who has been called repeatedly by a >telemarketer? This person is not a current customer and so cannot >withdraw his/her business. As I said, I believe the case of repeated calls by the _same_ telemarketer is unusual. Perhaps others have had different experiences. And if a particular telemarketer is banned from calling twice, their solution will be obvious: they'll change their company name, farm out the calls to a subcontractor, etc. That is, they'll become a different "corporate instance." It'll be very tough for any law to keep up with such changes (without trampling severely on what most of us think of us as basic freedoms). --Tim May Just say "No" to "Big Brother Inside" We got computers, we're tapping phone lines, I know that that ain't allowed. ---------:---------:---------:---------:---------:---------:---------:---- Timothy C. May | Crypto Anarchy: encryption, digital money, tcmay(a)got.net 408-728-0152 | anonymous networks, digital pseudonyms, zero W.A.S.T.E.: Corralitos, CA | knowledge, reputations, information markets, Higher Power: 2^1398269 | black markets, collapse of governments. "National borders aren't even speed bumps on the information superhighway."

1 0