Just use some sensibly-designed UNIX or UNIX-like system, where the "anti-virus protection" is built-in in the form of a strong, more secure foundation to begin with.
Oh right, because the browsers Linux / Unix use are more secure than Firefox and Chrome, and they dont have flash or java plugins to exploit.
You realize that OSX (a Unix) has been the first to fall at every single Pwn2Own, with a single exception (last year)?
I think part of the problem is that noone seems to have a consistent definition of "intelligent", and sometimes it gets conflated with "wise" or "experienced" or "knowledgeable".
By the way, building an AV into an OS is the worst idea, ever.
Do you suppose that ANY professional virus coder out there will release a virus that hasnt been thoroughly checked against that AV, now? By making it a baseline for all computers, MSSE is now utterly worthless. This is why a monoculture is retarded.
There simply aren't any better virtualization solutions available for client Windows versions right now, certainly not at anything close to the same proce.
Cough, VMWare? I mean are you seriously comparing Hyper-V to VMware?
I think in ANYONES rational estimation, leaving something at the default user and password can be considered the same as intending open access.
No, it cannot. Even if your MOTD banner says "welcome", that doesnt actually exonerate anyone who hacks in. Whether or not you are authorized to access a system has NOTHING to do with whether you can guess the password.
then complaining when somebody accessed the contents behind the lock.
So if I leave the door to my house unlocked, any old person is allowed to just enter? Because I think youll find that thats at the very least trespassing just about everywhere.
Everyone keeps throwing the word "bribe" around in these kind of contexts. It would be nice, at least once in the history of slashdot, if someone could provide evidence of such a claim (especially since such evidence could go a long way to fixing the problem).
Seems to me (or at least to the musicians) that THATS an added value.
Im gonna go ahead and say if youre a musician, you have the power to make your own choices. You can argue all day that the RIAA is increasingly unnecessary and generally unsavory, and I wouldnt really argue with that; but the idea that somehow musicians are unable to decide for themselves whether to sign a contract? That seems like its a little insulting to the musician. Theyre not children, and Im quite certain they can decide for themselves if the records are exploiting them.
The Pentagon computers in question, somewhat foolishly, allegedly used "password" as their password (or null).
That they had a password indicates that the machines were not for public use. If someone got in who was not authorized to do so, by whatever means, that is a problem.
Whether someone has boneheaded security-- for instance whether someone leaves their door unlocked-- has no bearing on your right to trespass.
Thats why I like SPF. If it doesnt fit your needs, dont use it. But for those of us who have SMB clients who mail from one mailserver and dont use forwarders, its wonderful-- the first time someone reports forged email from our addresses, I can take 5 mins and implement SPF, problem solved for folks with decent spamfiltering.
Youre mixing several cases I think. There have been cases where people have been sued for exposing holes, but I dont think those cases all turned out super well for the prosecution. Theres also the UK extradition case for the guy who hacked the pentagon.
Not aware of any extradition cases for someone exposing flaws.
I dont understand. Obviously there are different crypto algos out there... but why is a 512-bit DKIM key insecure, when AES-192 is considered very secure (actually more secure than 256 due to some flaws AFAIK) with a 192 bit key?
I mean, AES is like a decade old. DKIM is AFAIK much more recent than that. Why do they need larger keys for the same security?
Crumple up a ball of aluminum foil and stick it in the microwave. Enjoy the show. (note: DONT ACTUALLY DO THIS, instead watch this video http://www.youtube.com/watch?v=Xx7IZ4WBdy4)
Microwaves can induce electric arcing between metal objects that are near-by. Now imagine all the close traces on a motherboard, and what random arcing might do there (particluarly between cpu socket pins!).
Im not 100% clear on the mechanism that makes microwaves induce arcing however.
From wikipedia: In the 1992 election, he received 18.9% of the popular vote, approximately 19,741,065 votes (but no electoral college votes) So BEST case scenario (even split between opposition), thats a 2-1 landslide for each of "the other guys" in the popular vote, and a complete shutout electorally.
I think that qualifies as "has not come close to winning".
Since when has Oracle / Sun cared about breaking compatibility with Java? IIRC many older Cisco web-config pages use Java 1.4.2 u7 (or something)-- any newer (update 8) and it breaks. And when JavaSE7 came out, it broke LibreOffice and basically every other app I used (I think CrashPlan too). Backwards compatible my foot.
Pretty sure the various iterations of BES break horribly if you try to update their java-- but that might not be a java issue per se.
That is precisely how our VCP lab was set up. It was ESXi 5, however, which plays much nicer with nested hypervisors. Each student lab was a vApp with a storage VM, a VCVA vm, two ESXi hosts, and a Windows VM (we RDP'd into that host for access to our infrastructure). Adding a new student was just a matter of cloning the whole shebang and doing a little tinkering with the Windows VM. The whole setup used under 16GB RAM and 30GB storage, IIRC-- our test vms were all win2k or 2k3, and only needed a few GB of RAM each/
Just use some sensibly-designed UNIX or UNIX-like system, where the "anti-virus protection" is built-in in the form of a strong, more secure foundation to begin with.
Oh right, because the browsers Linux / Unix use are more secure than Firefox and Chrome, and they dont have flash or java plugins to exploit.
You realize that OSX (a Unix) has been the first to fall at every single Pwn2Own, with a single exception (last year)?
I kind of actually like the idea of a refridgeroaster. You could even redirect the heat from the fridge coils into the toaster for added efficiency!
I think part of the problem is that noone seems to have a consistent definition of "intelligent", and sometimes it gets conflated with "wise" or "experienced" or "knowledgeable".
What if Im actually HAPPY where I am, and dont WANT to like it?
Cant I just be stubborn, and be left alone?
By the way, building an AV into an OS is the worst idea, ever.
Do you suppose that ANY professional virus coder out there will release a virus that hasnt been thoroughly checked against that AV, now? By making it a baseline for all computers, MSSE is now utterly worthless. This is why a monoculture is retarded.
There simply aren't any better virtualization solutions available for client Windows versions right now, certainly not at anything close to the same proce.
Cough, VMWare? I mean are you seriously comparing Hyper-V to VMware?
I think in ANYONES rational estimation, leaving something at the default user and password can be considered the same as intending open access.
No, it cannot. Even if your MOTD banner says "welcome", that doesnt actually exonerate anyone who hacks in. Whether or not you are authorized to access a system has NOTHING to do with whether you can guess the password.
then complaining when somebody accessed the contents behind the lock.
So if I leave the door to my house unlocked, any old person is allowed to just enter? Because I think youll find that thats at the very least trespassing just about everywhere.
Compile the source, compare SHA1 hash of the resultant binary to the one that Huawei is shipping.
Someone skipped out on the first day of economics 101.
Everyone keeps throwing the word "bribe" around in these kind of contexts. It would be nice, at least once in the history of slashdot, if someone could provide evidence of such a claim (especially since such evidence could go a long way to fixing the problem).
promoting them,
Seems to me (or at least to the musicians) that THATS an added value.
Im gonna go ahead and say if youre a musician, you have the power to make your own choices. You can argue all day that the RIAA is increasingly unnecessary and generally unsavory, and I wouldnt really argue with that; but the idea that somehow musicians are unable to decide for themselves whether to sign a contract? That seems like its a little insulting to the musician. Theyre not children, and Im quite certain they can decide for themselves if the records are exploiting them.
The Pentagon computers in question, somewhat foolishly, allegedly used "password" as their password (or null).
That they had a password indicates that the machines were not for public use. If someone got in who was not authorized to do so, by whatever means, that is a problem.
Whether someone has boneheaded security-- for instance whether someone leaves their door unlocked-- has no bearing on your right to trespass.
Thats why I like SPF. If it doesnt fit your needs, dont use it. But for those of us who have SMB clients who mail from one mailserver and dont use forwarders, its wonderful-- the first time someone reports forged email from our addresses, I can take 5 mins and implement SPF, problem solved for folks with decent spamfiltering.
Care to explain why?
How exactly do you spoof SPF without having the ability to redirect mail flow (ie, control over DNS records)?
Youre mixing several cases I think. There have been cases where people have been sued for exposing holes, but I dont think those cases all turned out super well for the prosecution. Theres also the UK extradition case for the guy who hacked the pentagon.
Not aware of any extradition cases for someone exposing flaws.
I dont understand. Obviously there are different crypto algos out there... but why is a 512-bit DKIM key insecure, when AES-192 is considered very secure (actually more secure than 256 due to some flaws AFAIK) with a 192 bit key?
I mean, AES is like a decade old. DKIM is AFAIK much more recent than that. Why do they need larger keys for the same security?
Crumple up a ball of aluminum foil and stick it in the microwave. Enjoy the show. (note: DONT ACTUALLY DO THIS, instead watch this video http://www.youtube.com/watch?v=Xx7IZ4WBdy4)
Microwaves can induce electric arcing between metal objects that are near-by. Now imagine all the close traces on a motherboard, and what random arcing might do there (particluarly between cpu socket pins!).
Im not 100% clear on the mechanism that makes microwaves induce arcing however.
when the heck was update 37 released? U32 just came out in august.....
From wikipedia:
In the 1992 election, he received 18.9% of the popular vote, approximately 19,741,065 votes (but no electoral college votes)
So BEST case scenario (even split between opposition), thats a 2-1 landslide for each of "the other guys" in the popular vote, and a complete shutout electorally.
I think that qualifies as "has not come close to winning".
Java vulns are typically cross platform.
Since when has Oracle / Sun cared about breaking compatibility with Java? IIRC many older Cisco web-config pages use Java 1.4.2 u7 (or something)-- any newer (update 8) and it breaks. And when JavaSE7 came out, it broke LibreOffice and basically every other app I used (I think CrashPlan too). Backwards compatible my foot.
Pretty sure the various iterations of BES break horribly if you try to update their java-- but that might not be a java issue per se.
That is precisely how our VCP lab was set up. It was ESXi 5, however, which plays much nicer with nested hypervisors. Each student lab was a vApp with a storage VM, a VCVA vm, two ESXi hosts, and a Windows VM (we RDP'd into that host for access to our infrastructure). Adding a new student was just a matter of cloning the whole shebang and doing a little tinkering with the Windows VM. The whole setup used under 16GB RAM and 30GB storage, IIRC-- our test vms were all win2k or 2k3, and only needed a few GB of RAM each/
Incompetence to such a degree, its taken hackers 5+ years to fully hack the system! Im sure Sony is super upset.
Actually, if you really want to change things, vote in the primaries.