It is the hitlist which is the biggest suggestion that it was done by an insider. Whoever wrote the worm had to know in advance about the military base and others in the hitlist. THis also suggests that an ISS insider would be more likely than an eEye insider.
Not being an insider it would still have been possible to write the worm (36 hours only, but it is doable considering how small the worm is), although the interesting part would be how the outsider knew who to hit.
The hard drive is 1/3rd of a notebook's power budget, so thanks to Amdahl's law, this can increase your runtime by no more than ~50%. And probably a bit less.
The BIG use is for ruggidized laptops: You can, combined with a passively-cooled CPU, make a laptop with no moving parts and which could stand being dropped, kicked, and shaken to a great degree without damage.
Where you can appreciate that while it doesn't utterly suck like the previous two movies, lucas's dialog is still extra craptacular when spouted by a 12 foot head of Hayden Christianson...
Sysinternals has a similar rootkit detector, instead of scanning the registry from safe media, it does it at a very low level as well as high level, thus it is possibly foolable but still pretty good.
You can get a Knoppix CD and do it for Linux: From within the possibly rootkitted system, MD5sum everything on the disk, reset and boot into Knoppix, repeat the MD5 sum process and look for any differences.
Is there any way to sell out the spammers who keep advertising "outrageouz dizcount on 0eM sofware"? I don't need Windows liscences if Microsoft is willing to send the offenders to Abu Garab...
Oh, FYI, the "pull these for patent reasons" is bogus. They already HAD their public disclosure, the clock is now ticking on anything in there they would want to patent. So its a bogus excuse for the "The UI is still 1AM3"
If they are beating MD5 hashes, that is possibly probable but a BIG breakthrough....
Other mechanisms (eg, hacking the clients) is problematic, and seeding the network with files with bogus hashes quickly gets weeded out, unless they are also seeding the network with a lot of other nodes which moderate up the bad hashes...
a: Flexibility. But this is often overridden by the lease turms
b: Taxes. Because a lease is an expense, you can write off the full value instead of doing depreciation, which is painfully slow for computers.
OTOH, if you cycle through your computers fairly quickly and resel them, you can then write off the part that wasn't depreciated, so the tax hit for buying doesn't get to be so bad. This is the trick car rental places use, and why they sell their fleets so quickly.
BSD will always stick around, because there are some of us who view the BSD lisences as MORE free: someone can create a derivitive work without having significant liscence restrictions on that derivative work.
I work on computer security. I don't like viruses, either in my code or in the liscencing.
All I have to do is get some corrupted nodes in the network and I can get all the credits I want, eg by placing "calls" from my friends. It's amazing what one can probably do to game this system.
P2P networks like this are built on foundations of trust, a foundation which does not exist.
Beyond the toll dialing (which could be prevented by proper configuration of the PBX software), the bigger concerns are leechers (long distance is a huge cost for advertisers), scum (nice, anonymous, robo-dialers with prerecorded spam messages), and tapping (it might be worth it to set up a few PBXs just to listen in on others conversation!).
Anyone else remember ChipWits? Now that was a good educational/programming game: program the little robot in a graphical flowchart language with a stack, and let it loose in the maze...
It does make a difference, especially early on, to have a degree from a top-tier school.
So at least try to transfer to one of the best schools.
On Address Space Randomization...
on
OpenBSD 3.6 Released!
·
· Score: 4, Interesting
There was an excellent paper at CCS last week on the limits of address space randomization. If you want address space randomization to be effective, use a 64 bit architecture and native 64 bit binaries for your OpenBSD system.
I've always thought that the super-cub of computers is what would sell in the 3rd world.
However, a couple of limitations I think may hurt this overall:
A: No ethernet. Ethernet has become this general purpose network glue, and there are a lot of places (eg, the Indian networks being installed) where the village will end up having ethernet locally and then some wireless bridge to the outside world. Ethernet may very well become more preferable to POTS in these installations.
B: Windows based. Even CE means Microsoft is getting its Windows Tax. Linux or BSD don't have such problems. And CE, unlike the main windows, doesn't have a good app selection for more heavyweight tasks.
Slashdot Mirror
It is the hitlist which is the biggest suggestion that it was done by an insider. Whoever wrote the worm had to know in advance about the military base and others in the hitlist. THis also suggests that an ISS insider would be more likely than an eEye insider.
Not being an insider it would still have been possible to write the worm (36 hours only, but it is doable considering how small the worm is), although the interesting part would be how the outsider knew who to hit.
The hard drive is 1/3rd of a notebook's power budget, so thanks to Amdahl's law, this can increase your runtime by no more than ~50%. And probably a bit less.
The BIG use is for ruggidized laptops: You can, combined with a passively-cooled CPU, make a laptop with no moving parts and which could stand being dropped, kicked, and shaken to a great degree without damage.
Where you can appreciate that while it doesn't utterly suck like the previous two movies, lucas's dialog is still extra craptacular when spouted by a 12 foot head of Hayden Christianson...
You can't download it yet, but...
Sysinternals has a similar rootkit detector, instead of scanning the registry from safe media, it does it at a very low level as well as high level, thus it is possibly foolable but still pretty good.
You can get a Knoppix CD and do it for Linux: From within the possibly rootkitted system, MD5sum everything on the disk, reset and boot into Knoppix, repeat the MD5 sum process and look for any differences.
This group has done several impressive projects. Among them is the "Strider Ghostbuster" Rootkit Detector.
This is part of the general Strider Project in Microsoft Research. They do very good work.
Another good reference is the Tao of Windows Buffer Overflow by the Cult of the Dead Cow. A very detailed explanation how to exploit stack overflows on Windows.
But does Jar Jar get the Lightsaber Enema he so greatly deserves?
Is there any way to sell out the spammers who keep advertising "outrageouz dizcount on 0eM sofware"? I don't need Windows liscences if Microsoft is willing to send the offenders to Abu Garab...
Will you be allowed to make screenshots?
Oh, FYI, the "pull these for patent reasons" is bogus. They already HAD their public disclosure, the clock is now ticking on anything in there they would want to patent. So its a bogus excuse for the "The UI is still 1AM3"
Are you sure he didn't meen to say
The movies is dork, Dork, dorK, DORK,... DORK... DORK!!!!!
If they are beating MD5 hashes, that is possibly probable but a BIG breakthrough....
Other mechanisms (eg, hacking the clients) is problematic, and seeding the network with files with bogus hashes quickly gets weeded out, unless they are also seeding the network with a lot of other nodes which moderate up the bad hashes...
Don't forget Mazieres and Kohler's great submission as well, "Get Me Off Your Fucking Mailing List"
The big reasons to lease
a: Flexibility. But this is often overridden by the lease turms
b: Taxes. Because a lease is an expense, you can write off the full value instead of doing depreciation, which is painfully slow for computers.
OTOH, if you cycle through your computers fairly quickly and resel them, you can then write off the part that wasn't depreciated, so the tax hit for buying doesn't get to be so bad. This is the trick car rental places use, and why they sell their fleets so quickly.
Part number info from Digi Connect
Use the numbers to search on Nu Horizons.
The development kit/toolchain/support may be $250, but single unit quantities of the computer itself are $55 from Nu Horizons.
The wireless version is cool as well, but the systems need two more things:
a: For the wired version: Support for Power over Ethernet. This way, separate power isn't needed in many installations.
b: A single USB port for both versions.
Do those both and you now have a general purpose wired and wireless glue for attaching pretty much arbitrary devices to the network.
At least that's what Microsoft told the courts...
And because it is effectively an OS service, it has theses "no security at all" modes that if you can escalate to in a script, you 0wn the box.
BSD will always stick around, because there are some of us who view the BSD lisences as MORE free: someone can create a derivitive work without having significant liscence restrictions on that derivative work.
I work on computer security. I don't like viruses, either in my code or in the liscencing.
All I have to do is get some corrupted nodes in the network and I can get all the credits I want, eg by placing "calls" from my friends. It's amazing what one can probably do to game this system.
P2P networks like this are built on foundations of trust, a foundation which does not exist.
Beyond the toll dialing (which could be prevented by proper configuration of the PBX software), the bigger concerns are leechers (long distance is a huge cost for advertisers), scum (nice, anonymous, robo-dialers with prerecorded spam messages), and tapping (it might be worth it to set up a few PBXs just to listen in on others conversation!).
Anyone else remember ChipWits? Now that was a good educational/programming game: program the little robot in a graphical flowchart language with a stack, and let it loose in the maze...
Trez cool, trez fun.
It does make a difference, especially early on, to have a degree from a top-tier school.
So at least try to transfer to one of the best schools.
There was an excellent paper at CCS last week on the limits of address space randomization. If you want address space randomization to be effective, use a 64 bit architecture and native 64 bit binaries for your OpenBSD system.
Slashdot 1, MySQL Server 0
I've always thought that the super-cub of computers is what would sell in the 3rd world.
However, a couple of limitations I think may hurt this overall:
A: No ethernet. Ethernet has become this general purpose network glue, and there are a lot of places (eg, the Indian networks being installed) where the village will end up having ethernet locally and then some wireless bridge to the outside world. Ethernet may very well become more preferable to POTS in these installations.
B: Windows based. Even CE means Microsoft is getting its Windows Tax. Linux or BSD don't have such problems. And CE, unlike the main windows, doesn't have a good app selection for more heavyweight tasks.