Anyone who buy into the idea that the Top IT Guys are making $$ hand over fist, just don't get it. You give me 100 guys like this (who are throw always, talented, and hungry literally), and I can fix the Evil Empire's Code without breaking a sweat, of course we will break every rule in the book. All we need to do is to is introduced these guys to the real enemies out there, and turn them loose with a little guidance, appropriate pay, and Kodo's. Of course it won't be pretty.
| "Information security is a hot career area and is among the strongest fields within IT for growth and opportunity. With excellent long-term career prospects, increasing cybersecurity vulnerabilities and an increase in security & privacy regulations and legislation, the demand for security professionals is significant..." |
Not to rain on Chris Butler's parade or anything, but this position can be outsourced to anywhere in the world with a communications line and a back office, event thou your Security Consultant has an office just down the street.
|Cryptanalytic Attacks on Pseudorandom Number Generators
J. Kelsey, B. Schneier, D. Wagner, and C. Hall
Fast Software Encryption, Fifth International Workshop Proceedings (March 1998), Springer-Verlag, 1998, pp. 168-188.
ABSTRACT: In this paper we discuss PRNGs: the mechanisms used by real-world secure systems to generate cryptographic keys, initialization vectors, "random" nonces, and other values assumed to be random. We argue that PRNGs are their own unique type of cryptographic primitive, and should be analyzed as such. We propose a model for PRNGs, discuss possible attacks against this model, and demonstrate the applicability of this model (and our attacks) to four real-world PRNGs. We close with a discussion of lessons learned about PRNG design and use, and a few open questions. | http://www.schneier.com/paper-prngs.html
If you have been keeping up with computer security, everyone should be aware of the weakness of Random Number generators and it's vast effects over large sections of the computer world. This is not trivial...
Just because the latest and greatest release of a New OS by a certain vendor is dog slow doesn't mean it's time to start blaming Programmers and calling them LAME.
There are several good Operating Systems out there that handle multiple threads on multi core machines just fine. They even do this in there basic scripting languages native to those Operating Systems and many have been doing them since the 70's.
There are techniques out there that handle work just fine in a Parallel Program/Core Environments. On a side note, Data Encapsulated Object Oriented techniques are not always the best way handle performance issues. A look back in time has the several answers to this question and more. (Less We Forget)
--- Old engineers never die, they just build away. (By deweycheetham) ---
|In terms of how we protect the sites, we utilize (starting at the outside edge of the network and working in):... Windows and IIS...rock solid and secure! www.microsoft.com is on Windows Server 2008/IIS7, MSDN/TechNet are migrating to Win2k8/IIS7, and update.microsoft.com is on Windows Server 2003/IIS6....
So there you have it. I think this is a good insight into how we run our own internet properties today. What do you think? Have you got any feedback for the boys over at our MSCOM Operations team?|
3 Free Tips, the rest I charge for:
1st don't advertise your networks security especial from the outside - in. 2nd don't believe your own propaganda on rock solid. There are too many issues in it to be rock solid. 3rd don't state your future migration plans on secure architectures to the public.
Cheers;}
--- Just because you go hunting doesn't mean you have to shoot yourself in the foot ---
I'm not sure this all that big of a risk since computers have been around for a couple of decades now. It sounds like they just set up a Beowulf Cluster and didn't even use all the nodes possible.
"Beowulf Clusters are scalable performance clusters based on commodity hardware, on a private system network, with open source software (Linux) infrastructure. The designer can improve performance proportionally with added machines. The commodity hardware can be any of a number of mass-market, stand-alone compute nodes as simple as two networked computers each running Linux and sharing a file system or as complex as 1024 nodes with a high-speed, low-latency network." as quoted from http://www.beowulf.org/overview/index.html .
Re:What is wrong with MS Word?
on
Hacking VIM
·
· Score: 0
Gee, if you only had a light weight editor (vi or edlin) you could text this message on your cell phone and then you wouldn't have to wait all week. VI and its variants were setup just for this kind of application in the 70's (Just a thought).
A very powerfull tool of the past almost forgotten
on
Hacking VIM
·
· Score: 3, Informative
Most don't take the time to read the documentation http://www.eandem.co.uk/mrw/vim/usr_doc/index.html . One of the great thing about VI(M) is the ability to execute this in Batch Mode (i.e. Ex ). For that matter in these days of Microsoft Glory and GUI's that don't work so well, its nice to know that GNU Tools http://gnuwin32.sourceforge.net/ are around for all those pesky OS's that fall short of Batch Processing abilities of any sort to speak of. VI(M) also operates in this area quite well.
The AT&T code was out of the bag. This was the SS(secret Service) sending a messaged to the RPG and Computer Community a the time to keep the steeple in line. Nothing more, nothing less, and they were willing to eat the court decision to do it.
I Was in Texas at the time watching this very closely with others in the Computer Community.
We got the message loud and clear they were taking off the gloves and willing to take out innocent bystanders to get what they wanted. Pull a LoD (legion of doom) and pay the consequences. They were also hitting the 2600 zine http://www.2600.com/ pretty heavy at that time too.
An Ink Blot Test, brought to you by the folks who help protect and secure us of from the past, present, and future evil hackers. (The Ink Blot Test is obviously the best way to secure an operating system. Just see your physiotherapist today and "Poof" you are secure.)
You only thought Microsoft was Evil. This pretty much confirms it. "It's tow the Microsoft line or off to Sibera for you." You only thought you were in Programmer's Hell, now we know where it is....
I thought it was pretty good for a 12 word sentence fragment. Oh well shoot the messenger, and change the message content. The original post was the layman's version.
There is a lot of research being done along the lines of Helium-3. http://fti.neep.wisc.edu/neep533/FALL2001/lecture25.pdf is the technical side of the argument and it's been said to be more valuable than {insert your favorite precious metal here}. He-3 is said to be easier to work with than some other options and even a short cut, but that a point for the Advance Physicist and Engineers to work out. I am just the message on this subject.
My only hope is that the folks here even have a clue as to what we are talking about.
Great Idea. And why they are there, have them look for Helium-3(He-3) http://en.wikipedia.org/wiki/Helium-3 which has produced Neutrons at detectable levels and is key in Fusion reactions.
Slashdot Mirror
| ...frustration-detection help system... |
Anything else in terms of frustration is irrelative.
This guy reminds me of a favorite old movie of mine "The Dirty Dozen" http://en.wikipedia.org/wiki/The_Dirty_Dozen. His only problem is he got caught (a.k.a. he went public).
Anyone who buy into the idea that the Top IT Guys are making $$ hand over fist, just don't get it. You give me 100 guys like this (who are throw always, talented, and hungry literally), and I can fix the Evil Empire's Code without breaking a sweat, of course we will break every rule in the book. All we need to do is to is introduced these guys to the real enemies out there, and turn them loose with a little guidance, appropriate pay, and Kodo's. Of course it won't be pretty.
I hope he reads this, cuz he would understand.
Sorry had to ask...
What more can I say...
Welcome to the world of the Fighting Illini at the University of Illinois.
The NCAA has outlawed any pictures or representations of our Mascot. Take a look and you can see why (if you can't, your in sensitive clod).
http://upload.wikimedia.org/wikipedia/en/e/e6/Illinilogo.png
http://upload.wikimedia.org/wikipedia/en/thumb/a/a2/2006-11-11_-_Chief_Illiniwek.jpg/200px-2006-11-11_-_Chief_Illiniwek.jpg
| "Information security is a hot career area and is among the strongest fields within IT for growth and opportunity. With excellent long-term career prospects, increasing cybersecurity vulnerabilities and an increase in security & privacy regulations and legislation, the demand for security professionals is significant..." |
Not to rain on Chris Butler's parade or anything, but this position can be outsourced to anywhere in the world with a communications line and a back office, event thou your Security Consultant has an office just down the street.
Each time I here of the Old Blue's being retired, It bring back fond memories of many old friends.
It seems appropriate this one send off was in New Orleans.
Supporting Information from Original Author:
|Cryptanalytic Attacks on Pseudorandom Number Generators
J. Kelsey, B. Schneier, D. Wagner, and C. Hall
Fast Software Encryption, Fifth International Workshop Proceedings (March 1998), Springer-Verlag, 1998, pp. 168-188.
ABSTRACT: In this paper we discuss PRNGs: the mechanisms used by real-world secure systems to generate cryptographic keys, initialization vectors, "random" nonces, and other values assumed to be random. We argue that PRNGs are their own unique type of cryptographic primitive, and should be analyzed as such. We propose a model for PRNGs, discuss possible attacks against this model, and demonstrate the applicability of this model (and our attacks) to four real-world PRNGs. We close with a discussion of lessons learned about PRNG design and use, and a few open questions. | http://www.schneier.com/paper-prngs.html
If you have been keeping up with computer security, everyone should be aware of the weakness of Random Number generators and it's vast effects over large sections of the computer world. This is not trivial...
It's the OS Stupid, Not Parallel Programming !!!
Just because the latest and greatest release of a New OS by a certain vendor is dog slow doesn't mean it's time to start blaming Programmers and calling them LAME.
There are several good Operating Systems out there that handle multiple threads on multi core machines just fine. They even do this in there basic scripting languages native to those Operating Systems and many have been doing them since the 70's.
There are techniques out there that handle work just fine in a Parallel Program/Core Environments. On a side note, Data Encapsulated Object Oriented techniques are not always the best way handle performance issues. A look back in time has the several answers to this question and more. (Less We Forget)
--- Old engineers never die, they just build away. (By deweycheetham) ---
4.20
Sorry just missed it in the orginal post. My Bad. I caught it after I posted it, but to late.
hey what verion of nmap are you running?
FTA
... Windows and IIS...rock solid and secure! www.microsoft.com is on Windows Server 2008/IIS7, MSDN/TechNet are migrating to Win2k8/IIS7, and update.microsoft.com is on Windows Server 2003/IIS6. ...
;}
|In terms of how we protect the sites, we utilize (starting at the outside edge of the network and working in):
So there you have it. I think this is a good insight into how we run our own internet properties today. What do you think? Have you got any feedback for the boys over at our MSCOM Operations team?|
3 Free Tips, the rest I charge for:
1st don't advertise your networks security especial from the outside - in.
2nd don't believe your own propaganda on rock solid. There are too many issues in it to be rock solid.
3rd don't state your future migration plans on secure architectures to the public.
Cheers
--- Just because you go hunting doesn't mean you have to shoot yourself in the foot ---
I'm not sure this all that big of a risk since computers have been around for a couple of decades now. It sounds like they just set up a Beowulf Cluster and didn't even use all the nodes possible.
"Beowulf Clusters are scalable performance clusters based on commodity hardware, on a private system network, with open source software (Linux) infrastructure. The designer can improve performance proportionally with added machines. The commodity hardware can be any of a number of mass-market, stand-alone compute nodes as simple as two networked computers each running Linux and sharing a file system or as complex as 1024 nodes with a high-speed, low-latency network." as quoted from http://www.beowulf.org/overview/index.html .
In this context you must mean "edlin" http://en.wikipedia.org/wiki/Edlin, and it was Microsoft main editor for years.
Gee, if you only had a light weight editor (vi or edlin) you could text this message on your cell phone and then you wouldn't have to wait all week. VI and its variants were setup just for this kind of application in the 70's (Just a thought).
Most don't take the time to read the documentation http://www.eandem.co.uk/mrw/vim/usr_doc/index.html . One of the great thing about VI(M) is the ability to execute this in Batch Mode (i.e. Ex ). For that matter in these days of Microsoft Glory and GUI's that don't work so well, its nice to know that GNU Tools http://gnuwin32.sourceforge.net/ are around for all those pesky OS's that fall short of Batch Processing abilities of any sort to speak of. VI(M) also operates in this area quite well.
Nice to know it's not forgotten.
Get the History Straight:
by the 1990's The BSD's http://en.wikipedia.org/wiki/BSD from Berkley were in full swing by then. Heck even Microsoft had XENIX http://en.wikipedia.org/wiki/Xenix out.
The AT&T code was out of the bag. This was the SS(secret Service) sending a messaged to the RPG and Computer Community a the time to keep the steeple in line. Nothing more, nothing less, and they were willing to eat the court decision to do it.
I Was in Texas at the time watching this very closely with others in the Computer Community.
We got the message loud and clear they were taking off the gloves and willing to take out innocent bystanders to get what they wanted. Pull a LoD (legion of doom) and pay the consequences. They were also hitting the 2600 zine http://www.2600.com/ pretty heavy at that time too.
Balmer and company need to get off the Happy Pills asap.
secure?
An Ink Blot Test, brought to you by the folks who help protect and secure us of from the past, present, and future evil hackers. (The Ink Blot Test is obviously the best way to secure an operating system. Just see your physiotherapist today and "Poof" you are secure.)
Go figure...
It's about time they figured it out. A pat on the back don't feed the kids...
Here is a novel approach. Thinking outside the box for /. "Put the Human back in the Loop".
You only thought Microsoft was Evil. This pretty much confirms it. "It's tow the Microsoft line or off to Sibera for you." You only thought you were in Programmer's Hell, now we know where it is....
I thought the developers had to put a backdoor in so the Big Boyz could crack it easyer. I wonder if this was it?
I thought it was pretty good for a 12 word sentence fragment. Oh well shoot the messenger, and change the message content. The original post was the layman's version.
A few more references are:
Researchers and space enthusiasts see helium-3 as the perfect fuel source. @ http://www.space.com/scienceastronomy/helium3_000630.html
Lunar Helium-3 as an Energy Source, in a nutshell. @ http://www.asi.org/adb/02/09/he3-intro.html
HELIUM-3 FUSION ENERGY: A NATIONAL IMPERATIVE BY 2050 AD @ http://www.nuenergy.org/alt/helium.htm
(If you need anymore, do your own research I am confused.)
There is a lot of research being done along the lines of Helium-3. http://fti.neep.wisc.edu/neep533/FALL2001/lecture25.pdf is the technical side of the argument and it's been said to be more valuable than {insert your favorite precious metal here}. He-3 is said to be easier to work with than some other options and even a short cut, but that a point for the Advance Physicist and Engineers to work out. I am just the message on this subject.
My only hope is that the folks here even have a clue as to what we are talking about.
Great Idea. And why they are there, have them look for Helium-3(He-3) http://en.wikipedia.org/wiki/Helium-3 which has produced Neutrons at detectable levels and is key in Fusion reactions.