Actually, your credit card company will be very happy to refund your money if you can prove you've been screwed; they're required by law, and they take that seriously.
And if the phone company tries to screw over the cc company, they risk getting their merchant account revoked, and that hurts.
Considering that we know for a fact that IBM caved on the original Lucifer chip, which resulted in crappy ass 40 bit DES becoming an encryption standard, at the behest of the American Government, and considering that until very recently the gov't of the US of A considered crypto to be a munition, and the US keeps a very very close eye on it's guns, why is this so implausable?
I'm replying to two posts, here, who both said 'crypto filesystems'.
If I can get to your box, I can open it. If I can open it, I can fuck off with your drives. If I can fuck off with your drives, I can take them home and decrypt them at my leisure. Brute force the hell out of them. And like I said, it's real easy to get users to divulge their passwords, assuming that they're strong passwords in the first place.
Also, NTFS can be encrypted, for example. Fine, but how good is the system? Does it, for example, encrypt the page file? Does it encrypt the temp directory?
Besides, when you get right down to it, I can pull them out and jump up and down on them vigorously. Hope you have good backups, and I hope they're not sitting on the shelf beside the computer, or I'll jump up and down on them too. Computer Security includes concepts like Availability and Data Consistancy, and your company is equally fucked if I steal a copy of the data, or just deny it to you.
Yeah, LordDracula, try it sometime you have two X capable machines.
Log onto machine one, type DISPLAY=host2.mylittlenetwork.net:0.0;export DISPLAY.
Log onto machine two, become root, and type 'xhost +host1.mylittlenetwork.net'
Then go back to machine one and run something. 'xclock &' and watch it either appear on machine two, or break horribly and display lots of horrible messages.
And that's just the beginning of the KeWl ThInGs (tm) you can do with X....
If they can physicially get to your servers, you're fucked in so many ways that it doesn't matter.
Besides, it's so much easier to call pretty much any random phone number in the organization and say "Hi, this is Bob in IT. We're having some problems with the server and need to verify your NT Domain login and password...yes, yes...sounds right. Great, thanks.
Yeah! How dare those BASTARDS who run the school FORCE you to imbibe alcohol EVERY NIGHT! How DARE they force you to ingest a substance with thins your blood and impedes your ability to use oxygen! NO WONDER YOU'RE SO STRESSED!
Yeah, and the same hardware developers will tell you that a GeForce on a really fast computer, with hardware T&L turned on will be slower than with T&L turned off, because it becomes a limiting factor.
3dfx has always been hesitant to put tech in until they think it can be done right, and as far as I can see, they've always been pretty correct.
And antialiasing is the way of the future. That's why, for example, Dreamcast DOA2 looks so much better than PS2 version; no jaggies. Less polygons, sure, but it still looks so much better....
It's not pulling in the other stars because the stars still have plenty of momentum from the Big Bang. Eventually, that'll change.
It's kinda like how 'constant velocity' actually means 'just enough acceleration to offset drag, gravity, and every other force acting on the body in motion'
That'd be my theory. It's just as valid as any scientist's theory, because when you get right down to it, we're all just guessing.:-)
Ten years experience, or at least, that's what it was at the time. (2 years ago).
We were thinking about getting me a lawyer, but I started working at a newly acquired Canadian subsidiary, with the intent of waiting a year then getting the L1 (I think) intra-company transfer visa. Then, fortunately, I realized that I didn't WANT to live in the States.:-)
Actually, every modern OS has buffering options. But you really do need to have the option to have syncronous I/O. Databases, for example. Why do you think Oracle prefers to have raw disks? Filesystems get in the way, and async i/o is a real bummer for data integrity.:-)
Besides, on NT, the reason having the GDI subsystem in kernelspace sucks is because the drivers tend to be buggy.
The http-kernald only serves up text pages; anything more hefty it tries to send to the actual httpd. So although it IS a security and stability risk, it's a lot easier to debug (all a httpd does, at it's basic level, is parse a text request, read a file from disk, and print it out to a socket.)
Oh, and the most frightening part is that one of the companies offered to let me telecommute. To America. American gov't needs to learn that lines on maps don't mean quite so much these days.
Yeah, and TN-1s suck. I can't get into the States, even though I'm a) Canadian, and b) literally one of the few people on the planet who can do a certain job. Why? Because I don't have a university degree. Why don't I have a uni degree? Because I wanted a job, not an education. So I went to College to learn computer programmer/analyst, until such time as the job offers started rolling in. Then I dropped out and never looked back.
But because I don't have a degree (and I personally think that university degrees are superfluous for what I do; my buddy with a PhD in Computer Science can write an A.I., but he can't admin a database.
Oh, I don't know. How about, maybe, a professional tape backup solution, instead of the 40/80 tape drive that comes in your Dell?
The 430 occupies just two cubic feet and five units of rack space. Drawing on M2's industry-leading combination of capacity, performance and compact size, the 430 tape library offers users the highest rack density, minimizing the use of costly data center space and reducing the overall cost of ownership. The Exabyte 430 accommodates up to four M2 tape drives and 30 data cartridges, delivering up to 1.8 TB (4.5 TB compressed*) of capacity and 173 GB/hour (432 GB/hour compressed) of data throughput.
All you need is an intern to swap out the tapes every morning.
Considering that the BeNews slashbox directly to the left of this news article links to an article telling BeOS advocates about this very poll, with a line saying 'You know what to do', I fail to see why people are upset about Windows users doing pretty much the same thing.
And even then, fingerprint scanners might very well work with a finger that's been removed from its owner
Actually it's easy enough to check for. Living tissues conducts differently than dead tissue, so you run a small current and watch what happens.
That doesn't prevent unconsious fingers, though, so you want to use a two step process: fingerprint/voice print, fingerprint/password or the like. The password should involve challenge/response with personalization; the computer displays a series of numbers, you type the numbers into your little password generator, then it prompts you for your personal ID code, then mashes the two together, runs them through a mathematical blender, then spits out a response, which you give back to the computer in question. Then a fingerprint or iris scan (retinas change too often to be useful for biometric identification) and you're off to the races.
Make it a COM object and a JavaBean. That way, you can call it from all of your apps, and build in that physical security that can only be guarenteed by DNA-altering, instantly fatal nerve gas.
Well, it's easy enough to use a SecurID or similar scheme, where you have a little LCD screen that is constantly cycling passwords according to an algorithm.
Or better yet, the challenge/response system where it gives you a string of alphanumerics, you key it into your little calculator like thingy, and it spits out the response.
If you're using static passwords, social engineering is the least of your worries.
Why would I need to boot it? I just install it in my own computer, mount the drive, and start trying to crack it. Oh, it won't boot. Boo hoo.
You might be surprised. Chargebacks are expensive in both time and money, and the CC companies are in it to make profit. Never say never. :-)
Actually, your credit card company will be very happy to refund your money if you can prove you've been screwed; they're required by law, and they take that seriously. And if the phone company tries to screw over the cc company, they risk getting their merchant account revoked, and that hurts.
Considering that we know for a fact that IBM caved on the original Lucifer chip, which resulted in crappy ass 40 bit DES becoming an encryption standard, at the behest of the American Government, and considering that until very recently the gov't of the US of A considered crypto to be a munition, and the US keeps a very very close eye on it's guns, why is this so implausable?
That's exactly what I thought. All those damn 'mydoc.doc.tmp~$' sort of files....
I'm replying to two posts, here, who both said 'crypto filesystems'. If I can get to your box, I can open it. If I can open it, I can fuck off with your drives. If I can fuck off with your drives, I can take them home and decrypt them at my leisure. Brute force the hell out of them. And like I said, it's real easy to get users to divulge their passwords, assuming that they're strong passwords in the first place. Also, NTFS can be encrypted, for example. Fine, but how good is the system? Does it, for example, encrypt the page file? Does it encrypt the temp directory? Besides, when you get right down to it, I can pull them out and jump up and down on them vigorously. Hope you have good backups, and I hope they're not sitting on the shelf beside the computer, or I'll jump up and down on them too. Computer Security includes concepts like Availability and Data Consistancy, and your company is equally fucked if I steal a copy of the data, or just deny it to you.
Yeah, LordDracula, try it sometime you have two X capable machines. Log onto machine one, type DISPLAY=host2.mylittlenetwork.net:0.0;export DISPLAY. Log onto machine two, become root, and type 'xhost +host1.mylittlenetwork.net' Then go back to machine one and run something. 'xclock &' and watch it either appear on machine two, or break horribly and display lots of horrible messages. And that's just the beginning of the KeWl ThInGs (tm) you can do with X....
If they can physicially get to your servers, you're fucked in so many ways that it doesn't matter. Besides, it's so much easier to call pretty much any random phone number in the organization and say "Hi, this is Bob in IT. We're having some problems with the server and need to verify your NT Domain login and password...yes, yes...sounds right. Great, thanks.
Yeah! How dare those BASTARDS who run the school FORCE you to imbibe alcohol EVERY NIGHT! How DARE they force you to ingest a substance with thins your blood and impedes your ability to use oxygen! NO WONDER YOU'RE SO STRESSED!
Yeah, and the same hardware developers will tell you that a GeForce on a really fast computer, with hardware T&L turned on will be slower than with T&L turned off, because it becomes a limiting factor. 3dfx has always been hesitant to put tech in until they think it can be done right, and as far as I can see, they've always been pretty correct. And antialiasing is the way of the future. That's why, for example, Dreamcast DOA2 looks so much better than PS2 version; no jaggies. Less polygons, sure, but it still looks so much better....
It's not pulling in the other stars because the stars still have plenty of momentum from the Big Bang. Eventually, that'll change. It's kinda like how 'constant velocity' actually means 'just enough acceleration to offset drag, gravity, and every other force acting on the body in motion' That'd be my theory. It's just as valid as any scientist's theory, because when you get right down to it, we're all just guessing. :-)
Ten years experience, or at least, that's what it was at the time. (2 years ago). We were thinking about getting me a lawyer, but I started working at a newly acquired Canadian subsidiary, with the intent of waiting a year then getting the L1 (I think) intra-company transfer visa. Then, fortunately, I realized that I didn't WANT to live in the States. :-)
Actually, every modern OS has buffering options. But you really do need to have the option to have syncronous I/O. Databases, for example. Why do you think Oracle prefers to have raw disks? Filesystems get in the way, and async i/o is a real bummer for data integrity. :-)
Besides, on NT, the reason having the GDI subsystem in kernelspace sucks is because the drivers tend to be buggy. The http-kernald only serves up text pages; anything more hefty it tries to send to the actual httpd. So although it IS a security and stability risk, it's a lot easier to debug (all a httpd does, at it's basic level, is parse a text request, read a file from disk, and print it out to a socket.)
Oh, and the most frightening part is that one of the companies offered to let me telecommute. To America. American gov't needs to learn that lines on maps don't mean quite so much these days.
Yeah, and TN-1s suck. I can't get into the States, even though I'm a) Canadian, and b) literally one of the few people on the planet who can do a certain job. Why? Because I don't have a university degree. Why don't I have a uni degree? Because I wanted a job, not an education. So I went to College to learn computer programmer/analyst, until such time as the job offers started rolling in. Then I dropped out and never looked back. But because I don't have a degree (and I personally think that university degrees are superfluous for what I do; my buddy with a PhD in Computer Science can write an A.I., but he can't admin a database.
Considering that the BeNews slashbox directly to the left of this news article links to an article telling BeOS advocates about this very poll, with a line saying 'You know what to do', I fail to see why people are upset about Windows users doing pretty much the same thing.
All CURRENT above listed models. I have a first generation Vx, and it's got OS 3.3 on it.
And 84 percent of people will believe any statment that includes a statistic.
Perception of reality is far more important than reality itself.
Well, it's easy enough to use a SecurID or similar scheme, where you have a little LCD screen that is constantly cycling passwords according to an algorithm. Or better yet, the challenge/response system where it gives you a string of alphanumerics, you key it into your little calculator like thingy, and it spits out the response. If you're using static passwords, social engineering is the least of your worries.