I find it hilarious that this was moderated only a 4. SYSKEY is the answer to this problem, and anyone who is serious about NT security (no snickers now) uses it, and has since NT4
The company I work for (I admin the network/firewall/proxy) also has this policy. I presented the ability to provide reports for each node to direct managers, and they weren't interested. Unless there are periphery related signs (like abuse or slacking in other areas,) the directors of the firm said all's fair as long as noone is offended. The policy manual is there to keep us protected, mostly.
That being said, I occasionally check the top 10 sites visited and they are *all* work related, and people aren't screwing around between 8-12 and 1-5. Since we don't pay more for extraneous bandwidth on this T-1, why should I care? Everyone wins.
Just as a counter-argument, we've been running SQL2000 for a year now with four distinct databases, patched on weekends as they came out, and not had a single issue, performance, security, patch, or backup/restore. Total administration time I would say over the past year is about 10 hours, total, with patching and updates, backup/maintenance. Rock solid. Not an MS employee or pundit, we run Linux as a firewall/IDS/Squid and are moving many services over as I write, but SQL 2000 is a fairly good product comparitively.
perhaps you have a Ground Fault Interruptor on the same circuit. A little known fact in the power world is you cannot have a UPS on the same line as a GFI. This is frequently difficult as most US states code reuires a GFI on most circuits now in your kitchen, bathroom, utility area which are often shared with office space.
Then how will Disney, with tens of thousands (maybe hundreds of thousands) of separate copyrights and marks, be able to publish this to maintain their status as active? Make a book?
Sure you will... the future antennas will just have a built in converter that all can fit on the back of your portable TV. Mind you, it'll probably be just as large as the TV itself, if not larger, but WHAT A SACRIFICE FOR PROGRESS!
There is a difference. On my internal wired Network, I don't have to fear someone sniffing packets 24/7. I can put physical safeguards like block public cable spaces, and IPsec filtering is much easier than having to deal with every broadcast second being potentially intercepted.
And the tools to intercept wireless sniffers is in infancy, and it's at a cat & mouse stage now, so those sniffing have the upper hand. Whereas IDS systems are proven and far easier to setup.
Security is definately a hardware issue. not as black and white, however it is a lot more difficult to sniff a wire.
What do you mean "burn?" It costs the same to lay 1000bt cat5e(or higher) cable now as cat5 100bt, and the difference in performnce is in multiples of 10-100, depending on your setup, from 4MB token ring. Well worth the cost investment. Better yet, if you've waited this long, it's actually cheaper to lay cable than just 4 years ago, and you can get really slick stuff (fiber backbones to simple switches) at a great distance for much less than the rest of us paid for it.
Is settle. These suits are brought to have a settlement offer. Microsoft can drag the case on for years while releasing products. They can claim that "Windows YO" has DRM built in, how can we possibly strip millions of consumers from using it, etc.
The case will settle within a year and things will go on as normal.
So they shut down Kazaa. The Consumer available models of file trading are all gone? No, more effort put into efforts like freenet, or Edonkey, or much more sophisticated methods that are decentralized, encrypted, and much more difficult to shut down?
No, witness DC++, which is 99% warez, and no efforts to shut that down.
What they don't realize is people want this, they can get it, and their efforts truly are being wasted. At least the Motion Picture industry is attempting to head them off at the pass with their own service ramp-up.
For music? It's too late, they have lost the battle for distribution. And to think, if they had their own distribution model in 1998, we would likely all be paying for it, and be happy!
We also have the lovely law that says we have to have a permit to have a protest on public space now. While permits haven't been denied yet, it's only a matter of time before one is rejected based on "costs to the city and it's citizens"
Worm proposal: Melissa-propagation, with a payload of randomly deleting (but better yet just changing a random metadata part of the file, such as add a few lines of corruption to a jpg, or a few random letters in a word document) network and local files, changing the date and filesize back to their original values, rooting every box to disable SFC, then restart the boxen with the "restart" tool from the Microsoft resource toolkit after infecting 500 hosts for propogation, changing the bootloader to load a linux quickboot random DOD filesystem wipe.
Boom, Microsoft OS +millions are gone. All this is possible with one single IE loaded webpage or link into an outlook/social engineering hack. IE is still vulnerable to scripting hacks and always will be.
we use it, and like linux, it requires a lot of compatibility testing with your apps. You can easily break something bad enough irreversibly, so it's not a toy that one uses on their users.
follow the guides and the people (beta) before you
I think that is a mockery of Microsoft, not taking threats as a joke. The exploit has full text to back it's claims.
Perhaps if the same exploits didn't keep showing up you wouldn't see bugteams mocking Vendors.
Re:solution for one of the problems..
on
The New IT Crisis
·
· Score: 2
While I lub my squid proxy, the RHN update agent is rather buggy and times out frequently and/or gets locked. No worries as it's easy to kill and try again, but it's got some tuning to do.
yep... free e-mail for life. I went from them to usa.net, who also proclaimed the same thing, and then they started charging. Now I'm on spamcop, and I pay, but it's 100% worth it!
And companies will continue to wait until this technology matures, gets secure, or gets useful. Where I work we're lucky to get 30 feet of reception, we're completely aware of most of the security issues and it's completely not worth it.
I'd rather have fiber/speed to my nodes than them being able to take a laptop out in the rain, anyday, but perhaps that's just the geek/sun-fearer in me. Give me a tech like the potty robots that can replace all my cat5 with 10,000 Base-T fiber for under a grand and I'm there!
Slashdot Mirror
I find it hilarious that this was moderated only a 4. SYSKEY is the answer to this problem, and anyone who is serious about NT security (no snickers now) uses it, and has since NT4
Sounds like that's not the only thing he's too lazy to do...
The company I work for (I admin the network/firewall/proxy) also has this policy. I presented the ability to provide reports for each node to direct managers, and they weren't interested. Unless there are periphery related signs (like abuse or slacking in other areas,) the directors of the firm said all's fair as long as noone is offended. The policy manual is there to keep us protected, mostly.
That being said, I occasionally check the top 10 sites visited and they are *all* work related, and people aren't screwing around between 8-12 and 1-5. Since we don't pay more for extraneous bandwidth on this T-1, why should I care? Everyone wins.
We use USB keychains for all staff (16MB and up) and have a USB floppy if anyone needs that legacy. The floppy is being requested a lot less lately.
A computer would have to be very old not to support USB, in which case they likely can't even open the modern file it's using anyway!
I'll bet he can't wait to get a drink from Mr. Motherfucking Shit, too!
Just as a counter-argument, we've been running SQL2000 for a year now with four distinct databases, patched on weekends as they came out, and not had a single issue, performance, security, patch, or backup/restore. Total administration time I would say over the past year is about 10 hours, total, with patching and updates, backup/maintenance. Rock solid. Not an MS employee or pundit, we run Linux as a firewall/IDS/Squid and are moving many services over as I write, but SQL 2000 is a fairly good product comparitively.
He's obviously running the site himself to throw everyone off!
perhaps you have a Ground Fault Interruptor on the same circuit. A little known fact in the power world is you cannot have a UPS on the same line as a GFI. This is frequently difficult as most US states code reuires a GFI on most circuits now in your kitchen, bathroom, utility area which are often shared with office space.
Or portable battery manuafacturers
Or third party anything
Or interchangeable phone cords
etc etc etc
Then how will Disney, with tens of thousands (maybe hundreds of thousands) of separate copyrights and marks, be able to publish this to maintain their status as active? Make a book?
silly.
Your puke may actually make it into space.
Read up on how the OSI model works and then you'll have your answerg{!}g
Sure you will... the future antennas will just have a built in converter that all can fit on the back of your portable TV. Mind you, it'll probably be just as large as the TV itself, if not larger, but WHAT A SACRIFICE FOR PROGRESS!
There is a difference. On my internal wired Network, I don't have to fear someone sniffing packets 24/7. I can put physical safeguards like block public cable spaces, and IPsec filtering is much easier than having to deal with every broadcast second being potentially intercepted.
And the tools to intercept wireless sniffers is in infancy, and it's at a cat & mouse stage now, so those sniffing have the upper hand. Whereas IDS systems are proven and far easier to setup.
Security is definately a hardware issue. not as black and white, however it is a lot more difficult to sniff a wire.
What do you mean "burn?" It costs the same to lay 1000bt cat5e(or higher) cable now as cat5 100bt, and the difference in performnce is in multiples of 10-100, depending on your setup, from 4MB token ring. Well worth the cost investment. Better yet, if you've waited this long, it's actually cheaper to lay cable than just 4 years ago, and you can get really slick stuff (fiber backbones to simple switches) at a great distance for much less than the rest of us paid for it.
The actual answer (4) (not profit)
Is settle. These suits are brought to have a settlement offer. Microsoft can drag the case on for years while releasing products. They can claim that "Windows YO" has DRM built in, how can we possibly strip millions of consumers from using it, etc.
The case will settle within a year and things will go on as normal.
Free.
So they shut down Kazaa. The Consumer available models of file trading are all gone? No, more effort put into efforts like freenet, or Edonkey, or much more sophisticated methods that are decentralized, encrypted, and much more difficult to shut down?
No, witness DC++, which is 99% warez, and no efforts to shut that down.
What they don't realize is people want this, they can get it, and their efforts truly are being wasted. At least the Motion Picture industry is attempting to head them off at the pass with their own service ramp-up.
For music? It's too late, they have lost the battle for distribution. And to think, if they had their own distribution model in 1998, we would likely all be paying for it, and be happy!
We also have the lovely law that says we have to have a permit to have a protest on public space now. While permits haven't been denied yet, it's only a matter of time before one is rejected based on "costs to the city and it's citizens"
Worm proposal:
Melissa-propagation, with a payload of randomly deleting (but better yet just changing a random metadata part of the file, such as add a few lines of corruption to a jpg, or a few random letters in a word document) network and local files, changing the date and filesize back to their original values, rooting every box to disable SFC, then restart the boxen with the "restart" tool from the Microsoft resource toolkit after infecting 500 hosts for propogation, changing the bootloader to load a linux quickboot random DOD filesystem wipe.
Boom, Microsoft OS +millions are gone. All this is possible with one single IE loaded webpage or link into an outlook/social engineering hack. IE is still vulnerable to scripting hacks and always will be.
Now go write it!
we use it, and like linux, it requires a lot of compatibility testing with your apps. You can easily break something bad enough irreversibly, so it's not a toy that one uses on their users.
follow the guides and the people (beta) before you
I think that is a mockery of Microsoft, not taking threats as a joke. The exploit has full text to back it's claims.
Perhaps if the same exploits didn't keep showing up you wouldn't see bugteams mocking Vendors.
While I lub my squid proxy, the RHN update agent is rather buggy and times out frequently and/or gets locked. No worries as it's easy to kill and try again, but it's got some tuning to do.
MRTG combined with SNMP, essentially. I showed two of my bosses this and they flipped out at all the pretty lines. I guess that's all I need to do! ;)
yep... free e-mail for life. I went from them to usa.net, who also proclaimed the same thing, and then they started charging. Now I'm on spamcop, and I pay, but it's 100% worth it!
And companies will continue to wait until this technology matures, gets secure, or gets useful. Where I work we're lucky to get 30 feet of reception, we're completely aware of most of the security issues and it's completely not worth it.
I'd rather have fiber/speed to my nodes than them being able to take a laptop out in the rain, anyday, but perhaps that's just the geek/sun-fearer in me. Give me a tech like the potty robots that can replace all my cat5 with 10,000 Base-T fiber for under a grand and I'm there!