I've got 2 Hotmail address - one in the format bXXXXXX@hotmail (with profile) another one in the format lXXXXXXXXXXXXXX@hotmail.com (without profile). The first gets a total of around 10 spams a day - the latter one (which actually has it's email address on a single webpage) has now been waiting for 3 months for it's first spam! I guess the longer the email address the less chance of receiving spam...
In my experience, it's the case of if you look out of place you obviously aren't meant to be there. The "secret" is to look like you "belong" where ever and know exactly where you are going - I've walked round my old company at 10pm at night (it's a 24/7 factory) in 'skivvies' and no one questioned me, I've wandered around hospitals, office suites etc etc - all without questions asked. Ok, I may have had no idea where I was going, but as long as you don't look like that you can usually get anyway without question.
Ok, how about once someone has voted, they are given a receipt with a code number on it- and the 'voting box' stores the thumbprinted printout of the vote and the code number. End of the vote: you've got over 5,000+ (at a minimum) bits of paper with thumbprints, votes and numbers on. There's no way of telling who voted for who unless you want to go through the hassle,time and cost of matching up everybodies thumbprint (and, as far as I know, there still isn't a thumbprint database in the US that everyone needs to register for). But if a vote disputes that their vote wasn't taken/was incorrectly recorded, as long as they've got their receipt - then someone can search through the large pile of matching slips until they find the 'vote'. The voter can then be shown that it was recorded, who they did vote for and that they confirmed it by matching the voter with their thumbprint. Obviously if someone comes and says "I want to check that my vote was recorded" and they bring the receipt, you will have to perform additional security checks to make sure they are who they say they are as the 'receipt' could have been stolen...But it's an idea.. Plus it means the machines can be accurately audits - just take the number of votes recorded by each machine and compare them with the paper copies of the votes. If they don't correspond - don't trust the machine. Tell each voter that if they are NOT asked for their thumbprint and DON'T get a receipt, to inform the invigilator/voting authority person immediately.
I take it you've read Douglas Adams' "The Restaurant at the End of the Universe" where Arthur and Ford get dumped by a Golgrinchen (sp?) 'B ark' (all the 'usual' people who don't actually do the thinking and the working - i.e. telephone sanitairs etc) on a certain blue-green planet and actually 'take over' from the Cavemen?
They probably could if they were allowed to, but they are a commerical organisation with rivals - so they probably keep things 'hush hush' until they are ready to announce them in one way or another...
That's "Little Lost Robot":) Again I can place it because it appeared in I, Robot which I only read a couple of months back...Worrying that I can name and place the stories though *gulp*.
2001 is improved if you also read the book. In fact, IMHO, read the book first then re-watch the movie. You'll understand the starting scenes with Moonwatcher etc (the monkeys) and the "OMG! It's full of stars" section in the "hotel room" at the end a lot better.
Whose password is weaker than water? Whose access rights have been abused? Whose login allowed the servers to be 0wn3d? Silly users, you are the weakest link - Goodbye!
Ok, bit lame, but I've just wanted to do a "Whose..." bit for days now:). But honestly, who didn't suspect that user-end security would be the weakest part: 9 times out of 10 you probably don't need to run a crack program, you'll be amazed at how many people will willingly give you their login name and password!
To me, the Atari 2600 games were extremely playable. Keystone Kops, that Tank game (I can't remember) and of course Space Invaders... Many a happy hour.
We actually had one a few months ago hit just outside Leicester (UK East Midlands) - I think it measured around 5.6/5.7ish. I noticed the house slightly shaking but just thought it was a damn big lorry passing (ok, initally I thought it was the local quarry blasting again until I remembered that I no longer lived near one).
To me, it sounds more like a local cache system. Imagine a great big online game (say Quake re-written in Flash for example). You don't really want the game to pause every few seconds why it downloads the graphics do you? Let Flash cache them for you and all is sweet.
Of course, that might be what Macromedia want you to think, but as I don't work for them and have never used any of their authoring software I couldn't say for certain...
One reason why I've still got my Demon connection 5 years on! Hit a problem? Try fingering status@gate.demon.co.uk.Hmm,not reported/unable to connect.Try calling the freephone status line.No problems on network at moment.Call the local rate technical support line (other ISPs charge around 50p to 1UKP per minute),identify myself,give idea of problem get solution.Realise that it is actually Christmas Day and thank the techy! True story!
Except if Google does notice a disproportional number of search from an IP address (even a netblock) they do reserve the right to block your IP/netblock. This way, at least, you are querying their database without breaching their TOS...
We use the RealTime plugin for one of our websites, and it's ideal for showing large images (we use it for 'Scitex Brisque-Ripped PDF files'). It's got 'notation' and 'color dropper' tools which allows a certain degree of manipulation online. Ok, it's a lil' bit slow on a 56k modem, but a few seconds delay to view a 120Mb PDF file ain't that much!
Hmm...I can't do finger printing at the moment, but here's the results of a port scan:
www.wehavethewayout.com=130.94.214.143
Open ports: 21 (FTP Control:Microsoft FTP Service version 5.0), 25 (SMTP: Relay not authorized error), 80 (WWW: Microsoft IIS5.0/403 Access Forbidden), 110 (POP3), 389 (LDAP), 443 (HTTPS), 1433 (Microsoft SQL Server), 1755 (MS-Streaming), 1801 (Microsoft Message Queue), 2103 (Zephyr serv-hm connection), 2105 (MiniPay) AND (to round off all the nice open ports): 5900 (VNC!!!: no Terminal Services eh Microsoft?).
Talk about leaving the doors unlocked... Now if I could be bothered trying standard passwords we can see if they actually bothered closing the doors as well!
It's mainly Unisys to blame (according to the DNS records), but that is becoming a laugh a minute anyway!
Actually, that's quite a good similarity. Programmers, are in a way, artists. We think of what we achieve and then we set out to achieve that goal using our own special skillset and 'signature' (I've got 4 programmers in my team and I can match up a chunk of code to any other them - include 4 predecessors).
Best tactic I've see is just providing a web-to-email form for people to fill in. After all: if they've got their web browser loaded, do they really need to launch an email client to contact you? Keeps your address hidden, and as long as you don't use something like Matt Wrights formmail.pl script, quite secure. Get the outgoing mails tagged with the senders IP, browser details etc and it'll help track abusive messages as well...
Why not just us a.htaccess file in your top-level htdocs directory? Order by deny,allow deny from spammers.ip.address.here, another.spammers.ip.address allow from all will _probably_ do it (ie this is an untested example!)
Stop it - you're scaring me! It's when the air is so polluted that we've got to carry around Oxygen generator kits powered by dynamos that we've _really_ got to worry!
Hang on - clockwork radios, clockwork mobile phone chargers (now available), foot powered laptops, there's a machine that can 'digest' body matter and change it into energy (currently being used as a 'slug-catcher'): I think it's too late already:-(.
We tried running Linux on it, but couldn't get the correct drivers for them. No details of which chipset they are running and the Linux 'auto-detect' system doesn't recognise the display, 'nipple' or touchpad (only external mice). Saying that, when we installed Mandrake on a Dell box, it took around 4 hours to find the correct drivers for that display so... Oh well.
In the IT department where I work, we support around 30 laptops - mainly either Dell Latitudes or Sony Vaios. The Dells, while really needing a clean install every 6 or 12 months, work perfectly. We are able to do a base install of Windows 2000 Professional on them from any Win2K CD we have laying around (OEM, Dell-branded, seperate purchase etc etc), and we just need to use the 2nd Dell CD for the correct drivers (display, inbuilt network card if fitted etc etc). If we can't find the drivers, we just shufty down to the Dell website, enter in either the model of the laptop of the service code (a unique identifer on every Dell machine), pick the drivers, download 'em, burn 'em to CD and then do a merry little dance.
Sony Vaios, however, are a different story. They *need* installing from the original media they came with (and are very unhappy if you use the copy of Win2K you keep in your drawer for ease of reach). We had a Sony Vaio that came pre-shipped with Win98 (urgh), so we decided to upgrade it to have a 'standard OS' across our network. We brought yet another 2K licence and then attempted into install 2000 onto it. Failure. It didn't pick any of the hardware (display was v.low res, no network connectivity or modem: so no Windows Update for us!), and a trawl on Sony's website showed that the laptop brought in 98/99 had hardware that was 'no longer supported by Sony and no Windows 2000 or NT4 drivers are available for this hardware'. Since we had lost the original '98 CD it came with (have you seen the size of our software safe!?!), we couldn't even roll it back to 98. So now we've got a Sony Vaio stuck in 640x480x256 resolution, an inbuilt unused network interface and a additional PCI network card. Sound is poor on it as well. Practically unusable, but we can't do a thing.
Dell technical support may be a bit poor and expensive (they were going to charge us over 150UKP to replace a bust LCD display, we got an 'alternative supplier' to replace it for around 60UKP), but at least they make sure you can do a clean install whenever you want.
Slashdot Mirror
I've got 2 Hotmail address - one in the format bXXXXXX@hotmail (with profile) another one in the format lXXXXXXXXXXXXXX@hotmail.com (without profile). The first gets a total of around 10 spams a day - the latter one (which actually has it's email address on a single webpage) has now been waiting for 3 months for it's first spam!
I guess the longer the email address the less chance of receiving spam...
Well, if they are Canadian* - anywhere you like as they won't be missed.
(*=Substitute American here if you want)
In my experience, it's the case of if you look out of place you obviously aren't meant to be there. The "secret" is to look like you "belong" where ever and know exactly where you are going - I've walked round my old company at 10pm at night (it's a 24/7 factory) in 'skivvies' and no one questioned me, I've wandered around hospitals, office suites etc etc - all without questions asked. Ok, I may have had no idea where I was going, but as long as you don't look like that you can usually get anyway without question.
Ok, how about once someone has voted, they are given a receipt with a code number on it- and the 'voting box' stores the thumbprinted printout of the vote and the code number. End of the vote: you've got over 5,000+ (at a minimum) bits of paper with thumbprints, votes and numbers on. There's no way of telling who voted for who unless you want to go through the hassle,time and cost of matching up everybodies thumbprint (and, as far as I know, there still isn't a thumbprint database in the US that everyone needs to register for).
But if a vote disputes that their vote wasn't taken/was incorrectly recorded, as long as they've got their receipt - then someone can search through the large pile of matching slips until they find the 'vote'. The voter can then be shown that it was recorded, who they did vote for and that they confirmed it by matching the voter with their thumbprint.
Obviously if someone comes and says "I want to check that my vote was recorded" and they bring the receipt, you will have to perform additional security checks to make sure they are who they say they are as the 'receipt' could have been stolen...But it's an idea..
Plus it means the machines can be accurately audits - just take the number of votes recorded by each machine and compare them with the paper copies of the votes. If they don't correspond - don't trust the machine. Tell each voter that if they are NOT asked for their thumbprint and DON'T get a receipt, to inform the invigilator/voting authority person immediately.
I take it you've read Douglas Adams' "The Restaurant at the End of the Universe" where Arthur and Ford get dumped by a Golgrinchen (sp?) 'B ark' (all the 'usual' people who don't actually do the thinking and the working - i.e. telephone sanitairs etc) on a certain blue-green planet and actually 'take over' from the Cavemen?
They probably could if they were allowed to, but they are a commerical organisation with rivals - so they probably keep things 'hush hush' until they are ready to announce them in one way or another...
That's "Little Lost Robot" :) Again I can place it because it appeared in I, Robot which I only read a couple of months back...Worrying that I can name and place the stories though *gulp*.
You are remembering 'Runaround' which appeared in Asimov's "I,Robot" book (available to read online).
2001 is improved if you also read the book. In fact, IMHO, read the book first then re-watch the movie. You'll understand the starting scenes with Moonwatcher etc (the monkeys) and the "OMG! It's full of stars" section in the "hotel room" at the end a lot better.
Whose password is weaker than water? Whose access rights have been abused? Whose login allowed the servers to be 0wn3d? Silly users, you are the weakest link - Goodbye! :). But honestly, who didn't suspect that user-end security would be the weakest part: 9 times out of 10 you probably don't need to run a crack program, you'll be amazed at how many people will willingly give you their login name and password!
Ok, bit lame, but I've just wanted to do a "Whose..." bit for days now
To me, the Atari 2600 games were extremely playable. Keystone Kops, that Tank game (I can't remember) and of course Space Invaders... Many a happy hour.
We actually had one a few months ago hit just outside Leicester (UK East Midlands) - I think it measured around 5.6/5.7ish. I noticed the house slightly shaking but just thought it was a damn big lorry passing (ok, initally I thought it was the local quarry blasting again until I remembered that I no longer lived near one).
To me, it sounds more like a local cache system. Imagine a great big online game (say Quake re-written in Flash for example). You don't really want the game to pause every few seconds why it downloads the graphics do you? Let Flash cache them for you and all is sweet.
Of course, that might be what Macromedia want you to think, but as I don't work for them and have never used any of their authoring software I couldn't say for certain...
One reason why I've still got my Demon connection 5 years on! Hit a problem? Try fingering status@gate.demon.co.uk .Hmm,not reported/unable to connect.Try calling the freephone status line.No problems on network at moment.Call the local rate technical support line (other ISPs charge around 50p to 1UKP per minute),identify myself,give idea of problem get solution.Realise that it is actually Christmas Day and thank the techy! True story!
And I've just visited the site via my works network which has a proxy cache with 14 day time out. I'll extend it 365 on this site so we can be next :D
Except if Google does notice a disproportional number of search from an IP address (even a netblock) they do reserve the right to block your IP/netblock. This way, at least, you are querying their database without breaching their TOS...
We use the RealTime plugin for one of our websites, and it's ideal for showing large images (we use it for 'Scitex Brisque-Ripped PDF files'). It's got 'notation' and 'color dropper' tools which allows a certain degree of manipulation online. Ok, it's a lil' bit slow on a 56k modem, but a few seconds delay to view a 120Mb PDF file ain't that much!
Hmm...I can't do finger printing at the moment, but here's the results of a port scan:
www.wehavethewayout.com=130.94.214.143
Open ports: 21 (FTP Control:Microsoft FTP Service version 5.0), 25 (SMTP: Relay not authorized error), 80 (WWW: Microsoft IIS5.0/403 Access Forbidden), 110 (POP3), 389 (LDAP), 443 (HTTPS), 1433 (Microsoft SQL Server), 1755 (MS-Streaming), 1801 (Microsoft Message Queue), 2103 (Zephyr serv-hm connection), 2105 (MiniPay) AND (to round off all the nice open ports): 5900 (VNC!!!: no Terminal Services eh Microsoft?).
Talk about leaving the doors unlocked... Now if I could be bothered trying standard passwords we can see if they actually bothered closing the doors as well!
It's mainly Unisys to blame (according to the DNS records), but that is becoming a laugh a minute anyway!
The question is about blocking port 80 outbound not port 80 inbound.
Actually, that's quite a good similarity. Programmers, are in a way, artists. We think of what we achieve and then we set out to achieve that goal using our own special skillset and 'signature' (I've got 4 programmers in my team and I can match up a chunk of code to any other them - include 4 predecessors).
Best tactic I've see is just providing a web-to-email form for people to fill in. After all: if they've got their web browser loaded, do they really need to launch an email client to contact you? Keeps your address hidden, and as long as you don't use something like Matt Wrights formmail.pl script, quite secure. Get the outgoing mails tagged with the senders IP, browser details etc and it'll help track abusive messages as well...
Why not just us a .htaccess file in your top-level htdocs directory?
Order by deny,allow
deny from spammers.ip.address.here, another.spammers.ip.address
allow from all
will _probably_ do it (ie this is an untested example!)
Stop it - you're scaring me! It's when the air is so polluted that we've got to carry around Oxygen generator kits powered by dynamos that we've _really_ got to worry! :-(.
Hang on - clockwork radios, clockwork mobile phone chargers (now available), foot powered laptops, there's a machine that can 'digest' body matter and change it into energy (currently being used as a 'slug-catcher'): I think it's too late already
We tried running Linux on it, but couldn't get the correct drivers for them. No details of which chipset they are running and the Linux 'auto-detect' system doesn't recognise the display, 'nipple' or touchpad (only external mice). Saying that, when we installed Mandrake on a Dell box, it took around 4 hours to find the correct drivers for that display so... Oh well.
In the IT department where I work, we support around 30 laptops - mainly either Dell Latitudes or Sony Vaios. The Dells, while really needing a clean install every 6 or 12 months, work perfectly. We are able to do a base install of Windows 2000 Professional on them from any Win2K CD we have laying around (OEM, Dell-branded, seperate purchase etc etc), and we just need to use the 2nd Dell CD for the correct drivers (display, inbuilt network card if fitted etc etc). If we can't find the drivers, we just shufty down to the Dell website, enter in either the model of the laptop of the service code (a unique identifer on every Dell machine), pick the drivers, download 'em, burn 'em to CD and then do a merry little dance.
Sony Vaios, however, are a different story. They *need* installing from the original media they came with (and are very unhappy if you use the copy of Win2K you keep in your drawer for ease of reach). We had a Sony Vaio that came pre-shipped with Win98 (urgh), so we decided to upgrade it to have a 'standard OS' across our network. We brought yet another 2K licence and then attempted into install 2000 onto it. Failure. It didn't pick any of the hardware (display was v.low res, no network connectivity or modem: so no Windows Update for us!), and a trawl on Sony's website showed that the laptop brought in 98/99 had hardware that was 'no longer supported by Sony and no Windows 2000 or NT4 drivers are available for this hardware'. Since we had lost the original '98 CD it came with (have you seen the size of our software safe!?!), we couldn't even roll it back to 98. So now we've got a Sony Vaio stuck in 640x480x256 resolution, an inbuilt unused network interface and a additional PCI network card. Sound is poor on it as well. Practically unusable, but we can't do a thing.
Dell technical support may be a bit poor and expensive (they were going to charge us over 150UKP to replace a bust LCD display, we got an 'alternative supplier' to replace it for around 60UKP), but at least they make sure you can do a clean install whenever you want.