I to only run a 60 people shop and I'm waiting for a little more useability before I roll it out.
Coincidentally, I'm also installing a hidden linux partition to all new machine builds, so in case the worm of the century hits us and kills of our windows, I can easily just change the bootloader to linux and at least get them up on linux and an office suite pretty easily.
Perhaps the DoD is on a different list, but the lists I was on I would get updates at least a day or two after known exploit, or nothing at all. I don't care about priorities, I need to know if a system I run is vulnerable, and It wasn't cutting it.
Now networks have emotions and touchy feely moments. Check in the therapists office CNN, this lingering sadness could be something more serious and need drug therapy...
Living in Portland, Powell's management is seen as "The Man." They've been exploiting their workers for 10+ years and severely punished former employees at attempting to form a labor union.
That's not to say that the N6 doesn't have some problems of its own. Most notable among them was that, try as I might, I could not activate the PIP function. When I attempted to change the PIP settings in the menus, the cursor would not allow me to select them. The terse user manual proved to be no help, and the ViewSonic Web site was sorely lacking in information. However, I've hit upon a possible explanation. It appears that the N6 shares the same form factor and remote as its little brother, the NextVision N5. In the N5's specifications, it indicates that while there is a PIP button on the remote and PIP controls in the menu, they are not selectable options. Could it be that ViewSonic failed to enable this function on the N6? If so, it is a rather serious mistake on ViewSonic's part, since PIP is one of the new, exclusive features of the N6 model.
Another problem was a slight tint to all of the inputs, as if someone had put a light blue film over the screen.
Sorry. SONY learned this lesson, oh, in the first 5 minutes of it's consumer startup. You don't make consumer home devices that work "partially," etc. People don't want to upgrade firmware on their home entertainment devices, period. As a techie, I tend to agree. Guess it's N7 or bust.
Buy more batteries. Sure it's costlier, heavier, sure it's space-eating. But you get your 8+ hours easily, at only a fraction of the cost of tomorrow's "tech".
Invest in very small (3 pound) laptops, that get 5 hours per battery, and a few hotspares(less than a pound each), and you are good for a day, easy.
Except for still shots. Watch closely in mags in the next year. Cover shots? Ads? No little sidebar saying so-and so is wearing Gap--no sir-- that is a CG complete rendered at 1/2 (and soon to be 1/10) the cost. And you won't know.
Models revolting, although a model hunger strike wouldn't be very fruitful.
Bugtraq has a terrible signal/noise ratio, is behind on many of the common exploits out there, and is truly painful to watch professionals scramble about when an exploit is released. Unsubscribed years ago when it truly got bad.
Huh? NY has had metrocard for years, it's successful, disposeable, and considered a fairly resounding success and can be linked to cash or credit, giving you a range of options, some of which are beneficial to the consumer (you can let someone else use your card free.) I guess if it has a chip though it should be cool.
The token is dead. Cash is dying. off topic, the dollar is dying, in particular...:)
Dell lost our contract, based on support alone. PC prices have dropped to the point no manufacturer has much of an advantage, if I need service, well, I need service, not a hold time and a frustrating wait in the unorganized Dell customer service/tech support queue. After the outsource to India (from Beaverton/OR, Montana, even Canada,) I also jumped ship. I purchase a small amount ($40,000 every few years)
Try this: After making an online purchase with Dell, try and cancel it. Bet it takes you 20+ minutes or more in phone calls alone. They will not let you cancel it online. They will not let you cancel it off hours. Have fun!
quote: "Watching Bill Clinton address the conference while sitting in the hotel room of the President of Mozambique -- we were viewing it on closed circuit TV -- I got juicy blow-by=blow..."
uh, dude, your married. There is NO benefit to the male side of marriage. You lost the war 10 years ago, he still has time to get out while the going is safe.
You need(ed) urlscan: http://www.microsoft.com/technet/treevie w/default. asp?url=/technet/security/tools/tools/urlscan.asp
And a clue how to admin a box. Usually you learn about the tenets of how it works BEFORE you use it on the net. Your issue is 100% admin error, not Microsoft.
So far we've seen a breakdown of every level of security that Microsoft themselves preach, and we've seen it recently:
1. They didn't test their own code(patches) before releasing it. Exchange (summer '01) and NT4 ('03) are examples of products broken after patches. The NT4 patch took over a month to fix! There are still about 9+ vulnerabilities with IE out there, and have been that many ever since it's release!
2. They have seen numerous internal vulnerabilities in house. Examples include the VPN contractor who was vulnerable and exposed their internal code, as well as slapper worm happening last month. The second is a massive issue, no patching on their own systems, I can't believe that one.
3. They are vulnerable to social engineering cracks, which can effect their infrastructure from the top down (someone claiming to be from Microsoft getting issued valid global certificates that all machines trust.) Microsoft wasn't even at fault there, but someone MS trusted was.
The problem is here is that they preach, but the practice, and more importantly the models will *not work* in the long term. As their OS's and software becomes much more hemogenized, the "defaults" won't matter as much, because the system will depend on itself far too much.
An example is security in the windows world is dependant now on auto-updates. You crack that and you crack EVERY WINDOWS PC looking to it since Windows 95.
Where are the checks and balances that will prevent an attack from the top down? I don't see it ever being viable with trust being put in one organization.
I've always suspected that it will come down to small claims court to bring spammers down. And it won't be attorneys, it'll be the little guy like you and I. Here's why:
1. We have the time. A reward of $500 a day isn't too bad, tax free, I assume. Getting the headers, and finding a local spammer is the most difficult part of our task.
2. It pays. Illegal acts are being committed, even without the fax laws, there are truth-in-advertising laws, smut laws, etc.
3. Spammers are in your state. The sheer volume of mail sent means you're likely to eventually getting spam that originates from your state. This is important as most small claims courts will require both parties reside n the same area.
I'm employed, not really worth my time, but there's a business model and a "Support-your-American-Economy" cheeriness about this. Now go take on the day!
Re:The future? Just like the past should be...
on
More on Columbia
·
· Score: 2, Informative
not worth it to any single company right now. Only boeing has the resources, and they get money whether or not they accomplish the above. If you want companies to be incentive-driven to accomplish these tasks, bump that price up at least 10 times per challenge. A billion won't even pay for chump change with space travel.
Slashdot Mirror
Wilsonville has about 3,000+ jobs waiting to be hired. The area is exploding right now.
I to only run a 60 people shop and I'm waiting for a little more useability before I roll it out.
Coincidentally, I'm also installing a hidden linux partition to all new machine builds, so in case the worm of the century hits us and kills of our windows, I can easily just change the bootloader to linux and at least get them up on linux and an office suite pretty easily.
90% of companies block this port, along with the other ubiquitous 130's. Windows or not. blocks this port.
Irregardless (love saying that word,) Not making a patch makes all internal networks with NT$ vulnerable.
Perhaps the DoD is on a different list, but the lists I was on I would get updates at least a day or two after known exploit, or nothing at all. I don't care about priorities, I need to know if a system I run is vulnerable, and It wasn't cutting it.
CERT is a joke, they announce security vulns days late, often skipping arbitrarily vulns that are on a massive scale. Unsubscribed a year ago.
Now networks have emotions and touchy feely moments. Check in the therapists office CNN, this lingering sadness could be something more serious and need drug therapy...
Living in Portland, Powell's management is seen as "The Man." They've been exploiting their workers for 10+ years and severely punished former employees at attempting to form a labor union.
l
http://www.nwlaborpress.org/12-18-98Powells.htm
Sorry. SONY learned this lesson, oh, in the first 5 minutes of it's consumer startup. You don't make consumer home devices that work "partially," etc. People don't want to upgrade firmware on their home entertainment devices, period. As a techie, I tend to agree. Guess it's N7 or bust.
Dell Offers Mailing List Subscription for $15, Oh, and They'll Pick Your Ass-Tasstic PC Up Too and get a Tax Write-Off.
You submit a catastrophic bug that can take down entire AD domains from inside to Microsoft, and they ignore for 3 months?
See here.
Buy more batteries. Sure it's costlier, heavier, sure it's space-eating. But you get your 8+ hours easily, at only a fraction of the cost of tomorrow's "tech".
Invest in very small (3 pound) laptops, that get 5 hours per battery, and a few hotspares(less than a pound each), and you are good for a day, easy.
This post won't be abused... no. Carry on.
Yeah bitch How you like my mod then? CAPITAL LETTERS: If I ever Meet You I Will Kick Your Ass.
Except for still shots. Watch closely in mags in the next year. Cover shots? Ads? No little sidebar saying so-and so is wearing Gap--no sir-- that is a CG complete rendered at 1/2 (and soon to be 1/10) the cost. And you won't know.
Models revolting, although a model hunger strike wouldn't be very fruitful.
Bugtraq has a terrible signal/noise ratio, is behind on many of the common exploits out there, and is truly painful to watch professionals scramble about when an exploit is released. Unsubscribed years ago when it truly got bad.
Huh? NY has had metrocard for years, it's successful, disposeable, and considered a fairly resounding success and can be linked to cash or credit, giving you a range of options, some of which are beneficial to the consumer (you can let someone else use your card free.) I guess if it has a chip though it should be cool.
:)
The token is dead. Cash is dying. off topic, the dollar is dying, in particular...
Dell lost our contract, based on support alone. PC prices have dropped to the point no manufacturer has much of an advantage, if I need service, well, I need service, not a hold time and a frustrating wait in the unorganized Dell customer service/tech support queue. After the outsource to India (from Beaverton/OR, Montana, even Canada,) I also jumped ship. I purchase a small amount ($40,000 every few years)
Try this: After making an online purchase with Dell, try and cancel it. Bet it takes you 20+ minutes or more in phone calls alone. They will not let you cancel it online. They will not let you cancel it off hours. Have fun!
quote:
"Watching Bill Clinton address the conference while sitting in the hotel
room of the President of Mozambique -- we were viewing it on closed
circuit TV -- I got juicy blow-by=blow..."
That's all the sniffer was looking for, really...
uh, dude, your married. There is NO benefit to the male side of marriage. You lost the war 10 years ago, he still has time to get out while the going is safe.
You need(ed) urlscan:e w/default. asp?url=/technet/security/tools/tools/urlscan.asp
http://www.microsoft.com/technet/treevi
And a clue how to admin a box. Usually you learn about the tenets of how it works BEFORE you use it on the net. Your issue is 100% admin error, not Microsoft.
Live and learn.
So far we've seen a breakdown of every level of security that Microsoft themselves preach, and we've seen it recently:
1. They didn't test their own code(patches) before releasing it. Exchange (summer '01) and NT4 ('03) are examples of products broken after patches. The NT4 patch took over a month to fix! There are still about 9+ vulnerabilities with IE out there, and have been that many ever since it's release!
2. They have seen numerous internal vulnerabilities in house. Examples include the VPN contractor who was vulnerable and exposed their internal code, as well as slapper worm happening last month. The second is a massive issue, no patching on their own systems, I can't believe that one.
3. They are vulnerable to social engineering cracks, which can effect their infrastructure from the top down (someone claiming to be from Microsoft getting issued valid global certificates that all machines trust.) Microsoft wasn't even at fault there, but someone MS trusted was.
The problem is here is that they preach, but the practice, and more importantly the models will *not work* in the long term. As their OS's and software becomes much more hemogenized, the "defaults" won't matter as much, because the system will depend on itself far too much.
An example is security in the windows world is dependant now on auto-updates. You crack that and you crack EVERY WINDOWS PC looking to it since Windows 95.
Where are the checks and balances that will prevent an attack from the top down? I don't see it ever being viable with trust being put in one organization.
I think it's pretty obvious the aliens that discover this will be rather disappointed at the lack of masturbationary material.
I've always suspected that it will come down to small claims court to bring spammers down. And it won't be attorneys, it'll be the little guy like you and I.
Here's why:
1. We have the time. A reward of $500 a day isn't too bad, tax free, I assume. Getting the headers, and finding a local spammer is the most difficult part of our task.
2. It pays. Illegal acts are being committed, even without the fax laws, there are truth-in-advertising laws, smut laws, etc.
3. Spammers are in your state. The sheer volume of mail sent means you're likely to eventually getting spam that originates from your state. This is important as most small claims courts will require both parties reside n the same area.
I'm employed, not really worth my time, but there's a business model and a "Support-your-American-Economy" cheeriness about this. Now go take on the day!
not worth it to any single company right now. Only boeing has the resources, and they get money whether or not they accomplish the above. If you want companies to be incentive-driven to accomplish these tasks, bump that price up at least 10 times per challenge. A billion won't even pay for chump change with space travel.
Actually, I'm from Oregon, and Wyden responds personally to e-mail with constructive comments.