Beta

×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

FBI Releases Boston Bombing Suspect Images/Videos

samzenpus posted about a year ago | from the persons-of-interest dept.

Crime 416

An anonymous reader writes "The FBI has released images of what they say are two suspects with backpacks and ball caps. 'Somebody out there knows these individuals as friends, neighbors, co-workers or family members of the suspects,' Special Agent Rick DesLauriers, the head of the FBI's Boston office said. 'And though it may be difficult, the nation is counting on those with information to come forward and provide it to us.'"

cancel ×

416 comments

Sorry! There are no comments related to the filter you selected.

a picture of #2 walking away after bomb blast (3, Informative)

Anonymous Coward | about a year ago | (#43488459)

http://i.imgur.com/I1dF69f.jpg left of the screen with white hat

Re:a picture of #2 walking away after bomb blast (0)

Anonymous Coward | about a year ago | (#43488547)

http://i.imgur.com/I1dF69f.jpg left of the screen with white hat

thats pretty good res - he's busted

Re:a picture of #2 walking away after bomb blast (1)

Anonymous Coward | about a year ago | (#43488631)

Also to the right of the girl in pink is a dude with tan pants similar to the other dude in the fbi photos. Hat similar too.

Re:a picture of #2 walking away after bomb blast (1)

Culture20 (968837) | about a year ago | (#43488785)

Also to the right of the girl in pink is a dude with tan pants similar to the other dude in the fbi photos. Hat similar too.

Nope, Mr tan pants next to pink girl in that photo has a white hat with burgundy front and a dark? shirt. The suspect from the the video has a fully dark hat and a white shirt. Also the photo guy has a red coat, and video guy's coat doesn't look red.

It's the Muslims !! (-1, Flamebait)

Taco Cowboy (5327) | about a year ago | (#43488935)

As an American I'm supposed to be open-minded

It's just that I can't stand it no more

America is my country - and they are whacking havoc in my country

I'm not saying that every Muslim is bad, but the fact is, most of those bombings are connected with Islam ...

I think it's time we do something about it

If the world can't keep Islam and all the Islamic violence out, at least USA can try

I know this comment is gonna be modded down to the basement, I do not care

I have had enough of bullshit already !!!

Re:a picture of #2 walking away after bomb blast (2)

Dunbal (464142) | about a year ago | (#43488807)

So he planted a bomb and then changed his shirt, right? You're the reason why vigilantes are a bad idea.

Re:a picture of #2 walking away after bomb blast (0)

Anonymous Coward | about a year ago | (#43488865)

Well, yeah, if he did it. Or does that not matter anymore?

Re:a picture of #2 walking away after bomb blast (4, Informative)

Narksos (1111317) | about a year ago | (#43488581)

From TFA:

For clarity, these images should be the only ones—the only ones—that the public should view to assist us. Other photos should not be deemed credible and unnecessarily divert the public’s attention in the wrong direction and create undue work for vital law enforcement resources.

Though that appears to be the same person, please identify based upon the photos released by the FBI.

Re:a picture of #2 walking away after bomb blast (1)

taxman_10m (41083) | about a year ago | (#43488647)

Appears that he still has his backpack by the way he's holding his arm.

Re:a picture of #2 walking away after bomb blast (1)

MichaelSmith (789609) | about a year ago | (#43488873)

No I think he is running. The arm is in motion.

Re:a picture of #2 walking away after bomb blast (1)

russotto (537200) | about a year ago | (#43488677)

Poor #2 (if he's innocent); that photo is from an angle that makes it impossible to tell if he still has the backpack.

Re:a picture of #2 walking away after bomb blast (1)

Dunbal (464142) | about a year ago | (#43488713)

high res, too. Well spotted.

Re:a picture of #2 walking away after bomb blast (5, Funny)

Anonymous Coward | about a year ago | (#43488749)

If you don't have the picture expanded, he looks a lot like Bieber. Please let it be Bieber...

Re: a picture of #2 walking away after bomb blast (1)

dgatwood (11270) | about a year ago | (#43488883)

And the other guy looks like Michell Musso. I *knew* it. Walt Disney's antisemitic army is in league with Al Qaeda. It's the only possible explanation. :-D

Re:a picture of #2 walking away after bomb blast (1)

mayberry42 (1604077) | about a year ago | (#43488779)

saved and forwarded to the FBI...

White hat superficially resembles Aaron Swartz (0)

Anonymous Coward | about a year ago | (#43488805)

White hat superficially resembles Aaron Swartz. Not saying it's intentional, but there is a resemblance.

Re:a picture of #2 walking away after bomb blast (1)

ganjadude (952775) | about a year ago | (#43488869)

I dont know, there are some pics that show a man in a hat 20 min before the bomb went off with a backpack and then a few min before without the backback, who looked middle eastern.... these photos the FBI are psuhing that claim to be of a man who put his bag down where the bomb went off, the bag didnt look like the one that blew up, and they havent shown us him putting the bag down (though they claim to have that)

im not trying to claim anything about this that isnt real, im just saying that the people the FBI are pushing as suspects dont fit the suspects based on the facts out there. Go to liveleak and look at the boston bombing channel and do some research for yoursleves, and you will see way more options to go with that make more sense vs what they are trying to sell us

end tin foil hat

Apparently that wasn't the bag.. (1)

2phar (137027) | about a year ago | (#43489001)

According to a retired deputy in Florida [wesh.com] the bag that has been shown at the railing was his, and was gone before the explosion.

Re:a picture of #2 walking away after bomb blast (1, Troll)

girlintraining (1395911) | about a year ago | (#43488921)

http://i.imgur.com/I1dF69f.jpg left of the screen with white hat

"For clarity, these images should be the only onesâ"the only onesâ"that the public should view to assist us. Other photos should not be deemed credible and unnecessarily divert the publicâ(TM)s attention in the wrong direction and create undue work for vital law enforcement resources." Source: FBI [fbi.gov]

Which part of that statement are you having apparent difficulty with? Please mod this person -1 without delay; The correct thing to do with images of potential suspects is to confidentially submit them to the FBI, not post them on the internet to encourage vigilantism. To borrow from the movie Serenity, "Do you know what a hero is? Someone who gets other people killed." Don't be a hero. Post it to the FBI, and let them do their job.

Facebook? (0)

Anonymous Coward | about a year ago | (#43488467)

Any chance of running these through Facebook's face recognition? That stuff is frighteningly accurate

Re:Facebook? (3, Insightful)

guruevi (827432) | about a year ago | (#43488813)

a) Facebook photo's are (or should be) private especially to the government
b) Even if it's 99.9% accurate, that still yields a lot of false positives. And having worked with that stuff, you would be glad to have 90% recognition.

WTF? (-1)

Anonymous Coward | about a year ago | (#43488495)

All the money in "defense spending" both internal and international and we're crowdsourcing their jobs?

Re:WTF? (2)

SternisheFan (2529412) | about a year ago | (#43488533)

All the money in "defense spending" both internal and international and we're crowdsourcing their jobs?

Allright, let the FBI go on looking without any help from the general public, some of whom will know these two. That should give these two time to perform an attack on the people you know and love. Sheesh.

Re:WTF? (5, Insightful)

AdmiralXyz (1378985) | about a year ago | (#43488535)

No, idiot, they're asking people who were in Boston on Monday taking pictures with their smartphones to look through their photos again. Chances are lots of people inadvertently got photos of the guys, and some of those might be clear enough for identification (as opposed to the crummy security cam footage).

Re:WTF? (0)

Anonymous Coward | about a year ago | (#43488715)

I wonder if it makes sense to create an open online database where people can upload their images and then eventually some [assisted] face match software can sift through thousands such images to identify people. this could also double as a missing persons finder/registry in the event of a hurricane/tsunami like major disaster.

Re:WTF? (2, Insightful)

Anonymous Coward | about a year ago | (#43488833)

And this is why people are scared of Google Glass--it'll make an already existing problem worse; that is, the government will outsource its spying to the people.

Re:WTF? (4, Insightful)

Paperweight (865007) | about a year ago | (#43488725)

Be civil.

Re:WTF? (0)

Anonymous Coward | about a year ago | (#43488753)

Civility is the last thing needed when dealing with fucksucking shitbags.

Re:WTF? (5, Insightful)

Dunbal (464142) | about a year ago | (#43488861)

On the contrary, it's is where you need it the utmost, lest you steep down to their level. When you look into the abyss, the abyss also looks into you...

Re:WTF? (0, Insightful)

Anonymous Coward | about a year ago | (#43488983)

Fuck you and your damned Nietzsche

Re:WTF? (0)

Anonymous Coward | about a year ago | (#43488881)

dont you mean shitsucking fuckbags? sounds more accurate?

Re:WTF? (0)

Anonymous Coward | about a year ago | (#43488745)

Yeah, and to be fair, we wouldn't allow the FBI to install fancy pants HD camera's anyhow like the UK so this would be a non issue *ducks*

Re:WTF? (1)

Anonymous Coward | about a year ago | (#43488589)

you are right, anytime you go somehwere there should be an agent asking for your papers and your reason to be there

though I have a question...

how retarded are you?

These are... (0)

Anonymous Coward | about a year ago | (#43488497)

Dead men walking.

Re:These are... (0)

Anonymous Coward | about a year ago | (#43488857)

Uh, season just ended.

Re:These are... (4, Insightful)

Culture20 (968837) | about a year ago | (#43488895)

Dead men walking.

Along with anyone who looks like them.

Low FPS Compression Artifcacts Too Bad (2, Insightful)

Anonymous Coward | about a year ago | (#43488507)

There are cheap cameras today that do full HD, low artifacts, and run 30 frames a second. These images were from old equipment and software. The smudged faces is that. They should be replaced. All replaced. The city I live has less than one FPS on its non-traffic cameras. It's pathetic what salesman push on the HLS-cash-infused cities when cheaper, and much better, hardware and software is available right now. You get what you pay for, and sometimes, not even that.

Re:Low FPS Compression Artifcacts Too Bad (2)

quantaman (517394) | about a year ago | (#43488609)

I'm surprised they couldn't clean up the images more. Clearly you can't do much with a single image since there's only so much information, but with a video you're getting a slightly different set of information with each frame, I always figured you could do a mapping/averaging of all the different shots and extract something a little cleaner. Unfortunately it looks like that's not the case (or at least it doesn't work well here).

Re:Low FPS Compression Artifcacts Too Bad (0)

Anonymous Coward | about a year ago | (#43488649)

Frames are not similar enough to do averaging in a 1 fps "video".

Re:Low FPS Compression Artifcacts Too Bad (5, Funny)

Professr3 (670356) | about a year ago | (#43488665)

They just aren't yelling "ENHANCE" loud enough yet. Give it time...

Re:Low FPS Compression Artifcacts Too Bad (1)

lucm (889690) | about a year ago | (#43488627)

There are cheap cameras today that do full HD, low artifacts, and run 30 frames a second. These images were from old equipment and software. The smudged faces is that. They should be replaced.

No need for that. The police just has to call the crime lab at CSI Miami or Chloe down at the CTU. If all the moles have been properly smoked out from those organizations it should be possible to get 3D pictures of both suspects.

Re:Low FPS Compression Artifcacts Too Bad (0)

Anonymous Coward | about a year ago | (#43488633)

"Enhance."

Re:Low FPS Compression Artifcacts Too Bad (1)

hawguy (1600213) | about a year ago | (#43488675)

There are cheap cameras today that do full HD, low artifacts, and run 30 frames a second. These images were from old equipment and software. The smudged faces is that. They should be replaced. All replaced. The city I live has less than one FPS on its non-traffic cameras. It's pathetic what salesman push on the HLS-cash-infused cities when cheaper, and much better, hardware and software is available right now. You get what you pay for, and sometimes, not even that.

These look like local business security cams -- who is going to pay the businesses to replace the cameras and DVR's every year to keep up with the latest and greatest technology? Or do you think the government should blanket every public space with hi-def facial recognition cameras covering every inch of every public space so they are prepared for the next time this happens?

Don't forget to factor in the storage needs - my "action cam" generates 8GB of data/hour for 1080p 30fps -- if a small municipality has 200 cameras, that's over 1 Petabyte of data/month. Video compression can help, but only to a point since you don't want to lose any of that high resolution that your expensive camera is providing. And at around 20mbit/sec of data per camera, that's 4 gbit/sec of network bandwidth. And of course, someone has to monitor and repair those cameras - every time someone paints over the lens or otherwise damages the camera, someone's got to go out and fix it. There's no telling whether spraypaint over the lens is random graffiti or a precursor to an attack.

It's certainly a solvable problem - casinos are reported to have hundreds or thousands of cameras throughout the facility, but implementing such a system is not cheap, good thing casinos have people handing over bucketloads of cash to pay for it.

Who cares? (2)

rsilvergun (571051) | about a year ago | (#43488847)

Occupy Wall Street showed that when the US Gov't wants a protest movement to go away, it does. So who really cares if we're being watched? What difference does it make from a practical standpoint. Plus, if we can catch these sort of things it's one less excuse for pointless wars against anybody with a turban and brown skin, and one less excuse for Patriot Acts.

All you're really giving up anyway is the illusion of freedom you don't have. Real freedom is economic freedom, and OWS showed us who's really in control.

Re:Low FPS Compression Artifcacts Too Bad (0)

Anonymous Coward | about a year ago | (#43488781)

There are cheap cameras today that do full HD, low artifacts, and run 30 frames a second. These images were from old equipment and software. The smudged faces is that. They should be replaced. All replaced. The city I live has less than one FPS on its non-traffic cameras. It's pathetic what salesman push on the HLS-cash-infused cities when cheaper, and much better, hardware and software is available right now. You get what you pay for, and sometimes, not even that.

There are also completely fake security cameras. They're just deterrents and if shitty (or fake) security cameras have a clear crime reducing effect, it's harder to justify the cost of replacing them. Now that good pictures are actually needed many people will react like you do but as soon as these guys are caught, any spending on security cameras will again simply be a matter of reducing crime and whether the reason cameras do so by acting as a deterrent or as an actual aid in catching criminals will be fairly irrelevant.

News for Nerds. (-1)

Anonymous Coward | about a year ago | (#43488521)

Stuff that matters. *sarcasm*

Re:News for Nerds. (-1)

Anonymous Coward | about a year ago | (#43488599)

go over to the debain thread and jizz on yourself over a new number on software then

Wow (5, Funny)

larry bagina (561269) | about a year ago | (#43488545)

The only 2 men with a black backpack that 4chan and reddit didn't accuse.

Re: Wow (0)

Anonymous Coward | about a year ago | (#43488579)

Seriously as if black backpacks are rare. Guess they are automatically guilty. The angry mobs will take care of them, no one understands their rights anymore.

Re:Wow (0)

Anonymous Coward | about a year ago | (#43488587)

...and *this* is the Freewinds Scientology's advanced religious retreat.

Re:Wow (1)

unitron (5733) | about a year ago | (#43488611)

To be fair to them, plenty of other sites picked out everyone with a backpack except those two as well.

Re:Wow (2, Insightful)

girlintraining (1395911) | about a year ago | (#43488963)

To be fair to them, plenty of other sites picked out everyone with a backpack except those two as well.

To be fair to them, they aren't trained law enforcement officers with many years of experience identifying suspects. They shouldn't have been picking anyone out; They should have been submitting their photos, videos, and eyewitness accounts directly to the FBI instead of engaging in vigilantism.

Everyone on 4Chan and Reddit who engaged in such activity should be ashamed of themselves -- they've engaged in modern-day witch hunting, with potentially deadly consequences. If I could, I'd reach through my computer monitor and punch each and every one of them in the face. Hard.

None of you are going to "crack the case". The very most you'll accomplish is diverting valuable law enforcement resources during a critical window of opportunity. They've said what they need; If you can provide that, then do so. Otherwise shut up, get out of the way and let the professionals do their job.

And yes, I am being a bit harsh, but the stakes are high -- people's lives are at risk as long as the people responsible for this act of terrorism remain free. I have no sympathy whatsoever for 4Chan, Reddit, and the rest of the armchair internet sleuths. We've spent billions on homeland security preparing for exactly this -- now let them take care of it. We're paying enough for it as-is, without you asshats throwing monkey-wrenches into the process thinking you're "helping".

Re:Wow (1)

MichaelJ (140077) | about a year ago | (#43488853)

I believe 4chan's photos are all from the other bomb site, not where the FBI-released photos were taken.

Vigilante Justice? (1)

DavidClarkeHR (2769805) | about a year ago | (#43488549)

There's a fine line between soliciting public support and encouraging vigilante justice.

Though, if there ever was a time that we needed the detective [wikipedia.org] ... now might not be a bad choice.

Re:Vigilante Justice? (4, Insightful)

femtobyte (710429) | about a year ago | (#43488621)

The government posts "most wanted" pictures for heinous crimes quite often, usually without dire consequences for either the perpetrator, or idiot members of the public getting themselves killed trying to nab violent psychopaths. I suspect these two have already gone into hiding --- they won't be obvious to the general public. But who they were and where they lived before the crime will be discovered really fast. However, I can see this type of situation getting messier in the future --- suppose the "unofficial crowd sourced intelligence gathering" had identified "suspects" on public message boards within 30 minutes of the incident (which I don't see as out-of-the-question for future incidents); then things could get awfully rough for any vague look-alikes in the area.

Re:Vigilante Justice? (5, Insightful)

Anonymous Coward | about a year ago | (#43488841)

While in general I agree with your post, one thing is terribly wrong.

I suspect these two have already gone into hiding

This assumes that the men in the photos are guilty, please don't be another member of our society who convicts people in the court of public opinion, there's far too many Nancy Grace viewers already. How about "I suspect the people who carried out this crime have already gone into hiding" or something along those lines. Sorry if this comes off as pedantic.

Re:Vigilante Justice? (3, Informative)

femtobyte (710429) | about a year ago | (#43488877)

Not overly pedantic; point well taken. Consider my post above thus edited so far as Slashdot allows.

Re:Vigilante Justice? (2)

gratuitous_arp (1650741) | about a year ago | (#43488623)

There's a fine line between soliciting public support and encouraging vigilante justice.

Well... the article does seem to make it pretty clear which side of the line they are on...

We considered them to be armed and extremely dangerous. No one should approach them. No one should attempt to apprehend them except law enforcement. Let me reiterate that caution. Do not take any action on your own. If you see these men, contact law enforcement.

Re:Vigilante Justice? (1)

Fast Thick Pants (1081517) | about a year ago | (#43488765)

if there ever was a time that we needed the detective [wikipedia.org] ...

Fun fact: In Massachusetts, the Joker is known as "the Chowderhead."

Do like they do on TV (0)

Anonymous Coward | about a year ago | (#43488573)

We need that magical "enhance" and "ZOOM!" functions!

Re:Do like they do on TV (1)

Opportunist (166417) | about a year ago | (#43488639)

Yes, but please for the love of $deity don't let them program search databases. I cringe every time when they do a fingerprint or photo match on CSI. Instead of looking for the file, it painstakingly takes every picture from the database, displays it, finds out that it doesn't match... rinse repeat.

Seriously, it is quite hard to take shows serious when they do junk like that. But then again, like a friend of mine (who actually DOES that kind of work over here) said "they wouldn't even greenlight the expense for the checks they do routinely if we'd be looking for someone who shot the prez".

resolution (0)

Anonymous Coward | about a year ago | (#43488575)

This is seriously the best resolution they can pull off those camera's?

Re:resolution (0)

Anonymous Coward | about a year ago | (#43488971)

its a security camera that runs 24/7, you expect a shopkeep to have a archive of 2 tb hard drives for every day?

some people are just fucking stupid

image quality (0)

Anonymous Coward | about a year ago | (#43488583)

I looked at the pictures and I think it would be pretty hard to identify anyone based on what I see there. I would assume the FBI has access to image enhancement technologies such as superresolution (e.g., http://en.wikipedia.org/wiki/Superresolution [wikipedia.org] ) - but it sure does not look like it based on these pictures. Does anyone have any idea about how much image enhancement was done on these pictures? Could superresolution techniques be used here to further enhance the images?

Don't mention.. (0, Troll)

OhANameWhatName (2688401) | about a year ago | (#43488607)

"False Flag" .. it's undemocratic.

Re:Don't mention.. (0)

Anonymous Coward | about a year ago | (#43488789)

Don't mention it because it's moronic. Bottom line is that there are too many folks with cameras all around and precisely nothing to be gained in it.

If the Democrats were behind it, there presumably would be a firearm used as they would presumably be using it to further the cause of firearm regulation. The President has already been re-elected so he wouldn't have anything to gain by it.

The GOP doesn't really gain anything here either as this is unlikely to be state sponsored event with only a small number of easily made bombs. And little reason to think there was a larger conspiracy behind it. This could easily have been done by 2 or 3 individuals acting alone.

Re:Don't mention.. (2, Funny)

Culture20 (968837) | about a year ago | (#43488993)

The President has already been re-elected so he wouldn't have anything to gain by it

The senate could instill him as emperor of the republic until the war with the trade federation is over.

The looks (-1)

Anonymous Coward | about a year ago | (#43488613)

The guy in the white cap looks either South Indian or Arabic.
The second guy looks Asian, probably Indonesian.

Re:The looks (0)

Anonymous Coward | about a year ago | (#43488739)

The guy in the white hat is certainly a pasty faced white male who doesn't get any sun.

The other guy isn't as clear, or as blazing white. Could be tanned, or Hispanic, Mideastern or Asian. The only thing I am certain of is that he isn't Black or an albino.

Re: The looks (0, Troll)

Anonymous Coward | about a year ago | (#43488795)

They white boys alright. Registered republicans too

For their sake (3, Insightful)

amanaplanacanalpanam (685672) | about a year ago | (#43488615)

I hope they're the ones that did it, because whether they are or not, in the eyes of a public starving for villains to blame they're now as good as guilty.

Same guy as the Craft International guy? (0)

michaelmalak (91262) | about a year ago | (#43488617)

I'm still trying to figure out if the black-cap guy identified by the FBI is the same guy as the apparently Craft International (Blackwater-like mercenary) guy identified by storyleak.com [storyleak.com] , and if so, why the FBI hasn't released a clearer image of the cap logo?

No (1, Redundant)

geek (5680) | about a year ago | (#43488637)

There were at least 4 Craft guys. They had radiation detectors on site and were caught on camera using them after the explosion. They were private contractors, not official government agents. All 4 Craft guys are well known to the FBI and were acting on behalf of the organizers of the event. This is something they do frequently.

Re:No (0)

Anonymous Coward | about a year ago | (#43488771)

Any reference for all that?

Re:No (0)

Anonymous Coward | about a year ago | (#43488899)

Gonna need a citation for that, dude.

Re:Same guy as the Craft International guy? (1)

larry bagina (561269) | about a year ago | (#43488657)

It's a bridgestone golf hat.

Re:Same guy as the Craft International guy? (-1)

Anonymous Coward | about a year ago | (#43488673)

Wow. You seriously think that if a merc outfit was sent in to do a job for who knows what reason that they would wear logo gear to the gig?
 
I knew Slashfags were dumb but this one really takes the cake.

Re:Same guy as the Craft International guy? (1)

cosm (1072588) | about a year ago | (#43488773)

Wow. You seriously think that if a merc outfit was sent in to do a job for who knows what reason that they would wear logo gear to the gig? I though all bad guys wore a uniform for swift identification of their badness, that's what 20 years of shooters have taught me!

Re:Same guy as the Craft International guy? (-1)

Anonymous Coward | about a year ago | (#43488961)

Whatthefuckever dude. You can't even reply to a post without screwing up.

Re:Same guy as the Craft International guy? (1)

Frosty Piss (770223) | about a year ago | (#43488685)

Note the military style shoes/boots on the two buff goons in the image from the link above, and the random sneaker shoes on the suspects. Also though one FBI suspect is wearing tan pants, the other is not, and nether "carry" themselves like the two goons.

But let's not let a good conspiracy theory get in to way of common sense...

Ummm.... (1, Redundant)

Opportunist (166417) | about a year ago | (#43488655)

You could identify anyone with those pics. Put a basecap on a dog and it should work if his muzzle ain't too long.

Many are missing the point (4, Insightful)

sunking2 (521698) | about a year ago | (#43488691)

They know the resolution stinks. What they are hoping for is that people will go through their personal photos that they took which are much better resolution and notice that one of them may be in the background.

Re:Many are missing the point (1)

Dan667 (564390) | about a year ago | (#43488823)

quite possible they may want to scare them to see if they make a mistake or tip themselves off.

yin yang (1, Interesting)

Anonymous Coward | about a year ago | (#43488735)

Not sure if it helps with the case but I noticed these two are going for a "yin yang" theme. One has a white hat, the other has a black. One wears it backwards the other forwards. One is wearing tan, the other black pants. The black hat has white on it which must represent the white dot in the black yang, and the man with the white hat has a black emblem on the white yin. Yin-yang implies they are complementary, not opposing forces. And, it shows that they probably believe that they had to commit this atrocity to transform society. A shadow cannot exist without light. There was probably some meaning in the fact that they placed two bombs that were built differently as well. You might want to ask school teachers / students / parents about anyone who had a predilection for yin-yang and opposing concepts, maybe they liked drawing the symbols in notebooks. Also, this pattern is bound to show up frequently as more details about the case come out. I'm willing to bet there's a lot of duality and philosophy being applied here.

Re:yin yang (0)

Anonymous Coward | about a year ago | (#43488817)

That's the dumbest thing I've heard all day.

The FBI refuses to help catch my stalker... apk (-1)

Anonymous Coward | about a year ago | (#43488751)

If the FBI can identify these guys why can't they identify the clown who is stalking me and constantly abusing Slashdot? I contacted them but they were no help.

A corrupt slashdot luser has pentrated the moderation system to downmod all my posts while impersonating me.

Nearly 230++ times that I know of @ this point for all of March/April 2013 so far, & others here have told you to stop - take the hint, lunatic (leave slashdot)...

Sorry folks - but whoever the nutjob is that's attempting to impersonate me, & upset the rest of you as well, has SERIOUS mental issues, no questions asked! I must've gotten the better of him + seriously "gotten his goat" in doing so in a technical debate & his "geek angst" @ losing to me has him doing the:

---

A.) $10,000 challenges, ala (where the imposter actually TRACKED + LISTED the # of times he's done this no less, & where I get the 230 or so times I noted above) -> http://it.slashdot.org/comments.pl?sid=3585795&cid=43285307 [slashdot.org]

&/or

B.) Reposting OLD + possibly altered models - (this I haven't checked on as to altering the veracity of the info. being changed) of posts of mine from the past here

---

(Albeit massively repeatedly thru all threads on /. this March/April 2013 nearly in its entirety thusfar).

* Personally, I'm surprised the moderation staff here hasn't just "blocked out" his network range yet honestly!

(They know it's NOT the same as my own as well, especially after THIS post of mine, which they CAN see the IP range I am coming out of to compare with the ac spamming troll doing the above...).

APK

P.S.=> Again/Stressing it: NO guys - it is NOT me doing it, as I wouldn't waste that much time on such trivial b.s. like a kid might...

Plus, I only post where hosts file usage is on topic or appropriate for a solution & certainly NOT IN EVERY POST ON SLASHDOT (like the nutcase trying to "impersonate me" is doing for nearly all of March/April now, & 230++ times that I know of @ least)... apk

P.S.=> here is CORRECT host file information just to piss off the insane lunatic troll:

--

21++ ADVANTAGES OF CUSTOM HOSTS FILES (how/what/when/where/why):

Over AdBlock & DNS Servers ALONE 4 Security, Speed, Reliability, & Anonymity (to an extent vs. DNSBL's + DNS request logs).

1.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program). A truly "multi-platform" UNIVERSAL solution for added speed, security, reliability, & even anonymity to an extent (vs. DNS request logs + DNSBL's you feel are unjust hosts get you past/around).

2.) Adblock blocks ads? Well, not anymore & certainly not as well by default, apparently, lol - see below:

Adblock Plus To Offer 'Acceptable Ads' Option

http://news.slashdot.org/story/11/12/12/2213233/adblock-plus-to-offer-acceptable-ads-option [slashdot.org] )

AND, in only browsers & their subprogram families (ala email like Thunderbird for FireFox/Mozilla products (use same gecko & xulrunner engines)), but not all, or, all independent email clients, like Outlook, Outlook Express, OR Window "LIVE" mail (for example(s)) - there's many more like EUDORA & others I've used over time that AdBlock just DOES NOT COVER... period.

Disclaimer: Opera now also has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc..

3.) Adblock doesn't protect email programs external to FF (non-mozilla/gecko engine based) family based wares, So AdBlock doesn't protect email programs like Outlook, Outlook Express, Windows "LIVE" mail & others like them (EUDORA etc./et al), Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 5-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, OR make you reach them faster since you resolve host-domain names LOCALLY w/ hosts out of cached memory, hosts do ALL of those things (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html [networkworld.com] for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions (in-addr.arpa) via NSLOOKUP, PINGS (ping -a in Windows), &/or WHOIS though, regularly, so you have the correct IP & it's current)).

* NOW - Some folks MAY think that putting an IP address alone into your browser's address bar will be enough, so why bother with HOSTS, right? WRONG - Putting IP address in your browser won't always work IS WHY. Some IP adresses host several domains & need the site name to give you the right page you're after is why. So for some sites only the HOSTS file option will work!

6.) Hosts files don't eat up CPU cycles (or ELECTRICITY) like AdBlock does while it parses a webpages' content, nor as much as a DNS server does while it runs. HOSTS file are merely a FILTER for the kernel mode/PnP TCP/IP subsystem, which runs FAR FASTER & MORE EFFICIENTLY than any ring 3/rpl3/usermode app can since hosts files run in MORE EFFICIENT & FASTER Ring 0/RPL 0/Kernelmode operations acting merely as a filter for the IP stack (via the "Plug-N-Play" designed IP stack in Windows) vs. SLOWER & LESS EFFICIENT Ring 3/RPL 3/Usermode operations (which webbrowsers run in + their addons like AdBlock slow down even MORESO due to their parsing operations).

7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than remote DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server, typically 30-100's of ms, vs. 7-10ms HardDisk speed of access/seek + SSD seek in ns, & back to you - hosts resolutions of IP address for host-domain names is FAR faster...). Hosts are only a filter for an already fast & efficient IP stack, no more layered b.s. (remote OR local). Hosts eat less CPU, RAM, I/O in other forms, + electricity than a locally running DNS server easily, and less than a local DNS program on a single PC. Fact. Hosts are easier to setup & maintain too.

8.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://www.mvps.org/winhelp2002/hosts.htm [mvps.org]
  http://someonewhocares.org/hosts/ [someonewhocares.org]
  http://hostsfile.org/hosts.html [hostsfile.org]
  http://hostsfile.mine.nu/downloads/ [hostsfile.mine.nu]
  http://hosts-file.net/?s=Download [hosts-file.net]
  https://zeustracker.abuse.ch/monitor.php?filter=online [abuse.ch]
  https://spyeyetracker.abuse.ch/monitor.php [abuse.ch]
  http://ddanchev.blogspot.com/ [blogspot.com]
  http://www.malware.com.br/lists.shtml [malware.com.br]
  http://www.stopbadware.org/ [stopbadware.org]
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)

And yes: Even SLASHDOT &/or The Register help!

(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhack others online that is... not ALL do!)).

2 examples thereof in the past I have used, & noted it there, are/were:

http://it.slashdot.org/comments.pl?sid=1898692&cid=34473398 [slashdot.org]
  http://it.slashdot.org/comments.pl?sid=1896216&cid=34458500 [slashdot.org]

9.) AdBlock & DNS servers are programs, and subject to bugs programs can get. Hosts files are merely a filter and not a program, thus not subject to bugs of the nature just discussed.

10.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders [slashdot.org]

11.) HOSTS files are EASILY user controlled, obtained (for reliable ones -> http://www.mvps.org/winhelp2002/hosts.htm [mvps.org] ) & edited too, via texteditors like Windows notepad.exe or Linux nano (etc.)

12.) With Adblock you had better be able to code javascript to play with its code (to customize it better than the GUI front does @ least). With hosts you don't even need source to control it (edit, update, delete, insert of new entries via a text editor).

13.) Hosts files are easily secured via using MAC/ACL (even moreso "automagically" for Vista, 7/Server 2008 + beyond by UAC by default) &/or Read-Only attributes applied.

14.) Custom HOSTS files also speed you up, unlike anonymous proxy servers systems variations (like TOR, or other "highly anonymous" proxy server list servers typically do, in the severe speed hit they often have a cost in) either via "hardcoding" your fav. sites into your hosts file (avoids DNS servers, totally) OR blocking out adbanners - see this below for evidence of that:

---

US Military Blocks Websites To Free Up Bandwidth:

http://yro.slashdot.org/story/11/03/16/0416238/US-Military-Blocks-Websites-To-Free-Up-Bandwidth [slashdot.org]

(Yes, even the US Military used this type of technique... because IT WORKS! Most of what they blocked? Ad banners ala doubleclick etc.)

---

Adbanners slow you down & consume your bandwidth YOU pay for:

ADBANNERS SLOW DOWN THE WEB: -> http://tech.slashdot.org/article.pl?sid=09/11/30/166218 [slashdot.org]

---

And people do NOT LIKE ads on the web:

PEOPLE DISLIKE ADBANNERS: http://yro.slashdot.org/yro/08/04/02/0058247.shtml [slashdot.org]

---

As well as this:

Users Know Advertisers Watch Them, and Hate It:

http://yro.slashdot.org/yro/08/04/02/0058247.shtml [slashdot.org]

---

Even WORSE still, is this:

Advertising Network Caught History Stealing:

http://yro.slashdot.org/story/11/07/22/156225/Advertising-Network-Caught-History-Stealing [slashdot.org]

---

15.) HOSTS files usage lets you avoid being charged on some ISP/BSP's (OR phone providers) "pay as you use" policy http://yro.slashdot.org/story/10/12/08/2012243/FCC-Approving-Pay-As-You-Go-Internet-Plans [slashdot.org] , because you are using less bandwidth (& go faster doing so no less) by NOT hauling in adbanner content and processing it (which can lead to infestation by malware/malicious script, in & of itself -> http://apcmag.com/microsoft_apologises_for_serving_malware.htm [apcmag.com] ).

16.) If/when ISP/BSP's decide to go to -> FCC Approving Pay-As-You-Go Internet Plans: http://yro.slashdot.org/story/10/12/08/2012243/FCC-Approving-Pay-As-You-Go-Internet-Plans [slashdot.org] your internet bill will go DOWN if you use a HOSTS file for blocking adbanners as well as maliciously scripted hacker/cracker malware maker sites too (after all - it's your money & time online downloading adbanner content & processing it)

Plus, your adbanner content? Well, it may also be hijacked with malicious code too mind you:

---

Yahoo, Microsoft's Bing display toxic ads:

http://www.theregister.co.uk/2011/09/16/bing_yahoo_malware_ads/ [theregister.co.uk]

---

Malware torrent delivered over Google, Yahoo! ad services:

http://www.theregister.co.uk/2009/09/24/malware_ads_google_yahoo/ [theregister.co.uk]

---

Google's DoubleClick spreads malicious ads (again):

http://www.theregister.co.uk/2009/02/24/doubleclick_distributes_malware/ [theregister.co.uk]

---

Rogue ads infiltrate Expedia and Rhapsody:

http://www.theregister.co.uk/2008/01/30/excite_and_rhapsody_rogue_ads/ [theregister.co.uk]

---

Google sponsored links caught punting malware:

http://www.theregister.co.uk/2008/12/16/google_sponsored_links/ [theregister.co.uk]

---

DoubleClick caught supplying malware-tainted ads:

http://www.theregister.co.uk/2007/11/13/doubleclick_distributes_malware/ [theregister.co.uk]

---

Yahoo feeds Trojan-laced ads to MySpace and PhotoBucket users:

http://www.theregister.co.uk/2007/09/11/yahoo_serves_12million_malware_ads/ [theregister.co.uk]

---

Real Media attacks real people via RealPlayer:

http://www.theregister.co.uk/2007/10/23/real_media_serves_malware/ [theregister.co.uk]

---

Ad networks owned by Google, Microsoft serve malware:

http://www.theregister.co.uk/2010/12/13/doubleclick_msn_malware_attacks/ [theregister.co.uk]

---

Attacks Targeting Classified Ad Sites Surge:

http://it.slashdot.org/story/11/02/02/1433210/Attacks-Targeting-Classified-Ad-Sites-Surge [slashdot.org]

---

Hackers Respond To Help Wanted Ads With Malware:

http://it.slashdot.org/story/11/01/20/0228258/Hackers-Respond-To-Help-Wanted-Ads-With-Malware [slashdot.org]

---

Hackers Use Banner Ads on Major Sites to Hijack Your PC:

http://www.wired.com/techbiz/media/news/2007/11/doubleclick [wired.com]

---

Ruskie gang hijacks Microsoft network to push penis pills:

http://www.theregister.co.uk/2010/10/12/microsoft_ips_hijacked/ [theregister.co.uk]

---

Major ISPs Injecting Ads, Vulnerabilities Into Web:

http://it.slashdot.org/it/08/04/19/2148215.shtml [slashdot.org]

---

Two Major Ad Networks Found Serving Malware:

http://tech.slashdot.org/story/10/12/13/0128249/Two-Major-Ad-Networks-Found-Serving-Malware [slashdot.org]

---

THE NEXT AD YOU CLICK MAY BE A VIRUS:

http://it.slashdot.org/story/09/06/15/2056219/The-Next-Ad-You-Click-May-Be-a-Virus [slashdot.org]

---

NY TIMES INFECTED WITH MALWARE ADBANNER:

http://news.slashdot.org/article.pl?sid=09/09/13/2346229 [slashdot.org]

---

MICROSOFT HIT BY MALWARES IN ADBANNERS:

http://apcmag.com/microsoft_apologises_for_serving_malware.htm [apcmag.com]

---

ISP's INJECTING ADS AND ERRORS INTO THE WEB: -> http://it.slashdot.org/it/08/04/19/2148215.shtml [slashdot.org]

---

ADOBE FLASH ADS INJECTING MALWARE INTO THE NET: http://it.slashdot.org/article.pl?sid=08/08/20/0029220&from=rss [slashdot.org]

---

London Stock Exchange Web Site Serving Malware:

http://www.securityweek.com/london-stock-exchange-web-site-serving-malware [securityweek.com]

---

Spotify splattered with malware-tainted ads:

http://www.theregister.co.uk/2011/03/25/spotify_malvertisement_attack/ [theregister.co.uk]

---

As my list "multiple evidences thereof" as to adbanners & viruses + the fact they slow you down & cost you more (from reputable & reliable sources no less)).

17.) Per point #16, a way to save some money: ANDROID phones can also use the HOSTS FILE TO KEEP DOWN BILLABLE TIME ONLINE, vs. adbanners or malware such as this:

---

Infected Androids Run Up Big Texting Bills:

http://it.slashdot.org/story/11/03/01/0041203/Infected-Androids-Run-Up-Big-Texting-Bills [slashdot.org]

---

AND, for protection vs. other "botnets" migrating from the PC world, to "smartphones" such as ZITMO (a ZEUS botnet variant):

http://www.google.com/search?hl=en&source=hp&q=ZITMO&btnG=Google+Search [google.com]

---

It's easily done too, via the ADB dev. tool, & mounting ANDROID OS' system mountpoint for system/etc as READ + WRITE/ADMIN-ROOT PERMISSIONS, then copying your new custom HOSTS over the old one using ADB PULL/ADB PUSH to do so (otherwise ANDROID complains of "this file cannot be overwritten on production models of this Operating System", or something very along those lines - this way gets you around that annoyance along with you possibly having to clear some space there yourself if you packed it with things!).

18.) Bad news: ADBLOCK CAN BE DETECTED FOR: See here on that note -> http://arstechnica.com/business/news/2010/03/why-ad-blocking-is-devastating-to-the-sites-you-love.ars [arstechnica.com]

HOSTS files are NOT THAT EASILY "webbug" BLOCKABLE by websites, as was tried on users by ARSTECHNICA (and it worked on AdBlock in that manner), to that websites' users' dismay:

PERTINENT QUOTE/EXCERPT FROM ARSTECHNICA THEMSELVES:

----

An experiment gone wrong - By Ken Fisher | Last updated March 6, 2010 11:11 AM

http://arstechnica.com/business/news/2010/03/why-ad-blocking-is-devastating-to-the-sites-you-love.ars [arstechnica.com]

"Starting late Friday afternoon we conducted a 12 hour experiment to see if it would be possible to simply make content disappear for visitors who were using a very popular ad blocking tool. Technologically, it was a success in that it worked. Ad blockers, and only ad blockers, couldn't see our content."

and

"Our experiment is over, and we're glad we did it because it led to us learning that we needed to communicate our point of view every once in a while. Sure, some people told us we deserved to die in a fire. But that's the Internet!"

Thus, as you can see? Well - THAT all "went over like a lead balloon" with their users in other words, because Arstechnica was forced to change it back to the old way where ADBLOCK still could work to do its job (REDDIT however, has not, for example). However/Again - this is proof that HOSTS files can still do the job, blocking potentially malscripted ads (or ads in general because they slow you down) vs. adblockers like ADBLOCK!

----

19.) Even WIKILEAKS "favors" blacklists (because they work, and HOSTS can be a blacklist vs. known BAD sites/servers/domain-host names):

---

PERTINENT QUOTE/EXCERPT (from -> http://www.theregister.co.uk/2010/12/16/wikileaks_mirror_malware_warning_row/ [theregister.co.uk] )

"we are in favour of 'Blacklists', be it for mail servers or websites, they have to be compiled with care... Fortunately, more responsible blacklists, like stopbadware.org (which protects the Firefox browser)...

---

20.) AND, LASTLY? SINCE MALWARE GENERALLY HAS TO OPERATE ON WHAT YOU YOURSELF CAN DO (running as limited class/least privlege user, hopefully, OR even as ADMIN/ROOT/SUPERUSER)? HOSTS "LOCK IN" malware too, vs. communicating "back to mama" for orders (provided they have name servers + C&C botnet servers listed in them, blocked off in your HOSTS that is) - you might think they use a hardcoded IP, which IS possible, but generally they do not & RECYCLE domain/host names they own (such as has been seen with the RBN (Russian Business Network) lately though it was considered "dead", other malwares are using its domains/hostnames now, & this? This stops that cold, too - Bonus!)...

21.) Custom HOSTS files gain users back more "screen real estate" by blocking out banner ads... it's great on PC's for speed along with MORE of what I want to see/read (not ads), & efficiency too, but EVEN BETTER ON SMARTPHONES - by far. It matters MOST there imo @ least, in regards to extra screen real-estate.

Still - It's a GOOD idea to layer in the usage of BOTH browser addons for security like adblock ( http://adblockplus.org/en/ [adblockplus.org] ), IE 9's new TPL's ( http://ie.microsoft.com/testdrive/Browser/TrackingProtectionLists/ [microsoft.com] ), &/or NoScript ( http://noscript.net/ [noscript.net] especially this one, as it covers what HOSTS files can't in javascript which is the main deliverer of MOST attacks online & SECUNIA.COM can verify this for anyone really by looking @ the past few years of attacks nowadays), for the concept of "layered security"....

It's just that HOSTS files offer you a LOT MORE gains than Adblock ( http://adblockplus.org/en/ [adblockplus.org] ) does alone (as hosts do things adblock just plain cannot & on more programs, for more speed, security, and "stealth" to a degree even), and it corrects problems in DNS (as shown above via hardcodes of your favorite sites into your HOSTS file, and more (such as avoiding DNS request logs)).

ALSO - Some more notes on DNS servers & their problems, very recent + ongoing ones:

---

DNS flaw reanimates slain evil sites as ghost domains:

http://www.theregister.co.uk/2012/02/16/ghost_domains_dns_vuln/ [theregister.co.uk]

---

BIND vs. what the Chinese are doing to DNS lately? See here:

http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders [slashdot.org]

---

SECUNIA HIT BY DNS REDIRECTION HACK THIS WEEK:

http://www.theregister.co.uk/2010/11/26/secunia_back_from_dns_hack/ [theregister.co.uk]

(Yes, even "security pros" are helpless vs. DNS problems in code bugs OR redirect DNS poisoning issues, & they can only try to "set the DNS record straight" & then, they still have to wait for corrected DNS info. to propogate across all subordinate DNS servers too - lagtime in which folks DO get "abused" in mind you!)

---

DNS vs. the "Kaminsky DNS flaw", here (and even MORE problems in DNS than just that):

http://www.scmagazineus.com/new-bind-9-dns-flaw-is-worse-than-kaminskys/article/140872/ [scmagazineus.com]

(Seems others are saying that some NEW "Bind9 flaw" is worse than the Kaminsky flaw ALONE, up there, mind you... probably corrected (hopefully), but it shows yet again, DNS hassles (DNS redirect/DNS poisoning) being exploited!)

---

Moxie Marlinspike's found others (0 hack) as well...

Nope... "layered security" truly IS the "way to go" - hacker/cracker types know it, & they do NOT want the rest of us knowing it too!...

(So until DNSSEC takes "widespread adoption"? HOSTS are your answer vs. such types of attack, because the 1st thing your system refers to, by default, IS your HOSTS file (over say, DNS server usage). There are decent DNS servers though, such as OpenDNS, ScrubIT, or even NORTON DNS (more on each specifically below), & because I cannot "cache the entire internet" in a HOSTS file? I opt to use those, because I have to (& OpenDNS has been noted to "fix immediately", per the Kaminsky flaw, in fact... just as a sort of reference to how WELL they are maintained really!)

---

DNS Hijacks Now Being Used to Serve Black Hole Exploit Kit:

https://threatpost.com/en_us/blogs/dns-hijacks-now-being-used-serve-black-hole-exploit-kit-121211 [threatpost.com]

---

DNS experts admit some of the underlying foundations of the DNS protocol are inherently weak:

http://it.slashdot.org/story/11/12/08/1353203/opendns-releases-dns-encryption-tool [slashdot.org]

---

Potential 0-Day Vulnerability For BIND 9:

http://it.slashdot.org/story/11/11/17/1429259/potential-0-day-vulnerability-for-bind-9 [slashdot.org]

---

Five DNS Threats You Should Protect Against:

http://www.securityweek.com/five-dns-threats-you-should-protect-against [securityweek.com]

---

DNS provider decked by DDoS dastards:

http://www.theregister.co.uk/2010/11/16/ddos_on_dns_firm/ [theregister.co.uk]

---

Ten Percent of DNS Servers Still Vulnerable: (so much for "conscientious patching", eh? Many DNS providers weren't patching when they had to!)

http://it.slashdot.org/it/05/08/04/1525235.shtml?tid=172&tid=95&tid=218 [slashdot.org]

---

DNS ROOT SERVERS ATTACKED:

http://it.slashdot.org/it/07/02/06/2238225.shtml [slashdot.org]

---

TimeWarner DNS Hijacking:

http://tech.slashdot.org/article.pl?sid=07/07/23/2140208 [slashdot.org]

---

DNS Re-Binding Attacks:

http://crypto.stanford.edu/dns/ [stanford.edu]

---

DNS Server Survey Reveals Mixed Security Picture:

http://it.slashdot.org/it/07/11/21/0315239.shtml [slashdot.org]

---

Halvar figured out super-secret DNS vulnerability:

http://www.zdnet.com/blog/security/has-halvar-figured-out-super-secret-dns-vulnerability/1520 [zdnet.com]

---

BIND Still Susceptible To DNS Cache Poisoning:

http://tech.slashdot.org/tech/08/08/09/123222.shtml [slashdot.org]

---

DNS Poisoning Hits One of China's Biggest ISPs:

http://it.slashdot.org/it/08/08/21/2343250.shtml [slashdot.org]

---

DDoS Attacks Via DNS Recursion:

http://it.slashdot.org/it/06/03/16/1658209.shtml [slashdot.org]

---

High Severity BIND DNS Vulnerability Advisory Issued:

http://tech.slashdot.org/story/11/02/23/156212/High-Severity-BIND-Vulnerability-Advisory-Issued [slashdot.org]

---

Photobucketâ(TM)s DNS records hijacked:

http://blogs.zdnet.com/security/?p=1285 [zdnet.com]

---

Protecting Browsers from DNS Rebinding Attacks:

http://crypto.stanford.edu/dns/ [stanford.edu]

---

DNS Problem Linked To DDoS Attacks Gets Worse:

http://tech.slashdot.org/story/09/11/15/1238210/DNS-Problem-Linked-To-DDoS-Attacks-Gets-Worse [slashdot.org]

---

HOWEVER - Some DNS servers are "really good stuff" vs. phishing, known bad sites/servers/hosts-domains that serve up malware-in-general & malicious scripting, botnet C&C servers, & more, such as:

Norton DNS -> http://nortondns.com/ [nortondns.com]
  ScrubIT DNS -> http://www.scrubit.com/ [scrubit.com]
  OpenDNS -> http://www.opendns.com/ [opendns.com]

(Norton DNS in particular, is exclusively for blocking out malware, for those of you that are security-conscious. ScrubIT filters pr0n material too, but does the same, & OpenDNS does phishing protection. Each page lists how & why they work, & why they do so. Norton DNS can even show you its exceptions lists, plus user reviews & removal procedures requests, AND growth stats (every 1/2 hour or so) here -> http://safeweb.norton.com/buzz [norton.com] so, that ought to "take care of the naysayers" on removal requests, &/or methods used plus updates frequency etc./et al...)

HOWEVER - There's ONLY 1 WEAKNESS TO ANY network defense, including HOSTS files (vs. host-domain name based threats) & firewalls (hardware router type OR software type, vs. IP address based threats): Human beings, & they not being 'disciplined' about the indiscriminate usage of javascript (the main "harbinger of doom" out there today online), OR, what they download for example... & there is NOTHING I can do about that! (Per Dr. Manhattan of "The Watchmen", ala -> "I can change almost anything, but I can't change human nature")

HOWEVER AGAIN - That's where NORTON DNS, OpenDNS, &/or ScrubIT DNS help!

(Especially for noob/grandma level users who are unaware of how to secure themselves in fact, per a guide like mine noted above that uses "layered-security" principles!)

ScrubIT DNS, &/or OpenDNS are others alongside Norton DNS (adding on phishing protection too) as well!

( & it's possible to use ALL THREE in your hardware NAT routers, and, in your Local Area Connection DNS properties in Windows, for again, "Layered Security" too)...

---

20++ SLASHDOT USERS EXPERIENCING SUCCESS USING HOSTS FILES QUOTED VERBATIM:

---

"Ever since I've installed a host file (http://www.mvps.org/winhelp2002/hosts.htm) to redirect advertisers to my loopback, I haven't had any malware, spyware, or adware issues. I first started using the host file 5 years ago." - by TestedDoughnut (1324447) on Monday December 13, @12:18AM (#34532122)

"I use a custom /etc/hosts to block ads... my file gets parsed basically instantly ... So basically, for any modern computer, it has zero visible impact. And even if it took, say, a second to parse, that would be more than offset by the MANY seconds saved by not downloading and rendering ads. I have noticed NO ill effects from running a custom /etc/hosts file for the last several years. And as a matter of fact I DO run http servers on my computers and I've never had an /etc/hosts-related problem... it FUCKING WORKS and makes my life better overall." - by sootman (158191) on Monday July 13 2009, @11:47AM (#28677363) Homepage Journal

"I actually went and downloaded a 16k line hosts file and started using that after seeing that post, you know just for trying it out. some sites load up faster." - by gl4ss (559668) on Thursday November 17, @11:20AM (#38086752) Homepage Journal

"Better than an ad blocker, imo. Hosts file entries: http://www.mvps.org/winhelp2002/hosts.htm [mvps.org] " - by TempestRose (1187397) on Tuesday March 15, @12:53PM (#35493274)

"^^ One of the many reasons why I like the user-friendliness of the /etc/hosts file." - by lennier1 (264730) on Saturday March 05, @09:26PM (#35393448)

"They've been on my HOSTS block for years" - by ScottCooperDotNet (929575) on Thursday August 05 2010, @01:52AM (#33147212)

"I'm currently only using my hosts file to block pheedo ads from showing up in my RSS feeds and causing them to take forever to load. Regardless of its original intent, it's still a valid tool, when used judiciously." - by Bill Dog (726542) on Monday April 25, @02:16AM (#35927050) Homepage Journal

"you're right about hosts files" - by drinkypoo (153816) on Thursday May 26, @01:21PM (#36252958) Homepage

"APK's monolithic hosts file is looking pretty good at the moment." - by Culture20 (968837) on Thursday November 17, @10:08AM (#38085666)

"I also use the MVPS ad blocking hosts file." - by Rick17JJ (744063) on Wednesday January 19, @03:04PM (#34931482)

"I use ad-Block and a hostfile" - by Ol Olsoc (1175323) on Tuesday March 01, @10:11AM (#35346902)

"I do use Hosts, for a couple fake domains I use." - by icebraining (1313345) on Saturday December 11, @09:34AM (#34523012) Homepage

"It's a good write up on something everybody should use, why you were modded down is beyond me. Using a HOSTS file, ADblock is of no concern and they can do what they want." - by Trax3001BBS (2368736) on Monday December 12, @10:07PM (#38351398) Homepage Journal

"I want my surfing speed back so I block EVERY fucking ad. i.e. http://someonewhocares.org/hosts/ [someonewhocares.org] and http://winhelp2002.mvps.org/hosts.htm [mvps.org] FTW" - by UnknownSoldier (67820) on Tuesday December 13, @12:04PM (#38356782)

"Let me introduce you to the file: /etc/hosts" - by fahrbot-bot (874524) on Monday December 19, @05:03PM (#38427432)

"I use a hosts file" - by EdIII (1114411) on Tuesday December 13, @01:17PM (#38357816)

"I'm tempted to go for a hacked hosts file that simply resolves most advert sites to 127.0.0.1" - by bLanark (123342) on Tuesday December 13, @01:13PM (#38357760)

"this is not a troll, which hosts file source you recommend nowadays? it's a really handy method for speeding up web and it works." - by gl4ss (559668) on Thursday March 22, @08:07PM (#39446525) Homepage Journal

"A hosts file certainly does not require "a lot of work" to maintain, and it quite effectively kills a LOT of advertising and tracking schemes. . In fact, I never would have considered trying to use it for ddefending against viruses or malware." - by RocketRabbit (830691) on Thursday December 30 2010, @05:48PM (#34715060)

---

Then, there is also the words of respected security expert, Mr. Oliver Day, from SECURITYFOCUS.COM to "top that all off" as well:

A RETURN TO THE KILLFILE:

http://www.securityfocus.com/columnists/491 [securityfocus.com]

Some "PERTINENT QUOTES/EXCERPTS" to back up my points with (for starters):

---

"The host file on my day-to-day laptop is now over 16,000 lines long. Accessing the Internet -- particularly browsing the Web -- is actually faster now."

Speed, and security, is the gain... others like Mr. Day note it as well!

---

"From what I have seen in my research, major efforts to share lists of unwanted hosts began gaining serious momentum earlier this decade. The most popular appear to have started as a means to block advertising and as a way to avoid being tracked by sites that use cookies to gather data on the user across Web properties. More recently, projects like Spybot Search and Destroy offer lists of known malicious servers to add a layer of defense against trojans and other forms of malware."

Per my points exactly, no less... & guess who was posting about HOSTS files a 14++ yrs. or more back & Mr. Day was reading & now using? Yours truly (& this is one of the later ones, from 2001 http://www.furtherleft.net/computer.htm [furtherleft.net] (but the example HOSTS file with my initials in it is FAR older, circa 1998 or so) or thereabouts, and referred to later by a pal of mine who moderates NTCompatible.com (where I posted on HOSTS for YEARS (1997 onwards)) -> http://www.ntcompatible.com/thread28597-1.html [ntcompatible.com] !

---

"Shared host files could be beneficial for other groups as well. Human rights groups have sought after block resistant technologies for quite some time. The GoDaddy debacle with NMap creator Fyodor (corrected) showed a particularly vicious blocking mechanism using DNS registrars. Once a registrar pulls a website from its records, the world ceases to have an effective way to find it. Shared host files could provide a DNS-proof method of reaching sites, not to mention removing an additional vector of detection if anyone were trying to monitor the use of subversive sites. One of the known weaknesses of the Tor system, for example, is direct DNS requests by applications not configured to route such requests through Tor's network."

There you go: AND, it also works vs. the "KAMINSKY DNS FLAW" & DNS poisoning/redirect attacks, for redirectable weaknesses in DNS servers (non DNSSEC type, & set into recursive mode especially) and also in the TOR system as well (that lends itself to anonymous proxy usage weaknesses I noted above also) and, you'll get to sites you want to, even IF a DNS registrar drops said websites from its tables as shown here Beating Censorship By Routing Around DNS -> http://yro.slashdot.org/story/10/12/09/1840246/Beating-Censorship-By-Routing-Around-DNS [slashdot.org] & even DNSBL also (DNS Block Lists) -> http://en.wikipedia.org/wiki/DNSBL [wikipedia.org] as well - DOUBLE-BONUS!

---

* POSTS ABOUT HOSTS FILES I DID on "/." THAT HAVE DONE WELL BY OTHERS & WERE RATED HIGHLY, 26++ THUSFAR (from +3 -> +1 RATINGS, usually "informative" or "interesting" etc./et al):

BANNER ADS & BANDWIDTH:2011 -> http://hardware.slashdot.org/comments.pl?sid=2139088&cid=36077722 [slashdot.org]
  HOSTS MOD UP:2010 -> http://yro.slashdot.org/comments.pl?sid=1907266&cid=34529608 [slashdot.org]
  HOSTS MOD UP:2009 -> http://tech.slashdot.org/comments.pl?sid=1490078&cid=30555632 [slashdot.org]
  HOSTS MOD UP:2010 -> http://it.slashdot.org/comments.pl?sid=1869638&cid=34237268 [slashdot.org]
  HOSTS MOD UP:2009 -> http://tech.slashdot.org/comments.pl?sid=1461288&threshold=-1&commentsort=0&mode=thread&cid=30272074 [slashdot.org]
  HOSTS MOD UP:2009 -> http://tech.slashdot.org/comments.pl?sid=1255487&cid=28197285 [slashdot.org]
  HOSTS MOD UP:2009 -> http://tech.slashdot.org/comments.pl?sid=1206409&cid=27661983 [slashdot.org]
  HOSTS MOD UP:2010 -> http://apple.slashdot.org/comments.pl?sid=1725068&cid=32960808 [slashdot.org]
  HOSTS MOD UP:2010 -> http://it.slashdot.org/comments.pl?sid=1743902&cid=33147274 [slashdot.org]
  APK 20++ POINTS ON HOSTS MOD UP:2010 -> http://news.slashdot.org/comments.pl?sid=1913212&cid=34576182 [slashdot.org]
  HOSTS MOD UP:2010 -> http://it.slashdot.org/comments.pl?sid=1862260&cid=34186256 [slashdot.org]
  HOSTS MOD UP:2010 (w/ facebook known bad sites blocked) -> http://tech.slashdot.org/comments.pl?sid=1924892&cid=34670128 [slashdot.org]
  HOSTS FILE MOD UP FOR ANDROID MALWARE:2010 -> http://mobile.slashdot.org/comments.pl?sid=1930156&cid=34713952 [slashdot.org]
  HOSTS MOD UP ZEUSTRACKER:2011 -> http://it.slashdot.org/comments.pl?sid=2059420&cid=35654066 [slashdot.org]
  HOSTS MOD UP vs AT&T BANDWIDTH CAP:2011 -> http://tech.slashdot.org/comments.pl?sid=2116504&cid=35985584 [slashdot.org]
  HOSTS MOD UP CAN DO SAME AS THE "CloudFlare" Server-Side service:2011 -> http://it.slashdot.org/comments.pl?sid=2220314&cid=36372850 [slashdot.org]
  HOSTS and BGP +5 RATED (BEING HONEST):2010 http://tech.slashdot.org/comments.pl?sid=1901826&cid=34490450 [slashdot.org]
  HOSTS & PROTECT IP ACT:2011 http://yro.slashdot.org/comments.pl?sid=2368832&cid=37021700 [slashdot.org]
  HOSTS MOD UP:2011 -> http://yro.slashdot.org/comments.pl?sid=2457766&cid=37592458 [slashdot.org]
  HOSTS MOD UP & OPERA HAUTE SECURE:2011 -> http://yro.slashdot.org/comments.pl?sid=2457274&cid=37589596 [slashdot.org]
  0.0.0.0 in HOSTS:2009 -> http://tech.slashdot.org/comments.pl?sid=1197039&cid=27556999 [slashdot.org]
  0.0.0.0 IN HOSTS:2009 -> http://tech.slashdot.org/comments.pl?sid=1143349&cid=27012231 [slashdot.org]
  0.0.0.0 in HOSTS:2009 -> http://it.slashdot.org/comments.pl?sid=1198841&cid=27580299 [slashdot.org]
  0.0.0.0 in HOSTS:2009 -> http://tech.slashdot.org/comments.pl?sid=1139705&cid=26977225 [slashdot.org]
  HOSTS MOD UP:2009 -> http://hardware.slashdot.org/comments.pl?sid=1319261&cid=28872833 [slashdot.org] (still says INSIGHTFUL)
  HOSTS MOD UP vs. botnet: 2012 -> http://it.slashdot.org/comments.pl?sid=2603836&cid=38586216 [slashdot.org]

---

Windows 7, VISTA, & Server 2008 have a couple of "issues" I don't like in them, & you may not either, depending on your point of view (mine's based solely on efficiency & security), & if my take on these issues aren't "good enough"? I suggest reading what ROOTKIT.COM says, link URL is in my "p.s." @ the bottom of this post:

1.) HOSTS files being unable to use "0" for a blocking IP address - this started in 12/09/2008 after an "MS Patch Tuesday" in fact for VISTA (when it had NO problem using it before that, as Windows 2000/XP/Server 2003 still can)... & yes, this continues in its descendants, Windows Server 2008 &/or Windows 7 as well.

So, why is this a "problem" you might ask?

Ok - since you can technically use either:

a.) 127.0.0.1 (the "loopback adapter address")
b.) 0.0.0.0 (next smallest & next most efficient)
c.) The smallest & fastest plain-jane 0

PER EACH HOSTS FILE ENTRY/RECORD...

You can use ANY of those, in order to block out known bad sites &/or adbanners in a HOSTS file this way??

Microsoft has "promoted bloat" in doing so... no questions asked.

Simply because

1.) 127.0.0.1 = 9 bytes in size on disk & is the largest/slowest
2.) 0.0.0.0 = 7 bytes & is the next largest/slowest in size on disk
3.) 0 = 1 byte

(& HOSTS files extend across EVERY webbrowser, email program, or in general every webbound program you use & thus HOSTS are "global" in coverage this way AND function on any OS that uses the BSD derived IP stack (which most all do mind you, even MS is based off of it, as BSD's IS truly, "the best in the business"), & when coupled with say, IE restricted zones, FireFox addons like NoScript &/or AdBlock, or Opera filter.ini/urlfilter.ini, for layered security in this capacity for webbrowsers & SOME email programs (here, I mean ones "built into" browsers themselves like Opera has for example))

MS has literally promoted bloat in this file, making it load slower from disk, into memory! This compounds itself, the more entries your HOSTS file contains... & for instance? Mine currently contains nearly 654,000 entries of known bad adbanners, bad websites, &/or bad nameservers (used for controlling botnets, misdirecting net requests, etc. et al).

Now, IF I were to use 127.0.0.1? My "huge" HOSTS file would be approximately 27mb in size... using 0.0.0.0 (next smallest) it would be 19mb in size - HOWEVER? Using 0 as my blocking IP, it is only 14mb in size. See my point?

(For loads either in the local DNS cache, or system diskcache if you run w/out the local DNS client service running, this gets slower the larger each HOSTS file entry is (which you have to stall the DNS client service in Windows for larger ones, especially if you use a "giant HOSTS file" (purely relative term, but once it goes over (iirc) 4mb in size, you have to cut the local DNS cache client service)))

NO questions asked - the physics of it backed me up in theory alone, but when I was questioned on it for PROOF thereof?

I wrote a small test program to load such a list into a "pascal record" (which is analagous to a C/C++ structure), which is EXACTLY what the DNS client/DNS API does as well, using a C/C++ structure (basically an array of sorts really, & a structure/record is a precursor part to a full-blown CLASS or OBJECT, minus the functions built in, this is for treating numerous variables as a SINGLE VARIABLE (for efficiency, which FORTRAN as a single example, lacks as a feature, @ least Fortran 77 did, but other languages do not))!

I even wrote another that just loaded my HOSTS file's entirety into a listbox, same results... slowest using 127.0.0.1, next slowest using 0.0.0.0, & fastest using 0.

And, sure: Some MORE "goes on" during DNS API loads (iirc, removal of duplicated entries (which I made sure my personal copy does not have these via a program I wrote to purge it of duplicated entries + to sort each entry alphabetically for easier mgt. via say, notepad.exe) & a conversion from decimal values to hex ones), but, nevertheless? My point here "holds true", of slower value loads, record-by-record, from a HOSTS file, when the entries become larger.

So, to "prove my point" to my naysayers?

I timed it using the Win32 API calls "GetTickCount" & then again, using the API calls of "QueryPerformanceCounter" as well, seeing the SAME results (a slowdown when reading in this file from disk, especially when using the larger 127.0.0.1 or 0.0.0.0 line item entries in a HOSTS file, vs. the smaller/faster/more efficient 0).

In my test, I saw a decline in speed/efficiency in my test doing so by using larger blocking addresses (127.0.0.1 &/or 0.0.0.0, vs. the smallest/fastest in 0)... proving me correct on this note!

On this HOSTS issue, and the WFP design issue in my next post below?

I also then questioned MS' own staff, even their VP of development (S. Sinofsky) on this here -> http://blogs.msdn.com/e7/archive/2009/02/09/recognizing-improvements-in-windows-7-handwriting.aspx?CommentPosted=true#commentmessage [msdn.com] & other places in their blogs, to get them to tell me WHY this seemingly intentional inefficiency was implemented... & I have YET to get a solid LOGICAL answer on this as to why it was done - THUS, @ this point?

I am convinced they (MS) do NOT have a good reason for doing this... because of their lack of response there on this note. Unless it has something to do with IPv6 (most folks use IPv4 still), I cannot understand WHY this design mistake imo, has occurred, in HOSTS files...

AND

2.) The "Windows Filtering Platform", which is now how the firewall works in VISTA, Server 2008, & Windows 7...

Sure it works in this new single point method & it is simple to manage & "sync" all points of it, making it easier for network techs/admins to manage than the older 3 part method, but that very thing works against it as well, because it is only a single part system now!

Thus, however?

This "single layer design" in WFP, now represents a SINGLE POINT OF FAILURE/ATTACK for malware makers to 'take down'!

(Which is 1 of the 1st things a malware attempts to do, is to take down any software firewalls present, or even the "Windows Security Center" itself which should warn you of the firewall "going down", & it's fairly easy to do either by messaging the services they use, or messing up their registry init. settings)

VS. the older (up to) 3 part method used in Windows 2000/XP/Server 2003, for protecting a system via IP Filtering, the Windows native Firewall, &/or IPSEC. Each of which uses diff. drivers, & layers of the IP stack to function from, as well as registry initialization settings.

Think of the older 3 part design much the same as the reason why folks use door handle locks, deadbolt locks, & chain locks on their doors... multipart layered security.

(Each of which the latter older method used, had 3 separate drivers & registry settings to do their jobs, representing a "phalanx like"/"zone defense like" system of backup of one another (like you see in sports OR ancient wars, and trust me, it WORKS, because on either side of yourself, you have "backup", even if YOU "go down" vs. the opponent)).

I.E.-> Take 1 of the "older method's" 3 part defenses down? 2 others STILL stand in the way, & they are not that simple to take them ALL down...

(Well, @ least NOT as easily as "taking out" a single part defensive system like WFP (the new "Windows Filtering Platform", which powers the VISTA, Windows Server 2008, & yes, Windows 7 firewall defense system)).

On this "single-part/single-point of attack" WFP (vs. Windows 2000/XP/Server 2003's IP stack defense design in 3-part/zone defense/phalanx type arrangement) as well as the HOSTS issue in my post above?

I also then questioned MS' own staff, even their VP of development (S. Sinofsky) on this here -> http://blogs.msdn.com/e7/archive/2009/02/09/recognizing-improvements-in-windows-7-handwriting.aspx?CommentPosted=true#commentmessage [msdn.com] & other places in their blogs, to get them to tell me WHY this seemingly intentional inefficiency was implemented... & I have YET to get a solid LOGICAL answer on this as to why it was done - THUS, @ this point?

I'll stick to my thoughts on it, until I am shown otherwise & proven wrong.

----

Following up on what I wrote up above, so those here reading have actual technical references from Microsoft themselves ("The horses' mouth"), in regards to the Firewall/PortFilter/IPSec designs (not HOSTS files, that I am SURE I am correct about, no questions asked) from my "Point #2" above?

Thus, I'll now note how:

----

1.) TCP/IP packet processing paths differences between in how Windows 2000/XP/Server 2003 did it (IPSEC.SYS (IP Security Policies), IPNAT.SYS (Windows Firewall), IPFLTDRV.SYS (Port Filtering), & TCPIP.SYS (base IP driver))...

2.) AND, how VISTA/Server 2008/Windows 7 do it now currently, using a SINGLE layer (WFP)...

----

First off, here is HOW it worked in Windows 2000/XP/Server 2003 - using 3 discrete & different drivers AND LEVELS/LAYERS of the packet processing path they worked in:

http://technet.microsoft.com/en-us/library/bb878072.aspx [microsoft.com]

The Cable Guy - June 2005: TCP/IP Packet Processing Paths

====

The following components process IP packets:

IP forwarding Determines the next-hop interface and address for packets being sent or forwarded.

TCP/IP filtering Allows you to specify by IP protocol, TCP port, or UDP port, the types of traffic that are acceptable for incoming local host traffic (packets destined for the host). You can configure TCP/IP filtering on the Options tab from the advanced properties of the Internet Protocol (TCP/IP) component in the Network Connections folder.

* "Here endeth the lesson..." and, if you REALLY want to secure your system? Please refer to this:

http://www.bing.com/search?q=%22HOW+TO+SECURE+Windows+2000%2FXP%22&go=&form=QBRE [bing.com]

APK [mailto]

P.S.=> SOME MINOR "CAVEATS/CATCH-22's" - things to be aware of for "layered security" + HOSTS file performance - easily overcome, or not a problem at all:

A.) HOSTS files don't function under PROXY SERVERS (except for Proximitron, which has a filter that allows it) - Which is *the "WHY"* of why I state in my "P.S." section below to use both AdBlock type browser addon methods (or even built-in block lists browsers have such as Opera's URLFILTER.INI file, & FireFox has such as list as does IE also in the form of TPL (tracking protection lists -> http://ie.microsoft.com/testdrive/Browser/TrackingProtectionLists/ [microsoft.com] , good stuff )) in combination with HOSTS, for the best in "layered security" (alongside .pac files + custom cascading style sheets that can filter off various tags such as scripts or ads etc.) - but proxies, especially "HIGHLY ANONYMOUS" types, generally slow you down to a CRAWL online (& personally, I cannot see using proxies "for the good" typically - as they allow "truly anonymous posting" & have bugs (such as TOR has been shown to have & be "bypassable/traceable" via its "onion routing" methods)).

B.) HOSTS files do NOT protect you vs. javascript (this only holds true IF you don't already have a bad site blocked out in your HOSTS file though, & the list of sites where you can obtain such lists to add to your HOSTS are above (& updated daily in many of them)).

C.) HOSTS files (relatively "largish ones") require you to turn off Windows' native "DNS local client cache service" (which has a problem in that it's designed with a non-redimensionable/resizeable list, array, or queue (DNS data loads into a C/C++ structure actually/afaik, which IS a form of array)) - mvps.org covers that in detail and how to easily do this in Windows (this is NOT a problem in Linux, & it's 1 thing I will give Linux over Windows, hands-down). Relatively "smallish" HOSTS files don't have this problem (mvps.org offers 2 types for this).

D.) HOSTS files, once read/loaded, once? GET CACHED! Right into the kernelmode diskcaching subsystem (fast & efficient RAM speed), for speed of access/re-access (@ system startup in older MS OS' like 2000, or, upon a users' 1st requ

Re:The FBI refuses to help catch my stalker... apk (1)

seyfarth (323827) | about a year ago | (#43488985)

How much trouble could it be for the coders of Slashdot to really limit the length of the initial part of posts to limit the nuisance caused by the person who keeps posting lengthy nonsense? It sounds like an easy fix which should be done immediately.

False flag (0)

Anonymous Coward | about a year ago | (#43488767)

Where are the pictures of them dropping and leaving the backpacks in the exact spots the explosions took place? You could pick out dozens of people in the crowd walking around with backpacks. There's nothing conclusive here.

Re:False flag (1)

femtobyte (710429) | about a year ago | (#43488845)

Right, because a high-level government conspiracy with the complicity of the FBI would lack the resources to produce appropriate fake photos to support their deception, thus the FBI's inability to release conclusive photos indicates this was a false-flag attack. Logic!

Tough angle (1)

Patent Lover (779809) | about a year ago | (#43488797)

As usual, with the camera being slightly above the target, the angle of these security cameras are fairly bad if the perp is wearing a hat. Seeing as cameras are now tiny, it's time to start mounting them at about the 5 foot level. It's so much easier to identify a person at that angle. This would explain why they're looking for somebody with a cell phone picture.

It wasn't me. (0)

Anonymous Coward | about a year ago | (#43488819)

I wonder if the FBI read Slashdot? I bear a moderate similarity (in profile) to the man in the white cap. Same hair, same nose, etc. However, I have a water-tight alibi - I was 16,000km away and in bed at the time.

Re:It wasn't me. (1)

j-beda (85386) | about a year ago | (#43488839)

I wonder if the FBI read Slashdot? I bear a moderate similarity (in profile) to the man in the white cap. Same hair, same nose, etc. However, I have a water-tight alibi - I was 16,000km away and in bed at the time.

So you SAY. Can anybody verify that?

Re:It wasn't me. (0)

Anonymous Coward | about a year ago | (#43488885)

Yes, my partner, who sleeps very lightly, and would have heard me waking up to catch a fast sub-orbital rocket to the USA, and returning before she got up at 6.45am.

Re:It wasn't me. (0)

Anonymous Coward | about a year ago | (#43488933)

He's commenting on Slashdot, so he was obviously alone in bed.

Four not two? (1)

Anonymous Coward | about a year ago | (#43488835)

To my very untrained eye it also seems like there are a couple other tailing people (red cap and yellow jacket). How two are suspects and the other two are not... Maybe the two suspect backpacks were found to be the blast sources?

How can this be a suspect? (0)

aybiss (876862) | about a year ago | (#43488937)

This is ridiculous. Are we seriously saying that the suspect description for a bombing at a marathon is anyone who had a backpack?

Load More Comments
Slashdot Login

Need an Account?

Forgot your password?
or Connect with...

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>