I think I am going to be screwed in South America where i live. The days are getting longer, so it will still be day light out even though I am in that EDT time zone.
I don't see any discussion of South America. There is almost no serious Internet censorship in any of the countries. Most have higher political and economic priorities over trying to be thought police of their citizens. I suspect that most of the monitoring going on is really related to true national security issues, not simply trying to control and manipulate the populations.
About a week ago Chile tried to introduce a law in to congress that would require ISPs to monitor and cancel accounts of users for P2P content. It was shot down with only 1 vote in favor in congress. Try that in the U.S. or European countries? Even if it was not constitutional, you would still see some right-wing "save the children" type try vote for it in mass and not even bother reading it.
No, I totally don't blame the poor computer forensics guys. They remind me of the old movies with the loan sheriff with no backup taking on the outlaw gangs. They are doing the best they can in the lawless wild west.
The number one thing that kills all the international and perhaps national computer forensics cases is time. If you wait even a day, let alone the weeks or a months it would take to go through proper channels the evidence is at best corrupted if not outright destroyed (e.g. server logs get overwritten, disks get formatted). The chain of custody becomes increasingly more suspect as time goes by, and thus easier to challenge in court even if it is not destroyed.
check sum always before you install software. This is likly one of the core differences between MS world and Linux / open source culture. No one seems to check in the MS world that what they downloaded really is complete and original software they thought they where downloading.
Yea, but there are some of them that involve actual physically shorting things on the board to reset. You should not need to do that to reset software. Perhaps not even as simple as just pushing a button, but a way to easily reload the factory firmware.
I like the ones that allow you to upload the firmware in the gui, and reset to factory defaults relatively easily if things go wrong.
Yea, But I still did not find the Bufflow routers very forgiving if you screwed up the flash. All that time, effort, and money would have been better served making it a little easier to flash.
I had a friend years ago that was a detective on the Las Vegas Robbery squad. He told me that the average armed robber gets away with something like $5,000. The average electronic bank robbery gets away with over $500,000. He also told me that they almost never ever catch anyone committing a robbery by computer, but they get most of the people sooner or later that commit armed robbery. He was talking about both inside jobs (mostly involve some sort of computer) and outside computer attack type robberies here to clarify.
He said it was not so much tracking down a suspect, but that the nature of the electronic / insider robbery often lacked the traditional physical evidence that would really lead to a conviction. The banks and businesses don't really want to cooperate for PR / insurance / liability reasons. The nature of the evidence is not very compelling to a jury. Often it is difficult to properly get warrants across multiple jurisdictions in a timely manner and in such a way that the evidence can be used in court. Most importantly it just all around cost more money to investigate and prosecute, as it requires very expensive and specialized skills that most police departments (including the FBI) really do not have the resources to do properly. There is not a lot of political motive at the top of law enforcement and everyone else to do unless it is a really high profile robbery type thing that they have to do.
Don't forget the naturalist. There is more to sci-fi literature than just ray guns and space ships. Authors like Jack London and perhaps Twain where the writers that built the framework for modern science fiction and they get little credit for it. They exploited the same sense of adventure in the unknown / fear of technology that fascinates us today, in a time when there was likly more to be concerned about.
I have taught some University courses using both. For instance, with London point out the dangers of life in Alaska against the dangers of life in Space. In the day, going to Alaska was as dangerous as going to the moon or mars. In many ways it was likly more dangerous. Same with all the ocean going books from say around 1900's and earlier. You could even go all the way back and punish the kids with Homer, if they get out of line.
I added geoip scripts to limit the ISP's that are allowed to access my system to just the ip blocks I might need to USE. Yes, it is not a complete solution by itself, but it sure helps eliminate both the white noise and millions of potential attack vectors so I can focus on the real threat. For example, there is never a reason for any computer outside my country to make an SSH connection to my server. There goes 99% of all computers in the World right there. So, now I only have to worry about less than 1 million computers (number of Internet connections in my country) on basically 3 IPs. I eliminated at least a lot of log noise, and that makes for quick review of problematic connections.
People can spoof the IP, use proxies, and so on, but combine with other security measures it makes finding the needle much easier because I reduced the size of the haystack.
I think everyone here needs to take a refresher course on the difference between math and formal logic.
Far from complete, but here is a short breakdown to get everyone sorting out what it they really are doing with a computer most of the time. http://en.wikipedia.org/wiki/Logic
Likely not anyone's fault here. It is always rather impressive to me the general ignorance of Math teachers and professors about the scope, definition, and history of their own field of study, and how CS departments have adopted that mistake.
I think Red Hat finally come around and realized that distros like CentOS and Scientific Linux are like gateway drugs. Companies and organizations get hooked on them when they are small, and if they flourish (hopefully by saving IT money and gaining productivity) and grow, those organizations become their clients. If they die, they where never going to be good clients for RH anyway.
Scientific Linux is likely their quickest turn over as it geared toward organizations and research labs that already are their clients, just they do not need to pay Red Hat for testing stuff out or students playing around (really don't know what they do with it).
My own small company runs a couple mission critical servers with CentOS. If I ever got really rich or wanted to retire, I know I can contact red hat to provide the service. More importantly, if I ever wanted to sell my business to someone with no IT skills, I would just refer them to Red Hat.
Those distros are free advertising. I don't think any other distro's child distros can do that. PClinuxos for instance likely does not send very much biz up the chain to Mandriva.
yea, I would be real pissed. I would not be able to pick up perfectly good used work stations for free and load linux on them and run them in the ground for another 10 years. I have been offered at least a dozen from companies begging someone to take them over the last few months, and I am sure more are on the way.
No viruses. Not one, and not a single Windows computer is permitted to connect to my network. I keep one copy of windows in one box. It is a cardboard box in my closet under some books and smelly socks. It has not gotten a single virus either.
I do have to keep a frigen virus scanner on my mail and files coming from outside my network, so I don't simply pass them on to other windows computers if the files ever leave my network. It pisses me off that I have to waist time and resources on protecting windows computers that are 100% band from my office network, not to mention waisting resources on sorting spam and other security threats the all the bots turn out from those infected computers.
Why is there not a class action law suit against MS for the damage their product does to those that are not MS customers (they should get their share too)?
My "Microsoft Security Essentials" include a wire cutter as in NEVER CONNECT A WINDOWS COMPUTER TO ANYTHING TO BE SECURE!!!
I just got off the phone with a client that was being forced to run accounting software on windows desktops by a vendor as a server (long story). Being sensitive data and mission critical, I had to tell them not to plug the windows computers in to the rest of the network. They have to be standalone systems.
Now is that fair?
No, but that is the only way I can give a client 100% assurance of security, given their long bad track record and current state of windows security. My client does not give a shit that security is improving in windows, or they are now stopping 90% of whatever, or the windows vs linux debate. They give a shit about protecting their data, and doing it as cheaply as possible (small company, tight budget).
Before anyone starts this "well any operating system is vulnerable" shit, I am not interested.
I don't understand what everyone is waisting time trying to hack one computer at a time. MS provided the software to hack all of them remotely including convenient bios updating tools it looks like. This is likely your easiest attack vector, and I bet someone gets the whole dam network soon just because they published this article:
With such a huge fleet of computers in the hands of students, Wilson said it would be "unrealistic" for the department to offer technical support at the application layer.
The netbooks therefore have had to be set up such that the department can remotely upgrade and patch the devices over a wireless network.
The department uses Microsoft's System Centre Configuration Manager tool to distribute software down to devices.
The update service switches off once a student finishes Year 12.
Wilson said there was no way such a large fleet of machines could be managed at such low cost without the smarts embedded within Microsoft's new operating system.
"There was no way we could do any of this on XP," he said. "Windows 7 nailed it for us."
Yea, this is a serious question. What about countries in the tropics? Hell, what about any other country in the World? Do they have this problem in countries with good social security?
In South America, most people have the exact opposite reproduction schedule.
All the factors mentioned in those articles are U.S. culturally dependent issues. In fact, rather grossly bias towards Americans. It is not even the winter effect, it is the "American's born in the winter effect". At least that is the causes they seem to be looking at, and nothing else. It would seem to be the first thing to check in such a problem. Does anyone else have that problem?
Yes. In the US when I was growing up, various towns and cities put fluoride in the water. It was the only way to ensure every child was going to get healthy teeth. That's akin to extending the reach of intelligent DNS.
By delivering a cloud model that allows essentially any enterprise or any ISP to have the wherewithal to take advantage of a Nominum solution is like putting fluoride in the water.
You don't have to have a DNS expert internally, and you don't have to have a certain level of customer base to amortise the cost of deploying the software.
He is using Fluoride in the water for marketing analogy?
These guys are too stupid to stay in biz for much longer. Everyone relax.
Slashdot Mirror
I think I am going to be screwed in South America where i live. The days are getting longer, so it will still be day light out even though I am in that EDT time zone.
They should use Star Treck correct vocabulary. Sub-light or impulse drive (there is a pulse right).
I don't see any discussion of South America. There is almost no serious Internet censorship in any of the countries. Most have higher political and economic priorities over trying to be thought police of their citizens. I suspect that most of the monitoring going on is really related to true national security issues, not simply trying to control and manipulate the populations.
About a week ago Chile tried to introduce a law in to congress that would require ISPs to monitor and cancel accounts of users for P2P content. It was shot down with only 1 vote in favor in congress. Try that in the U.S. or European countries? Even if it was not constitutional, you would still see some right-wing "save the children" type try vote for it in mass and not even bother reading it.
No, I totally don't blame the poor computer forensics guys. They remind me of the old movies with the loan sheriff with no backup taking on the outlaw gangs. They are doing the best they can in the lawless wild west.
The number one thing that kills all the international and perhaps national computer forensics cases is time. If you wait even a day, let alone the weeks or a months it would take to go through proper channels the evidence is at best corrupted if not outright destroyed (e.g. server logs get overwritten, disks get formatted). The chain of custody becomes increasingly more suspect as time goes by, and thus easier to challenge in court even if it is not destroyed.
check sum always before you install software. This is likly one of the core differences between MS world and Linux / open source culture. No one seems to check in the MS world that what they downloaded really is complete and original software they thought they where downloading.
By the way, love my bufflow router with Tomato and had no problems flashing it beyond the stress of screwing it up if something goes off the rails.
Yea, but there are some of them that involve actual physically shorting things on the board to reset. You should not need to do that to reset software. Perhaps not even as simple as just pushing a button, but a way to easily reload the factory firmware.
I like the ones that allow you to upload the firmware in the gui, and reset to factory defaults relatively easily if things go wrong.
The description seems to imply that you can run Linux printers off the USB port and load drivers on to it. Anyone know for sure?
Yea, But I still did not find the Bufflow routers very forgiving if you screwed up the flash. All that time, effort, and money would have been better served making it a little easier to flash.
I had a friend years ago that was a detective on the Las Vegas Robbery squad. He told me that the average armed robber gets away with something like $5,000. The average electronic bank robbery gets away with over $500,000. He also told me that they almost never ever catch anyone committing a robbery by computer, but they get most of the people sooner or later that commit armed robbery. He was talking about both inside jobs (mostly involve some sort of computer) and outside computer attack type robberies here to clarify.
He said it was not so much tracking down a suspect, but that the nature of the electronic / insider robbery often lacked the traditional physical evidence that would really lead to a conviction. The banks and businesses don't really want to cooperate for PR / insurance / liability reasons. The nature of the evidence is not very compelling to a jury. Often it is difficult to properly get warrants across multiple jurisdictions in a timely manner and in such a way that the evidence can be used in court. Most importantly it just all around cost more money to investigate and prosecute, as it requires very expensive and specialized skills that most police departments (including the FBI) really do not have the resources to do properly. There is not a lot of political motive at the top of law enforcement and everyone else to do unless it is a really high profile robbery type thing that they have to do.
Don't forget the naturalist. There is more to sci-fi literature than just ray guns and space ships. Authors like Jack London and perhaps Twain where the writers that built the framework for modern science fiction and they get little credit for it. They exploited the same sense of adventure in the unknown / fear of technology that fascinates us today, in a time when there was likly more to be concerned about.
I have taught some University courses using both. For instance, with London point out the dangers of life in Alaska against the dangers of life in Space. In the day, going to Alaska was as dangerous as going to the moon or mars. In many ways it was likly more dangerous. Same with all the ocean going books from say around 1900's and earlier. You could even go all the way back and punish the kids with Homer, if they get out of line.
I added geoip scripts to limit the ISP's that are allowed to access my system to just the ip blocks I might need to USE. Yes, it is not a complete solution by itself, but it sure helps eliminate both the white noise and millions of potential attack vectors so I can focus on the real threat. For example, there is never a reason for any computer outside my country to make an SSH connection to my server. There goes 99% of all computers in the World right there. So, now I only have to worry about less than 1 million computers (number of Internet connections in my country) on basically 3 IPs. I eliminated at least a lot of log noise, and that makes for quick review of problematic connections.
People can spoof the IP, use proxies, and so on, but combine with other security measures it makes finding the needle much easier because I reduced the size of the haystack.
I think everyone here needs to take a refresher course on the difference between math and formal logic.
Far from complete, but here is a short breakdown to get everyone sorting out what it they really are doing with a computer most of the time.
http://en.wikipedia.org/wiki/Logic
Likely not anyone's fault here. It is always rather impressive to me the general ignorance of Math teachers and professors about the scope, definition, and history of their own field of study, and how CS departments have adopted that mistake.
I think Red Hat finally come around and realized that distros like CentOS and Scientific Linux are like gateway drugs. Companies and organizations get hooked on them when they are small, and if they flourish (hopefully by saving IT money and gaining productivity) and grow, those organizations become their clients. If they die, they where never going to be good clients for RH anyway.
Scientific Linux is likely their quickest turn over as it geared toward organizations and research labs that already are their clients, just they do not need to pay Red Hat for testing stuff out or students playing around (really don't know what they do with it).
My own small company runs a couple mission critical servers with CentOS. If I ever got really rich or wanted to retire, I know I can contact red hat to provide the service. More importantly, if I ever wanted to sell my business to someone with no IT skills, I would just refer them to Red Hat.
Those distros are free advertising. I don't think any other distro's child distros can do that. PClinuxos for instance likely does not send very much biz up the chain to Mandriva.
yea, I would be real pissed. I would not be able to pick up perfectly good used work stations for free and load linux on them and run them in the ground for another 10 years. I have been offered at least a dozen from companies begging someone to take them over the last few months, and I am sure more are on the way.
I don't get the distinction. I can do the exact same thing for computers using SSHFS mounts and cron or a script to mount it on boot with shared keys.
No viruses. Not one, and not a single Windows computer is permitted to connect to my network. I keep one copy of windows in one box. It is a cardboard box in my closet under some books and smelly socks. It has not gotten a single virus either.
I do have to keep a frigen virus scanner on my mail and files coming from outside my network, so I don't simply pass them on to other windows computers if the files ever leave my network. It pisses me off that I have to waist time and resources on protecting windows computers that are 100% band from my office network, not to mention waisting resources on sorting spam and other security threats the all the bots turn out from those infected computers.
Why is there not a class action law suit against MS for the damage their product does to those that are not MS customers (they should get their share too)?
Typing is the the most useful tech skill ever.
yep
My "Microsoft Security Essentials" include a wire cutter as in NEVER CONNECT A WINDOWS COMPUTER TO ANYTHING TO BE SECURE!!!
I just got off the phone with a client that was being forced to run accounting software on windows desktops by a vendor as a server (long story). Being sensitive data and mission critical, I had to tell them not to plug the windows computers in to the rest of the network. They have to be standalone systems.
Now is that fair?
No, but that is the only way I can give a client 100% assurance of security, given their long bad track record and current state of windows security. My client does not give a shit that security is improving in windows, or they are now stopping 90% of whatever, or the windows vs linux debate. They give a shit about protecting their data, and doing it as cheaply as possible (small company, tight budget).
Before anyone starts this "well any operating system is vulnerable" shit, I am not interested.
Glad I dropped out of school in 7th grade.
I don't understand what everyone is waisting time trying to hack one computer at a time. MS provided the software to hack all of them remotely including convenient bios updating tools it looks like. This is likely your easiest attack vector, and I bet someone gets the whole dam network soon just because they published this article:
With such a huge fleet of computers in the hands of students, Wilson said it would be "unrealistic" for the department to offer technical support at the application layer.
The netbooks therefore have had to be set up such that the department can remotely upgrade and patch the devices over a wireless network.
The department uses Microsoft's System Centre Configuration Manager tool to distribute software down to devices.
The update service switches off once a student finishes Year 12.
Wilson said there was no way such a large fleet of machines could be managed at such low cost without the smarts embedded within Microsoft's new operating system.
"There was no way we could do any of this on XP," he said. "Windows 7 nailed it for us."
Yea, this is a serious question. What about countries in the tropics? Hell, what about any other country in the World? Do they have this problem in countries with good social security?
In South America, most people have the exact opposite reproduction schedule.
All the factors mentioned in those articles are U.S. culturally dependent issues. In fact, rather grossly bias towards Americans. It is not even the winter effect, it is the "American's born in the winter effect". At least that is the causes they seem to be looking at, and nothing else. It would seem to be the first thing to check in such a problem. Does anyone else have that problem?
Just turn on FOX.
Yes. In the US when I was growing up, various towns and cities put fluoride in the water. It was the only way to ensure every child was going to get healthy teeth. That's akin to extending the reach of intelligent DNS.
By delivering a cloud model that allows essentially any enterprise or any ISP to have the wherewithal to take advantage of a Nominum solution is like putting fluoride in the water.
You don't have to have a DNS expert internally, and you don't have to have a certain level of customer base to amortise the cost of deploying the software.
He is using Fluoride in the water for marketing analogy?
These guys are too stupid to stay in biz for much longer. Everyone relax.