So, which side of the firewall is the "untrusted" side at defcon? Do they protect defcon from the internet, or do they protect the internet from DefCon?
I used to love redhat, RPM's made quick work of things.. (I hated Configure;make;make install and keeping it up to date). At the time, redhat, with its up2date program rocked. However, on the desktop at home, I got fed up with dependancy hell. Was talking to a friend that worked at ximian (now novell) he said he was using ubuntu, and liked it.. I started playing with it. It has now been my main desktop at home for quite some time. (I dual booted XP for a while.. Felt really good to delete that windows partition!). I still have RedHat EL servers at work, mainly cause they are already paid for (and being a school, its only like $50/year). However, the ease of use of ubuntu, followed by the very nice apt-get and debs makes me think my next server will run Ubuntu Server. I'll need to check on its 64bit support, and If I had a critical DB server, running dozens of gigs of ram, lots of CPU's, and only the DB program, I'd probably still stick redhat on it, cause it is rock solid.. but anything else, I'll look to Ubuntu.
How on earth do people fly using only one airline. I'm sure if I lived in New York, and wanted to go to LA, that would be fine, but there is no flight from my area, to a few of the places I travel to, that is serviced by the same airline.
Ever work in a large environment? Its much easier to have one point of authentication and configuration. Do you want to deal with managing users (change passwords, disabled accounts, etc) on 8 different systems? I sure don't. Things will get forgotten, and accounts that should be disabled will not be.
You obviously haven't used AD very much, because it is not just an authentication system. It ensures policies (drive mappings, configurations, proxy settings, MS office behaviour and defaults, security standards, etc), deploys software and printers to users and computers
Posting in your blog that you logged in with AD credentials is a review?
What is the downsides. How does it compare to other authentication systems, such as eDirectory, or Open LDAP? How is it any different from just using Samba, or some of the other tools that have been around for years. My Redhat EL 3 server had the option to authenticate against AD. How is this better? How is it better than using Microsoft's Services For Unix and NIS?
Does the directory information get carried to the new system? (Profiles, groups, mapped drives, printers, etc) Do you have to designate special groups to allow logging in? There is way more questions that I would like to see answered in a "review".
What capabilities does the Enterprise edition allow that the basic does not, what is the price, how difficult is it to move a currently running system, and all its users and permissions..
A blog post from someone that admits they don't know much about AD in the first part of the review doesn't really count does it?
The reason the DVD market took off against the VHS market was two main reasons: 1. You don't have to rewind. (or fast forward). 2. Video rental stores no longer had to buy a special copy to be rented out. (those VHS tapes cost the stores over $100 each in some movies). They would just buy the DVD at $20, and rent it out at $3-$5 each. Way faster payback, way higher profits. (and smaller, you could fit more of them on the shelf..)
About airport security... Crashing a few planes is one thing, but what happens when someone in an explosive vest walks into an airport, and sits in the middle of a backed up line waiting to go through the security checkpoint. They don't even need a plane ticket, its public up until you get past security. Multiply that by a handfull of airports on the same day, and airports and airlines will go bankrupt in no time flat.
I've always thought that the first rule of this kind of security, is you don't present a target rich environment..
actually, with a proper credit card (not a debit card) you are not responsible for charges that are not yours. If you lose your card, and report it missing, the most that can be charged to you is $50. For fraud, you have to file a police report, and report it to your bank, but you should not be responsible for paying it. However, you might spend alot of time, filling out that paperwork, disputing problems on your credit history because of it, etc.. These protections do not exist for most checking, savings, or debit accounts..
If you order something online, and it doesn't get delivered or whatever, most card companies will allow you to request a charge-back, where they just reverse the charge, and then it is up to the merchant to deal with your card company...
In my state, OR, there is a huge shortage of Nurses. If you want to become a nurse, you have to go to college for a few years, and apply for the nursing program at one of the few approved schools that offer it. I have seen students with 3.8% GPA's get turned down. OHSU (the school that runs the nursing program state wide) is always asking for more funding.. Their budget is about double what it was just a few years ago, so they should accept about double the number of students, right? No, about 10% more. You can have a 3.9GPA and go on a waiting list to be accepted.
Funny thing, the program is run by nurses, nurses whose wages are based on "industry averages". Industry averages that are skyrocketing due to a shortage of nurses. (most of that doubling of the budget went to salaries, and administration). Oh, and OHSU built a giant, multi million dollar gondolla to get to their campus from a new parking lot a mile away, and down a hill and across a highway..
You just fill out your unemployment insurance paperwork and get like 1/4 to 1/2 your salary after a few weeks, and look for a new job in the meantime.
The key is, you make sure to lay off all the state employees at the unemployment department last. I don't think California is smart enough to figure this one out...
Then you take the difference in salary between a new cobol programmer and one with 10 years of experience in the field, and purchase a small system to act as a "development box" to test out your code? Seriously, who works on live servers first?
Honestly, I think it's time to institute a punishment for a corporation, the most severe punishment that can happen to something that can't be thrown in jail.. Revoke their charter, and nullify the entire company. The corporate death penalty, if you will.
If it happens more often, companies will start to realize that this isn't a matter of getting fined, which their insurance will cover, and their rates will go up a little, but that the company will no longer exist, and can't write paychecks, can't purchase goods, can't deposit money, and their assetts will be sold off to the highest bidder. Might make them a little more "caring" about important issues..
Exactly. Why is my Social Security number needed to purchase a cell phone and contract? Does my insurance company need it? Why do credit checks have to be run for everything nowadays? I would honestly prefer giving something like my fingerprint at the store, as long as the employee also had to give theirs, as a way of certifing "yes, they pressed their thumb, I watched them, and they were not coerced".
I think that the best thing that can happen is that more ID's are stolen, as in millions, as in IRS or some states database. If they can no longer be trusted, they will no longer be used..
I work for a small community college, about 800 Full time students, a couple thousand part time. We have open wireless, and computers all over that students can use. I have had a problem with maybe 5-8 of them using limewire or bittorrent and swamping our connection. (we're more worried about connection use, the content is their issue.) Most of them have stopped when we ask them too. A few of them were explaining that they were trying to DL Linux ISO's, so we pointed them to a mirror that is at another school, that does not count towards our bandwidth limits (and they're on a 100MB network with us, its fast).
Now, it appears that I am going to have to pay thousands of dollars a term to subscribe them all to a music download service, which will punish the 98%-99% of students who are good, because a few might have downloaded music. We charge $3/credit for "tech" fees, and that just went up, it was $2/credit. That is going to swallow a huge portion of our budget for things like replacing student labs.
Your school might have a rampant problem, mine doesn't. Its going to hurt the students, because we will have to either raise tuition or fees, or put equipment on a longer replacement cycle to pay for something that we don't need.
Yeah, that will happen about the same time that someone takes the idea that Amazon has of selling books, and changes it to "renting" or "borrowing" books. Next thing you know, the government will get in on the game, and subsidize these ideas, and us taxpayers will all have places were we can go and read books for free! Think of the chaos, think of the publishers right to profit!
The problem is, that if you bring your own phone, (or purchase outright) you are still paying for the subsidized cost in the plans.. Personally, it would make alot more sense to me if they split out the bill so that your Cell Service was (for example) $45, and the Phone purchase was $5 each month. (instead of a $50/month plan). Then, there would actually be a benefit to bringing in your own phone. Cable Internet companies, at least in my area, do this, I pay for internet, and I pay $x/month on top for the "cable modem rental fee".
there is a guide on this stuff, written up by some lawyers, called the The Photographers Right that gives good information. The laws should also apply to video.
My uncle was a sheriff for many years, (just retired) and I asked him what is was like dealing every day with people giving you shit, hating you, spitting at you, calling you names, etc..
He told me it didn't bother him much, it was just a part of the job, and that assholes will always be assholes. The part of his job he hated was the psuedo "victims". IE, you're called to a house for the 3rd time that month for domestic violence, and the woman wants YOU to stop the man from beating her, cause she's a victim. Of course, she would always go back to the same guy, and a few weeks later, the whole cycle would repeat. He really hated those situations, or any domestic violence, because you have so much emotional crap you have to deal with as a cop on the call.
Actually, they can ban the Chineese teams from participating in the games. That would be pretty interesting! They could also formally recognize Tawain as a seperate team. They have a special name and status in the Olympics, because China throws a fit when someone says they aren't part of China.
I completely agree. How many products did Edison try when developing the fillament of the lightbulb. I remember reading that it was a few thousand. Imagine if he didn't do that because it "wasn't scientific".
Really, its the basis of all new drugs, Does the grandparent poster think that since we sequenced the human DNA, the super computers that the drug companies use just go "aha, this is it". No, they need supercomputers to try so many combinations to come up with the right one. Essentially, speeding up the trial and error by a few million times.
Try having well written, very clear policies that that kind of action is forbiden. Of course, a piece of paper means crap to most employees, but the first time you fire someone for violating that policy, the grapevine and water cooler will provide more training than a dozen hour long meetings could convey..
I know there have been the oppositte, where the theft of your patent idea becomes a "state secret" and you are hosed.. take a look at this one for an example. Lucent stole this guys idea, and sold it to the military, and he can't touch them
To sell you the features that extend it, such as management, hot migration to other machines, etc. The ESXi is cool, but a very, very base product. If you start playing with it, you will want to pay for all the features that go along with ESX to manage, deploy, etc..
Slashdot Mirror
That is soo 1970's... Its now better living through pharmacology.
Sad, we got a pill for that
tired, we got a pill for that
sick, we got a pill for that
taking too many pills, we got a pill for that.
So, which side of the firewall is the "untrusted" side at defcon? Do they protect defcon from the internet, or do they protect the internet from DefCon?
I used to love redhat, RPM's made quick work of things.. (I hated Configure;make;make install and keeping it up to date). At the time, redhat, with its up2date program rocked. However, on the desktop at home, I got fed up with dependancy hell. Was talking to a friend that worked at ximian (now novell) he said he was using ubuntu, and liked it.. I started playing with it. It has now been my main desktop at home for quite some time. (I dual booted XP for a while.. Felt really good to delete that windows partition!). I still have RedHat EL servers at work, mainly cause they are already paid for (and being a school, its only like $50/year). However, the ease of use of ubuntu, followed by the very nice apt-get and debs makes me think my next server will run Ubuntu Server. I'll need to check on its 64bit support, and If I had a critical DB server, running dozens of gigs of ram, lots of CPU's, and only the DB program, I'd probably still stick redhat on it, cause it is rock solid.. but anything else, I'll look to Ubuntu.
How on earth do people fly using only one airline. I'm sure if I lived in New York, and wanted to go to LA, that would be fine, but there is no flight from my area, to a few of the places I travel to, that is serviced by the same airline.
Ever work in a large environment? Its much easier to have one point of authentication and configuration. Do you want to deal with managing users (change passwords, disabled accounts, etc) on 8 different systems? I sure don't. Things will get forgotten, and accounts that should be disabled will not be.
You obviously haven't used AD very much, because it is not just an authentication system. It ensures policies (drive mappings, configurations, proxy settings, MS office behaviour and defaults, security standards, etc), deploys software and printers to users and computers
Posting in your blog that you logged in with AD credentials is a review?
What is the downsides. How does it compare to other authentication systems, such as eDirectory, or Open LDAP? How is it any different from just using Samba, or some of the other tools that have been around for years. My Redhat EL 3 server had the option to authenticate against AD. How is this better? How is it better than using Microsoft's Services For Unix and NIS?
Does the directory information get carried to the new system? (Profiles, groups, mapped drives, printers, etc) Do you have to designate special groups to allow logging in? There is way more questions that I would like to see answered in a "review".
What capabilities does the Enterprise edition allow that the basic does not, what is the price, how difficult is it to move a currently running system, and all its users and permissions..
A blog post from someone that admits they don't know much about AD in the first part of the review doesn't really count does it?
The reason the DVD market took off against the VHS market was two main reasons:
1. You don't have to rewind. (or fast forward).
2. Video rental stores no longer had to buy a special copy to be rented out. (those VHS tapes cost the stores over $100 each in some movies). They would just buy the DVD at $20, and rent it out at $3-$5 each. Way faster payback, way higher profits. (and smaller, you could fit more of them on the shelf..)
About airport security... Crashing a few planes is one thing, but what happens when someone in an explosive vest walks into an airport, and sits in the middle of a backed up line waiting to go through the security checkpoint. They don't even need a plane ticket, its public up until you get past security. Multiply that by a handfull of airports on the same day, and airports and airlines will go bankrupt in no time flat.
I've always thought that the first rule of this kind of security, is you don't present a target rich environment..
actually, with a proper credit card (not a debit card) you are not responsible for charges that are not yours. If you lose your card, and report it missing, the most that can be charged to you is $50. For fraud, you have to file a police report, and report it to your bank, but you should not be responsible for paying it. However, you might spend alot of time, filling out that paperwork, disputing problems on your credit history because of it, etc.. These protections do not exist for most checking, savings, or debit accounts..
If you order something online, and it doesn't get delivered or whatever, most card companies will allow you to request a charge-back, where they just reverse the charge, and then it is up to the merchant to deal with your card company...
No, in theory, you can choose to not sign it, and go somewhere else. (however, pretty much everywere requires it).
In my state, OR, there is a huge shortage of Nurses. If you want to become a nurse, you have to go to college for a few years, and apply for the nursing program at one of the few approved schools that offer it. I have seen students with 3.8% GPA's get turned down. OHSU (the school that runs the nursing program state wide) is always asking for more funding.. Their budget is about double what it was just a few years ago, so they should accept about double the number of students, right? No, about 10% more. You can have a 3.9GPA and go on a waiting list to be accepted.
Funny thing, the program is run by nurses, nurses whose wages are based on "industry averages". Industry averages that are skyrocketing due to a shortage of nurses. (most of that doubling of the budget went to salaries, and administration). Oh, and OHSU built a giant, multi million dollar gondolla to get to their campus from a new parking lot a mile away, and down a hill and across a highway..
You just fill out your unemployment insurance paperwork and get like 1/4 to 1/2 your salary after a few weeks, and look for a new job in the meantime.
The key is, you make sure to lay off all the state employees at the unemployment department last. I don't think California is smart enough to figure this one out...
Then you take the difference in salary between a new cobol programmer and one with 10 years of experience in the field, and purchase a small system to act as a "development box" to test out your code? Seriously, who works on live servers first?
Honestly, I think it's time to institute a punishment for a corporation, the most severe punishment that can happen to something that can't be thrown in jail.. Revoke their charter, and nullify the entire company. The corporate death penalty, if you will.
If it happens more often, companies will start to realize that this isn't a matter of getting fined, which their insurance will cover, and their rates will go up a little, but that the company will no longer exist, and can't write paychecks, can't purchase goods, can't deposit money, and their assetts will be sold off to the highest bidder. Might make them a little more "caring" about important issues..
Exactly. Why is my Social Security number needed to purchase a cell phone and contract? Does my insurance company need it? Why do credit checks have to be run for everything nowadays? I would honestly prefer giving something like my fingerprint at the store, as long as the employee also had to give theirs, as a way of certifing "yes, they pressed their thumb, I watched them, and they were not coerced".
I think that the best thing that can happen is that more ID's are stolen, as in millions, as in IRS or some states database. If they can no longer be trusted, they will no longer be used..
I work for a small community college, about 800 Full time students, a couple thousand part time. We have open wireless, and computers all over that students can use. I have had a problem with maybe 5-8 of them using limewire or bittorrent and swamping our connection. (we're more worried about connection use, the content is their issue.) Most of them have stopped when we ask them too. A few of them were explaining that they were trying to DL Linux ISO's, so we pointed them to a mirror that is at another school, that does not count towards our bandwidth limits (and they're on a 100MB network with us, its fast).
Now, it appears that I am going to have to pay thousands of dollars a term to subscribe them all to a music download service, which will punish the 98%-99% of students who are good, because a few might have downloaded music. We charge $3/credit for "tech" fees, and that just went up, it was $2/credit. That is going to swallow a huge portion of our budget for things like replacing student labs.
Your school might have a rampant problem, mine doesn't. Its going to hurt the students, because we will have to either raise tuition or fees, or put equipment on a longer replacement cycle to pay for something that we don't need.
Yeah, that will happen about the same time that someone takes the idea that Amazon has of selling books, and changes it to "renting" or "borrowing" books. Next thing you know, the government will get in on the game, and subsidize these ideas, and us taxpayers will all have places were we can go and read books for free! Think of the chaos, think of the publishers right to profit!
The problem is, that if you bring your own phone, (or purchase outright) you are still paying for the subsidized cost in the plans.. Personally, it would make alot more sense to me if they split out the bill so that your Cell Service was (for example) $45, and the Phone purchase was $5 each month. (instead of a $50/month plan). Then, there would actually be a benefit to bringing in your own phone. Cable Internet companies, at least in my area, do this, I pay for internet, and I pay $x/month on top for the "cable modem rental fee".
there is a guide on this stuff, written up by some lawyers, called the The Photographers Right that gives good information. The laws should also apply to video.
My uncle was a sheriff for many years, (just retired) and I asked him what is was like dealing every day with people giving you shit, hating you, spitting at you, calling you names, etc..
He told me it didn't bother him much, it was just a part of the job, and that assholes will always be assholes. The part of his job he hated was the psuedo "victims". IE, you're called to a house for the 3rd time that month for domestic violence, and the woman wants YOU to stop the man from beating her, cause she's a victim. Of course, she would always go back to the same guy, and a few weeks later, the whole cycle would repeat. He really hated those situations, or any domestic violence, because you have so much emotional crap you have to deal with as a cop on the call.
Actually, they can ban the Chineese teams from participating in the games. That would be pretty interesting! They could also formally recognize Tawain as a seperate team. They have a special name and status in the Olympics, because China throws a fit when someone says they aren't part of China.
I completely agree. How many products did Edison try when developing the fillament of the lightbulb. I remember reading that it was a few thousand. Imagine if he didn't do that because it "wasn't scientific". Really, its the basis of all new drugs, Does the grandparent poster think that since we sequenced the human DNA, the super computers that the drug companies use just go "aha, this is it". No, they need supercomputers to try so many combinations to come up with the right one. Essentially, speeding up the trial and error by a few million times.
Try having well written, very clear policies that that kind of action is forbiden. Of course, a piece of paper means crap to most employees, but the first time you fire someone for violating that policy, the grapevine and water cooler will provide more training than a dozen hour long meetings could convey..
I know there have been the oppositte, where the theft of your patent idea becomes a "state secret" and you are hosed.. take a look at this one for an example. Lucent stole this guys idea, and sold it to the military, and he can't touch them
To sell you the features that extend it, such as management, hot migration to other machines, etc. The ESXi is cool, but a very, very base product. If you start playing with it, you will want to pay for all the features that go along with ESX to manage, deploy, etc..