kallistixf: A golden apple with Kallisti written on it in Greek (Default)
In the aftermath of my events on Sept. 11, 2011, I feel violated, humiliated and sure that I was taken from the plane simply because of my appearance. Though I never left my seat, spoke to anyone on the flight or tinkered with any “suspicious” device, I was forced into a situation where I was stripped of my freedom and liberty that so many of my fellow Americans purport are the foundations of this country and should be protected at any cost….

This country has operated for the last 10 years through fear. We’ve been a country at war and going bankrupt for much of this time. What is the next step?

-- Shoshana Hebshi, Some real Shock and Awe: Racially profiled and cuffed in Detroit, Tales from the Heartland

The F-16 fighters that had shadowed the plane before it landed in Detroit and the SWAT team that dragged Shoshanna and her two Indian seatmates from their seats was responding to the crew's report that … somebody had been spending too long in the bathroom. On the same day, F-16s also scrambled for another flight where … three people made repeated trips to the bathroom. WTF?
Following a catastrophic national event, such as 9/11 in the United States, conditions are anything but ordinary. The people are traumatized, they long for someone to make them feel secure, and an ancient paranoia switch is once again waiting to snap on. Under these conditions, fear mongers thrive. Their characteristics are so hand in glove with the trauma reaction of the population that their identifying behaviors are scarcely "seen" at all. In short, after we have been thoroughly traumatized, we cannot see the devil.

-- Martha Stout, The Paranoia Switch

The fear brokers continue to rule in DC, with the TSA ratcheting up the oppression and Obama breaking his campaign promises and pushing through a PATRIOT Act extension without any additional protections. Economic fears are in overdrive as well, with so many people living close to the edge, scared of their job disappearing, or working ridiculous hours just to almost make ends meet. It's depressing even to write about it.

But fear only works so long. Jane Jacobs used to tell a story about community organizing and trying to collect signatures in Manhattan at the height of Mcarthyism in the 50s. Day afer day, everybody was scared to sign -- and who could blame them? And then one day … people started signing.

Starting late last year enough people in Tunisia got to the point where they were so done with living in fear that they put their lives on the line day after day until things changed. Which kicked off Arab Spring kicked off, with people in Bahrain, Egypt, Libya, and Syria also risking torture and death. Now there are huge demonstrations in Spain, Greece, and Israel. At some point, people collectively say "enough is enough".
This Saturday, September 17th, concerned European citizens with the Freedom not Fear movement have decided to take their protest to the capital of the European Union, Brussels. Their slogan: Stop the surveillance mania

-- Katitza Rodriguez, Freedom Not Fear: Ending A Decade Long Legacy of International Privacy Erosion, EFF's Deep Links

Back in 2009, I was on a panel at CFP where Ralf Bendrath talked about the first years of Freedom not Fear. I coveredGet FISA Right and Join the Impact, Gaurav Mishra discussed Vote Report India, and moderator Nancy Scola led us in a debate about whether social networks were more likely to be a tool for liberation -- or for repression. I was optimistic, and it seems to me that events since then have largely justified that optimism.

Of course it's the people who make the difference, and social network sites are only one of many tools they use. But as tools go, they're mighty powerful -- especially combined with the kind of local and national organizing Shahid Buttar of Bill of Rights Defense Committee describes in Restoring the Fourth Amendment: How We the People can Win Over Washington.

So while the fear brokers still seem in control in DC, I think we're in the middle of a shift. At the height of February's unexpected resistance, the PATRIOT Act was the hottest topic on blogs and Twitter. Even the Wall Street Journal is against e-Verify, the latest incarnation of a National ID Card. And the TSA's continued overreach and incompetence is sparking more and more anger across the political spectrum.

By the time Constitution Day 2012 rolls around, I expect we'll see a lot more people choosing freedom over fear here in the US as well.

Why not start today?

Happy Constitution Day!


Date: 2012-03-17 04:45 am (UTC)From: (Anonymous)
I think everyone fears being alone. I mean, eliecpasly if one stays in a relationship for a long time, they fear that they've become too old and can't find another spouse and might not be able to for the duration of their lives. It could also be out of habit. I know a couple who refuses to break up even though their dying to out of habit. They pardon the other because it's been pestering them for so long they just ignore it. There are probably many more reasons other that loneliness.


Date: 2012-06-09 09:10 am (UTC)From: (Anonymous)
Hey there,Just do the following:1. Go to Account -> Account Settings2. Click on Account Security.3. Scroll down and end all unnokwn activities.This logs you out at the mentioned locations!


Date: 2012-08-22 07:33 pm (UTC)From: (Anonymous)
Mike August 22nd, 20113:11 pm@LukeWFrom a UX perspective, these are all iirntesteng and more user-friendly approaches to traditional login forms. However, some of the examples you list make TERRIBLE security decisions in order to achieve this simplified user experience. Bagcheck & Gowalla are the worst in this regard—they're just begging to be brute force hacked. Here's why:First, both sites tell you if the user you've entered is a valid user. Heck, Bagcheck even SUGGESTS users for you. Strike 1!But a public user name (or real name) is public whether or not there is an auto-suggest feature , you say. The auto-suggest just makes it easier to log in. Sure, and it makes it even easier for others to find out your username since it's all nice and AJAXified (no trial-and-error necessary). With one look at the network inspector, I now have the URL to get your user ID (or whomever's I want): (urls stripped by comment system)Second, both allow a seemingly unlimited number of invalid password attempts without any ReCaptcha or lockout. C'mon, this is web security 101. Strike 2!Finally, both password entry pages are accessible via a simple GET request with the user ID as a query parameter. Strike 3!Bagcheck: (urls stripped by comment system)Gowalla: (urls stripped by comment system)Guess how long it would take someone to write a simple Perl script that takes a list of randomly-generated user IDs and hits the above URLs with a set of common passwords?These issues can be resolved very simply without throwing away your trendy new login flow:(a) Show a ReCaptcha form after X number of failed password attempts(b) Make the password entry page a POST, not a GET request. Ironically, this comes straight from the W3C and your former employer's own security best practices document: developer dot yahoo dot com slash securityI apologize if I came off a bit harsh, but I cannot let insecure practices like these be lauded and spread without educating others about their risks. I hope you understand the severity of these risks and take the necessary steps to protect your users while maintaining your desired UX.Cheers


Date: 2012-08-22 10:06 pm (UTC)From: (Anonymous)
I've been trying for days to pay my bill but canont get in to. Ive been paying online for years and have never had to remember a log-in . Tryed a bunch that might have been. My password doesn't help be cause I have to have a Log-in word first. It is extremely frustrating. I might not be able to find my way back here again. I called a phone no a while ago and after a long list of options no one was there. I don't have a computer at work so I pay my bills at night. Hope I don't come home to a dark house just because paying my bill is so ipossible.


Date: 2012-11-07 09:40 am (UTC)From: (Anonymous)
I have a feeling that I am going to be mgiarting elsewhere and deleting my LiveJournal. I've stuck with LJ through a lot but this last move shows a truly epic level of bad judgement, and even if they fix the privacy issue of crossposted comments, I fear they will do the something similarly boneheaded in the future... and I don't want any of my old friendslocked entries to become fair game while I'm not looking.Rather sad about it.


Date: 2013-02-06 11:19 pm (UTC)From: (Anonymous)
Note that what actually hppeaned is a far cry from "bought Twitter". They have enough money to buy Twitter, depending on the price Twitter asks. That doesn't mean the deal is a fait accompli.Google could buy Twitter. Microsoft could buy Twitter. Oracle could buy Twitter. Google was in . But that's beside the point. Everybody is integrating with Facebook *not* because they're being bought, but because they perceive a commercial advantage. My bet is that SkyNet is coming from cross-site integration, not from one person owning all the sites.N.b. I deleted my Facebook account this Spring because (A) I never use it and (B) I didn't want to deal with the constant popups from sites wanting to integrate. I may wind up creating a fake Facebook login so that I can see all the content that is hidden in the walled garden


Date: 2013-02-06 08:08 pm (UTC)From: (Anonymous)
Ugh. I'm overwhelmed. In my non- life, I'm a felnraece writer, and I also want to maintain presences on both fannish and non-fannish sites so that if/when I have a published novel, I'm not one of those authors you can't talk to online. Like you, for that reason I don't see myself GTFO Facebook, LJ etc altogether.But I am in a real quandary re: personal Facebook use. It's got me into the orbit of friends I'd been out of touch with, and let me post links to my work, and general small bits of news, without having to feel like I'm spamming my email address book. I wonder how much of the appeal of Facebook is down to the fact that (with a couple of notable exceptions) my friends and I now email each other very little compared to a few years ago - somewhere along the line, email became a work thing, perhaps... huh. It's funny; we all mock round robin Christmas letters, but what is Facebook but the same thing in year-round bullet point form? Maybe returning to old-fashioned regular emails is in fact the way to go...


Date: 2012-06-09 02:45 pm (UTC)From: (Anonymous)
I've had a play. I think I might even be using it in earnest from now on it pasess the test.It's pretty damn slick but will definately benefit from the inevitable tweeks and upgrades that are bound to come along shortly.I was suprised when I entered a birthday and it didn't automatically set it to be a yearly repeated event, and the option to make it so was hidden behind the edit date field. Only by chance did I stumble upon that. Overall though v good.The question is: Being Google, will it blow all the competition away? (30boxes.com etc)


Date: 2012-08-23 02:42 pm (UTC)From: (Anonymous)
LukeW August 22nd, 2011 4:15 pm @Meketrefe go to Facebook. Type someone's name in the secrah box at the top of the screen. That's illegal in a good number of countries?@Mike your strike 2 & 3 are valid development points and should be in place. I agreeStrike 1, I disagree is any different than a site with secrah that includes user names. Most sites even have APIs for looking up user names. (also see my comment above. nice & AJAXified on facebook as well). @ Craig, three comments from Twitter discussion on this topic that are applicable to your points: in security-related UI, perceptions (and misperceptions) matter even more than in regular UI. lots of fear & misinfo out there. -@jreffell to be fair security UI concerns are valid because the user perceives them, not because the designer's logic refutes them. -@jaysondb I'd say that many designs have created artificial/wrong security perceptions. See password field and keylogging. -@lukew i agree with you both! also see: password rules that make you work hard but don't really add security -@jreffell@zeldman fair point on people using text-expander utilities that's a consideration worth looking into. Also password managers like 1password don't do very well with anything but a standard login box (3rd party sign, secrah UI (like Bagcheck, Google email login, etc.)


Date: 2013-02-06 02:31 pm (UTC)From: (Anonymous)
Hazel thanks for your note. (LOVE The Sartorialist!!). All black is often the deulfat colour because it's the easier to unify (imagine an ensemble full of slightly different shades of red), it's easy on the eyes, and the audience tends to focus more on the music than if the ensemble were wearing different colours. The problem with saying go for it, wear any colour is what one person considers stylish another will consider completely inappropriate. There there's the issue of colour clashing. And in classical music, there are known stereotypes about what kind of dress is associated with certain types of music. Opera performers (and audiences) tend to go all out with style and flamboyance; Baroque performers (and audiences) tend not to consider fashion a big deal and are very low-key with their apparel. Ultimately, no, I don't think ensembles should be able to wear any colour; then it looks like a rehearsal.


Date: 2013-02-07 01:10 am (UTC)From: (Anonymous)
I was srutck by the honesty of your posting

May 2016

123 4567
8 91011121314

Most Popular Tags

Page Summary

Style Credit

Expand Cut Tags

No cut tags
Page generated Oct. 24th, 2017 07:37 am
Powered by Dreamwidth Studios