I have asked this question before. For some reason, I have never heard anything back.
I am an aspiring light artist and am looking for very low lower laser diodes for my work (under 1 mw).
Perhaps I can get some response here?
How do we get someone kicked out of the party? If this person is behaving like a republican, than isn't there a means or process to get her expelled from the democrat party?
Perhaps a diskless boot (either Linux terminal server project or Lessdisks or something like that) and then run a script automatically to do whatever you want to do.
Establish a client name based on the client's mac address. Use that to store the disk's contents remotely.
If done right, you can have a room full of these machines doing this automatically at once.
Will they allow bicycles on this train? Here in Portland, the MAX train has hooks on which bicycles can be hung. Will this train have the same hooks? There was no mention of this in the article.
Can we see a point at which Netflix would overcome cable? Everything on demand, including sports? If I were Netflix, I would try to buy out all of the sports contracts and offer *all* sports via streaming.
I remember in the old days (1976) in Lewiston, Maine, the fine for overtime parking was $.50. Yes. That's 50 cents. I did not get a ticket, but I saw the pad of tickets at the police station when I had to go in to file a police report on some vandalism at my radio station.
Here is one small step that was taken by a high end hosting provider
All the systems had locked root passwords; nobody knew the actual root passwords; and they were different for each system.
All root is done via sudo except for the system console, which is in the locked server room
To gain sudo access, this is what happens
First you go onto a secure database that is tied in with the trouble ticket system. You log in using a token. You request root access to server x. The system checks to see that you are supposed to be able to have root for server x and it checks to see that you are working on a currently open trouble ticket for an application on server x.
If the secure database is happy, it sends a message to another secure server (in a different machine room). That system, which has yet another secure database, pulls an ssh private key from the database, installs it as a ssh private key in order to do an ssh shell session with the server you want to get on. That session runs a script that changes the/etc/sudoers to add your name. Along with that, it sets off a cron job that forces the/etc/sudoers fill back to its original configuration after a set ammount of time.
You log in, do sudo, and do your stuff. All logging is done to what I call a toilet paper machine (paper log) in yet another secure room. You are through and log off. You close the ticket. The entire process as described above is done but to restore the/etc/sudoers file back to the way it was. Even if you 'forget' to close the ticket, the timer cron noted above will still revoke your access to sudo and send an email to security.
The secure database servers noted above, each located in its own secure location, require two people authentication to access root. For those machines, the root password is split in half. One half is known by each of two key people. They both need to log in at the same time.
This is about the most paranoid root access that I am aware of.
The minute I leave after a disagreement with management, I would:tell them (hopefully with at least two or three people in the room for witnesses) to immediate terminate *all* of my access to *everyhthing* as I will not do any consulting for them.
I will tell them to send me my personal belongings (if I have any there I care about, as I personally have a strict policy of keeping nothing I value at the office) home and *escort me off the place immediately* and hand them my badge.
This way, there is no doubt that I have a clean break from these folks.
If something happens later on, hopefully I would be far from blame.
Folks:
All of my resignations had at least a three week transition; one I was allowed to stay for 1 1/2 *months* for transition.
Another time, I was told I would be laid off 1 *month* prior to the event. I still had *full* access to everything right up to the day. At the day itself, I had to all but arm twist the guy to walk me to the exit and take my badge!
This is one reason why we need to have a well documented and well tested procedure for the termination of an IT employee.
There need to be a group of people; not just one or two; in the company who have a *full understanding* of the network, the servers; the entire infrastructure. Those people need to get together and come up with a detail step by step procedure and then test it thoroughly.
Once they test it, they should have it reviewed by not just one, but perhaps two or three different security consultants.
This procedure needs to cover *everything*; network passwords, personal passwords, building/room access cards or keys, etc.
It should be a given that physical locks (old fashioned keys) must be changed. Assume that keys are duplicated.
It should also be a given that *all* root/system/admin passwords must be changed
If the person had any access to any private cryptographic and PKI keys, they must be revoked and replaced.
And, by the way, do you search the areas the person had access to and look for rogue modems, wireless access point, or whatever? Do you have an active inventory and configuration of your network readily available? Do you look above the false ceiling and under raised floors? Probably not. But do it. I''ve seen it all. Even a changed lock on a door that not normally used; the person put his own lock on it so he can get in after all the locks on the 'normal' doors are changed. Any extra routers on the perimeter? Yes, I have seen it. That inventory must be thorough, accurate, and periodically checked.
From experience and stories that I have seen; it is a given that if at all possible, all of the account/password/access termination must be done prior to the person knowing that they are to be terminated. I prefer to do this work over a weekend (and do thorough testing) and then formally terminate the person on the following Monday morning when the employee arrives at the building's lobby or reception.
The best places that I have seen have this procedure not only trained to several people but documented in loose leaf binders prominently on key people's desks. They also run drills periodically (with evaluation by at least one if not more external and trusted security consultants) to ensure that *every* access to the building/network/servers is secured properly.
Yes, this costs money; lots of it; but it's your darn business that's at stake
For example, I learned on it the basics of how cable internet works (routers, modems, etc).
I may be one of those who take it for granted. It's just there. Like the street in front of my house. I know deep down inside that my taxes are paying for it, but I don't think that all the time.
We all know deep down inside that Wikipedia needs volunteers and donors, but we don't remind ourselves of it. We just use it.
I hope this is not a troll or flame bait, but I cannot resist asking . ..
Has anyone figured out the share of network traffic that is used for porn?
Has anyone figured out the share of cable tv traffic that is used for porn?
I ask this because in the old days, there was perhaps one adult theater for almost 50 to 100 regular movie theaters. Likewise, there is about 1 'dirty' book store for ever 50 to 100 'clean' or regular book stores.
I am talking of the 1960's and 1970's, prior to mass cable and internet.
I admit, I don't use bittorrent, but I am curious since I hear so much about it and piracy and tv/movie studios whining about bittorrent.
Which brings up my question, just how much of bittorrent (and large ISP's) traffic is pirated tv/movie studio content? 0.1 percent? 5 percent?
Is this such a big deal?
A bid badger is the person who does the shill bids at an auction; the buddy of the seller for the purpose of driving up the price of that vintage osciloscope that I want so badly
Netflix bumps up its prices and builds up a large hoard of cash . . ..
Then the following might happen at a posh hotel/restaurant near you
"We at Netflix would like to offer your fine folks at the NFL an exclusive contract for so that we can have *exclusive* broadcast rights to all of your NFL football games."
"Well, what can you offer our viewers that our current TV network does not?"
"Total advertisement free coverage. In fact, this would be good for both your fans and your teams. You will no longer have to take time out in your games for commercial breaks. Your games will be shorter; your operating costs will go down and most importantly, your fans will like it."
"Well, that seems to be a good deal"
And so, they sign up.
Now Netflix would be the exclusive carrier for NFL; no one can watch it without signing up with Netflix. . . . .
Slashdot Mirror
I think these toys could be used for punishment
Force your errant child/dog/cat/whatever to sit in front of one of these eavsdropping session for a while with nothing else to do.
They will shape up fast.
Perhaps if one has insomnia problems, this would be good medicine?
Not all theaters charge the same. Some, in Portland, Oregon, charge only $6.00 or so.
Examples are the Clinton, the Hollywood, the Bagdad, and the Laurelhurst.
And some of those also offer real food, not just candy.
Please shop around!
This is not just about Arduino
You may be tired of hearing about Arduino, but this is also about a field called light art or LED art.
I happen to be a devout light artist. I have been playing with light a a means of art long before Arduino came into existence.
If you want to see samples of light art, I have a journal on line at www.allyn.com that shows some of my work.
For those of you in the Portland, Oregon area, I am the person you see out and about wearing lighted clear plastic raincoats and lighted jewelry.
I have asked this question before. For some reason, I have never heard anything back. I am an aspiring light artist and am looking for very low lower laser diodes for my work (under 1 mw). Perhaps I can get some response here?
How do we get someone kicked out of the party? If this person is behaving like a republican, than isn't there a means or process to get her expelled from the democrat party?
Perhaps a diskless boot (either Linux terminal server project or Lessdisks or something like that) and then run a script automatically to do whatever you want to do. Establish a client name based on the client's mac address. Use that to store the disk's contents remotely. If done right, you can have a room full of these machines doing this automatically at once.
Will they allow bicycles on this train? Here in Portland, the MAX train has hooks on which bicycles can be hung. Will this train have the same hooks? There was no mention of this in the article.
Can we see a point at which Netflix would overcome cable? Everything on demand, including sports? If I were Netflix, I would try to buy out all of the sports contracts and offer *all* sports via streaming.
I remember in the old days (1976) in Lewiston, Maine, the fine for overtime parking was $.50. Yes. That's 50 cents. I did not get a ticket, but I saw the pad of tickets at the police station when I had to go in to file a police report on some vandalism at my radio station.
Meters can be easily equipped with low cost webcams.
Since these meters will need wifi or some other connection to have their data collected, why not piggy back a webcam's stream as well.
Is this type of stuff covered in his employment agreement? That can decide the case.
I was going to suggest the same thing, but I forgot the Agilent name
I am curious, when HP and Agilent split, did all of the real engineer end up migrating to Agilent?
I happen to be visiting family in Morristown, New Jersey.
I am curious, what is left of Bell Labs? Is anything at all left?
I know that AT&T is not what it used to be and much of Bell Labs will sold off of closed
I was hoping to perhaps drive by what is left of Bell Labs just to see it and say to folks that I saw the place.
Anyone out there know what is left and is it anywhere close to Morristown or Harding?
Thanks
Here is one small step that was taken by a high end hosting provider
All the systems had locked root passwords; nobody knew the actual root passwords; and they were different for each system.
All root is done via sudo except for the system console, which is in the locked server room
To gain sudo access, this is what happens
First you go onto a secure database that is tied in with the trouble ticket system. You log in using a token. You request root access to server x. The system checks to see that you are supposed to be able to have root for server x and it checks to see that you are working on a currently open trouble ticket for an application on server x.
If the secure database is happy, it sends a message to another secure server (in a different machine room). That system, which has yet another secure database, pulls an ssh private key from the database, installs it as a ssh private key in order to do an ssh shell session with the server you want to get on. That session runs a script that changes the /etc/sudoers to add your name. Along with that, it sets off a cron job that forces the /etc/sudoers fill back to its original configuration after a set ammount of time.
You log in, do sudo, and do your stuff. All logging is done to what I call a toilet paper machine (paper log) in yet another secure room. You are through and log off. You close the ticket. The entire process as described above is done but to restore the /etc/sudoers file back to the way it was. Even if you 'forget' to close the ticket, the timer cron noted above will still revoke your access to sudo and send an email to security.
The secure database servers noted above, each located in its own secure location, require two people authentication to access root. For those machines, the root password is split in half. One half is known by each of two key people. They both need to log in at the same time.
This is about the most paranoid root access that I am aware of.
If this were me . . .
The minute I leave after a disagreement with management, I would:tell them (hopefully with at least two or three people in the room for witnesses) to immediate terminate *all* of my access to *everyhthing* as I will not do any consulting for them.
I will tell them to send me my personal belongings (if I have any there I care about, as I personally have a strict policy of keeping nothing I value at the office) home and *escort me off the place immediately* and hand them my badge.
This way, there is no doubt that I have a clean break from these folks.
If something happens later on, hopefully I would be far from blame.
Luv it. Never heard that one. How true!
Another time, I was told I would be laid off 1 *month* prior to the event. I still had *full* access to everything right up to the day. At the day itself, I had to all but arm twist the guy to walk me to the exit and take my badge!
I was never perp walked
Please
This is one reason why we need to have a well documented and well tested procedure for the termination of an IT employee.
There need to be a group of people; not just one or two; in the company who have a *full understanding* of the network, the servers; the entire infrastructure. Those people need to get together and come up with a detail step by step procedure and then test it thoroughly.
Once they test it, they should have it reviewed by not just one, but perhaps two or three different security consultants.
This procedure needs to cover *everything*; network passwords, personal passwords, building/room access cards or keys, etc.
It should be a given that physical locks (old fashioned keys) must be changed. Assume that keys are duplicated.
It should also be a given that *all* root/system/admin passwords must be changed
If the person had any access to any private cryptographic and PKI keys, they must be revoked and replaced.
And, by the way, do you search the areas the person had access to and look for rogue modems, wireless access point, or whatever? Do you have an active inventory and configuration of your network readily available? Do you look above the false ceiling and under raised floors? Probably not. But do it. I''ve seen it all. Even a changed lock on a door that not normally used; the person put his own lock on it so he can get in after all the locks on the 'normal' doors are changed. Any extra routers on the perimeter? Yes, I have seen it. That inventory must be thorough, accurate, and periodically checked.
From experience and stories that I have seen; it is a given that if at all possible, all of the account/password/access termination must be done prior to the person knowing that they are to be terminated. I prefer to do this work over a weekend (and do thorough testing) and then formally terminate the person on the following Monday morning when the employee arrives at the building's lobby or reception.
The best places that I have seen have this procedure not only trained to several people but documented in loose leaf binders prominently on key people's desks. They also run drills periodically (with evaluation by at least one if not more external and trusted security consultants) to ensure that *every* access to the building/network/servers is secured properly.
Yes, this costs money; lots of it; but it's your darn business that's at stake
Heck, I have seen pron at yard/estate sales and much of it is marked 'free'.
Now, will Comcast and Time Warner want to make it illegal to have estate and yard sales?
Mark
For example, I learned on it the basics of how cable internet works (routers, modems, etc).
I may be one of those who take it for granted. It's just there. Like the street in front of my house. I know deep down inside that my taxes are paying for it, but I don't think that all the time.
We all know deep down inside that Wikipedia needs volunteers and donors, but we don't remind ourselves of it. We just use it.
Has anyone figured out the share of network traffic that is used for porn?
Has anyone figured out the share of cable tv traffic that is used for porn?
I ask this because in the old days, there was perhaps one adult theater for almost 50 to 100 regular movie theaters. Likewise, there is about 1 'dirty' book store for ever 50 to 100 'clean' or regular book stores.
I am talking of the 1960's and 1970's, prior to mass cable and internet.
I admit, I don't use bittorrent, but I am curious since I hear so much about it and piracy and tv/movie studios whining about bittorrent. Which brings up my question, just how much of bittorrent (and large ISP's) traffic is pirated tv/movie studio content? 0.1 percent? 5 percent? Is this such a big deal?
A bid badger is the person who does the shill bids at an auction; the buddy of the seller for the purpose of driving up the price of that vintage osciloscope that I want so badly
Here is a possible scenario
Netflix bumps up its prices and builds up a large hoard of cash . . . .
Then the following might happen at a posh hotel/restaurant near you
"We at Netflix would like to offer your fine folks at the NFL an exclusive contract for so that we can have *exclusive* broadcast rights to all of your NFL football games."
"Well, what can you offer our viewers that our current TV network does not?"
"Total advertisement free coverage. In fact, this would be good for both your fans and your teams. You will no longer have to take time out in your games for commercial breaks. Your games will be shorter; your operating costs will go down and most importantly, your fans will like it." "Well, that seems to be a good deal"
And so, they sign up.
Now Netflix would be the exclusive carrier for NFL; no one can watch it without signing up with Netflix. . . . .