Huh? I don't think you read the same article as the rest of us. Your "interpretation" of the goals of Free software couldn't be more obtuse and wrong.

NSA attack is believed to be on random number generator

The NSA does not want EVERYONE to be able to defeat encryption, or all foreign countries get to read US government and corporate comms. If every kid with 4 Radeon 6990s on a board can brute-force encryption used by banks, guess what happens to online banking and sales?

A secret register storing encryption keys would be forever etched in silicon, waiting to be found by the MSS, the FSB, or even some kid noticing odd behavior in an unusual binary he wrote. Thus, it is believed that the NSA may have instead compromised Intel's random number generator, so as to generate a weaker set of random numbers that could be predicted with the computational resources available to the NSA, but not otherwise. This would be in line with known NSA hacks on encryption embedded in some commercial application suites that work by making part of the key fixed and known, so as to reduce the keyspace to something the NSA believes nobody else can brute-force but which they can.

Linux kernel developers refused the "advice" of Intel to simply map /dev/random to the hardware "random" number generator and are now damned glad they did. Instead, they chose to take the output of the legacy software random number generator and Xor it with the output of Intel's. Since predicting the output of Xor requires knowing both inputs, the result is a random number generator more secure against adversaries other than the NSA and at least as secure against the NSA. If the NSA has anything more than this, they are not about to risk blowing Intel out of the water over the location of an ALF/ELF fugitive, much less over that warrant for your refusal to show up in court for an "underage" drinking case. The existance of Intel is worth too much to them.

When you refuse to decrypt your laptop for TSA thugs, they will probably attempt a dictionary attack at most. If they return the machine, throw it out if it has been out of your sight, as TSA or Secret Service would gladly admit in court to flashing a new BIOS in a single machine under these conditions.

Wow, that was a really good read. Kudos. +1

Non-electronic tracking is too manpower intensive for bulk use.

It's one thing to be flagged, quite another to be effectively tracked. As a high-profile activist I would be "flagged" anyway and thus have zero concern for being flagged for blocking trackers or not being on Facebook. Employment discrimination is growing against people who are not on Facebook, but if you look like me and won't do drug testing you have bigger discrimination problems to deal with anyway, probably from the same slavemasters.

There are not enough cops to put a tail on every person or even every activist who is not on Facebook, not on Google, and not carrying a phone. The NSA does flag all Tor users, but has admitted that they can't de-anonymize all or most Tor users. It took them 8 months to use oldschool Windows malware to go around Tor and find the authors of Inspire. That means they do NOT have a way to bypass Tor in bulk and have not cracked it. They don't have 8 months to use on every Tor user telling his high school principal to fuck off with the "mix-gender couples only" prom rules. As a result, most NSA Tor monitoring is copying stuff they can neither read nor track to disk,.

Let's look at not packing a cellphone. No alarm goes off when you walk by a cop without one, and if you are arrested without one you don't get an addtional charge. Now let's look at the manpower requirements to track you, If you carry an operating phone you are a tiny part of the load on one workstation tracking many users. Example: all Occupy Wall Street phones were tracked in realtime by GPS. On the other hand, to tail an experienced operator in the street can require 12 cops in six cars per shift, per person. It is even harder against people changing modes of transit: car to bike, bus to train, etc. Bikes are especially hard to track without getting caught, meaning they get only random sightings.

In 2004 during the runup to the GOP Convention, the NYPD claimed to be tracking 56 anarchists in DC in realtime, saying they sent a busload of cops to DC for this purpose. I was at the top of the alleged list, mentioned by name on Nightline. I was able to prove they either were lying or incompetent with sime simple surveillance detection runs by car, into areas that were dark and empty with many exits, Nobody followed, and nobody was waiting at any of the ways out. Some of the claims that you cannot stop them from tracking you are nothing but FUD.

Malicious network card a proven mode of attack.

Now to address point 2:

You may have heard of the "Bus Pirate," a very useful PCI device that can rescue a motherboard with a corrupted BIOS, a BIOS that won't recognize your CPU, or a malicious BIOS that might simulate a reflash. It becomes bus master, as all DMA capable PCI devices can do, the uses the bus to reflash the BIOS. Recent revelations of NSA intercepting computers shipped to known targets for a BIOS reflash are likely to make the bus pirate a very popular device, as it's the only trusted way to save such a board.

Well, a PCI network card is also a PCI or PCI-e device, and has a microprocessor capable of running general purpose code, just like the bus pirate. Unlike the bus pirate, it is connected to something you cannot trust: the network, There is this proof of concept for using the network card as a remote attack vector:



In this proof of concept both writing to main memory and rewriting the card firmware are mentioned. From this it would be a short hop to that rewritten firmware using the card as a remotely controlled "Bus Pirate." You've already got the ability to read system memory and presumably the entire filesystewm, so lshw tells you the exact make and model of the motherboard. Here is another proof of concept for a malicious BIOS based on Coreboot and Seabios-one which backs itself up to network card and DVD player firmware as well:



This sort of thing is why I am running a USB wifi adapter to connect to a wifi router connected to the Internet: it's much harder to gain control over the chipset by USB than by PCI-E. This kind of attack seems to be exceptionally rare, but since I already have the USB device, I use it as a way to get extra protection for free. Think of the network as an unknown but desirable sex partner, the PCI bus as your bloodstream-and that USB interface as a condom.

I have yet to hear of any intelligence agency abroad blowing the whistle on NSA hacks to hardware, we know their current preference is to intercept machines in shipment to install a malicious BIOS locally. That speaks to limited ability on their part of install a new BIOS by remote attack. The use on their part of radar retro-reflectors added to VGA cables also speaks to limited ability on their part to read content from an unmodified computer. A lot of this comes down to physical security of your machine, and closing all attack vectors you are aware of and have the ability to close.

Phoronix biased towards llvm and invalid benchmarks

I wonder if you have read:

You're no better than him at this point actually.

BSD: Does not force software freedom (open source)
GPL: Forces software freedom (open source)

Just because it doesn't force something, it doesn't mean that it is against it.

Ah, nice catch, thanks. I always wondered why Scimark gave strange results. Sad to see them accuse Phoronix of foul play, they should post such accusations here where they could be confirmed or refuted. After all, the benchmark results are reproducible. BTW, please reduce the trolling factor in your posts. There is no need for it if you have substance in the posting.

The messages in that link quickly escalated to a nice little cat fight and I stopped reading. Are they really grown men/women?

That's what happens to Linux supporters whenever GPL v BSD, KDE v Gnome, or the Best Distro fights start. They're incapable of having an actual discussion.

And people wonder why our politicians do the same thing: Monkey see, monkey do. US Federal debt is $14.5 Trillion. US Household debt is $14.5 Trillion. Monkey see, monkey do.

Its really that simple: People are idiots who lash out whenever their preconceived notions are in danger, rather then having an honest intellectual debate.