How was the Ponzi mastermind hacked? Unless I misunderstood something the bank was hacked. Also I find the fact that the bank was owned by Robert Stanford to be the least interesting part of this story, yet it seems to be the main part of the summary.
New, more permissive laws provide police and government prosecutors with the opportunity to selectively pursue certain easy cases. The cases they choose to investigate will invariably be in line with their political or personal agendas. I don't know if I would consider this a burden.
I guess it depends who you are asking. This was an easy case and not pursued despite several laws being broken. I was not actually commenting on the morals of the case, and you are correct that it will give them the opportunity to drive their agendas, of course that will just be further resources away from other cases.
And just to be clear, the point is this: If the police does not have the capacity to investigate clear cut cases which fall under old laws, new more permissive laws (from the law reinforcements point of view) will not help, it will just burden the police more as they will probably have more cases to investigate.
If the police don't do anything the laws are useless. Last year I had a case where a NZ citizen broke quite a few laws hacking our service. Cert AU was trying to push to help get things rolling, but nothing happened. After two weeks of fighting we got a "case number" and they said they are looking into it. A few months later I was traveling in the region and spent a few weeks in NZ. I spent two days on the phone trying to find somebody to talk to about the case, but only reached awnsering machines. Cert AU spent the same time trying to reach somebody and where unable to. Now 1 1/2 years later we never heard back from them. This with concrete evidence ready, the police would have had it extremly easy...
While there is some information available on the site, it's still pretty sparse. Is this a whole framework? They refer to engine, but do they mean a detection engine or also a correlation engine? This area really needs more open source innovation, commercial solutions are ridiculously expensive for small / mid sized companies, and the only "complete" IDS option I know of for the moment is Ossim (which has extremly lacking documentation).
I think you are correct. I lived in Lebanon for a few years, and while statistics and sense might consider the country dangerous, it was very safe in some ways. People did not really get into fights lightly. You always had to assume the guy you are starting to argue with is carrying a gun, and has actually used it to shoot people.
Of course the downside was, that arguments (while rare) could end up very ugly...
From my experience during the last 4 years I would say it's not so simple. We have about 50% employees with Apple, rest with Acer business notebooks. Acer has close to double failure rate, pretty evenly divided between models and revisions. Apple has loads of problems with first gen products and very little after the third revision or so. For example we had tens of G4 powerbooks during the last year they where produced, and only one or two went in for warrenty. About 30% of our macbook pro's during the first year after release had motherboards replaced (later models have been pretty good). A lot of macbooks had problems too...
1) It hard to "speak with people" who insist that everyone speak perfect French or be subject ridicule, especially when you don't speak French.
I've been to France quite often, and on most of my visits I did not speak a word of French. I was never subject to any ridicule, but I never expected anyone to speak more English or Finnish then I spoke French. I understand somebody could have bad luck and meet an asshole, but if everybody you meet are assholes you should look in the mirror for a cause.
2) From what I have heard, the country French are a very hospitable people, warm and willing to share their culture with the world. It is really only the Parisians that have a (deserved) reputation for being arrogant. Unfortunately, Paris is the only part of France that most people ever visit.
3) The Quebecois have earned some degree of disrespect since their insistence on the use of French goes far beyond "bi-lingualism" and may be regarded by some as discriminating against the majority English-speaking Canadians.
In general, France was once a big global superpower; France was once the center for tecnology, and French was the "Lingua Franca" used in diplomacy throughout the world. The French appear more than a little pissed off that this is no longer true. However, this just gives us a preview of the kind of attitude we will be getting from the Americans in a few years when China becomes the economic and technological center of the world. If you thought the French were acting like arrogant assholes before, just wait 'til you see what the Americans act like!
My findings with modern young french people is that most of them do actually speak some English (mind you this is just Paris I'm talking about). However they are very ashamed to try as they are very bad at it. I don't know if it's really due to the way most native French speaking people play with words in a way you can't really do with English and it makes their attempts feel even worse, but that's the feeling I got.
Anyway, I've found that after making a total fool out of yourself trying to communicate with your hands and bad french almost everybody suddenly speaks English...
How about first just doing something about the crimes? I've had good success with the UK police force, and the FBI (with some exceptions), but several other countries authorities have been painful to work with even in cases where there is solid evidence and the countries laws have clearly been broken. I can see how a law like this would help things, but just working on the cases based on current laws would already make a big difference.
I have a crossdomain.xml file on my website a.com with a very lax policy (allow *). This means that pretty much any flash file I open from any other site can access a.com and see (or copy) data with my permissions? If I have auto-login enabled (as in the facebook example) it can log in with my cookies and collect the data without the site being open, and if my site does not feature auto login it can still access the data given I have an open session?
I agree... My previous car was a Toyota, and I felt like the gas would get stuck in strange way's. I thought it was broken for a long time, but I could always put it down to the carpet or the shoes I was wearing (if they where very wide). I've driven a lot of different cars during my life (+50) and never experienced it with any of the others.
De-duping can and does work well on file, web and email servers. It doesn't work quite so well for SANs that present multiple LUNs to multiple servers:D
NetApp would argue with that.
Which is where my original post (as anonymous) came from. We use Netapp storage, and while I have not been involved with the practical side of this for the last years I do remember that de-duplication was supposed to do exactly this, and understood it's already approved for production use (rather then only backups).
But again, while I have set up our virtualization and storage environments a few years ago, I have not touched them for the last two years so I don't know what the current best practises are.
If you need to map it visually try doing it by something they understand and feel could affect them.
Most people these day's are using a lot of services. Most of these services allow the password to be changed and sent to the users email address. Generally people will use the same password for all services, meaning that any one of them is broken into, and all of them can be accessed. Usually the email address will also tell you a lot of the services if uncertain. Drawing this out in a logical way explains to users why they should use separate passwords for different services, and why they should use separate passwords for work and personal services.
Taking this further you can explain that a lot of trojans can steal their password making access even easier for an attacker might make them feel they have something personal to lose. Explaining how their machine could be part of a botnet might not...
I'm in Finland. I have a 100/10 connection (FCP to the basement, ethernet to the apartment). There seems to be some kind of misconfiguration though, resulting in 100/100. I just happen to have the bill in front of me, it's 31,27€/month (no caps). However if I did not happen to have the FCP in the basement I would be paying about the same for a 8/1 adsl.
So it's not just about being in Finland, or the capital. If the people planning the building (or making later decisions) are not forward thinking you will end up paying the same for a lot less.
But the big scam is comp time. Work after hours? Gotta take comp time. But then there's never an opportunity to use it, and if you do manage to use comp time, you don't get a chance to use all of your vacation time, and at the end of the year you lose unused vacation time. If you insist and take all of your comp time and vacation time, people are whining that you're always on leave and never around and then when projects don't get done, you get dinged on your performance eval.
I solved this by asking my boss if I can use all my accumilated (during the last two years) hours in January (8 months from that time). Of course he aggreed, so I booked tickets to New Zealand for my whole family taking 6 weeks off. Come November I started getting worried questions like "how long are you going to be gone for again" etc. I told the company they can always refund me approximately 6000 euros for the (nonrefundable) flight tickets, 2000 euros for hotels, but I'll still have to take the hours off sooner or later.
Fast forward to today. I had 4 weeks vacation last summer, 6 weeks in January and another 4 weeks this summer. I feel fairly refreshed.
So, what you mean is, you've never owned a smartphone. My corded landline doesn't have cut and paste either, but every smartphone I've had has had cut and paste.
Lucky you. I have a fairly recent Nokia "business phone" with Symbian S60 as the operating system (Nokia E61i). It does support cut and paste, BUT you can only cut and paste (or copy for that matter) in edit mode. What this means is that you can't copy from a webpage, and to copy from an email you have to select "forward" or "reply". I guess you could call that smart if you stretch things?
Why? What specifically is valuable about people who know me? How does who I know affect how well I can do my job?
Depends what you do... Atleast for someone working in Security contacts can be extremly valuable. On the other hand my potential employer could not access my Linkedin contacts so moot...
We have had Zimbra for over a year and it's great. The webmail interface is very intuitive, and the system scales well with medium to large mailboxes (We have up to about 25GB of mail in the largest boxes). We have a mixture of Windows, Mac, Linux and mobile users (about 500 users with about 1000 mailboxes all togeather.
Not all parts of the usability are quite on par with Exchange (see how you find the calendars) but I think it makes up for that with scalability and other features.
Except in extremely close races, a smallish percentage of lost/spoiled/uncounted votes isn't an issue as long as the lost votes are a representative subset of all the votes. If it is a selective subset, then you have a serious, serious problem.
I would guess that in this case it was mainly older people who did not get it right. I might be wrong, but they tend to be less "computer literate" and would have more usability related problems.
It's not really a PITA if you usually use one machine, in which case Firefox will remember the password for you after it's entered the first time. You only have to do it each time you change machine or reformat, and the balance of effort vs security seems well worth it.
Use keepass and just transfere the password database (one small file) to all your machines. Make a separate database for personal and work passwords so you don't need to copy your work passwords out of your work computer.
This works pretty well for me, only annoyance is handheld devices like my ipod touch and mobile phone. Need to type all those (often difficult) passwords by hand instead of just copy pasting.
Slashdot Mirror
How was the Ponzi mastermind hacked? Unless I misunderstood something the bank was hacked. Also I find the fact that the bank was owned by Robert Stanford to be the least interesting part of this story, yet it seems to be the main part of the summary.
New, more permissive laws provide police and government prosecutors with the opportunity to selectively pursue certain easy cases. The cases they choose to investigate will invariably be in line with their political or personal agendas. I don't know if I would consider this a burden.
I guess it depends who you are asking. This was an easy case and not pursued despite several laws being broken. I was not actually commenting on the morals of the case, and you are correct that it will give them the opportunity to drive their agendas, of course that will just be further resources away from other cases.
And just to be clear, the point is this: If the police does not have the capacity to investigate clear cut cases which fall under old laws, new more permissive laws (from the law reinforcements point of view) will not help, it will just burden the police more as they will probably have more cases to investigate.
If the police don't do anything the laws are useless. Last year I had a case where a NZ citizen broke quite a few laws hacking our service. Cert AU was trying to push to help get things rolling, but nothing happened. After two weeks of fighting we got a "case number" and they said they are looking into it. A few months later I was traveling in the region and spent a few weeks in NZ. I spent two days on the phone trying to find somebody to talk to about the case, but only reached awnsering machines. Cert AU spent the same time trying to reach somebody and where unable to. Now 1 1/2 years later we never heard back from them. This with concrete evidence ready, the police would have had it extremly easy...
While there is some information available on the site, it's still pretty sparse. Is this a whole framework? They refer to engine, but do they mean a detection engine or also a correlation engine? This area really needs more open source innovation, commercial solutions are ridiculously expensive for small / mid sized companies, and the only "complete" IDS option I know of for the moment is Ossim (which has extremly lacking documentation).
I don't know, cross-licensing phone-related patents sounds pretty reasonable.
Not if the other is only using technologies falling under the RAND terms.
I think you are correct. I lived in Lebanon for a few years, and while statistics and sense might consider the country dangerous, it was very safe in some ways. People did not really get into fights lightly. You always had to assume the guy you are starting to argue with is carrying a gun, and has actually used it to shoot people. Of course the downside was, that arguments (while rare) could end up very ugly...
From my experience during the last 4 years I would say it's not so simple. We have about 50% employees with Apple, rest with Acer business notebooks. Acer has close to double failure rate, pretty evenly divided between models and revisions. Apple has loads of problems with first gen products and very little after the third revision or so. For example we had tens of G4 powerbooks during the last year they where produced, and only one or two went in for warrenty. About 30% of our macbook pro's during the first year after release had motherboards replaced (later models have been pretty good). A lot of macbooks had problems too...
1) It hard to "speak with people" who insist that everyone speak perfect French or be subject ridicule, especially when you don't speak French.
I've been to France quite often, and on most of my visits I did not speak a word of French. I was never subject to any ridicule, but I never expected anyone to speak more English or Finnish then I spoke French. I understand somebody could have bad luck and meet an asshole, but if everybody you meet are assholes you should look in the mirror for a cause.
2) From what I have heard, the country French are a very hospitable people, warm and willing to share their culture with the world. It is really only the Parisians that have a (deserved) reputation for being arrogant. Unfortunately, Paris is the only part of France that most people ever visit. 3) The Quebecois have earned some degree of disrespect since their insistence on the use of French goes far beyond "bi-lingualism" and may be regarded by some as discriminating against the majority English-speaking Canadians. In general, France was once a big global superpower; France was once the center for tecnology, and French was the "Lingua Franca" used in diplomacy throughout the world. The French appear more than a little pissed off that this is no longer true. However, this just gives us a preview of the kind of attitude we will be getting from the Americans in a few years when China becomes the economic and technological center of the world. If you thought the French were acting like arrogant assholes before, just wait 'til you see what the Americans act like!
My findings with modern young french people is that most of them do actually speak some English (mind you this is just Paris I'm talking about). However they are very ashamed to try as they are very bad at it. I don't know if it's really due to the way most native French speaking people play with words in a way you can't really do with English and it makes their attempts feel even worse, but that's the feeling I got. Anyway, I've found that after making a total fool out of yourself trying to communicate with your hands and bad french almost everybody suddenly speaks English...
How about first just doing something about the crimes? I've had good success with the UK police force, and the FBI (with some exceptions), but several other countries authorities have been painful to work with even in cases where there is solid evidence and the countries laws have clearly been broken. I can see how a law like this would help things, but just working on the cases based on current laws would already make a big difference.
You call Steven Seagal movies theoretical?
So did I get this correctly...
I have a crossdomain.xml file on my website a.com with a very lax policy (allow *). This means that pretty much any flash file I open from any other site can access a.com and see (or copy) data with my permissions? If I have auto-login enabled (as in the facebook example) it can log in with my cookies and collect the data without the site being open, and if my site does not feature auto login it can still access the data given I have an open session?
I agree... My previous car was a Toyota, and I felt like the gas would get stuck in strange way's. I thought it was broken for a long time, but I could always put it down to the carpet or the shoes I was wearing (if they where very wide). I've driven a lot of different cars during my life (+50) and never experienced it with any of the others.
De-duping can and does work well on file, web and email servers. It doesn't work quite so well for SANs that present multiple LUNs to multiple servers :D
NetApp would argue with that.
Which is where my original post (as anonymous) came from. We use Netapp storage, and while I have not been involved with the practical side of this for the last years I do remember that de-duplication was supposed to do exactly this, and understood it's already approved for production use (rather then only backups). But again, while I have set up our virtualization and storage environments a few years ago, I have not touched them for the last two years so I don't know what the current best practises are.
If you need to map it visually try doing it by something they understand and feel could affect them. Most people these day's are using a lot of services. Most of these services allow the password to be changed and sent to the users email address. Generally people will use the same password for all services, meaning that any one of them is broken into, and all of them can be accessed. Usually the email address will also tell you a lot of the services if uncertain. Drawing this out in a logical way explains to users why they should use separate passwords for different services, and why they should use separate passwords for work and personal services. Taking this further you can explain that a lot of trojans can steal their password making access even easier for an attacker might make them feel they have something personal to lose. Explaining how their machine could be part of a botnet might not...
I'm in Finland. I have a 100/10 connection (FCP to the basement, ethernet to the apartment). There seems to be some kind of misconfiguration though, resulting in 100/100. I just happen to have the bill in front of me, it's 31,27€/month (no caps). However if I did not happen to have the FCP in the basement I would be paying about the same for a 8/1 adsl.
So it's not just about being in Finland, or the capital. If the people planning the building (or making later decisions) are not forward thinking you will end up paying the same for a lot less.
Can you please list the countries Iran has attacked? Talking about history and all...
But the big scam is comp time. Work after hours? Gotta take comp time. But then there's never an opportunity to use it, and if you do manage to use comp time, you don't get a chance to use all of your vacation time, and at the end of the year you lose unused vacation time. If you insist and take all of your comp time and vacation time, people are whining that you're always on leave and never around and then when projects don't get done, you get dinged on your performance eval.
I solved this by asking my boss if I can use all my accumilated (during the last two years) hours in January (8 months from that time). Of course he aggreed, so I booked tickets to New Zealand for my whole family taking 6 weeks off. Come November I started getting worried questions like "how long are you going to be gone for again" etc. I told the company they can always refund me approximately 6000 euros for the (nonrefundable) flight tickets, 2000 euros for hotels, but I'll still have to take the hours off sooner or later.
Fast forward to today. I had 4 weeks vacation last summer, 6 weeks in January and another 4 weeks this summer. I feel fairly refreshed.
Sounds like you've been giving tech support to my wife.
Yeah, only an American would pirate software...
So, what you mean is, you've never owned a smartphone. My corded landline doesn't have cut and paste either, but every smartphone I've had has had cut and paste.
Lucky you. I have a fairly recent Nokia "business phone" with Symbian S60 as the operating system (Nokia E61i). It does support cut and paste, BUT you can only cut and paste (or copy for that matter) in edit mode. What this means is that you can't copy from a webpage, and to copy from an email you have to select "forward" or "reply". I guess you could call that smart if you stretch things?
Why? What specifically is valuable about people who know me? How does who I know affect how well I can do my job?
Depends what you do... Atleast for someone working in Security contacts can be extremly valuable. On the other hand my potential employer could not access my Linkedin contacts so moot...
We have had Zimbra for over a year and it's great. The webmail interface is very intuitive, and the system scales well with medium to large mailboxes (We have up to about 25GB of mail in the largest boxes). We have a mixture of Windows, Mac, Linux and mobile users (about 500 users with about 1000 mailboxes all togeather.
Not all parts of the usability are quite on par with Exchange (see how you find the calendars) but I think it makes up for that with scalability and other features.
Seems to be very trouble free till now.
Except in extremely close races, a smallish percentage of lost/spoiled/uncounted votes isn't an issue as long as the lost votes are a representative subset of all the votes. If it is a selective subset, then you have a serious, serious problem.
I would guess that in this case it was mainly older people who did not get it right. I might be wrong, but they tend to be less "computer literate" and would have more usability related problems.
It's not really a PITA if you usually use one machine, in which case Firefox will remember the password for you after it's entered the first time. You only have to do it each time you change machine or reformat, and the balance of effort vs security seems well worth it.
Use keepass and just transfere the password database (one small file) to all your machines. Make a separate database for personal and work passwords so you don't need to copy your work passwords out of your work computer.
This works pretty well for me, only annoyance is handheld devices like my ipod touch and mobile phone. Need to type all those (often difficult) passwords by hand instead of just copy pasting.