The fact these buttons can be hacked to serve a different purpose makes it a moot point for Amazon. So killing it stops the $$ bleeding for Amazon and push for Alexa.
Thanks for the tip! I haven't released the new updates to our enterprise environment yet due to the BS updates the past few months.
Actually this got broken in win10 with KB4483234 also!!
instead of uninstalling the patches, you can fix it like this:
Run gpedit.msc
Computer Configuration -> Administrative Templates -> System -> Credentials Delegation -> Encryption Oracle Remediation Change it to Enable and in Protection level, change back to Vulnerable.
enjoy!:) (and yes, as a sysadmin, I'm really tired of MS bs patching)
That would be true if the computer been infected with malware. However, most people don't pay close attention to details like URLs before continuing so that would be hope by the attackers.
you need to control DNS at the point of end user connection like with... HOSTFILES:)
I've been using FreeNAS and PfSense for years which are great performing servers with practically zero downtime other than patches and reboots. FreeBSD is geared towards as server platform and rightfully so. To make it into a desktop not so much. I rather they focus less bloat and keeping performance high in FreeBSD than trying to support the desktop apps to muck things up. Leave the desktop to Linux as it's more supported by the community.
Microsoft did the same thing with their Windows Server installs. Just install the "core" without the desktop GUI and it will run longer without reboots and less time to download and install security updates.
Using your own personal VPN connected to your home network or rather "secure network" is a good idea. Why bother with remote desktop to another computer connected via VPN when you can set your VPN client to route ALL traffic to the VPN server?
My uncle's invoice management system was written to run on a SCO server and has been running for 20+ years. Yes on a Pentium II processor! He's not concerned about it because the server is not even connected to the network. All connected via serial WYSE terminals. For giggles I've made a ghost image of the server and got it running as a VM but unfortunately the way the special serial cards are designed it won't work as a VM. The TCP/IP stack can't be installed on the version of the server he has now due to $$$. Eventually he will have to upgrade to something more modern but for now it works.
Most government entities don't have a clue on their network infrastructure let alone on locking the computers down. Too many different standards and different ways of their networks are built. Guess how many system admins come and go over the years without an once of documentation. Router passwords changed and no one seems to know them. Since no one bother to enforce industry standards of best practices this is what got them.
Best they could do in the interim is enforce policy rules on the firewall to disallow porn sites and block unauthorized VPN connections (this can be done via the application level on the firewall). Also keep eye on access logs and fetch keywords. Since neither one of them are used is a sign of lazy admins.
This piece of marvel been in orbit since the 1990s and amazing it lasted this long. But as with any equipment it will wear out. Without the shuttles it will be hard to perform any kind of major mechanical repairs so they may have to bite the bullet and plan on a replacement soon.
Back in the mid-90s the first time I turned on ZoneAlarm I was getting a break-in attempt about once every 5 seconds on my IP address.
Today, in 2018, I see hackers attempting to hack my website multiple times daily.
Give it a break liberals. Hacking isn't new nor is it infrequent.
Yep. I run my own Nextcloud as a private server on a different port. I get e-mails from fail2ban about hack attempts. Mostly from China. Nothing new. Just long as security measures such as securing the admin accounts and alerts are in place you're fine.
"DavMail gateway is implemented in java and should run on any platform"
And why would I be stuck with this java stuffs when it's being phased out and eliminate the security concerns? If they are planning a complete rewrite to use open standards I'd be up for it.
I too use Keepass for Linux, Windows and Android. The URL sync is already built-in so I use OwnCloud server that I run at home and sync with that with a key file that I keep locally and a password. I use OwnCloud's application password to keep it separate from my own account. Yes I already have SSL enabled on OwnCloud server. Syncing is pretty fast or use URL direct to open the file.
I don't trust password managers entirely in the cloud.
Why the fancy name of Microchip? I can bet it's just a regular 32 GB MicroSD flash drive. Like the ones we use in our cell phones. SanDisk did say their flash drives are Water proof, shock proof, x-ray proof and temperature proof. What, temperature proof? You mean the sun? lol
Good catch as I didn't know slashdot.org actually use Let's Encrypt SSL service. Figured it's a commercial website would use something like GoDaddy to provide high level of trust.
Obviously storing passwords in plain-text is frowned upon. To protect the database and backups you can enable encryption which is really easy to do in the SQL admin tool. This way everything is protected. I'd still use HASH and SALT for storing passwords.
Good thing I have a motherboard with dual BIOS so if one gets screwed up due to a bad flash I can flip the switch to the back up BIOS and then copy itself over to the corrupted BIOS.
Let them revamp NSA. It won't make a difference. What they will do is spill off some new top secret division that only top brass knows about. This won't change a thing.
Yep. It will happen in a few years. Gas isn't going to be around forever and China is now the biggest consumer so it will be a matter of time before gas shortages and prices going up. By then for those with electric cars will be happy.
My next car is going to be all electric so hopefully soon they will get this into production.
I too have to wear one and it's ungodly expensive. My argument is the fact I need them to have a normal life and work. So if people can get glasses for fairly low price and it's a item that people need then why can't insurance companies provide coverage too? Reason for that it's very specialized market and expensive.
Don't get one of those cheapie $49.95 hearing aids from the ads as they do not provide the proper specs to the type of hearing loss you have. In fact it'll make your hearing worse. It'll be like listening to iPod all day long.
Slashdot Mirror
The fact these buttons can be hacked to serve a different purpose makes it a moot point for Amazon. So killing it stops the $$ bleeding for Amazon and push for Alexa.
Thanks for the tip! I haven't released the new updates to our enterprise environment yet due to the BS updates the past few months.
Actually this got broken in win10 with KB4483234 also!!
instead of uninstalling the patches, you can fix it like this:
Run gpedit.msc
Computer Configuration -> Administrative Templates -> System -> Credentials Delegation -> Encryption Oracle Remediation
Change it to Enable and in Protection level, change back to Vulnerable.
enjoy! :) (and yes, as a sysadmin, I'm really tired of MS bs patching)
That would be true if the computer been infected with malware. However, most people don't pay close attention to details like URLs before continuing so that would be hope by the attackers.
you need to control DNS at the point of end user connection like with ... HOSTFILES :)
I've been using FreeNAS and PfSense for years which are great performing servers with practically zero downtime other than patches and reboots. FreeBSD is geared towards as server platform and rightfully so. To make it into a desktop not so much. I rather they focus less bloat and keeping performance high in FreeBSD than trying to support the desktop apps to muck things up. Leave the desktop to Linux as it's more supported by the community.
Microsoft did the same thing with their Windows Server installs. Just install the "core" without the desktop GUI and it will run longer without reboots and less time to download and install security updates.
Using your own personal VPN connected to your home network or rather "secure network" is a good idea. Why bother with remote desktop to another computer connected via VPN when you can set your VPN client to route ALL traffic to the VPN server?
If you are referring to Yubikey then yes. There are plenty of FIDO2 keys that are under $20.
My uncle's invoice management system was written to run on a SCO server and has been running for 20+ years. Yes on a Pentium II processor! He's not concerned about it because the server is not even connected to the network. All connected via serial WYSE terminals. For giggles I've made a ghost image of the server and got it running as a VM but unfortunately the way the special serial cards are designed it won't work as a VM. The TCP/IP stack can't be installed on the version of the server he has now due to $$$. Eventually he will have to upgrade to something more modern but for now it works.
Most government entities don't have a clue on their network infrastructure let alone on locking the computers down. Too many different standards and different ways of their networks are built. Guess how many system admins come and go over the years without an once of documentation. Router passwords changed and no one seems to know them. Since no one bother to enforce industry standards of best practices this is what got them.
Best they could do in the interim is enforce policy rules on the firewall to disallow porn sites and block unauthorized VPN connections (this can be done via the application level on the firewall). Also keep eye on access logs and fetch keywords. Since neither one of them are used is a sign of lazy admins.
This piece of marvel been in orbit since the 1990s and amazing it lasted this long. But as with any equipment it will wear out. Without the shuttles it will be hard to perform any kind of major mechanical repairs so they may have to bite the bullet and plan on a replacement soon.
Back in the mid-90s the first time I turned on ZoneAlarm I was getting a break-in attempt about once every 5 seconds on my IP address.
Today, in 2018, I see hackers attempting to hack my website multiple times daily.
Give it a break liberals. Hacking isn't new nor is it infrequent.
Yep. I run my own Nextcloud as a private server on a different port. I get e-mails from fail2ban about hack attempts. Mostly from China. Nothing new. Just long as security measures such as securing the admin accounts and alerts are in place you're fine.
"DavMail gateway is implemented in java and should run on any platform"
And why would I be stuck with this java stuffs when it's being phased out and eliminate the security concerns? If they are planning a complete rewrite to use open standards I'd be up for it.
I too use Keepass for Linux, Windows and Android. The URL sync is already built-in so I use OwnCloud server that I run at home and sync with that with a key file that I keep locally and a password. I use OwnCloud's application password to keep it separate from my own account. Yes I already have SSL enabled on OwnCloud server. Syncing is pretty fast or use URL direct to open the file.
I don't trust password managers entirely in the cloud.
Why the fancy name of Microchip? I can bet it's just a regular 32 GB MicroSD flash drive. Like the ones we use in our cell phones. SanDisk did say their flash drives are Water proof, shock proof, x-ray proof and temperature proof. What, temperature proof? You mean the sun? lol
Good catch as I didn't know slashdot.org actually use Let's Encrypt SSL service. Figured it's a commercial website would use something like GoDaddy to provide high level of trust.
Obviously storing passwords in plain-text is frowned upon. To protect the database and backups you can enable encryption which is really easy to do in the SQL admin tool. This way everything is protected. I'd still use HASH and SALT for storing passwords.
Good thing I have a motherboard with dual BIOS so if one gets screwed up due to a bad flash I can flip the switch to the back up BIOS and then copy itself over to the corrupted BIOS.
I fail to see why this would be an anti-trust issue? If anything it FORCES Sprint to improve their network and compete for their customers.
Let them revamp NSA. It won't make a difference. What they will do is spill off some new top secret division that only top brass knows about. This won't change a thing.
Yep. It will happen in a few years. Gas isn't going to be around forever and China is now the biggest consumer so it will be a matter of time before gas shortages and prices going up. By then for those with electric cars will be happy.
My next car is going to be all electric so hopefully soon they will get this into production.
The article said they tested this 600 times so we don't know how many recharge / discharging cycles it can do before it degrades.
We still have choices of free OS to choose from.
They don't scare me.
Years ago the doctors suggested to get the implant too but I can hear ok most of the time.
What risks are associated with surgery? It used to be 50/50 chance which is why I didn't do it.
I too have to wear one and it's ungodly expensive. My argument is the fact I need them to have a normal life and work. So if people can get glasses for fairly low price and it's a item that people need then why can't insurance companies provide coverage too? Reason for that it's very specialized market and expensive.
Don't get one of those cheapie $49.95 hearing aids from the ads as they do not provide the proper specs to the type of hearing loss you have. In fact it'll make your hearing worse. It'll be like listening to iPod all day long.
See if they can offer a payment plan.
Good luck.
Umm... We tried Sonicwall's SSL VPN functionality and it SUCKS eggs!!
Frankly I wouldn't touch Sonicwall with a 10 foot pole!!
I am sticking with open source such as PfSense
Yep, PfSense rocked. I even bought the book they recently released.