If there is concern over fixing computers that might get broken, or worry about software being illegally installed, Fortres makes this neat package called Clean Slate. It lets you do whatever you want to the computer (ideal for a development environment) but instead of actually modifying any files, it transparently caches all changes made to the filesystem, and after a reboot the machine is restored to its initial state. We install this on lab computers at my school this year and it's really working out well. We have no problems with unknown programs and viruses getting stuck on machines and it gives students the freedom to change whatever they need to in order to get their job done (action-based restrictions and read-only files always got more in the way of doing real work). We also spend almost no time fixing software related problems since we can put them on a reboot schedule in the middle of the night.
At least as a means of written communication, honestly within the last several years when have you actually sent someone a message via postal mail? Today everyone has a telephone and quick messages are probably either given over it or by email. It didn't take people long to realize how ineffective it is to communicate with your average person when you have to wait days or even weeks before they even read what you sent them.Email is already the cost effective way (for those who already have computers/internet service of course) to send lengthy messages quickly, but until they find a way to scan and encode physical items into an email attachment, snail mail is still going to be the way to send packages, which unfortunately is a convenient ways to send these hazardous items.
Keep in mind that the first release of 2.4.0 was only released because Linus had gotten tired of the same people testing the 2.3 kernels, or 2.4 prereleases, whatever they were called.
Not that I agree with doing things that way, it is somewhat practical. A user of a 2.4 kernel has to keep in mind that although it was a 2.4 release, the series hasn't been officially declared totally stable yet, at least to my knowledge.
then that's an exploit for Code Red II infected machines, not the original Code Red.
big deal which one it was. Just about every box ever infected with Code Red I eventually got CR II. and hey I'm still getting code red II hits -- somehow -- even after my isp has cut off incoming port 80 connections!
but a motherboard that detects whether or not a heatsink clamp is down or not, preventing the machine from operating if it's not, sounds like something useful. Although it seems harder for the clamps to come undone in some of the newer designs that are squeezed down pretty well, if it broke off, a motherboard that sensed the loss of tension could power itself down.
The computer industry is way too lax on quality of service - every program, OS, or hardware device has a disclaimer that they aren't responsible if it doesn't work. What am I paying for then?!?
Whether or not I agree with exactly what you said, I do believe there should bed some kind of lowered service price after this.
Now Cox Fairfax did ignore the problem until very late and I don't know whether or not they lied.. I don't want to start the argument again over whether or not ISPs should intervene but in the end out of this was the blocking of incoming port 80 connections to all customers. They claim they are enforcing something in their usage contract but I looked again and couldn't find a place that said servers were not allowed.
I feel that I am no longer paying for full use of my IP and I wasn't even a contributor to the problem! I think all customers should be given a reduced service price, not necessarily for downtime but for the real long term effects of the reaction to Code Red.
I don't think it really mattered what the posted story was about. It was the first story under the new slashcode and I think that makes it right on topic
... and Microsoft went up was because of all the newly added IPs to the Netcraft database from all those Code Red-infected machines advertising themselves!
Shipping costs just include fuel.. they fly the thing to you!
And you might want to stick a note on your door to leave it.. with all the potential weather related shipping delays you're likely to not be home.
Yesterday I got an automated phone message from my local RoadRunner provider telling me about CR, whether or not I could be infected, and where to download the patch.
I wokeup this morning to find a pop3 connection visible in my tail -f'd syslog -- from 3 hours before! At this point I'm getting around 3 CRII hits an hour, down from about 6 a minute yesterday. The data transfer light on my modem is also calm.
Has anyone else noticed this yet in their areas? My cable company was late in the process of sending out messages and warnings but it seems to have worked overnight. What are some other experiences?
A medicine is widely available on the market. It is up to the infected party to take the medicine, and it would be unethical to sieze the unwitting victim and force the medicine into their bodies.
I agree with that except that I doubt most of the attaching machines' owners even realize they're infected, and in many cases even running IIS.
I'm still not saying it would then be ethical to force disinfecting code into their machines, but it's kind of like spraying for virus-carying mosquitos (or whatever bugs it's for) in some areas.Residents don't always do their part in clearing water from their yards. Many don't even realize they provided a breeding ground in their yards, some are aware that a problem exists but don't think that they could be part of the problem, and others never got word about it at all. So, the city comes out and sprays for them. Is it right for the city to just come and take care of the pest problem in everyone's backyard? Maybe. In this case they don't expect every person and animal to defend itself against poisinous mosquitos by putting insect repellent on themselves and their pets. Homeowners are part of a community and are contributing to a problem within it. This is sort of like the internet. Should we leave these contageous users to be and hope everyone else can handle it?
Re:RoadRunner Fairfax VA unusable
on
Code Redux
·
· Score: 1
Yep, the Data light has been on more solidly in the last week than the Cable light has in the last year.
Don't expect Cox to do anything about it. They wouldn't know it if they had CodeRed on ams-server.
I wrote a crude script that does this but mails information to abuse departments of ISPs where they can match up the hosts with their users and contact them if they wish. The parent poster may want to add this feature to his code, and I might clean my code up later and post it.
Well, maybe it's silly to GPL those little labs that everyone does and turns nearly identical code in for. But when I was in IB Compsci we had to do this dossier which was an original project with code, documentation, etc. When mine was done after several months of work, I went ahead and put it under the GPL because it really could be useful to someone.
the first time I submitted a compsci assignment with the GPL headers and such attached, I got a funny look from the instructor. She wasn't very aware of what it was and asked me a few basic questions about it. I tried explaining it but mostly got questions like, "But what's this license thing?" or "Did you make it?" or "What does this do for you?" or "So who are these GPL people??". Once she finally got it she did express concern over whether or not this was allowed, since I was submitting it to her, and then she had to submit it to people abroad for grading (crazy program). Anyway, I gave her the GPL overview, and she was easily convinced that it was harmless because I was infact the copyright holder.
Anyway that was sort of offtopic but I would say, just go ahead and GPL it and wait for someone to say something about it. Then we'll all have a new geeks rights violation submission to flame about:)
Forging the IP address of an attacking machine (spoofing) is such a trivial thing to do under any of the various UNIX-like operating systems, and it is so effective in hiding the attacking machines, that no hacker would pass up the opportunity if it were available.
When would a hacker use a DOS attack in the first place..
Kids need guidance. Kids need rules. Kids need discipline. Kids need responsibility. Most of all kids need opportunities. They need to be able show that they can be responsible. They need for us to trust them. Programs like this one show that we don't.
I agree with you, but what's sort of scary is that by changing the last sentence to something like, programs like this let kids prove their responsibility, and although it contradicts the argument it could be used by the company that makes this to market it in just the other direction.
Slashdot Mirror
If there is concern over fixing computers that might get broken, or worry about software being illegally installed, Fortres makes this neat package called Clean Slate. It lets you do whatever you want to the computer (ideal for a development environment) but instead of actually modifying any files, it transparently caches all changes made to the filesystem, and after a reboot the machine is restored to its initial state. We install this on lab computers at my school this year and it's really working out well. We have no problems with unknown programs and viruses getting stuck on machines and it gives students the freedom to change whatever they need to in order to get their job done (action-based restrictions and read-only files always got more in the way of doing real work). We also spend almost no time fixing software related problems since we can put them on a reboot schedule in the middle of the night.
At least as a means of written communication, honestly within the last several years when have you actually sent someone a message via postal mail? Today everyone has a telephone and quick messages are probably either given over it or by email. It didn't take people long to realize how ineffective it is to communicate with your average person when you have to wait days or even weeks before they even read what you sent them.Email is already the cost effective way (for those who already have computers/internet service of course) to send lengthy messages quickly, but until they find a way to scan and encode physical items into an email attachment, snail mail is still going to be the way to send packages, which unfortunately is a convenient ways to send these hazardous items.
Keep in mind that the first release of 2.4.0 was only released because Linus had gotten tired of the same people testing the 2.3 kernels, or 2.4 prereleases, whatever they were called.
Not that I agree with doing things that way, it is somewhat practical. A user of a 2.4 kernel has to keep in mind that although it was a 2.4 release, the series hasn't been officially declared totally stable yet, at least to my knowledge.
then that's an exploit for Code Red II infected machines, not the original Code Red.
big deal which one it was.
Just about every box ever infected with Code Red I eventually got CR II. and hey I'm still getting code red II hits -- somehow -- even after my isp has cut off incoming port 80 connections!
but a motherboard that detects whether or not a heatsink clamp is down or not, preventing the machine from operating if it's not, sounds like something useful. Although it seems harder for the clamps to come undone in some of the newer designs that are squeezed down pretty well, if it broke off, a motherboard that sensed the loss of tension could power itself down.
... a server being slashdotted?
The bubble looks cool.
Yeah, it looked just like the netscape broken image icon.
It makes sense becuase in the end they limited our service with the http block.
The computer industry is way too lax on quality of service - every program, OS, or hardware device has a disclaimer that they aren't responsible if it doesn't work. What am I paying for then?!?
Sue them!
Claim they're violating the GPL!
Whether or not I agree with exactly what you said, I do believe there should bed some kind of lowered service price after this.
Now Cox Fairfax did ignore the problem until very late and I don't know whether or not they lied.. I don't want to start the argument again over whether or not ISPs should intervene but in the end out of this was the blocking of incoming port 80 connections to all customers. They claim they are enforcing something in their usage contract but I looked again and couldn't find a place that said servers were not allowed.
I feel that I am no longer paying for full use of my IP and I wasn't even a contributor to the problem! I think all customers should be given a reduced service price, not necessarily for downtime but for the real long term effects of the reaction to Code Red.
I don't think it really mattered what the posted story was about. It was the first story under the new slashcode and I think that makes it right on topic
and it even reset my moderator points back up to 5 even though I used some today! hah
... and Microsoft went up was because of all the newly added IPs to the Netcraft database from all those Code Red-infected machines advertising themselves!
By the time this was posted there's only about 4.5 hours left before it closes!
Shipping costs just include fuel.. they fly the thing to you!
And you might want to stick a note on your door to leave it.. with all the potential weather related shipping delays you're likely to not be home.
Yesterday I got an automated phone message from my local RoadRunner provider telling me about CR, whether or not I could be infected, and where to download the patch.
I wokeup this morning to find a pop3 connection visible in my tail -f'd syslog -- from 3 hours before! At this point I'm getting around 3 CRII hits an hour, down from about 6 a minute yesterday. The data transfer light on my modem is also calm.
Has anyone else noticed this yet in their areas? My cable company was late in the process of sending out messages and warnings but it seems to have worked overnight. What are some other experiences?
A medicine is widely available on the market. It is up to the infected party to take the medicine, and it would be unethical to sieze the unwitting victim and force the medicine into their bodies.
I agree with that except that I doubt most of the attaching machines' owners even realize they're infected, and in many cases even running IIS.
I'm still not saying it would then be ethical to force disinfecting code into their machines, but it's kind of like spraying for virus-carying mosquitos (or whatever bugs it's for) in some areas.Residents don't always do their part in clearing water from their yards. Many don't even realize they provided a breeding ground in their yards, some are aware that a problem exists but don't think that they could be part of the problem, and others never got word about it at all. So, the city comes out and sprays for them.
Is it right for the city to just come and take care of the pest problem in everyone's backyard? Maybe. In this case they don't expect every person and animal to defend itself against poisinous mosquitos by putting insect repellent on themselves and their pets. Homeowners are part of a community and are contributing to a problem within it. This is sort of like the internet. Should we leave these contageous users to be and hope everyone else can handle it?
Yep, the Data light has been on more solidly in the last week than the Cable light has in the last year.
Don't expect Cox to do anything about it. They wouldn't know it if they had CodeRed on ams-server.
seriously, though, ms could foist an update like that as a 'critical update' and people would download it.
Judging by the number of Code-Red-infected boxes still attacking me, I doubt it.
Someone needs to write a new strand of Code Red that infects servers with the patch from MS.
I'm sick of all this wasted logfile space.
I wrote a crude script that does this but mails information to abuse departments of ISPs where they can match up the hosts with their users and contact them if they wish. The parent poster may want to add this feature to his code, and I might clean my code up later and post it.
that we're all speaking english today
This is the first time I've heard of GAC - but this is test is more then a bit different then the Turing Test.
Well, maybe it's silly to GPL those little labs that everyone does and turns nearly identical code in for. But when I was in IB Compsci we had to do this dossier which was an original project with code, documentation, etc. When mine was done after several months of work, I went ahead and put it under the GPL because it really could be useful to someone.
the first time I submitted a compsci assignment with the GPL headers and such attached, I got a funny look from the instructor. She wasn't very aware of what it was and asked me a few basic questions about it. I tried explaining it but mostly got questions like, "But what's this license thing?" or "Did you make it?" or "What does this do for you?" or "So who are these GPL people??". Once she finally got it she did express concern over whether or not this was allowed, since I was submitting it to her, and then she had to submit it to people abroad for grading (crazy program). Anyway, I gave her the GPL overview, and she was easily convinced that it was harmless because I was infact the copyright holder.
:)
Anyway that was sort of offtopic but I would say, just go ahead and GPL it and wait for someone to say something about it. Then we'll all have a new geeks rights violation submission to flame about
Forging the IP address of an attacking machine (spoofing) is such a trivial thing to do under any of the various UNIX-like operating systems, and it is so effective in hiding the attacking machines, that no hacker would pass up the opportunity if it were available.
When would a hacker use a DOS attack in the first place..
Kids need guidance. Kids need rules. Kids need discipline. Kids need responsibility. Most of all kids need opportunities. They need to be able show that they can be responsible. They need for us to trust them. Programs like this one show that we don't.
I agree with you, but what's sort of scary is that by changing the last sentence to something like, programs like this let kids prove their responsibility, and although it contradicts the argument it could be used by the company that makes this to market it in just the other direction.