So I got it from Netflix. It's the 1979 version with Ian McKellan. Bad idea. No sets, no scenery, just a dark black stage. No costumes. The actors recite Shakespeare's verses in a sing song tone, no life, no warmth. Ian McKellan's black hair is all slicked down with Brylcreem. That greasy kid stuff. And it's all dark, just the actor's faces show in the darkness. No tartans. I mean what's Macbeth without at least a tartan scarf? The three witches don't even have a kettle simmering over a fire.
There must be better Shakespeare than this one.
This blog posts about aviation, automobiles, electronics, programming, politics and such other subjects as catch my interest. The blog is based in northern New Hampshire, USA
Friday, March 23, 2012
Thursday, March 22, 2012
Harden the electric power grid against hackers
NHPR did a long piece this morning. They talked about regulation, deregulation, and who was in favor of more regulation. Not once did they talk about what to do about vulnerabilities.
What to do is straight forward. Do not use the public internet to monitor or control generators, circuit breakers or other equipment. And do not use Windows computers for any of the same purposes.
Back when we were selling data acquisition equipment to the electric generating industry, I saw a remote controled generator. A big gas turbine unit was humming happily away. They had an ordinary desktop computer running a remote control program. The computer monitor showed an image of the turbine, a little arrow showed it was turning, instrument readings for oil temp, oil pressure, exhaust gas temp, rpm, amps, volts, engine pressure ratio, and more. It was about 10:30 AM, and the power station man sat down at the remote control and ordered the generator to shut down. It was a peaking plant, only run for the morning and evening power peaks, and 10:30 was the end of the morning peak period. A few key clicks, and the big turbine obediently shut down, we could see the RPM and EGT winding down on the display.
The turbine was l0cated a couple of miles away. The controller sent little messages (Start Up, Shut Down) over the internet. A computer at the remote generator listened to the internet and acted upon orders coming in from the net.
All an enemy hacker needs do, is learn the addresses and the codes used and send his own commands to the turbine. If the computer at the turbine is a Windows machine he can load his own code into it and really go to town. First step of such an invasive program is to reject all messages from it's proper owner, and only accept commands from the hacker.
The fix is simple. Connect the remote computer to the control center with a pair of your own wires, hung on your own poles, by your own people. Then the command link is secure against any sort of Internet attack. To gain control the hacker has to climb a pole and splice in a tap. Hackers are swivel chair people, they don't climb poles.
As for Windows, we all know how vulnerable Windows is to anything. The famous Stuxnet program that did great damage to the Iranian nuclear program spread via Windows "autorun" feature. Windows has so many security holes that it's beyond fixing. Computers running Linux, Unix, MAC OS, anything, can be made secure. Windows is so bad that it is beyond hope.
What to do is straight forward. Do not use the public internet to monitor or control generators, circuit breakers or other equipment. And do not use Windows computers for any of the same purposes.
Back when we were selling data acquisition equipment to the electric generating industry, I saw a remote controled generator. A big gas turbine unit was humming happily away. They had an ordinary desktop computer running a remote control program. The computer monitor showed an image of the turbine, a little arrow showed it was turning, instrument readings for oil temp, oil pressure, exhaust gas temp, rpm, amps, volts, engine pressure ratio, and more. It was about 10:30 AM, and the power station man sat down at the remote control and ordered the generator to shut down. It was a peaking plant, only run for the morning and evening power peaks, and 10:30 was the end of the morning peak period. A few key clicks, and the big turbine obediently shut down, we could see the RPM and EGT winding down on the display.
The turbine was l0cated a couple of miles away. The controller sent little messages (Start Up, Shut Down) over the internet. A computer at the remote generator listened to the internet and acted upon orders coming in from the net.
All an enemy hacker needs do, is learn the addresses and the codes used and send his own commands to the turbine. If the computer at the turbine is a Windows machine he can load his own code into it and really go to town. First step of such an invasive program is to reject all messages from it's proper owner, and only accept commands from the hacker.
The fix is simple. Connect the remote computer to the control center with a pair of your own wires, hung on your own poles, by your own people. Then the command link is secure against any sort of Internet attack. To gain control the hacker has to climb a pole and splice in a tap. Hackers are swivel chair people, they don't climb poles.
As for Windows, we all know how vulnerable Windows is to anything. The famous Stuxnet program that did great damage to the Iranian nuclear program spread via Windows "autorun" feature. Windows has so many security holes that it's beyond fixing. Computers running Linux, Unix, MAC OS, anything, can be made secure. Windows is so bad that it is beyond hope.
Tuesday, March 20, 2012
Israelis think an air strike will work
As in Israeli Air Force strikes Iranian nuclear sites. Blomberg News reporter Jeffrey Goldberg has a piece here. He spent some time in Israel, talking to Israeli officials. They talked about a favorable reaction inside Iran, a strengthening of the Iranian internal opposition, and the Iranians not immediately declaring war on Israel. And setting back the Iranian A-bomb project by 5 years. Goldberg writes mostly about the political angles to such a strike.
A weakness of the Goldberg piece is lack of objective data, such as how many nuclear sites do the Iranian's have? And how deeply are they buried? Are they buried under loose desert sand or under hard granite? Can Israeli deep penetration bombs go that deep? Do the Israeli's have enough planes to strike ALL the sites on the same night? Or would they have to fly multiple strikes on successive nights? Do Israel's aircraft have the range to fly the mission round trip, or will they need aerial tanker support? How many tankers do the Israeli's have? In short, would an Israeli air strike actually hurt the Iranian A-bomb project, or would it merely give the Iranians an expensive fireworks display?
And then there is disinformation. Was I running Israel, I'd tell my people to keep the Iranians worried about an air strike, just to make life harder for them. And to encourage Israelis who are under terrible pressure of events and could use a little hope.
A weakness of the Goldberg piece is lack of objective data, such as how many nuclear sites do the Iranian's have? And how deeply are they buried? Are they buried under loose desert sand or under hard granite? Can Israeli deep penetration bombs go that deep? Do the Israeli's have enough planes to strike ALL the sites on the same night? Or would they have to fly multiple strikes on successive nights? Do Israel's aircraft have the range to fly the mission round trip, or will they need aerial tanker support? How many tankers do the Israeli's have? In short, would an Israeli air strike actually hurt the Iranian A-bomb project, or would it merely give the Iranians an expensive fireworks display?
And then there is disinformation. Was I running Israel, I'd tell my people to keep the Iranians worried about an air strike, just to make life harder for them. And to encourage Israelis who are under terrible pressure of events and could use a little hope.
Monday, March 19, 2012
Romney wins Puerto Rico
To bad Puerto Rico doesn't have any electoral votes, yet. According to CNN, Romney won by 83%, the best landslide ever.
I hear Puerto Rico has a referencedum on statehood coming up. I wonder how that is going to come out? Used to be, the Puerto Ricans liked the deal they have, no Congressional representation but no US income tax. Has that changed? I haven't seen anything about it in our hard working news media.
I hear Puerto Rico has a referencedum on statehood coming up. I wonder how that is going to come out? Used to be, the Puerto Ricans liked the deal they have, no Congressional representation but no US income tax. Has that changed? I haven't seen anything about it in our hard working news media.
Sunday, March 18, 2012
Spring It's Grill Day
It's up to 76 degrees. Sun is out, no wind. I rolled the Weber out of the garage and onto the deck. A steak is about to marinate on the kitchen table. Summer cannot be far away.
Saturday, March 17, 2012
The Sea Wolves 1980
Great flick (Netflix) It has Gregory Peck, David Niven and Roger Moore. It's WWII in British India. They are all British, and very proper, at least in polite company, the gentleman's club in Calcutta. They all are recruited for a cutting out expedition against a German ship anchored in neutral Goa. There is some really funny work with Roger Moore attempting to seduce a beautiful enemy agent while she is attempting to seduce him. And, proper or not, the British can be ruthless in action. German captives who make just one wrong move get tommy gunned immediately. No "Put your hands up" No "Stop or I'll shoot", just Brrap and blood all over the walls. Both Peck and Niven have great roles, and play them well.
No redeeming social values here, but a good action movie.
No redeeming social values here, but a good action movie.
Friday, March 16, 2012
How to rein in Rogue Prosecutors
According to Nancy Gertner (former judge and present Harvard Law professor) and Barry Scheck (co-director of the Innocense Project), all that is necessary is for the judge to hold a pretrial meeting with the prosecutors and order them to be good. And, absent this meeting, rogue prosecutors cannot themselves be prosecuted.
Apparently "rogue" prosecution is not actually against the law. It only becomes a crime if and when a judge says it is. If the judge fails to call it, anything goes.
Wow. If only life were so simple. Just hold a meeting and the problem goes away. Yeah, Right.
So what is "rogue" prosecution? Two things, failure to give the defense attorney evidence that might let the defendant off. And giving false evidence at trial. Such as the gun or the grass planted on the defendant by cops, or intimidating the defense witnesses.
The way to deal with either kind is simple, hang the prosecutor out to dry. Not meetings or ruling, let's have a little punishment. Say ten years in slam. Repeat as needed, say once a year. Name some names. I notice the furor over the Ted Stevens prosecution, which doubtless prompted this WSJ op-ed, doesn't name any names. That might actually hurt some one's career.
And, no more of this "It's legal til the judge says it ain't" stuff. The law is written down in statute books, and applies all the time. If it isn't written down, it ain't law.
Apparently "rogue" prosecution is not actually against the law. It only becomes a crime if and when a judge says it is. If the judge fails to call it, anything goes.
Wow. If only life were so simple. Just hold a meeting and the problem goes away. Yeah, Right.
So what is "rogue" prosecution? Two things, failure to give the defense attorney evidence that might let the defendant off. And giving false evidence at trial. Such as the gun or the grass planted on the defendant by cops, or intimidating the defense witnesses.
The way to deal with either kind is simple, hang the prosecutor out to dry. Not meetings or ruling, let's have a little punishment. Say ten years in slam. Repeat as needed, say once a year. Name some names. I notice the furor over the Ted Stevens prosecution, which doubtless prompted this WSJ op-ed, doesn't name any names. That might actually hurt some one's career.
And, no more of this "It's legal til the judge says it ain't" stuff. The law is written down in statute books, and applies all the time. If it isn't written down, it ain't law.
Subscribe to:
Posts (Atom)