Schneier on Security

Clive Robinson • September 4, 2021 6:54 AM

@ Winter, JonKnowsNothing, SpaceLifeForm, MarkH, ALL,

which is worse as you are then locked up in a prison

You forgot to add “with others who could infect and kill you.”…

Which brings us onto the topic of the history of this pandemic and the likes of alledged experts in the eye of the media and on select committees.

We knew early on, with the first spread of the mildest and least infectious mutation people locked up that way on what became modern day “prison ships” / “floating petri dishes” of Cruise Ships became quickly and easily infected and many died. Much of the press reporting about the “Princess” etc is still on-line as is the way the passengers were treated, and the conditions they were kept in.

We knew that the infection was spreading way to easily to be from “fomites” or direct person to person contact (look back on this blog where we discussed it to death at the time and the conclusions that were reached, that have been shown to be correct, and the experts in the media now very occasionaly and very indirectly belatedly admit).

Likewise when in land based hotels used for quarantine the figures indicated cross infection was going on but not at such a high level as the ships. But again the argument was it must have been fomite transmission in transport from air ports… Whilst there might have been some cases that way, it was obviously not for others and infections were occuring at too high a rate to be fomites and direct contact with staff…

But we also need to look at the spread and death rates in “institutions” such as “care homes” unfortunately they were often so bad the “Official Government rules” in places like the UK got manipulated to exclude them from “official figures” so hiding further clues. Then there are actual prisons in Brasil, the US and many other places, where rapid infection spread has happened and inmate “unrest” unsuprisingly has happened, but media reporting was lower than you would expect.

But it was not just on this blog where people thought about it and called the things the alleged experts in the media were saying.

Many enginers and similar who had knowledge of ventilation indicated that “through the air” in such places was the most likely way… But then the alleged experts most often in the media at the time said no (think back to Head of the World Health Organisation and its Executive Director Dr Michael Ryan on live interview and that parachute comment, but it appears even he has wised up somewhat[1]).

The alleged experts on media kept saying “No” even when experts in the domains surrounding air movment etc published peer reviewed papers showing they alleged experts in the media were wrong, very wrong.

But there was a very early and major clue that was in most media. Much though we may not like to say it we can see from the design of the early Chinese “hospitals” that quarantine has to mean “kept” in significant “issolation” as well. Oddly it was about this time that it was all the “China Conspiracies” started comming out of the US and similar.

Why did all the deths etc happen?

Well even though the alledged world experts spent months saying it was not an “airborne” pathogen we now know that people can sneeze droplets atleast 26ft or potentially more. In poorly ventelated corridors or with common ventilation or staff you can be infected due to dropplets just floating there. Whilst this technically may not be “airborne” it’s certainly suspended and it can be as we know now for three hours or more, and the pathogen can remain infectious on surfaces for atleast nine hours[2].

Ask an average person if they think something that can remain in the air for the length of time it takes a jet plane to fly ~3,000kM is “airborne or not?” You can probably guess what they are going to say. Then ask them about the redefinition of words used to speak to the media, and US legal authorities under oath. Some will remember a certain US Military commander and testimony about what some call “collect it all” and that building in Bluffdale. So realistically is it any surprise that people have become significantly distrustful of “experts” that speak in the media thus appear “politically connected / dependent”? With even actual “experts” saying bad things about the Seniors at the World Health Organisation, not once or twice but on an almost continuous basis, similarly about the US CDC and more recently the FDA and European Medicines Agency…

As Dr Mike Ryan has belatedly pointed out 18months or more late is,

“The logic of more people being infected is better, is, I think, logic that has proven it’s moral emptiness and epidemiological stupidity previously.”

And with regards the “don’t frighten the horses”, “Happy clappy attitudes” many have exhibited. He further said,

“The idea that everyone is protected and it’s ‘kum-ba-ya’ and it can go back to normal, is a very dangerous assumption,”

If you go back 18months or so on this blog, we’ve been saying the same thing as well as evaluating Open Source evidence in an open fashion (OSint process). So far the comments on this blog by a handfull of people have proved to be consistantly right whilst those alledged experts in the media and in Government committees, how do I put it politely “not so much”…

But are these alleged experts appearing in the media and on these committees actuall experts?

Well, in a way too narrow definition perhaps. But when you see an alleged expert really really muck up explaining “exponential growth” then compleatly ignore “exponential decay” something a lot of High School and undergraduates have no difficulty explaining. Then you know something is wrong…

But it raises a serious question, most of these alledged experts in the media and certainly many on advisory boards are “eminent experts”. That is recognised in a very narrow domain of knowledge for their “seniority in academia/research”, but are they actually “experts” outside of their office/lab in the broader “real world sense”?

Probably no more so than the average person who pays someone else to fix the every day things around them… Can they even “hang wallpaper”, “Change a fuse”, “do simple plumbing, electrics, heating, ventilation…” or a host of other things ordinary people who can not aford to pay someone else have learned to do? Most probably not.

In short outside of a narrow mainly irrelevant knowledge domain these alledged “experts” in the media and on committees are probably actually less expert than many in the knowledge domains where it’s needed.

But have a think for a moment, do you actually really expect someone who is an expert in the genetics of viral mutations to actually know anything about hydrodynamics, aerodynamics, balistics, orbital mechanics, thus be able to have indepth knowledge of the likes of air movment in the real world especially in constrained environments such as modern buildings and transportation system ventilation?

The moral is “pick your alledged experts with care, not by eminence”, or more pracmatically “test and verify” the Security Mantra (also the mantra of “intrinsic safety” and “fail safe” design).

[1] https://www.telegraph.co.uk/global-health/science-and-disease/moral-emptiness-epidemiological-stupidity-condemns-uk-covid/

[2] That is we realy should say,

Space, face, hands

As the priority order to consider for peoples safety.

Clive Robinson • September 4, 2021 5:58 PM

@ annoyed_reader,

What are you actually accusing those AE of ?

Being human[1], and being provably wrong repeatedly (as UN WHO Executive Director Dr Mike Ryan recent quote shows).

Did you actually read my post?

Something tells me not realy, how about the bit that says,

“Probably no more so than the average person who pays someone else to fix the every day things around them…”

Or,

“But have a think for a moment, do you actually really expect someone who is an expert in the genetics of viral mutations to actually know anything about hydrodynamics, aerodynamics, balistics, orbital mechanics, thus be able to have indepth knowledge of the likes of air movment in the real world especially in constrained environments such as modern buildings and transportation system ventilation?”

Hence,

“The moral is “pick your alledged experts with care, not by eminence”, or more pracmatically “test and verify” the Security Mantra (also the mantra of “intrinsic safety” and “fail safe” design).”

Either you did not, or you have decided once again to be a “hostile complainer” not a “contributer”.

Oh look at your list… entry 3 gives the game away and shows without doubt it is both biased and incompleate,

Opps, bing bing not a “contribution” test failed.

But lets “verify”.

You’ve said,

and can you please supply any arguments why we should believe that your opinions carry any more credibility than theirs ?

That’s easy to test and verify and could have been done over the past year and a half or so.

Because they are already on this blog and have been for months. Did you miss the bit of my above comment that says,

“So far the comments on this blog by a handfull of people have proved to be consistantly right whilst those alledged experts in the media and in Government committees, how do I put it politely “not so much”…”

Go seek and you will find, quite a number.

However I and probably several others know you’ve tried on this silliness before, so I’ll just say “Google it and stop being lazy”.

But bing bing verified as not a “contribution” along with “test failed”, you are nailed as a “hostile complainer”. Oh and as normal not a very good one.

Speaking of your silliness,

You don’t even have their ‘narrow’ domain expertise.

Why should anyone believe your opinion?

After all you do nothing but complain and have not exhibited any contribution. So what makes you any different to “The rough trade in the peanut gallery” that are incapable and incompetent?

How about you do what you ask of others?

But I guess you won’t or more correctly cann’t… So back in your kennel with you, no doubt you will change the tag on your collar.

[1] There are quite a few old saws about humans and mistakes, I would have thought you would be cognizant of them, but I guess not.

Clive Robinson • September 4, 2021 6:51 PM

@ Anders,

Interesting link, especially

…they also saw a slight increase in physical distancing in public spaces, such as marketplaces. This finding indicates that mask-wearing doesn’t give a false sense of security that leads to risk-taking behaviors — a concern cited by the World Health Organization during the early days of the pandemic…”

I think we can say that finaly puts the nail in the UN WHO don’t do mask wearing argument the senior was putting out.

Oh interesting point, the surgical masks they are handing out many consider to be “single use” only. That’s actually not true, even though the manufacturers box might have a label stuck on it saying “single use”, all “approved” surgical masks are infact reusable, provided the mechanical integrity is still there and it’s physically clean.

If you dry the mask fully in sunshine between uses then any residual pathogens will be rendered non viable. Similarly you can when the mask is dry give it a misting with hydrogen peroxide solution which will render residual pathogens non viable, when it is dry again you can wear it as the hydrogen peroxide will have fully broken down.

There was research in the US done to verify this, not just with surgical masks but with many other masks. The US Gov was going to issue contracts for UV-C and Hydrogen Peroxide mask sterilisation systems when mask availability was critical, but mask supplies became readily available before the tendering process had compleated.

In the affluant West using three or four of these masks a day as “single use” is not a significant financial burden on most individuals. However in many non western countries it would be more than a significant burden, it would cost more than daily earnings.

Thus knowing how to properly re-use the surgical masks can make a significant difference in such poor areas, especially as more virulant mutations are turning up so frequently.

Clive Robinson • September 5, 2021 4:39 AM

@ SpaceLifeForm,

… one or more troll-tool actors have been ID-ed and blocked.

But at what collateral cost?

Let us say that “M’thinks there will be future fall out” from it. Fingers crossed I’m wrong.

In theory, and on a classroom white board, and some journalistic commentary blocking a user looks easy.

But as you and I know it’s not just “attribution” that is hard. In practice whilst attribution is very hard and easy to get wrong against “a thoughtful mind” there are other much harder issues where “technical solutions” such as blocking

“Are not lasting solutions but technical and other debt.”

As I remark from time to time you can not use technical solutions for non technical problems CCTV being perhaps the one most see.

The main problem is technical solutions are almost always non-evolving, where as the likes of social issues are continuously evolving. Especially where the technical solution is in reality,

“An inconvenience that can be worked around by a thoughtful mind”.

In fact with the likes of Denial of Service (DoS) attacks, it is usually the “technical solution” from an earlier problem that is now being used against a central service to block access to the service by others. From that point things will escalate technically unless the attack stops for some reason. That reason is almost always non-technical in nature, even when it might look like that to a defender.

Gardeners fight nature to bend it to their will in all sorts of ways so much so that “tending the garden” is used as a euphemism for somebody going off to “plot and scheme” their next battle.

One thing gardeners have to deal with is weeds, “unless nipped in the bud” they can become extraordinarily tenacious, so much so that a “scorched earth” policy gets considered then finally used. Obviously then it is not only the weeds that can not grow there, but the desired plants as well.

Escalation of technical solutions often becomes a partial or full scorched earth result. In fact some directing mind attackers aim to force the defender into such a policy.

I guess we will have to wait and see what happens with time.

Clive Robinson • September 6, 2021 10:38 AM

@ JonKnowsNothing, SpaceLifeForm, Winter, ALL,

A good number of the vaccines under development can be used as either main jabs or booster jabs. They are often designed to trigger “persistent” antibodies.

Breakthrough though is a concern with a new WHO VOI called Mu. Apparently it has not just one or two changes, some of which are thought from earlier VOCs to be avoident.

Clive Robinson • September 7, 2021 4:23 AM

@ MarkH,

but I distinctly remember comments from you expressing pessimism as to whether an effective vaccine against Covid-19 could ever be developed, and suggesting that if it were possible, the likely time frame would be several years.

I expressed pessimism about mRNA technology making it out of the lab and into the world.

Because at that point after 30years of talking mRNA up and throwing lots of money at it the universities and drugs companies were still trying to make it work and out of the lab, and had so far failed. The odds did not look at all good.

If you want to belabor the point, –and even you have admitted you do,– then I’ll point out as a usefull vaccine for a global pandemic mRNA technology is still not there now, and in effect it’s still not yet made it outside of lab conditions (though there have been small improvments).

Because at the time you had to keep it in -70 Celsius tempratures which was “specialised lab” only tempratures.

If you remember they talked for quite some time about “chill chains” where even liquid nitrogen was not enough. That is the technology required, ment specialised centers had to be set up and people had to travel long distances to get to a medical point. So totaly usless outside of certain limited First World environments.

As far as I’m aware the mRNA vaccines are still not suitable for many second world countries let alone third. Which means if all we had was mRNA, then outside of First World environments, and as a global traveling population, we would never “vaccinate our way out”. Because the rest of the world would be a “disease reservoir” and SARS-2 would by default be endemic.

Thankfully there are other vaccine options but an average American might not be aware of that. Because the FDA won’t give emmergancy use to them. I guess we will have to wait and see if they ever give “full approval” to other vaccines, but if “past behaviour is any indicator of future behaviour”…

However some have indicated that both the FDA and EDA have basically been doing “protectionism” for certain big phama interests[1]. A European Watchdog discovered there was a lot of “dark money” being put out to cause low vaccine uptake and promote “bad news” against other vaccines…

If you know anything about the history of the tobacco industry and similarly certain parts of the food –ie corn to sugar– industry, this will not surprise you in the slightest.

[1] That’s kind of been hidden away behind much more social media engaging conspiracy theories about mass murdering Americans or Bill Gates putting chips in everyone… Further not helped by the likes of Rupert Murdoch’s “Sky News” putting out biased stories to create scares about blood clots and similar, it happens at about the same rate with mRNA vaccines as well, and way way less than with disease, something that was known befor Sky News started the scares…

Clive Robinson • September 7, 2021 9:55 PM

@ any moose, Sumadelet,

But you just keep believing that self-drivers are safe.

Whilst I can see what you are worried about your argument is letting you down.

For instance “self-drivers are safe”. Says Who? And Why?

They “are” and “are not” safe, it depends on your definition of “safe”, which you’ve not given. Importantly you have to specify the environment as well which is in no way under any designers control (it is why “self driving” light railways have high fences alongside the tracks to keep people off of them.

Which brings your argument of “accidents with emergancy vehicles”, “The law of Small Numbers” applies to it. Which makes it look like you might be “cherry picking” an issue that supports your argument but in reality is little more than statistical noise (yes I am aware that others will pick other arguments to portray a different or opposite picture).

I’ve spent a number of years designing safety systems along with fail safe systems. I’ll let you into a little secret that engineers talk about amoungst themselves but don’t generally make widely known,

All technology systems are dangerous according to the measure you use.

And another which applies to humans as well,

There are no accidents, they are all predictable and avoidable, if you have sufficient sensors and the time to process their signals.

This second one is a “legal nightmare” as any half competant lawyer will make the lack of a sensor or the inability to process a signal in time sound like “culpable negligence” and then work up to homicide or damages.

To lawyers natures limits like the speed of light or inertia do not apply, thus in their eyes all systems must be impossibly safe. Such as being capable of stoping instantly on a dime or miraculously jump through time or similar — theoretical– impossibility (trust me on this that realy is what they will try to argue or something similar).

But ask any driver that’s had a fender bender or monocoque / monocock crumple they will rarely say I was not looking, you will get something like “they came out of the blind spot” or similar.

But at the end of the day most human drivers are “bad drivers” as many tests have shown. Put simply to do the required amount of concentration and observation needed to drive at more than around 20mph will cause you nervous colapse fairly quickly…

So the question is I guess is,

“How do self-drivers compare to humans?”

It is not going to be easy to say and the self-driver has an advantage, it does not get tired, iritable or stressed.

Clive Robinson • September 9, 2021 1:27 AM

@ SpaceLifeForm, ALL,

When GCHQ directed the destruction of the hardware, they were not worried about the data. They were worried that an implanted backdoor would be discovered.

Yes, but not quite in the way that might sound to some, there are after all a few more differences than just letters between “precaution” and “paranoia”, though with some government agencies it’s hard to tell 😉

As you know one of the problems with this new blog, is we do not know what length of post, number of links, and what words are on the “naughty list”, so when a comment we make will get “road rash” as it were. So the result is we have to “write less” –in a message– but have to “write more” –messages- to convey the information[1].

GCHQ certainly was aware of what would become the “Flash ROM” problem from the earliest days of practical computing and “ring core memory” which had a hysteresis resedue issue. Put simply even the rings that were supposed not to, retained a slight bias of the last state they were in so data could still be read out after the computer had been powered down, thus was a significant security concern.

So GCHQ like the NSA and presumably other National Security agencies kept a very close eye on “memory developments” so ended up knowing when chips had writeable memory in them that the manufacturers kept hidden. One such was modem chips, Rockwell put a 6502 CPU RAM and ROM in that even their biggest customs did not know about for quite some time. Even today when you buy what were once MSI up parts, hidden writable ROM is in them for “configuration” or the modern equivalent of “Select on test” components. It is almost as though designing a “state machine” is a “lost art” these days and shoving a full blown CPU etc in is the prefered way to go for chip designers.

As we now know even the battery managment chip in Apple battery packs can have malware put in them. All an attacker needs is “access” some how, and with appropriate knowledge that can be from around the other side of the planet. So Australia, Brazil, Canada, China, France, Germany, Holland, India, Iran, Israel, New Zealand, Pakistan, Russia, South Africa, UK, US, are all “known” to push state level malware. And I guess all countries inbetween, I guess even Eritrea long regarded as the least connected country in the world as well, as every Government appears to be doing it these days…

So GCHQ in theory was being precautionary, although with the way the seniors in the UK government of the time were behaving and effectively “throwing their toys out of the pram” in fits of peak and pi55ing contests, I’d not rule out any kind of mental disorder.

When I said above,

“The Guardian published a picture of the mother board with ground down chips as their “weekend center fold” and as I pointed out at the time it had a wealth of useful security information on it about hidden from the user Flash ROM etc.”

For brevity I left out that I’d also said at the time that someone should compare the picture to an untrashed motherboard to get a list of chips to be wary of. As well as stick the picture in University and similar courses. As far as I can remember nobody did either, which is an ICTsec industry loss…

So less than a decade later the lessons about “hidden Flash ROM” in IO devices on computers being a place where malware could be hidden looks “lost to all but a few” again. Not sure what it says about the ICTsec industry in totality, but it’s not good at any level.

Do I need to say the old saw of “Those who don’t learn from history…” yet again?

[1] The odd thing about this “write less” actually means you have to “write more”, as you have to repeate so much stuff to set context etc again. So it falls under the law of “false economy”, which network engineers have known about with “packet size” for oh probably 50years, and commercial communications engineers 60-70years. But even telegraphers going back more than a century and a half knew it because they were the much put-upon people taping it out. One such being Alfred Vail who was the person who made Morse Code actually usable. But even reducing effort at one level did not solve it at another level where addressing and later routing information just heaped it back on again. So even back in the 1840’s the idea of a layers in communications protocols was understood.

Clive Robinson • September 9, 2021 5:13 AM

@ Who?, MarkH, Sut Vachz, Winter,

BTC meets the requirements to be considered currency

Some peoples requirments, but not others. It also has all sorts of issues that most current currencys do not.

For instance the issue of “anonymity”, you get that with most current actual coin in your pocket currencies but not crypto currencies due to the likes of “double spend fraud prevention”…

Also the cost of transactions has been turned into a profit center.

Which highlights one truism in life,

“The trouble with “new””,

Is all the old crimes and disadvantages it allows to be used again.

Clive Robinson • September 9, 2021 6:39 AM

@ Winter,

Now compare this to “electronic” dollars $, ie, Credit Cards.

The word “Credit” tells you it’s not coinage, but a mediated transaction

The two are not comparable, coinage only needs two parties for a normal payment transaction. There is usually no transaction or other fees involved at the point of payment.

A credit card or other payment card requires three or more parties one of whom holds a ledger and does reconciliation. They make profit by seniorage as well as transaction fees and merchant fees and all sorts of costs to all the other involved parties.

Clive Robinson • September 9, 2021 7:15 AM

@ Winter,

I’d go back and read that Ledger article again, it’s mixing different units (energy power) and not doing like for like comparisons.

Thus it looks more than somewhat suspect especially the “350 Kilowatts” claim for a laptop… Then the “74.1% of its electricity from renewable sources” is suspect as well though with the China crackdown who knows…

But way to many of the link sources it’s using come from Crypto Currancy promoting sites…

It’s going to take me to long to do a proper analysis, so I’m using a way longer than 6ft pole on it.

Clive Robinson • September 9, 2021 7:39 AM

@ Winter,

“Credit” is actually what makes a currency useful money.

That is a famous “circular argument”.

It says lending alows increased investment which increases inflation thus actually reduces the cost of borrowing money over time. Which in turn increases the economy thus money supply which makes further borrowing easier.

Whilst there might be some truth[1] in that for a business, it’s rarely true for the borrowing individuals make and who get hurt because their savings such as funds for their childrens education and their own pensions get devalued in real terms.

Whilst “credit” does effect the security of the money supply I don’t actually regard it as being a “security issue” when you look at US fiscal policy it’s just “Keep on printing money” with that in place money of all types that is not bassed on assets is a joke. Because every shyster will figure out an angle, which is what we see with the crooked behaviour of the myriad of faux fiscal instruments and markets.

In essence it’s a rigged market and you are the mark, the best you can hope for is to draw whilst they win, and most others loose.

[1] When the banks stopped lending because those who loaned them the money such as soverign investment got “cold feet” during FC1&2 even though some goverments made money available through the central bank, banks would still not loan money. There reasons are much mired in controversy and acrimonious debate, but the upshot is the usual “economists view” argument was found very wanting due to a number of incorrect base assumptions.

Clive Robinson • September 9, 2021 7:34 PM

@ Anders,

They didn’t just analyze the viruses they have found if they can infect humans. They specifically altered them so that they can infect the humans. I understand that part of that research was the goal to create or engineer the virus that can effectively infect humans.

Err no, that is not the intent of “gain of function” experimentation or what it is supposadly for.

But first treat,

1, Geneticaly modified mice.
2, Pathogen editing/mutation.

As entirely seperate and distinct processes, otherwise you will miss major risks.

Any living creature that can be infected by a pathogen can naturaly mutate the pathogen and so change any of it’s major characteristics such as it’s infectivity, virulence etc.

So if I modify a mouse to have some human characteristics not only am I making a chimera, I’m also making it susceptable to pathogens it has no natural immunity to. That is a pathogen that previously mice were never infected by they are now “novel” to, thus easily infected. What happens to any “natural mutations” that might happen in such a mouse? Well you could end up with a new hybrid pathogen that infects both “mice and men” or neither as well as changing the desired human or mice specific characteristics.

Which means that significant extra care needs to be taken when handling such chimeric creatures.

When young I used to keep rodents such as mice and rats. There are proper ways to pick them up. Basically you get the base of their tail between your thumb and fore finger. However it is easy to go a little to far from the base, thus enabling the rodent to curl up and get it’s teeth or fore claws into your insufficiently cautious flesh… Even through “lab gloves”.

It’s even possible for the rodent to bite and draw/infect human blood. To put it simply its a “Natural Hazzard” there is little or nothing you can do.

Clive Robinson • September 10, 2021 3:55 AM

@ Anonymous, Anders,

The guano harvesters.

Yup.

It happend nearly a year before the infections in Wuhan.

Whilst it was a concern at the time, it did not raise enough flags to cause it to be sufficiently investigated. It was thus “assumed” to have be a number of very bad responses to seasonal respiratory diseases, but now a few people are rightly questioning this, which is inconvenient for others.

Which has made it at the very least a “nail sticking up” in the “political narative”, that apparantly can not be banged down. So they are trying to hang a “Move on, Nothing to see” notice on it… But rather than being a “nail sticking up” will it be a “loose thread that unravels”.

So the important questions are “What remains?” that now can be tested or examined… And “How can it be protected?” so that if something is found, it can be verified to stop the “laboratory cross contamination” etc arguments stoping it being properly investigated.

Because at the end of the day we as a species do not want “political naratives” and “conveniant truths” but very real hard facts if we are to survive.

Even though there has been a very tragic, uncountable, and needless loss of life, each one somebodies family member or friend, from this pandemic, politicians created, we have sofar “dodged a bullet” with SARS-CoV-2.

That is something we should be keeping at the forefront of our thinking even though it is “politically inconvenient”, because we may not be as lucky with the next one that is without any doubt waiting “off stage” to come and perform.

But we also need to be mindfull that “sofar” is just a point in time SARS-CoV-2 is by nomeans finished with us. The “dominant mutations” are clearly getting worse, that is they are becoming not just more infectious, their ability to main and kill appears is also getting worse and in younger people. Yet our political policies in the West of the northern hemisphere are positively encoraging the breeding of new dominant mutations…

If SARS-CoV-2 becomes truely endemic we should ask “At what harm to humanity?”. Well we know that it is mutating in a way that is moving down the age scale. Children are now being maimed and are dying, and they are not all suffering from co-morbidities. There is therefore the question as to the effect on the average life expectancy globally, regionally and locally and “Who carries the worst of it?” and “Who benifits from this?”. Likewise “Long COVID” is having a detrimental effect and we currently have no way of knowing what the real longterm effects are. It is now being more frequently argued that long term diseases that are fatal without expensive intervention such as cancers, autoimmune, and dementias are the result of infective pathogens such as viruses.

So there are “uncomfortable truths” out there, and we need to face them whilst we might still be able to effect the outcome.

There are many very hard leasons we need to learn from SARS-CoV-2, and to do that we should not just “look in the mirror”. We should also not be alowing others to hide the required knowledge because it is “politically inconvenient”. Or worse alow others to abuse it for an Orwellian “political narative” conveniant for a favoured few.

Clive Robinson • September 10, 2021 5:02 AM

@ Winter,

Strange. I was under the impression that Anti Money Laundering laws made cash payments over $10,000 impractical to impossible.

Not in the slightest, nor were they ever intended to be either[1].

What the legislation did was remove an old defence from the receiver of ANY single payment above the threshold be it cash or other payment method. As well as place upon the receiver a “Duty of notification” not a “Duty of care” or “Duty of investigation”[2] as it was dressed up to be…

The real purpose of the legislation was to make going after peoples assets way way easier.

A legal friend pointed this out to architects and related professionals at a meeting held by their proffessional body. They gave reasons as to why the legislation would pass and suggested the only solution was for the proffessionals to report EVERY transaction to the authorities automatically as “business policy” and effectively “swamp the authorities out” along with getting a signed indemnity. My friend pointed out that the legislation was a “knee jerk response” and had not been thought out and that of those behind it “Stupid is as Stupid does”.

The predictable result is that governments do not currently have the resources to investigate every report. So their “lets grab the assets” money making scheme can not realistically work against “Serious Organised Crime”[1] and make a profit, but… Reporting every transaction gives the proffessionals actually more legal protection than they previouslt had…

Such legislation is always a “Hot potato game” of “externalising” to the weakest person. The government does it to exterbalise cost, the proffessional responds to externalise risk, and you are left to pick it all up, unless you can find a way to pass it on.

[1] But then it was never intended for that any way unless the alledged crooks were terminally stupid. It was intended as a revenue raising scheme against the “middle classes” and a hammer for reducing legal costs by making the protection of an individuals “rights” to expensive to do (the age old abuse of power known as “rights stripping”).

[2] If you go to a lawyer or other proffessional, tucked into all that paperwork at the very begining is a waiver document where you sign an indemnity. If you don’t sign it, then they “don’t act” for you, but that does not stop them billing you for unspecified work so far carried out… So don’t be surprised if they appear to let it slide untill a very critical point for you, then use that to hold your feet to the fire.

Clive Robinson • September 11, 2021 8:33 AM

@ SpaceLifeForm,

Ban the Ray Tracing

With regards the FaceCrook-Ray Bans hookup[1] to make “Joe 90” style Spy Glasses. Whilst they appear like a neat tech idea, they’ve not realy had any success.

Way back a “life-blogger” who had had support structures surgically implanted to fix their camera system to, was if you remember seriously assulted by a MacDonald’s employee in Paris.

When Google came out with their “Glasses” they were called “G-asses” and those wearing them “Glass-holes”.

Others who have tried VR type systems to overlay on reality (hence AR) have effectively gone bankrupt despite their “cult status” in various communities[2].

Currently “society” appears opposed to having “Mobile CCTV” brought into what they feel should be “Private Spaces”. Even though such people have been the subject of SiFi and I think it was “Snow Crash” where the idea was pushed that such Augmented people would earn a living by being the equivalent of opportunistic “paparazzi”.

Will “social acceptance” come and such spectacles become common? I rather hope not, as most people here will know that like Amazon and the Ring products data being sold to law enforcment, there will always be a very unsavoury behind the scenes with the unscrupulous profiteering off of any person they can[3] in many horrible and frankly Orwellian ways.

[1] https://www.theguardian.com/technology/2021/sep/09/facebook-stories-social-media-firm-launches-ray-ban-smart-glasses

[2] Hackerday call her “hacker of note and dedicated amateur radio operator [Jeri Ellsworth (AI6TK)]” has/had a company (CastAR) making AR headsets that could overlay VR on reality,

https://www.tweaktown.com/news/33434/jeri-ellsworth-talks-castar-vr-and-why-valve-let-her-go/index.html

And it’s all kind of feet up,

https://theamphour.com/394-jeri-ellsworth-and-the-demise-of-castar/

Though I gather she is now doing “Rocket Science”, you just can not keep some people down 😉

[3] Amazon’s Ring is the largest civilian surveillance network,

https://www.theguardian.com/commentisfree/2021/may/18/amazon-ring-largest-civilian-surveillance-network-us

https://www.wired.com/story/ces-2020-amazon-defends-ring-police-partnerships/

Clive Robinson • September 11, 2021 11:25 PM

@ Baldr,

care to illuminate to us how this could happen?

There are actually many answers to “how network traffic can leak one bit at a time”, in part depending on how you interpret it…

So… Take the question at it’s most likely meaning 😉

At the lowest level consider an electrical circuit such as a battery, switch, and bulb.

Each time you turn the switch on the bulb illuminaits thus leaking the information that current is flowing in the wire.

You can replace the bulb with a coil of wire like that found in a relay. Each time the switch is closed the coil creates a large magnetic field, that pulls in the relay arm thus closing the relay contacts. But if you have a compass near by you will see the needle move. So leaking the fact that current is flowing. Just putting the compass next to the wires will cause the needle to deflect (but if it is enough for you to see is another matter).

So at any point in time you can see that the information on if current is “On or Off” (one bit) is leaked.

Nearly two centuries ago this flow or not of current down lengths of cable gave rise to the begining of the telegraph “network”, from which all our current electronic communications networks arose.

But what applies to current also applies to network packets. Each packet that is sent leaks atleast one bit of data (it has been sent). However the time it was sent leaks other bits of data, as does the packet length, and how many packets are sent. Which gives the basis of “Traffic Analysis”. Which alows meta-data about messages to be deduced without having to know the contents of the messages.

Whilst sounding simple, it’s a little bit harder in practice to detect the leaking meta-data, and drawing inferences from it can be problematical[1] but it can be and is done all the time.

[1] Think about it this way, you are standing in the street and see a first floor light come on behind a drawn blind in a house. Obviously some type of switch has been closed, is a reasonable conclusion. But does it mean somebody is in the room or not? Most would assume so but it is not always the case. Now consider the room is the “landing at the top of the stairs”, was the light turned on by somebody up there who wants to go down the stairs, or just move from one room to another? Or maybe they are downstairs wanting to climb the stairs. Of course there may be nobody there at all, it could be caused by “time switches” to make it look like somebody is home when they are not to deter burglars. If you stand there at the same time every day and the light comes on and off at the same time you might start to think it’s a timer… However in all these cases, like “Schrödinger’s cat in the box” you do not know for certain untill you look inside.