If you choose to go the/etc/hosts file route, then you do not need a domain name at all. Host names will suffice.
On the hand, I prefer DNS and I do not know any other way than using a zone file to cause hostnames to resolve to IP addresses. I might use the hosts file for something with at most 5 machines that need to know each other
You need DNS and DHCP anyway for people with laptops that move around and that are not always on your network and who sometimes don't even have admin rights on their laptop.
Have you ever worked for IBM or any other big corporation? You will have to go through 7 levels of approval, impact analysis, cost analysis, get about 50 people involved etc. and wait several months, Nah;-)
Note that, of course, I always create subdomains when I have control of the domain or when it is easy to get in touch with the person who does. Read: smaller companies.
Oh also, that rfc dates back a little. Things change and I wouldn't be surprised if they created a.example top domain at some point for something like teaching purposes.
Back then, a domain couldn't start with a number and nowadays we have 2600.org.
I think we need a new RFC with some reserved prefix like.intern
So.internmyproject1.internmail.internnews.internanything would be guaranteed never to be used.
Sometimes you work on small experimental projects where it is too bothersome to ask your big brother for a subdomain name. Example: mysmallproject.ibm.com.
You just come up with a domain name to make things more simple for people working on your LAN. example:.zyx1999prj
You can't forget to renew them because there is no renewing authority. You just made the tld up yourself!
What's wrong with PDF format? (genuinely curious).
Nothing more than with anything really. It's all related with categorizing your level of security and acting along. Click on my uid and read if you want to know more on how I feel about this. I do not want to repeat myself.
As a risk reducing measure, you can use alternative pdf viewers depending, again, on the levels of security you are comfortable with.
I suddenly remembered about xterm witch used to be pretty good at it since it was set uid root by default on most distros on top of the holes back then...
I did not read the PDF, It must be mentioned within it.
I know the challenge, believe me. It has been like that with many "hypes" before that one. Same old, same old. Well do your best at explaining it to them but keep in mind there are chances they will discard you opinion. In that case, just learn to live with it and continue working with the team as best as you can.
Makes sense, if you have one of the rare good source code auditor at your disposal then, it is obviously easier to find holes or at least easier to get a hand on the source code when the sources are open. Remember that we are in the context of finding back-doors hiding in plain site, in the source code. Note that it doesn't necessarily mean the back-door was planted there on purpose.
You couldn't give a better example than sendmail or at least none that I can't think of.
Nothing is black nor white, just in between to various degrees. I do not use the cloud for now but I ain't saying it shouldn't make sense in any scenarios. Some level of security do not require encryption at all, especially when it is already categorized as "public";-)
Slashdot Mirror
If you choose to go the /etc/hosts file route, then you do not need a domain name at all. Host names will suffice.
On the hand, I prefer DNS and I do not know any other way than using a zone file to cause hostnames to resolve to IP addresses. I might use the hosts file for something with at most 5 machines that need to know each other
You need DNS and DHCP anyway for people with laptops that move around and that are not always on your network and who sometimes don't even have admin rights on their laptop.
Have you ever worked for IBM or any other big corporation? You will have to go through 7 levels of approval, impact analysis, cost analysis, get about 50 people involved etc. and wait several months, Nah ;-)
Note that, of course, I always create subdomains when I have control of the domain or when it is easy to get in touch with the person who does. Read: smaller companies.
Oh also, that rfc dates back a little. Things change and I wouldn't be surprised if they created a .example top domain at some point for something like teaching purposes.
Back then, a domain couldn't start with a number and nowadays we have 2600.org.
I think we need a new RFC with some reserved prefix like .intern
So .internmyproject1 .internmail .internnews .internanything would be guaranteed never to be used.
http://tech.slashdot.org/comments.pl?sid=3977203&op=Reply&threshold=0&commentsort=0&mode=thread&pid=44293647
Sometimes you work on small experimental projects where it is too bothersome to ask your big brother for a subdomain name. Example: mysmallproject.ibm.com.
You just come up with a domain name to make things more simple for people working on your LAN. example: .zyx1999prj
You can't forget to renew them because there is no renewing authority. You just made the tld up yourself!
That's why I have been giving my internal domains silly like .zyxprivnet for at least 15 years...
It would be nice to reserve some domain names for internal use although, just like internal ip addresses.
"the charges for mobile service were 36rs(~1$ back in 1998)"
And now you have to call to in Africa and a few other places to see high rates close to that:
5321,Cuba - Guantanamo,0.7696$/minute
22176,Senegal - Tigo Mobile,0.6748$/minute
24105,Gabon - Moov Mobile,0.5238$/minute
252225,Somalia - Soltelco,0.5500$/minute
25778,Burundi - Africel Mobile,0.4460$/minute
56322100,Chile - Easter Island,0.4600$/minute
2207,Gambia - Africell Mobile,0.4164$/minute
22469,Guinea - Areeba Mobile,0.4028$/minute
India indeed got a lot cheaper:
917579,India - Bsnl Mobile,0.0134$/minute
9182310,India - Mobile,0.0122$/minute
Golf caddies do just that, and more. Back when I did, they were available on almost every golf course.
Started in 2004, it still seems to be going well at first glance:
http://www.zdnet.com/no-microsoft-open-source-software-really-is-cheaper-insists-munich-7000010918/
all the issues they left open.
Not *all*, just the ones that aren't zero day anymore and that are too well known by script kiddies. I must be kidding of course...
Nah, the best part is Marge who looks pretty fine to me. Also, what are those dents on the driver side on the base of the rear wing?
I would never have thought of putting my backups on paper. I instead multiply the backup locations to insure the redundancy I am comfortable with.
What's wrong with PDF format? (genuinely curious).
Nothing more than with anything really. It's all related with categorizing your level of security and acting along. Click on my uid and read if you want to know more on how I feel about this. I do not want to repeat myself.
As a risk reducing measure, you can use alternative pdf viewers depending, again, on the levels of security you are comfortable with.
because Israel is not known spying,.
I know you know but still: they have some of the best teams around...
I suddenly remembered about xterm witch used to be pretty good at it since it was set uid root by default on most distros on top of the holes back then...
I did not read the PDF, It must be mentioned within it.
Exactly:
http://slashdot.org/comments.pl?sid=3913639&cid=44131679
I know the challenge, believe me. It has been like that with many "hypes" before that one. Same old, same old. Well do your best at explaining it to them but keep in mind there are chances they will discard you opinion. In that case, just learn to live with it and continue working with the team as best as you can.
Whoosh....
Nah, you put the machine in a safe and the safe is actively guarded. I heard rumors of some people doing just that with their CA.
https://en.wikipedia.org/wiki/Certificate_authority
ok sir practice what you preach, from my own posts:
"It just makes it a tad harder to categorize your levels of security."
and, a little above what you replied to:
"you categorize the levels of security you are comfortable with and act accordingly."
You started your reply with "If your data is sensitive" which is a proof that you didn't read my comment properly.
Furthermore, encrypting/decrypting the data is only a little part on how you set rules for each level of security. Don't let encryption fool you ;-)
Also, think in a counter-intelligence scenario, where you would use the cloud as a honey-pot or a facade.
Makes sense, if you have one of the rare good source code auditor at your disposal then, it is obviously easier to find holes or at least easier to get a hand on the source code when the sources are open. Remember that we are in the context of finding back-doors hiding in plain site, in the source code. Note that it doesn't necessarily mean the back-door was planted there on purpose.
You couldn't give a better example than sendmail or at least none that I can't think of.
Nothing is black nor white, just in between to various degrees. I do not use the cloud for now but I ain't saying it shouldn't make sense in any scenarios. Some level of security do not require encryption at all, especially when it is already categorized as "public" ;-)
Ah, just like in Pink Floyd's Dark side of the moon. Thanks, I get it better now..
http://www.chronicle.su/news/anonymous-infiltrates-prism-intercepts-obamas-skype/
hehe:
https://en.wikipedia.org/wiki/Border_Gateway_Protocol