No one person has a root password, domain admin password or any privledged password. Its all under dual control, meaning the actual password is split in two, one half held by the security team, the other half in a safe thats only opened when the right forms are presented.
Use the root password? if your the second half password holder, you can't check out the password, so no one knows the root password.
Sniffer's got application response time measurements. Its got full protocol decodes. It tell me all about my SMB traffic and can go as far as telling you misconfigurations in your NT or W2K domain setup. I don't know what Sniffer pro your looking at, but it obviously not the same one I'm refering too.
ahhh. Maybe I didn't phrase correctly. My point being is that you have to jump between tools to get the same level of information that Sniffer gives you in a single tool.
While it probably does suit the poster, I have to say for network diagnostics, Sniffer Pro is awesome. With the right network cards, it goes right down to the network layer, pulling out collision stats etc, and can even go and setup your switches for monitoring using rmon. Got wan problems, Sniffer can work with a Y cable and hardware decoder to watch your WAN. They even have long term trending and reporting tools. Its maybe the one tool that Network Associates does right.
Ethereal and TCPDump are good for protocol analysis, but most network problems I've delt with are not really at the application layer, but more the pysical layer. (Dodgy Network Cards, Flat network designs with hundreds of hosts, causing your collision rate to go through the roof etc)
The other thing that I like about sniffer, is its made for people that might not have degree's in network analysis. Its got that Expert System. It will throw at you all the errors it finds, and is good enough to tell you what those errors means.
Lastly, The export feature is great. Does my boss want to know what is the biggest talker on the network, Let sniffer run for a few hours, export to excell, and I can give him the top 10/20/50, I can break it down further by protocol or application, and can even tell him who the partners are.
I know there are other tools out there that can do all this, (ntop, ethereal, tcpdump, rrd's) but thats exactly my point. They are different tools, they don't work together, and imho, none of them are true network diagnostic tools.
I'm Ex NAI employee btw, so maybe a bit biased, but I still use Sniffer (legit copies) to this day. There are only a few reasons why I still have a windows drive for my laptop, and Sniffer is no. 1)
Oh how I would love to put you in a startup and see you drown and get thrown out. This is the type of attitude that pisses of employees, and I thought one of the roles of a manager was to retain the good staff. With your ideas of running a company, I'd prefer to do it in the real military, fighting some war or terroist that is harming my nation rather than Give your ego a boost by thinking that you are the only person in power to make a decision because you know all the plays.
I once worked for someone like you. It was the best package I've recieved to date, and was in fact a pretty good position. I lasted 3 weeks. You know why, because it was people like you that would put me in front of a customer with bad news, or a f*cked up situation, and you wouldn't give me the "why" of the decision. and I had to sit there and tell the customer some bullsh*t and look like a total incompetent looser who had no idea what was going on.
And as others have pointed out, often is your employees that really know whats going on, and are the bright ones with the new ideas etc. If you constantly blow peoples ideas off without offering a "why" then no one is going to come up with new ideas, because they can't be bothered. Your organisation ends up stagnating as your not fostering any innovation, and your grand dreams of a job in 10 years is a illusion to everyone but yourself.
Wake up and smell the roses. While your "way" of running a business might have worked in the past, with the competion the way it is now days in most market segments, employees are your most important assets. Shouldn't you start treating them that way?
In power-mad punks that ruined dal.net are you refering ot the channel founders/users or the ircop ops? I'm a serveradmin on irc-chat.net (its not.org, but.org points there) and I try hard to hire ircops that are friendly and knowledgable. In most cases, if a ircop gets abusive or careless, they don't have a O line for very long.
As far as moderated channels goes, thats a channel admin/founder thing... I have no idea why they would moderate the channel.
Some IRC Servers already have SSL Support
on
Secure IRC?
·
· Score: 1
For instance, look at UnrealIRCD. You can compile it with SSL support, and the clients that support it (I know Xchat does, not sure about others) can connect and Comunicate via SSL based connections to the server. Sure... Maybe the admin of the server can sniff your converstation, but no one else on the internet can.
Its just as secure as this SILC, but still has the stability and popularity of IRC that has been developed longer than webservers themselves (IIRC)
(Unrealircd, is at www.unrealircd.com)
Maybe now Enterprises will realize that linux is a big mans toy, but actually, is quite a powerfull Operating system, that can compete with the expen$ive OS's out there... Hopefully more support from other Vendors for linux will result... Go Linux Go
I work in the security industry... while it would be illegal for you to take some information from their database and show it to them, if you can setup a 20 minute meeting, demonstrate the hole to them, and tell them how to fix it in the meeting, more than likely, they will come aboard at least for security services. We used to use Vunerability scans, offer customers one free scan, and show them the holes they had, and next thing we know, we got the contract. Shock tactics work the best when it comes to security, as soon as they know they have a hole, they will fall over themselves to get it fixed.
Unfortuantly, I've also seen security vendors with masive holes in their system as well. A well known Managed Security Provider in Korea was vunerable to at least 5 exploits on their webserver. Their website proclaimed how good they were at security, yet, even after numerous emails from anonomous hotmail accounts, they still didn't fix their own problems. It was only after a script kiddie found it and "owned" the site did they wise up, so sometimes you just can not win, but at least you can put your mind at ease, and know that you at least tried to warn them of the problems.
Its a fact, I'm more likely to click on a Flash Banner, or something that is animated, than on a flashing gif. Humans respond better to multimedia. TV is the perfect example. How many people still go home and watch the news or current affairs shows? They could get 100 times more information if they surfed the internet... Another example, have a look at how many Visulization plugins there are for Winamp... I know when I'm in the mood for music, the Laptop gets hooked upto the stereo, and the 80cm Television, and on goes G-Force:)
Slashdot Mirror
Good Luck getting first post then :)
background: I work in a large asian Bank.
No one person has a root password, domain admin password or any privledged password. Its all under dual control, meaning the actual password is split in two, one half held by the security team, the other half in a safe thats only opened when the right forms are presented.
Use the root password? if your the second half password holder, you can't check out the password, so no one knows the root password.
Its pretty flexible... With a bit of shell scripting around it, I imagine you could do this.
http://fcron.free.fr/
Sniffer's got application response time measurements. Its got full protocol decodes. It tell me all about my SMB traffic and can go as far as telling you misconfigurations in your NT or W2K domain setup.
I don't know what Sniffer pro your looking at, but it obviously not the same one I'm refering too.
ahhh. Maybe I didn't phrase correctly. My point being is that you have to jump between tools to get the same level of information that Sniffer gives you in a single tool.
While it probably does suit the poster, I have to say for network diagnostics, Sniffer Pro is awesome. With the right network cards, it goes right down to the network layer, pulling out collision stats etc, and can even go and setup your switches for monitoring using rmon.
Got wan problems, Sniffer can work with a Y cable and hardware decoder to watch your WAN.
They even have long term trending and reporting tools. Its maybe the one tool that Network Associates does right.
Ethereal and TCPDump are good for protocol analysis, but most network problems I've delt with are not really at the application layer, but more the pysical layer. (Dodgy Network Cards, Flat network designs with hundreds of hosts, causing your collision rate to go through the roof etc)
The other thing that I like about sniffer, is its made for people that might not have degree's in network analysis. Its got that Expert System. It will throw at you all the errors it finds, and is good enough to tell you what those errors means.
Lastly, The export feature is great. Does my boss want to know what is the biggest talker on the network, Let sniffer run for a few hours, export to excell, and I can give him the top 10/20/50, I can break it down further by protocol or application, and can even tell him who the partners are.
I know there are other tools out there that can do all this, (ntop, ethereal, tcpdump, rrd's) but thats exactly my point. They are different tools, they don't work together, and imho, none of them are true network diagnostic tools.
I'm Ex NAI employee btw, so maybe a bit biased, but I still use Sniffer (legit copies) to this day. There are only a few reasons why I still have a windows drive for my laptop, and Sniffer is no. 1)
Oh how I would love to put you in a startup and see you drown and get thrown out. This is the type of attitude that pisses of employees, and I thought one of the roles of a manager was to retain the good staff.
With your ideas of running a company, I'd prefer to do it in the real military, fighting some war or terroist that is harming my nation rather than Give your ego a boost by thinking that you are the only person in power to make a decision because you know all the plays.
I once worked for someone like you. It was the best package I've recieved to date, and was in fact a pretty good position. I lasted 3 weeks. You know why, because it was people like you that would put me in front of a customer with bad news, or a f*cked up situation, and you wouldn't give me the "why" of the decision. and I had to sit there and tell the customer some bullsh*t and look like a total incompetent looser who had no idea what was going on.
And as others have pointed out, often is your employees that really know whats going on, and are the bright ones with the new ideas etc. If you constantly blow peoples ideas off without offering a "why" then no one is going to come up with new ideas, because they can't be bothered. Your organisation ends up stagnating as your not fostering any innovation, and your grand dreams of a job in 10 years is a illusion to everyone but yourself.
Wake up and smell the roses. While your "way" of running a business might have worked in the past, with the competion the way it is now days in most market segments, employees are your most important assets. Shouldn't you start treating them that way?
In power-mad punks that ruined dal.net are you refering ot the channel founders/users or the ircop ops? .org, but .org points there) and I try hard to hire ircops that are friendly and knowledgable. In most cases, if a ircop gets abusive or careless, they don't have a O line for very long.
I'm a serveradmin on irc-chat.net (its not
As far as moderated channels goes, thats a channel admin/founder thing... I have no idea why they would moderate the channel.
For instance, look at UnrealIRCD. You can compile it with SSL support, and the clients that support it (I know Xchat does, not sure about others) can connect and Comunicate via SSL based connections to the server. Sure... Maybe the admin of the server can sniff your converstation, but no one else on the internet can.
Its just as secure as this SILC, but still has the stability and popularity of IRC that has been developed longer than webservers themselves (IIRC)
(Unrealircd, is at www.unrealircd.com)
Maybe now Enterprises will realize that linux is a big mans toy, but actually, is quite a powerfull Operating system, that can compete with the expen$ive OS's out there... Hopefully more support from other Vendors for linux will result... Go Linux Go
I work in the security industry... while it would be illegal for you to take some information from their database and show it to them, if you can setup a 20 minute meeting, demonstrate the hole to them, and tell them how to fix it in the meeting, more than likely, they will come aboard at least for security services. We used to use Vunerability scans, offer customers one free scan, and show them the holes they had, and next thing we know, we got the contract. Shock tactics work the best when it comes to security, as soon as they know they have a hole, they will fall over themselves to get it fixed.
Unfortuantly, I've also seen security vendors with masive holes in their system as well. A well known Managed Security Provider in Korea was vunerable to at least 5 exploits on their webserver. Their website proclaimed how good they were at security, yet, even after numerous emails from anonomous hotmail accounts, they still didn't fix their own problems. It was only after a script kiddie found it and "owned" the site did they wise up, so sometimes you just can not win, but at least you can put your mind at ease, and know that you at least tried to warn them of the problems.
Its a fact, I'm more likely to click on a Flash Banner, or something that is animated, than on a flashing gif. Humans respond better to multimedia. TV is the perfect example. How many people still go home and watch the news or current affairs shows? They could get 100 times more information if they surfed the internet... Another example, have a look at how many Visulization plugins there are for Winamp... I know when I'm in the mood for music, the Laptop gets hooked upto the stereo, and the 80cm Television, and on goes G-Force :)