Biggest shopping day of the year. On-line sites should get ready for all those script kiddies with smurf.c and a linux box. There will be some big shopping sites getting DoS'd I'll bet.
Spammers are now running dictionary attacks against SMTP servers. A spammer will connect to mail.example.com and try a large (if not exaustive) list of possible usernames. If the mail server gives an 'OK' message the address is added to the spammers list; if it gets a 'user unknown' it discards it and goes on to the next. There was a piece of spamware that had the ISP that I admined hardcoded into it's searches.
This means, the "individual" gets a gentle slap on the wrist (if that), and they go about their business. PSI, UUNet, and all the big ISPs don't
give a rat's ass about spammers. That's why a *very* good percentage of spam you get has 38.x.x.x or 63.x.x.x in the headers. 38 being PSI,
and 63 being UUNet. Try it sometime. It'll suprise you.
Bullshit. The dial-up accounts get canceled. The dedicated customers get wacked when they generate complaints and refuse to resolve them. The 63.x.x.x netblock is not all UUNet. Please get your facts right before posting.
As a abuse person at a tier1 backbone I would like to add a few things to this post:
Learn about what you are blocking/reporting. We get numerous reports of people claiming that our DNS servers are attacking them, or they will mistake a ICMP host unreachable packet as a ICMP flood.
PLEASE use NTP! Our dial-up pool IPs get reassigned 20+ times a day. A offset of 15 minutes can cause us to finger the wrong account. I think most people set their computers based on thier watch, which is based on thier VCR, which is based on the time they saw on the WeatherChannel. I have recieved reports on a tuesday about packets that, according to the logs, were sent on the following Friday.
2) How does one become a "professor of New Media"?
He was just BSing his way thru a performance review. I would guess that it went something like this:
Reviewer#1: Looks like this Clay Shirky guy spends all day chatting on AIM, downloading MP3s on Napster, and surfing porn sites. We will have to fire him.
Reviewer#2: Mr. Shirky, can you give us a good reason for your behavior?
Shirky: Ummmm....It's is because....I want to...be...a professor of New Media? Yeah, that's it.
Reviewer#2: Is that a position we have?
Reviewer#1: Well, if he lets us help surf the porn sites, we could make one.
Shirky: Deal!
In what vapor-ware? Transmeta hasn't even made a production chip (to my knowledge). As much as I want to see Transmeta chips do well, having a five year lead is worthless, if no one sees or uses it.
Have they tried to be more security minded? Lots of 'newbies' install red-hat and run it with everything in default. Those boxes are a big security concern; both for the person who gets rooted, and the person who gets attacked via the rooted box.
(Sorry for the nit-pick, but I am a recovering Physics Major.) Near the event horizon of a black hole paired particles of matter and anti-matter are being created. these pairs will circle each other for a bit and then destroy each other. Sometimes these particles will have one of their partners sucked into the black hole. Leaving the surviving particle free to wander off into space.
Holy Shit? A Beowulf cluser of Jon Katzes? Wouldn't having such a large mass of stupid so close together cause Jon to colapse in on himself, thus causing a singularity of stupid. This 'Black Hole of Ignorance' would quickly start sucking in all clueful posts, leaving SlashDot full of retarded posts.
Wow. I thought they had died off years ago. I see they are selling the few remaining copies of their 1995 Plug-and-play Linux. It looks like they have given up on the OS side of linux and are concentrating on the software and code side. It is cool that they are still hanging around and it will be interesting to see what they do from here.
That could result is some serious emotional trauma for those at the funeral. Let's say you are at Uncle Bob's funeral and there is a sudden wind shift and Uncle Bob gets sprayed into the group; that is really gonna fuck with some people. I guess every one could bring some plastic sheeting, but it would be too much like a Gallegher(sp?) show at that point. Maybe we could just shoot the corpses out of a cannon?
Re:What I would give to see Jon's brain in a jar
on
Driving Mr. Albert
·
· Score: 1
...at least it would prove that Jon has a brain. Most scientists believe Jon has a bundle of cells that act like a brain (like in an earthworm). They give Jon the ability to breathe, eat, move, shit, and post to Slashdot.
I think transmeta is a good company (or at least A good idea), but how wise is it to go with an IPO when so many other "hot" IPOs have gone south. Two or 3 years ago, it would have made tons of cash, but will it be able to with people being so put off with IPOs. Other companies have held off on putting out their IPOs due to this.
I think Jobs has come up with some wonderful stuff, both hardware and software. However he (or the company) always seems to mess things up in the end. Is there and one stage that Jobs keeps messing up on? While I like the mac, I am not a die-hard mac fan, so I don't know all the little details.
RepubliKKKans love to use this mis-quote. It is usually used as a last ditch effort to slam Gore. RepubliKKKans always smile
when they say it; everyone else just groans because the quote has been so over used. (NOTE TO RepubliKKKans: Get a new
quote!)
Bush - Shares credit for everything done in Texas among it's entire poltical system
Which would be what, exactly? What has Bush done?
Bush - Takes a stance and hasn't changed them to fit the ideas expressed by the largely uninformed public, including CmdrTaco,
in polls
M-kay... So, it isn't Bush who is a moronic kook, it is the largly uninformed public. Very interesting...
Bush - Personal Responsibility
So we should take lessons on "Personal Responsibility" from a coke-head who has been given everything in life by mommy and
daddy?
Bush - Understands that, but knows that 90% of the american people don't know jack shit about how economics works, so won't
argue that point.
Bush can't argue that point because he doesn't know jack shit about economics (or anything else). Bush doesn't have the IQ to
understand how the economy of a lemon-aid stand works, much less that economy of the US works.
I'm sorry, but you should be able to tell who I'm voting for
Yup, Bush, like all the other feeble minded republiKKKan sheep
If you want socialism, go to Cuba.
Ummm...no. If you want socialism go to France or some other European countries. If you want Communism, go to Cuba. Please,
try to get it right.
Where, exactly, are you supposed to draw this line? If play a prank that results in someone's death, you can be convicted for manslaughter, and if you run a hoax that results in someone losing money, you should be prosecuted for fraud.
No, you should check security fixes daily. A week is too late.
Yeah, you *should*, but getting admins to just check weekly would be a massive improvement. There are scripts that will check security patches for certain OSes. I use one for my Solaris boxes. They are posted to BugTraq on occasion.
For detecting possible security holes Nessus is a good tool to use, and it can be configured by a cron job to automatically pull down revised scripts. It works in conjunction with nmap. Be warned it can take a long time to run - it took me 20 minutes to scan 127.0.0.1.
But, it is well worth the time and does not need to be run everyday. If an admin has a securtiy plan in place, a scan from Nessus, SATAN, or Saint can be done on a rotation; scan N machines one day, scan another N machines the next, and so on. Naturally this is just a generic suggestion and you may need to adjust this to suit your situation.
The worst thing, though, is to rely 100% on security tools. Tools like Nessus rely upon known exploits. Its the unknown ones that cause the real problems.
True. I would also like to stress how important it is to know what is going on on your network. I take calls everyday from people getting DOSed who have no idea what kind of traffic they are getting, where it is comming from or where it is going. Lots of these "attacks" are nothing more than over-loaded connections.
IMHO, the reason most things don't get done, is due to lazy admins. (I guess overworked would also fit) Security often times gets put on the back burner. Turning off directed broadcast would also stop alot of attacks (smurf, fraggle, papa smurf, etc...), but people still don't turn it off.
I deal with security incidents all day. Every admin that I talk to that has been rooted or is being used as an amp start always say: "I should have..." And, they are right, they should have, but they didn't. Admins need to have some plan for security.
Quick and dirty list of security tips:
Have a plan for dealing with machines that have been hacked.
Check security patches for your systems weekly.
Run NMAP against your network.
Use network monitoring software. If some one is DOSing you, you need to know what kind of attack it is (UDP, ICMP, SYN Flood, etc...) and where it is going or comming from.
Talk to your upstream about what they can do for you incase of a DOS attack. Who should you call and what info do you need.
I think the Athlon will still out sell the Intel due to the fact that they can be bought. I can goto www.pricewatch.com and look up the price of a 1G Athlon and even systems with the chip in use. The nearest Intel I can find there is a P3-850. I am sure that there are 1G Intels out there, but they can not be bought by the common user.
Slashdot Mirror
Biggest shopping day of the year. On-line sites should get ready for all those script kiddies with smurf.c and a linux box. There will be some big shopping sites getting DoS'd I'll bet.
Spammers are now running dictionary attacks against SMTP servers. A spammer will connect to mail.example.com and try a large (if not exaustive) list of possible usernames. If the mail server gives an 'OK' message the address is added to the spammers list; if it gets a 'user unknown' it discards it and goes on to the next. There was a piece of spamware that had the ISP that I admined hardcoded into it's searches.
Well? Where is it?
Bullshit. The dial-up accounts get canceled. The dedicated customers get wacked when they generate complaints and refuse to resolve them. The 63.x.x.x netblock is not all UUNet. Please get your facts right before posting.
He was just BSing his way thru a performance review. I would guess that it went something like this:
Reviewer#1: Looks like this Clay Shirky guy spends all day chatting on AIM, downloading MP3s on Napster, and surfing porn sites. We will have to fire him.
Reviewer#2: Mr. Shirky, can you give us a good reason for your behavior?
Shirky: Ummmm....It's is because....I want to...be...a professor of New Media? Yeah, that's it.
Reviewer#2: Is that a position we have?
Reviewer#1: Well, if he lets us help surf the porn sites, we could make one.
Shirky: Deal!
Now they also know that ROT-13 is NOT a good encryption method.
In what vapor-ware? Transmeta hasn't even made a production chip (to my knowledge). As much as I want to see Transmeta chips do well, having a five year lead is worthless, if no one sees or uses it.
Odd, I thought BSD was all about porting to various platforms. How can your channel have 'NOTHING todo with port...'?
Have they tried to be more security minded? Lots of 'newbies' install red-hat and run it with everything in default. Those boxes are a big security concern; both for the person who gets rooted, and the person who gets attacked via the rooted box.
(Sorry for the nit-pick, but I am a recovering Physics Major.) Near the event horizon of a black hole paired particles of matter and anti-matter are being created. these pairs will circle each other for a bit and then destroy each other. Sometimes these particles will have one of their partners sucked into the black hole. Leaving the surviving particle free to wander off into space.
Holy Shit? A Beowulf cluser of Jon Katzes? Wouldn't having such a large mass of stupid so close together cause Jon to colapse in on himself, thus causing a singularity of stupid. This 'Black Hole of Ignorance' would quickly start sucking in all clueful posts, leaving SlashDot full of retarded posts.
Wow. I thought they had died off years ago. I see they are selling the few remaining copies of their 1995 Plug-and-play Linux. It looks like they have given up on the OS side of linux and are concentrating on the software and code side. It is cool that they are still hanging around and it will be interesting to see what they do from here.
That could result is some serious emotional trauma for those at the funeral. Let's say you are at Uncle Bob's funeral and there is a sudden wind shift and Uncle Bob gets sprayed into the group; that is really gonna fuck with some people. I guess every one could bring some plastic sheeting, but it would be too much like a Gallegher(sp?) show at that point. Maybe we could just shoot the corpses out of a cannon?
...at least it would prove that Jon has a brain. Most scientists believe Jon has a bundle of cells that act like a brain (like in an earthworm). They give Jon the ability to breathe, eat, move, shit, and post to Slashdot.
Come on now... IP-over-Moose can't be that fast. ;)
I think transmeta is a good company (or at least A good idea), but how wise is it to go with an IPO when so many other "hot" IPOs have gone south. Two or 3 years ago, it would have made tons of cash, but will it be able to with people being so put off with IPOs. Other companies have held off on putting out their IPOs due to this.
I think Jobs has come up with some wonderful stuff, both hardware and software. However he (or the company) always seems to mess things up in the end. Is there and one stage that Jobs keeps messing up on? While I like the mac, I am not a die-hard mac fan, so I don't know all the little details.
RepubliKKKans love to use this mis-quote. It is usually used as a last ditch effort to slam Gore. RepubliKKKans always smile when they say it; everyone else just groans because the quote has been so over used. (NOTE TO RepubliKKKans: Get a new quote!)
Bush - Shares credit for everything done in Texas among it's entire poltical system
Which would be what, exactly? What has Bush done?
Bush - Takes a stance and hasn't changed them to fit the ideas expressed by the largely uninformed public, including CmdrTaco, in polls
M-kay... So, it isn't Bush who is a moronic kook, it is the largly uninformed public. Very interesting...
Bush - Personal Responsibility
So we should take lessons on "Personal Responsibility" from a coke-head who has been given everything in life by mommy and daddy?
Bush - Understands that, but knows that 90% of the american people don't know jack shit about how economics works, so won't argue that point.
Bush can't argue that point because he doesn't know jack shit about economics (or anything else). Bush doesn't have the IQ to understand how the economy of a lemon-aid stand works, much less that economy of the US works.
I'm sorry, but you should be able to tell who I'm voting for
Yup, Bush, like all the other feeble minded republiKKKan sheep
If you want socialism, go to Cuba.
Ummm...no. If you want socialism go to France or some other European countries. If you want Communism, go to Cuba. Please, try to get it right.
Will this start/continue to be the trend? Will the various flavors of unix/linux start merging, now that they are driven by money (to some degree)?
So, how much money did you lose on this?
Yeah, you *should*, but getting admins to just check weekly would be a massive improvement. There are scripts that will check security patches for certain OSes. I use one for my Solaris boxes. They are posted to BugTraq on occasion.
For detecting possible security holes Nessus is a good tool to use, and it can be configured by a cron job to automatically pull down revised scripts. It works in conjunction with nmap. Be warned it can take a long time to run - it took me 20 minutes to scan 127.0.0.1.
But, it is well worth the time and does not need to be run everyday. If an admin has a securtiy plan in place, a scan from Nessus, SATAN, or Saint can be done on a rotation; scan N machines one day, scan another N machines the next, and so on. Naturally this is just a generic suggestion and you may need to adjust this to suit your situation.
The worst thing, though, is to rely 100% on security tools. Tools like Nessus rely upon known exploits. Its the unknown ones that cause the real problems.
True. I would also like to stress how important it is to know what is going on on your network. I take calls everyday from people getting DOSed who have no idea what kind of traffic they are getting, where it is comming from or where it is going. Lots of these "attacks" are nothing more than over-loaded connections.
I deal with security incidents all day. Every admin that I talk to that has been rooted or is being used as an amp start always say: "I should have..." And, they are right, they should have, but they didn't. Admins need to have some plan for security.
Quick and dirty list of security tips:
I think the Athlon will still out sell the Intel due to the fact that they can be bought. I can goto www.pricewatch.com and look up the price of a 1G Athlon and even systems with the chip in use. The nearest Intel I can find there is a P3-850. I am sure that there are 1G Intels out there, but they can not be bought by the common user.