But the time from this point until practical seems a very long way off, we still have a shitton of learning to do regarding molecular quantum computation.
you joke, but some ISP backbone level switches and routers I have worked with in the past cost a freaking ridiculous amount. 40k for device, check. 10k in addons, check. 13k per uyear for "support", check. Fuck it gets expensive.
I understand that, and don't think I was arguing the opposite. I was simply saying that my basic criteria is ease of use, resource usage (which includes responsiveness), and visuals. Its cool, but doesnt fit my particular needs or wants, but I'm sure plenty of people like it and I'm sure google can do something cool with it (I imagine bumptop on a touchscreen for example might be pretty cool) So, maybe I had a bad title, but no bubbles bursts here.
I have always been fascinated with the "3d" desktop ever since, yes I'll admit it, Jurassic Park. That Irix program, I don't remember the name, but I have made it a point to try out all kinds of crazy 3d desktop apps, but I've found they are largely useless. They look cool often, but in general, they slow things down, eat resources, and usually just sit on top of the desktop instead of being shell replacements. What I've found more useful are the apps like rainmeter and those kinds of programs. Look at all the lifehacker posts of desktops, how many use 3d? Now I will say I tried bumptop and it was one of the better ones, especially the "mouse pattern" ability to control icons, but being a gamer I couldn't justify the extra resource usage. On a side note, one of the random weird programs that I shouldn't have liked but did was some old sonyu program that came on the vaios, that was all black and red and could organize things in a helix shape, I never could find it again, anyone remember that?
Auditing the fed is often used as code to mean investigation into the fundamental business model. The problem is that if it ever became mainstream how the fed really works, it really will threaten the dollar. I would like to see citation of your claim they have published the numbers, I know they have published SOME numbers, often heavily redacted though. Some facts about the fed. The Federal Reserve is a private institution. The Federal Reserve holds a monopoly on the issuance of currency in the USA. Prior the the Emergency Economic Stabilization Act/TARP Act of September 2008, commercial banks were required to hold 10% of deposits as reserves. Part of the reason for the credit spread blowups of October/November 2008 was because in the same TARP Act the Fed was allowed to pay interest on deposits without publicly stating the interest rate. As a result of various acts of Congress in 2008, the Federal Reserve now has the authority to buy all sorts of assets (commercial paper, corporate bonds, mortgage loans, etc.). Much of the Fed's activity is not made public because of the use of off-balance sheet vehicles. There is debate over the constitutionality of the Fed's various powers. Also that If all money created is debt and counts as principal, where does the money come from to pay interest on this debt? It comes from the money that gets printed in the future. This is why inflation is a natural result of our current monetary system. This is often what you hear Ron Paul talking about on the floor. The teapartiers have unfortunately locked onto this as a talking point, but often lack facts, and hence it often gets dismissed as a conspiracy theory. I think the biggest benefit of auditing the Fed, is publicly knowing who really owns and controls it, knowing that a foreign company might control our very monetary system should at the least make one pause and research it a bit more.
Exactly, I've found that when getting boxed, the biggest issue is when you have some fresh college grad who thinks hes the judge and jury, and if he or she doesnt like you and you flub up at all, sweat a bit too much, wear something they don't like, say an off the wall remark, they get real aggressive. The solution is to find the oldest saltiest bastard around, he can weed through bullshit faster than anyone, you want him to box you. Polygraphs are suedo-science, and everyone knows it.
There are plenty of things on the market that address this issue. You can get 64 Gb flash drives on newegg for less than $150. I remember when I bought a gigabox that was 5 gig for more than that. If you really must have the extra space, I doubt that the max 256 GB model of this SSD is worth it, just get a sata dock, or a regular external, as the speeds of SSD are going to fairly useless on a USB 2.0 system most people have today. The other point to USB flash drives is their portability, I carry about three at all times in my pocket, I don't think I'd want to carry one of these in a pocket. It's interesting, but this is just a slashvertisment.
I understand your premise, which is a secure one of risk, cost and benefit, but seems like issues like that are why major industries have such horrible privacy issues. At the very least both IT and legal should interface and figure out what is acceptable, but above that IT should be aware of what devices do. Ignorance is not an excuse, saying you evaluated it and determined the risk to be worth the reward is good. I have helped migrate some business users to GApps, but I've noticed one thing in particular, lawyers and all the "good ol boys" avoided it like the plague, so often you business and its legal requirements will make a big difference as well. My point is that you have to know what something is actually doing or is capable of doing before you can do a proper risk assessment.
It cool, many of us in this economy are playing the roll of the everyman. I just got thrown into a professional computer forensics training just because the boss wanted inhouse capabilities, I get a cert and to learn new things, and more responsibility. Plus, everyone knows you're a/.er first and the job comes second (chronologically, not in importance lol)
There are many kinds of people who won't show up in the statistics, simply because you can't account for everyone. I literally have bought on on steam every one of these games because I already love to support indie devs, as I think they are our future, but now, do I donate 1 cent or 10 dollars for games I already payed for? I'm sure there are other like me who have bought most if not all of these already and now would like the cross platform support. Its hard to tell motive from statistics, and the end result being that non-DRM indie devs get good publicity, good funding for future developments, and can show the gaming industry you don't have to, need to , or want to be anything remotely like ubisoft to be good and successful. If I had the spare money I'd toss them as much as I could justify, just so that we can blow their socks off and make some news headlines. (It is also notable that music artists that have done this and bypassed the middle man have also had huge successes, NiN for example)
I agree it may be a bit alarmist, but as someone who has at my former employer worked with many kinds of businesses from small to medium, I can tell you that the only reason adobe acrobat is still in play is because of vendor lock down with businesses. They don't want to change readers/editors because "everyone else uses adobe", but as soon as enough of them get burned, and more IT admins realize it is one of the biggest threats on a companies network, they will start jumping ship. They just need an alternative that is worth it, and unfortunately the few alternatives that are out there haven't quite stepped up to that level yet. Its just a matter of time.
Stupid university practices that are draconian like this piss me off. When I was last attending class, I did the math one semester, and figured that for my tuition and feeds, every time I skipped a class I basically was throwing away 50 dollars. really helped my attendance to the early morning boring classes. Regardless, this is just the spread of the "the school is your mommy" doctrine way too many schools have adopted. I went to high school in a hick town full of Mormons (no offense to any on/.), but one thing it really had going for it was a freedom that when I talk to family member who went to schools with metal detectors I can't imagine ever sending a kid to a school in such an environment. On top of that, the (longstanding) trend is for universities to become more and more entwined with the local businesses, who make up ridiculous proposals so they can make a buck, and then the Uni gets to justify more spending next year, all the while shifting the bill to students for services they don't use, need or want most of the time. When researching tuition for my unnamed Texas uni, I found that tuition basically doubled every 5 years, and that the "& fees" part almost tripled, not to mention the horribly overpriced and monopolized industry of book selling. What we need is more Open Source education styles./rant off
Agreed. My question is if they are allowing people to use email clients such as outlook, there's really not much point in encrypting something that all it does is get email, as email is by nature insecure unless encrypted itself! One should assume that any information sent over email not encrypted is compromised and public information. Car analogy, its like adding biometric entry and soundproofing a car so what you say in there is secure, but then you roll down the window and scream across a parking lot to tell a colleague sensitive information. SSN's, passwords, etc are not information that should be handled via email.
The Oxford English Dictionary suggests that the word derives from "attire",[1] while other sources suggest a connection with the verb "to tie".[2] From the 15th to the 17th centuries the spellings tire and tyre were used without distinction;[1] but by 1700 tyre had become obsolete and tire remained as the settled spelling.[1] In the UK, the spelling tyre was revived in the 19th century for pneumatic tires, though many continued to use tire for the iron variety. The Times newspaper in Britain was still using tire as late as 1905.[3] The 1911 edition of the Encyclopædia Britannica states that "[t]he spelling 'tyre' is not now accepted by the best English authorities, and is unrecognized in the US",[2], while Fowler's Modern English Usage of 1926 says that "there is nothing to be said for 'tyre', which is etymologically wrong, as well as needlessly divergent from our own [sc. British] older & the present American usage".[1]
It seems very interesting that they were able to do this, but limited the botnet to the local ISP. In TFA they also state they "attacked" a Planet hosted server but didn't say if it was a DDOS or what. (The Planet is one of the bigger north texas hosters/data centers, I got to have a personal tour there once while working on building a data center elsewhere, they are very professional) and TFA later states they comprimised another website. What confuses me is that most botnets are installed via some sort of social engineering, be it XSS, email spam, etc. But it seems that since they were able to build it in such a short time on such a targeted demographic, that it falls closer into the spectrum of a Storm style botnet, that uses DDOS as both attack and defense. But regarding that I also don't understand the compromises of the website via a large scale like that, usually a DDOS is just that, a denial of service, if there is a vulnerability what is the use of an entire botnet? Maybe used to brute force something, or obfuscate multiple scans of vulns, but overall it seems like this was someone who stood on the shoulders of other botnet writers (would be interesting to reverse engineer the code and see) in order to make a quick buck (which is easy to do on IRC's underbellies) Anyone who pays attention at all to botnet or other malicious writers knows that if attention is directed to your code, it's fairly easy to track you down. It is also notable that this happened in 2006, and so it took this long for law enforcement to build a good enough case against them. Anyway, interesting at least to me, as I've been training up on computer forensics so its interesting to look at things like this.
I have used and tested multiple remote software, some commercial licensed stuff as well. I find that first, it depends on what you are using it for. If you are a remote worker and want to use programs at work from home, or vice versa, the minor trouble of editing ACL's to allow RDP (don't forget to change the port to avoid scans) is worth it. On the other hand, if you are constantly dealing with multiple people behind firewalls, something like show my pc or logmein free is more than likely what you want. I particularly like RDP for a couple reasons, one being that its built in and requires no additional installation on any professional version of windows. RDP for graphical remote on windows, GUI over SSH for *nix.
Another vote for deepfreeze, (or something similar like Microsoft's free ?steady state?) I remember back in my senior year of HS when deepfreeze was first out, me being one of the known "hackers" was told by my teacher and computer mentor to see what I could do to bypass it. Even back then in its beta stage, I tried all kinds of things, deleting key files, total formats, and in the end the only way I was able to compromise DF was via hardware keylogger. I didn't know as much then as I do now but it was pretty awesome and I have seen it deployed it in many types of environments since then, usually on PC's that are public (like the business center at your apartment) but for anyone of questionable PC ability, get the version that allows a certain area to be permanently "thawed" tell them they must put any files there are they will be forever gone, and have someone come do updates every so often.
Slashdot Mirror
well I was just giving links, I know there arent hardcoded pw's like the gp says, but I was just giving you some info. =)
Pretty much any ISP level device or IOS/CatOS
http://www.forbes.com/2010/02/03/hackers-networking-equipment-technology-security-cisco.html
http://cryptome.org/isp-spy/cisco-spy.pdf
http://www.networkworld.com/community/node/57070
But the time from this point until practical seems a very long way off, we still have a shitton of learning to do regarding molecular quantum computation.
you joke, but some ISP backbone level switches and routers I have worked with in the past cost a freaking ridiculous amount. 40k for device, check. 10k in addons, check. 13k per uyear for "support", check. Fuck it gets expensive.
I understand that, and don't think I was arguing the opposite. I was simply saying that my basic criteria is ease of use, resource usage (which includes responsiveness), and visuals. Its cool, but doesnt fit my particular needs or wants, but I'm sure plenty of people like it and I'm sure google can do something cool with it (I imagine bumptop on a touchscreen for example might be pretty cool) So, maybe I had a bad title, but no bubbles bursts here.
I have always been fascinated with the "3d" desktop ever since, yes I'll admit it, Jurassic Park. That Irix program, I don't remember the name, but I have made it a point to try out all kinds of crazy 3d desktop apps, but I've found they are largely useless. They look cool often, but in general, they slow things down, eat resources, and usually just sit on top of the desktop instead of being shell replacements. What I've found more useful are the apps like rainmeter and those kinds of programs. Look at all the lifehacker posts of desktops, how many use 3d? Now I will say I tried bumptop and it was one of the better ones, especially the "mouse pattern" ability to control icons, but being a gamer I couldn't justify the extra resource usage. On a side note, one of the random weird programs that I shouldn't have liked but did was some old sonyu program that came on the vaios, that was all black and red and could organize things in a helix shape, I never could find it again, anyone remember that?
Auditing the fed is often used as code to mean investigation into the fundamental business model. The problem is that if it ever became mainstream how the fed really works, it really will threaten the dollar. I would like to see citation of your claim they have published the numbers, I know they have published SOME numbers, often heavily redacted though. Some facts about the fed. The Federal Reserve is a private institution. The Federal Reserve holds a monopoly on the issuance of currency in the USA. Prior the the Emergency Economic Stabilization Act/TARP Act of September 2008, commercial banks were required to hold 10% of deposits as reserves. Part of the reason for the credit spread blowups of October/November 2008 was because in the same TARP Act the Fed was allowed to pay interest on deposits without publicly stating the interest rate. As a result of various acts of Congress in 2008, the Federal Reserve now has the authority to buy all sorts of assets (commercial paper, corporate bonds, mortgage loans, etc.). Much of the Fed's activity is not made public because of the use of off-balance sheet vehicles. There is debate over the constitutionality of the Fed's various powers. Also that If all money created is debt and counts as principal, where does the money come from to pay interest on this debt? It comes from the money that gets printed in the future. This is why inflation is a natural result of our current monetary system. This is often what you hear Ron Paul talking about on the floor. The teapartiers have unfortunately locked onto this as a talking point, but often lack facts, and hence it often gets dismissed as a conspiracy theory. I think the biggest benefit of auditing the Fed, is publicly knowing who really owns and controls it, knowing that a foreign company might control our very monetary system should at the least make one pause and research it a bit more.
Too bad I can't join in.
Exactly, I've found that when getting boxed, the biggest issue is when you have some fresh college grad who thinks hes the judge and jury, and if he or she doesnt like you and you flub up at all, sweat a bit too much, wear something they don't like, say an off the wall remark, they get real aggressive. The solution is to find the oldest saltiest bastard around, he can weed through bullshit faster than anyone, you want him to box you. Polygraphs are suedo-science, and everyone knows it.
There are plenty of things on the market that address this issue. You can get 64 Gb flash drives on newegg for less than $150. I remember when I bought a gigabox that was 5 gig for more than that. If you really must have the extra space, I doubt that the max 256 GB model of this SSD is worth it, just get a sata dock, or a regular external, as the speeds of SSD are going to fairly useless on a USB 2.0 system most people have today. The other point to USB flash drives is their portability, I carry about three at all times in my pocket, I don't think I'd want to carry one of these in a pocket. It's interesting, but this is just a slashvertisment.
I understand your premise, which is a secure one of risk, cost and benefit, but seems like issues like that are why major industries have such horrible privacy issues. At the very least both IT and legal should interface and figure out what is acceptable, but above that IT should be aware of what devices do. Ignorance is not an excuse, saying you evaluated it and determined the risk to be worth the reward is good. I have helped migrate some business users to GApps, but I've noticed one thing in particular, lawyers and all the "good ol boys" avoided it like the plague, so often you business and its legal requirements will make a big difference as well. My point is that you have to know what something is actually doing or is capable of doing before you can do a proper risk assessment.
It cool, many of us in this economy are playing the roll of the everyman. I just got thrown into a professional computer forensics training just because the boss wanted inhouse capabilities, I get a cert and to learn new things, and more responsibility. Plus, everyone knows you're a /.er first and the job comes second (chronologically, not in importance lol)
Oops, well I realized I havent bought the lugaru HD.
There are many kinds of people who won't show up in the statistics, simply because you can't account for everyone. I literally have bought on on steam every one of these games because I already love to support indie devs, as I think they are our future, but now, do I donate 1 cent or 10 dollars for games I already payed for? I'm sure there are other like me who have bought most if not all of these already and now would like the cross platform support. Its hard to tell motive from statistics, and the end result being that non-DRM indie devs get good publicity, good funding for future developments, and can show the gaming industry you don't have to, need to , or want to be anything remotely like ubisoft to be good and successful. If I had the spare money I'd toss them as much as I could justify, just so that we can blow their socks off and make some news headlines. (It is also notable that music artists that have done this and bypassed the middle man have also had huge successes, NiN for example)
I agree it may be a bit alarmist, but as someone who has at my former employer worked with many kinds of businesses from small to medium, I can tell you that the only reason adobe acrobat is still in play is because of vendor lock down with businesses. They don't want to change readers/editors because "everyone else uses adobe", but as soon as enough of them get burned, and more IT admins realize it is one of the biggest threats on a companies network, they will start jumping ship. They just need an alternative that is worth it, and unfortunately the few alternatives that are out there haven't quite stepped up to that level yet. Its just a matter of time.
If they want me to maintain the status of BOFHWGSD - (who gets shit done) Then yes.
Stupid university practices that are draconian like this piss me off. When I was last attending class, I did the math one semester, and figured that for my tuition and feeds, every time I skipped a class I basically was throwing away 50 dollars. really helped my attendance to the early morning boring classes. Regardless, this is just the spread of the "the school is your mommy" doctrine way too many schools have adopted. I went to high school in a hick town full of Mormons (no offense to any on /.), but one thing it really had going for it was a freedom that when I talk to family member who went to schools with metal detectors I can't imagine ever sending a kid to a school in such an environment. On top of that, the (longstanding) trend is for universities to become more and more entwined with the local businesses, who make up ridiculous proposals so they can make a buck, and then the Uni gets to justify more spending next year, all the while shifting the bill to students for services they don't use, need or want most of the time. When researching tuition for my unnamed Texas uni, I found that tuition basically doubled every 5 years, and that the "& fees" part almost tripled, not to mention the horribly overpriced and monopolized industry of book selling. What we need is more Open Source education styles. /rant off
Agreed. My question is if they are allowing people to use email clients such as outlook, there's really not much point in encrypting something that all it does is get email, as email is by nature insecure unless encrypted itself! One should assume that any information sent over email not encrypted is compromised and public information. Car analogy, its like adding biometric entry and soundproofing a car so what you say in there is secure, but then you roll down the window and scream across a parking lot to tell a colleague sensitive information. SSN's, passwords, etc are not information that should be handled via email.
The Oxford English Dictionary suggests that the word derives from "attire",[1] while other sources suggest a connection with the verb "to tie".[2] From the 15th to the 17th centuries the spellings tire and tyre were used without distinction;[1] but by 1700 tyre had become obsolete and tire remained as the settled spelling.[1] In the UK, the spelling tyre was revived in the 19th century for pneumatic tires, though many continued to use tire for the iron variety. The Times newspaper in Britain was still using tire as late as 1905.[3] The 1911 edition of the Encyclopædia Britannica states that "[t]he spelling 'tyre' is not now accepted by the best English authorities, and is unrecognized in the US",[2], while Fowler's Modern English Usage of 1926 says that "there is nothing to be said for 'tyre', which is etymologically wrong, as well as needlessly divergent from our own [sc. British] older & the present American usage".[1]
It seems very interesting that they were able to do this, but limited the botnet to the local ISP. In TFA they also state they "attacked" a Planet hosted server but didn't say if it was a DDOS or what. (The Planet is one of the bigger north texas hosters/data centers, I got to have a personal tour there once while working on building a data center elsewhere, they are very professional) and TFA later states they comprimised another website. What confuses me is that most botnets are installed via some sort of social engineering, be it XSS, email spam, etc. But it seems that since they were able to build it in such a short time on such a targeted demographic, that it falls closer into the spectrum of a Storm style botnet, that uses DDOS as both attack and defense. But regarding that I also don't understand the compromises of the website via a large scale like that, usually a DDOS is just that, a denial of service, if there is a vulnerability what is the use of an entire botnet? Maybe used to brute force something, or obfuscate multiple scans of vulns, but overall it seems like this was someone who stood on the shoulders of other botnet writers (would be interesting to reverse engineer the code and see) in order to make a quick buck (which is easy to do on IRC's underbellies) Anyone who pays attention at all to botnet or other malicious writers knows that if attention is directed to your code, it's fairly easy to track you down. It is also notable that this happened in 2006, and so it took this long for law enforcement to build a good enough case against them. Anyway, interesting at least to me, as I've been training up on computer forensics so its interesting to look at things like this.
I have used and tested multiple remote software, some commercial licensed stuff as well. I find that first, it depends on what you are using it for. If you are a remote worker and want to use programs at work from home, or vice versa, the minor trouble of editing ACL's to allow RDP (don't forget to change the port to avoid scans) is worth it. On the other hand, if you are constantly dealing with multiple people behind firewalls, something like show my pc or logmein free is more than likely what you want. I particularly like RDP for a couple reasons, one being that its built in and requires no additional installation on any professional version of windows. RDP for graphical remote on windows, GUI over SSH for *nix.
[Citation Needed]
Another vote for deepfreeze, (or something similar like Microsoft's free ?steady state?) I remember back in my senior year of HS when deepfreeze was first out, me being one of the known "hackers" was told by my teacher and computer mentor to see what I could do to bypass it. Even back then in its beta stage, I tried all kinds of things, deleting key files, total formats, and in the end the only way I was able to compromise DF was via hardware keylogger. I didn't know as much then as I do now but it was pretty awesome and I have seen it deployed it in many types of environments since then, usually on PC's that are public (like the business center at your apartment) but for anyone of questionable PC ability, get the version that allows a certain area to be permanently "thawed" tell them they must put any files there are they will be forever gone, and have someone come do updates every so often.
Neither
As a kid I read a lot, and always found that my imagination was always much more graphic and detailed than any video game or movie I ever saw.