How to get a weapon or a bomb onto an airplane

 Diary  2 Responses »
Dec 312008
 
No Gravatar

Security experts do not limit themselves to computers, they look at any complex security system and constantly look for ways it can be broken, then they publish the methods they find – and hopefully somebody else can then make the system better.

The lesson was learned after World War 2 when Turing cracked the ENIGMA machine’s crypto system and proved that keeping your security secret was a bad idea – because anybody can design a system he cannot beat, nobody can design one that a smarter person couldn’t beat. Make the details public, and let everybody try to break it – if nobody can – that is a secure system.

I’m not a professional security expert (as in, I don’t do it for a living, but I am trained in the field) – but I do have that mindset, I look into every system I encounter – trying to see how it could be beaten. Of course, I won’t use what I learn – but following the advice of Bruce Schneier, I do publish it. Schneier (who really is an expert, his books are considered the canonical works on computer security and crypto at universities) has also said that security is a field where talented amateurs rule. Well I hope I fall into the latter category anyway.
The post thus far was to explain my intentions in writing this. I do not want people to take weapons onto planes, I want the people whose job it is to stop them doing so to know the weakness I’ve spotted (of course, being a fairly regular traveler did help).

Now this method won’t let you take a gun onto a plane, but as 9/11 proved when nobody has any weapons – a simple weapon is all you need – and the weapon I could get onto a plane isn’t all that simple either. In fact, airplanes take special care to prevent giving it to you inadvertently (but they haven’t noticed how easy it is to get one on).
It is: a broken bottle.
Airplanes only serve drinks from plastic bottles to prevent the drinks cart from providing people with a potential weapon (or just a dangerous accident in turbulence) but until recently you could just walk onto a plane with a wine or liquor bottle which would be waved through security. When I went to France a few years back, I bought several bottles of genuine champagne in the champagne region, since taking pressurized champagne bottles into a low pressure cargo hold would be… stupid, I took them as hand luggage. These days that won’t work since the liquid rule would stop you taking those bottles through security.
But the liquid rule is meant to stop you bringing fuels for bombs – not bottles, and it’s easy to get around it.

Practically every airport in the world has shops in the departure lounges – on the other side of security. Most of them include liquor stores, you can buy a few bottles of whiskey there and walk onto the plane carrying a weapon that has prevailed in a million barfights – and when nobody else is armed – it’s all you need.

We’re just plain lucky no hijacker has figured that one out yet – but it gets worse, with enough ingenuity and basic knowledge of chemistry, bringing a bomb on board could use the same exploit. Now usually a bomb maker buys professional equipment including long range detonators or timers – so he can give himself the best possible chance of getting out of the way. If, however, your intention is to blow up a plane – chances are you are a suicide bomber – and you don’t really care about safety – just success.

Those same airport liquor stores will sell you alcohol, which by itself is a powerful accellerant. You don’t need a big bomb to blow up a plane, you just need one big enough to rupture the hull (or better yet – burn/blow the windows out) explosive decompression will do the rest.

But diluted alcohol is a very difficult thing to make a bomb with, it’s nice for boosting your braai fire, but it takes skill to make get it in the kind of compressed state where you have a shot at making it explode -and you need a lot of it. Luckily for our would-be plane-bomber right next to the liquor store is usually a beauty store, where you can buy haircare products (most of which contain much better accelerants than liquor) and even a whole collection of things in aerosol cans, we all know that aerosal cans contain flammable gas – heck we’ve all seen movie characters using them with a simple open flame to make a small flame thrower. What we often forget is that they can be much more dangerous than that. One quick and simple bomb, buy a dosen aerosol products, go to the lavatory, put them on a shelf, take one out and use it’s flamethrower capability to heat the others up – chances are they’ll explode within a minute or two. True you’ll trigger the smoke detector but taking down a door takes time – with a few small extra steps – you can ensure the success of your bomb – and that’s without any chemistry. Imagine what a skilled bombmaker could do with the huge selection of chemicals you can buy right in the lounge and walk onto a plane with ? I’m not even a gifted amateur in the field (I always sucked at chemistry) and I could come up with one that should pack enough punch to blow a hole through the hull.

In short, what is the point of having long queues to check us and our luggage for potentially dangerous stuff – if we then sell them to you on the other side to carry-on to your hearts content ? The only tricky bit is getting a source for an open flame – they usually don’t sell detonators in airport shops (at least, not the airports I’ve visited). Making a detonator is not that hard but it’s a tricky business and you will almost certainly need to do it beforehand and somehow disguise it (again quite doable) but it ups the risk and using a nice detonator for a made-on-the-spot bomb seems silly. You generally couldn’t take a cigarette lighter onto a plane, they show up on the metal scanners, but matches do not. I have in the past inadvertently walked onto airplanes with matches in my pocket that nobody ever saw. To make double sure, you could keep a box in your shoes – they are usually so small it’s not even uncomfortable and they won’t get flagged by security.

We tend to think that the way you beat complex security systems (like airport security) is by using complex and unforeseen technologies like carbon-fibre guns. In reality history has shown that this hardly ever happens – carbon-fibre guns do exist, but so far we cannot make carbon-fibre bullets and even when we can, they are hard to find, extremely expensive to buy and very hard to hide (guns have a very distinct shape).

Instead, almost every single hijacking or airplane bombing has not used some unforeseen high-tech weapon, they used low-tech weapons combined with a bit of ingenuity to get them on board – because when nobody else is armed, a simple weapon is all you need. That is the essence of my exploit – a way to get low-tech but powerful weaponry onto a plane by simply utilizing a flaw in the system. After you go through all that enormous security… you can walk into a shop, arm yourself to the teeth and walk onto the plane without ever being checked again.

Share|
 Posted by silentcoder at 5:23 am  Tagged with:

Happy holidays, see you next year.

 Diary  2 Responses »
Dec 232008
 
No Gravatar

Welcome everybody to my last blog of 2008. I am getting on a plane tonight to go see my parents. I am taking a laptop but I will only switch it on for one of two tasks: if I get an emergency call from work, or when I want to chat to Silvia.
I won’t be reading any e-mails not from her. I won’t be on IRC. I won’t be tweeting. I won’t be blogging.
It has been said that a change is as good as a rest, but the counterpoint is often forgotten – there is no rest without a change. It’s been a long and very hectically busy year and I need a time-out. Two weeks of family and relaxation. Movies, music, wine beer and other variations on the theme of holiday cheer.
What I do not need is to be hacking build-scripts or having flame-wars^H^H^H^H^H^H^H^heated debates. What I need is to catch up on my reading (I am really in the mood to re-read snowcrash while I’m up there), sleep late in the mornings and play with my little nephew and niece.

Everything else can wait for two weeks. To quote the great Mr. Pratchett: He had given his life to the watch, it was about time it gave him a week or two, three at the outside.
Well, I have given my life to free software and trying to change the world. It’s about time I took a couple of weeks for myself – I haven’t in way too long.

See you all when I return on the 5th of January.l

Share|
 Posted by silentcoder at 4:04 am  Tagged with: ,

Dear lazy-tired-and-slightly-hungover-web

 Diary  No Responses »
Dec 222008
 
No Gravatar

Please remind me to not go drinking on Sundays ever again…

Share|
 Posted by silentcoder at 2:27 am  Tagged with:

The unofficial Cape Town guide for Tourists

 Diary  2 Responses »
Dec 192008
 
No Gravatar

So it’s that time of the year again, when Cape Town’s population grows by between 100% and 200% as millions of holidaymakers from around the country and indeed the world descend on Africa’s most popular tourist city.
With that in mind I thought I would, as a now ingrained local write a brief guide to the various regions within Cape Town and what to expect to find in each of them.

The snobburbs:
Where: Everything between Greenpoint and Campsbay.
This region includes Cape Town’s most famous beaches (Clifton and Campsbay). It is the playground of the rich and famous. The streets are filled with Ferrari’s and bikinis that cost about the same price. In this area having to tan with a top on would be considered an unacceptable intrusion on civil liberties, taking a dog for a walk on the beach will however get you harassed by the police.

The boerewors curtain:
Where: Everything between the N1 and Durbanville Hills.
The stronghold of Cape Town’s white Afrikaans population where Goodwood sticks out like a sore thumb among names like Ruiterwacht. The area is known for it’s sausages. This is not surprising as there is absolutely nothing else there.

Not-so-great Britain:
Where: Everything South of the N1 outside the CBD.
The English neighbourhoods in the South are the home of Cape Town’s intelligentsia (as opposed to the Pseudo-Intelligentsia who attend theater openings in the CBD but secretly all live in the Snobburbs). Home of the prestigious University of Cape Town on the mountainside and astronomical observatory the streets are filled with partying students and rugby fans (this also being the home of Newlands). It’s probably the only place in South Africa where you can buy a bullet-proof blue-bulls-supporter shirt. The concentric target rings on the back are concerning though…

Dubaiwannabe:
Where: Everything between the Atlantic Ocean and the boerewors curtain
This area (bias: I live here) has been the home of massive development of late and is trying very hard to be the next Dubai. The sea is filled with kitesurfers and practically every visitor wants to buy a home here which is why roughly 80% of the local businesses are realtors. It is probably the only place in the world where after buying a home the original property developers retain the right to tell you what colors you are allowed to paint it and realtors will brag about it as a selling point.

Saltytown:
Where: The CBD, Salt-river and Woodstock.
A primarily Malay area, this is a great region for bargain-hunting (at least if you are furniture shopping and quality doesn’t count to you). Swimming and fishing in the Salt River itself has been temporarily banned because there is no room among all the corpses of dead Chinese gangsters.

Flatland:
Where:: The Cape Flats, pretty much everything east of the Boerewors Curtain.
Unless you are addicted to methathemine don’t go into this area. If you are addicted to methamthemine, you may need to know that the name of the local variant is ‘tik’. Apart from buying drugs or killing drug dealers (a local sport popularized by the oldest club: PAGAD) there is basically no reason to visit this area unless you are politician drumming up votes among this very large voting block. The Afrikaans speaking colored population of the area were once fervent National Party supporters, after Kortbroek Van Schalkwyk sold them out however (since there were pretty much the only people who voted for him) they all started voting for the DA. Their support is so unshakeable that when a local ANC official last year called colored-people “non-persons without rights or heritage” it had zero impact on his votes.

The rest:
Where:Kayelitsha, Gugulethu etc.
As a tourist you will never want to venture anywhere near these areas as you will be confronted by an obscenely large amount of inconvenient poor people who will only upset your restful holiday. The person cleaning your fancy holiday home probably lives around here in a shack made of rusty zinc held together with spit and who wants to be reminded of that ? If you want to see black people while in Africa it’s so much better to go to Greenmarket Square or the sides of any roads near the beaches where you can buy wonderful mass-produced local arts-and-crafts made and sold by foreign refugees.

Share|
 Posted by silentcoder at 2:23 am  Tagged with:

The concept of diversity, a follow up to Jonathan Carter’s reply.

 Diary  4 Responses »
Dec 152008
 
No Gravatar

Jonathan Carter posted a blogged reply to my post Why we need more, not less GNU/Linux distributions. FIrst off, just a note Jonathan, I didn’t actually disable comments on the post, but to prevent spam the blog automatically disables them after ten days.

Now on to Jonathan’s argument, which is the major argument I have heard against my post: more distributions mean duplication of effort. He then goes on to claim my diversity argument is invalid, though he doesn’t back that up with any indication as to why it is invalid. Since I gave real arguments in favor of it, even finding a very valid analogue with a system that has been successful for billions of years and produced hundreds of millions of lifeforms, all of whom are perfectly adapted to their environment and have a perfect balance with the rest of the organisms around them – I would have at least expected a solid piece of evidence that my analogy is flawed.

Since Jonathan didn’t actually give me any reason to believe that diversity doesn’t improve overall quality and allow for the maximum rate of innovation, I will simply ask a few questions: by that logic – why do we have python and PHP ? Neither does anything that Perl didn’t already do – and Perl itself doesn’t do much you couldn’t do in the C-shell if you were sufficiently masochistic. But Python is simply a much better application language than Perl ever was, PHP is a much better web development language, and RoR is even better for some uses. So why develop Ruby-on-Rails in the first place ? For a lot of web-app work it’s far less suitable than PHP, for a lot of others it is a much better language… it’s good that we have both – it means for any given project we can choose the one that is most suitable.

Now let’s look at a brief history of some of the major distributions today. Suse was based on slackware in the beginning, it has very little resemblence to it’s parent today but if slackware hadn’t split off and basically redone Yggdrasil from scratch, Suse would never have existed. RedHat basically started from scratch, so did Debian, and both spawned hundreds of other distributions.

Apparently nobody sees a contradiction in their own words though. It was apparently good for Ubuntu to fork from debian – but it’s not good for anybody to fork from anywhere else in the tree ? If you base your distro on Slackware (like I did) – you cannot end up with something as good as OpenSuse is today (as good at something else I mean)… so how on earth did OpenSuse do it then ?

If you start from RedHat – you cannot get through Mandriva to PCLinuxOS ? Oh, and for the life of me I cannot figure out why LFS and Gentoo even exist ! I mean why would anybody want to build his own GNU/Linux system from scratch ? Or build packages from source ? But it turns out that for a lot of people that is exactly what they want. These are not the same people who use Ubuntu – and no Ubuntu derivative will ever please the kind of user who prefers to build from source. So what if they are not the majority ? The point about GNU/Linux is that you don’t need to be the majority to get what you want !

So where does Kongoni fit in ? Well Kongoni is being built to be a very close cousin of the BSD systems, but on a GNU/Linux base. Hence it made sense to use slackware as a parent, since slackware is the most BSD-Linux distro out there (erm… when did people get the idea I’m building from nothing… I never suggested that, ever distro is ultimately a compilcation of other work, it’s how you compile it that makes it unique… like mix-tapes I guess). But I wanted to add the single nicest thing about the BSD systems that isn’t in slackware – ports.

That there are people who like ports is clear from the massive userbase of gentoo/funtoo. That there are people who like the BSD systems, and think they can make decent desktops is clear from the recent proliferation of BSD-based desktop distributions (PC-BSD and it’s ilk).
Everyone of these systems are trying to marry the best of one tree of thinking, with the best of an entirely different one – to produce something unique, that will appeal to a certain subset of the users from both.

I completely disagree that there are very few use-cases which cannot be met by an Ubuntu/Debian derivative – I say that it is virtually impossible for such a system to even reach the kind of use-cases I am talking about, and like it or not it is from those systems with those users that the great innovations in the GNU/Linux world has consistently come. We have Udev today because Richard Gooch created devfs (why reinvent the /dev filesystem.. why reinvent it yet again a year later ?) – and Richard uses an LFS based system – to name just one example.

This is not some idle statement, it’s a basic logical consequence: these systems attract the most competent programmers as users, people who like to tweak and modify their systems down to the very lowest levels, and if you aren’t a person like that, you are never going to innovate anything at that level.

Sorry, Mac-killer desktops isn’t enough – it’s good, and those desktops are likely to come from places like OpenSuse, PCLOS and Ubuntu because they are what is needed by their userbase, but they would be useless without equally impressive innovation happening at every level of the system form the kernel upwards.

If that means a bit of duplicated effort, so be it. That’s the price you pay for allowing every niche to to be filled, ever need to be met, ever idea to be explored – and I think it’s a far smaller price than people like Jonathan think. Now don’t get me wrong, I fully understand his sentiment, as a programmer myself I feel horrified whenever I think of the idea of anything inefficient. I get annoyed by badly timed traffic lights, and I get thoroughly pissed at bureaucracy. I started out feeling much like Jonathan does now, but over many years of observation I came to the conclusion that this is not a matter of inefficiency at all, it’s a matter of diversification and specialization.

When you look at what has been achieved through this process in it’s roughly 25 years, well it’s absolutely amazing isn’t it ? That’s not inefficiency, at all – that’s the worlds smartest ever allocation of resources, it looks inefficient over the short term – but over the medium to long term it achieves what would otherwise be impossible.

This is like suggesting that if there was some specialist gearbox company that supplied all car-makers we’d have one perfect gearbox, and how much better would it be if there was just one car-maker with various models right ? After all, Audi has nothing that makes it more suitable for certain people than Mercedes has (for the same market segment) does it… so why are both companies rich then ? Do you really think a world like that would have had tiptronic gearboxes and permanent-four-wheel drive ? Sure most of us don’t need it, but it’s something we all would love to have, and because of diversity it will ultimately be in every car. Car companies of course are not FOSS, and ideas cannot spread until their patents expire, so the process is slow – FOSS takes it to a level unmatched by any industry because we can take our tiptronic gearboxes and put them everywhere they make sense the day after they are invented.

Oddly, us GNU/Linux people are strange sometimes – on one side we promote our systems for giving user’s choice, and letting the market expand beyond single providers, with the other hand we complain about those other providers stealing some of the thunder from our favorites. We tell people choice is good, then we go and tell one another that people will never use our stuff if we don’t take away the choices ! Apparently Jonathan (who loves to catch me saying apparently contradictory things by taking single sentences out of context) doesn’t realize that he himself as a proponent of software choice, is contradicting himself when he tries to stifle projects that want to expand the choices.

I want to end off by blowing the favorite quote of those who disagree with us more-choice proponents out of the water. They always tell us “do not reinvent the wheel”… I’m sorry, would you like your car to run on two sawn-down trees ? Because that was the “wheel” – somebody reinvented it by adding spokes, somebody reinvented it by adding tires and air, since then it’s be reinvented a thousand times over to produce wheels designed for snow, or sand, or roads, wheels for formula1 tracks and wheels for bycicles… what duplication of effort that they aren’t all the same wheel, and don’t get me started on tanks… now they really reinvented the entire idea of the wheel. Who would ever want caterpillar tracks on a car ? Oh but hold on, car’s cannot go where tanks and cranes go… that reinvented wheel is useful for a small minority, but thank goodness we live in a world where that doesn’t mean they don’t get made.

These things don’t look to us like reinventions since we see it all in the right-now (not to mention the phrase was coined when very few of these reinventions existed) – to us they are all just “the wheel” – a round thing to make moving heavy objects easier. Well new GNU/Linux distribution don’t (often) replace GNU or Linux… they just put them together a little differently, they don’t (often) “reinvent the wheel” – they customize it for different roads. Ubuntu is a formula-one tire, a very good one (perhaps the best one) but if you are trying to build a tractor-tyre, a formula-one tyre would be a very stupid starting point – so no, the only use-cases for which Ubuntu is a good starting point is specialized subsets of it’s own market. Other non-technical desktop users – it will never be a good starting point for people who like BSD features (which are really good – at other things).

And just occasionally, we have to make a wheel that isn’t even a wheel anymore, like the caterpillar tracks, those Linux systems on cellphones and routers that don’t even contain GNU but use only custom-built versions of busybox ? They are somewhat like this, they really aren’t suitable for well almost anything – but where they do work, nothing else could have done the job. Heck busybox itself is about as big a duplication of effort as you can get, it’s a less-powerful single-app-with-symlinks replacement for most of the low-level GNU-toolset… but for tiny systems where space is crucial – it’s actually a godsend.

We need to realize that the single best thing GNU/Linux can offer on the desktop is a system as diverse as the personalities and needs of it’s users. There isn’t, and never can-be, a one-size-fits-all operating system, Windows have tried and failed to do one for years, GNU/Linux however could change this – by creating a custom-tailoring business around operating systems. It’s an adjustment for users, it may slow down adoption a little – but over the medium to long term, it will be the best thing that has ever happened to the computing industry, a revolution that will make the Internet pale by comparison.

I think that trying to stop this process because we are afraid of a bit of extra work, because we fear it will be duplication of effort would be incredibly stupid. I hear the arguments people raise, and the answer to them, the compromise if you will, is to keep channels of communication between developers open – and to improve them. So that within the various structures, we don’t recreate things that already exist (I mean at the small scale) – we just put them together in a billion different ways. It would be duplication of effort if we each used our own building blocks – but that’s not what we’re seeing, what we are seeing is lego-pieces being used to build everything from the Eiffel Tower to the planet Mars…

Share|
 Posted by silentcoder at 3:12 am  Tagged with:

Two old men. Uwe Thiem’s last work of fiction.

 Diary  No Responses »
Dec 122008
 
No Gravatar

Just one week before his untimely death, Uwe mailed me a copy of a short story he had written entitled “Two old men”, asking me to read it for him and provide constructive critique and editing. It was, as I had told him at the time, a wonderful story – a story that truly understood the difficulties of people who had lived through the liberation struggles in Africa on both sides of them, and are trying to come to terms with the world of today where they have to live together and learn to overcome those old ideas to build a better place for their children.

Uwe was writing from his deepseated love for his adopted continent and country and it spoke to me from every word. Uwe also told me that it was intended to be the first of a series of stories that would follow his two old men on their journey. Unfortunately, he never had a chance to write part two. For six months I kept my copy safe, wondering what to do with it. I knew he wanted to publish it, but I also know it was not the final draft yet and that Uwe was not entirely satisfied with it yet.

Finally, in the past week, I spoke to Joris Komen about it. He had also been a close friend of Uwe’s and after some discussion we agreed that I should publish it. Even if it’s just on this blog. Perhaps somebody will read it and do it the honor it deserves, to be more formally published in a collection or a magazine, perhaps not – but at least some people will get to read it. I highly recommend it, I generally scorn pretty much any writing about African politics for being shallow and missing without exception at least half the picture on whatever it is about – in that pile of muck, Uwe’s last story is a shining diamond and I hope that my publishing it here will get it at least a bit of the recognition it so richly deserves.

So without further ado, here is a link to the story in PDF format.

Share|
 Posted by silentcoder at 5:18 pm  Tagged with:

The many faces of disturbed

 Diary  2 Responses »
Dec 112008
 
No Gravatar

Now anybody who follows this blog, or my last.fm playlists knows by now that disturbed is my favorite band. Ten years on and still making really great music. What I love so much about this band is that their songs deal with real feelings and real issues. But they are not emo or blues either. This is not music where people cry about what’s wrong with the word, it’s music where people get angry about it.
In this case, anger is a much more useful emotion – angry people get things done, fix things, sad and depressed people just mope about annoying everyone else.
One particular point to me is though that during their long career (for rock musicians anyway) this band with it’s multireligious mixup (four members, each from a different religion) have dealt with virtually every issue they sang about from more than one point of view, they truly do try to see every side of an issue – a noble quality which we should all aspire to in our lives and a particularly rare one for musicians, especially today in an age where most songs are about nothing more important than what designer created the singer’s revealing outfit.

So this post will be an attempt to show some of that openmindedness, by quoting a number of lines from various disturbed songs, pairs of quotes will follow one another showing their apparent contradiction as different songs approach the same issue from different angles.

About male/female equality:
Come a little closer my pretentious whore / I’m reeling with a feeling that I can’t ignore - From Meaning of life
…reaching out so that I can empower you / for all eternity / it seems to ease my mind / to know that you’ve brought meaning to my life - From Devour

About suicide
End your life with me / there’s another way / Release your life / take your place inside the fire with her - From Inside the fire
In a world that I don’t wanna know / with a message that I never wanna send / to be freed from all of this / I need you to quicken my end – From Criminal

About war and violence
Your people, enemy / My people’s hated enemy / My actions, enemy / Make me your greatest enemy - From Conflict
This is the world we live in / And these are the hands we’re given / Use them and let’s start trying /To make it a place worth living in - From Land of confusion

About conformity
To change myself, I’d rather die / Though they will not understand – From I’m Alive
I command you to rise / Wash away / The decay of your life – From Rise

About religion
Waiting / for your modern mesaiah / to take away all the hatred / and darkness that lie in your eyes – From Liberate
Recognize / Faces of the crucified / I can hear their screams tonight / Ever haunting me - From Believe

About sex
I want your power glowing, juicy flowing, red hot, meaning of life / It’s not enough to have a little taste / I want the whole damn thing now - From meaning of life
Pleasure fused with pain this triumph of the soul / will make you shiver tonight - From Ten Thousand Fists

About love
I’m not ready to die, girl / Because of what you don’t tell me / I’m not willing to compromise the man I want to be – From Bound
Show me the reason to make you mine / I will devour you / Take all the pain away – From Devour.

I could probably come up with a dozen more but I think I made my point and it takes a long time to research these and find just the write lines from the right song to make the point best with, so I should probably stop now and do some work for a change.

Share|
 Posted by silentcoder at 4:25 am  Tagged with:

Christmas party madness

 Diary  4 Responses »
Dec 102008
 
No Gravatar

Time for a bit more of a relaxed post. Last Friday was our company Christmas party, the theme was pirates – of course I had to find an original twist on that concept. Here’s what me and Wife->SilentCoder came up with… do you think I achieved my goal ?


Our Christmas party costume

Share|
 Posted by silentcoder at 2:24 am  Tagged with:
 Older Entries

Socialist Libertarian

FSF

© 2012 The Blog From Hell Suffusion theme by Sayontan Sinha