Yes, add to the fact that perl scripts can be executed on multiple platforms. (How many web servers don't support perl that make netcast?) And that just having a web server is a security risk...
What you have is functionality, knowledge or lack of, vs security.
Outlook, you can run.vbs scripts by default. Some "viruswalls" let everything in except a list of file extensions listed by default? Why? Why not deny everything except a list of files excepted? Well, arguements could be made that they you have to keep including different file types. But then, you also have to keep restoring files servers and such if a virus gets in.
I've heard various arguements on how this virus was spread using outlook. Whether it does or doesn't, how do you turn off this default setting? I saw an email Microsoft sent out a couple days after the virus was loose. It gave directions on how to turn this off I believe.
Your file server is a linux machine. A user runs the virus. (I know that is dumb, but it happenned more than once, they don't know what a script is and just click on it. Which, by the way, looks like a.txt file since by default file extensions are hidden)They are using a MS OS, and Lotus Notes. The virus would be able to reach the files on the file server if they have a drive mapped, no?
I think the whole approach to security just is backwards, or non existent.
Why not make a mail client as secure as possible, then open it up as a business requires more functionality?
Today's faced paced world, with not enough IT people, things are often overlooked. Security is one of them. If they were secured as much as possible by default, would that be better? Well, we would overlook "not unsecuring", or less "functionality" instead of the opposite.
Why are drives shared by default in Windows NT 4.0? Wouldn't it make more sense to have them not shared by default, then share them as needed?
For those who talk about what applications are secure. Nothing is secure. Why do you think applications have so many bugs? You can't we make blue prints of applications like a building. You can't take many of the same scientific and engineering approaches with software. As much money that is pumping into the "technology world", you would think that it would be more secure. It just isn't so. Many books and articles have been written about Software engineering. Yet, every year there are more "software engineering" jobs and less people to fill them. This trend is not likely to get any better in the near future.
Why? Good question. If I knew the answers, I would be making money for my ideas and comments. All I know is that is that those who know, will prevail. Those who depend on those who know will always depend on those who know.
Office and Windows would be "much harder for comuter users to obtain." The above is actually true. No, just open the source code and then it will be closer to true. How many Service packs have been released for NT4.0? How many fixes did each service pack include? How many businesses currently use nt 4.0?
Why wait for a service pack of 10,000 fixes months later when you can get the fix you want the next day it was discovered?
The benefit of open source equals better software, less money. Depends what side of the fence you are on.
I've heard this before, I've believed it, and now I question it.
There are arguements both ways, but if Microsoft owns 90% of the desktops in the world, wouldn't people write things that effect 9 out of 10 users? If another OS were dominating like that, wouldn't people exploit it.
Just a question. (wasn't apache.org kindly hacked last week?)
No sides, I just want something that gets the job done.
A heat of them moment mistake is one thing. Unleashing a virus is another. You can do it when you want, and cover your tracks until you decide you are ready. So adding information about yourself just doesn't make since.
If you were going to make a bad virus, would you include information about yourself or location that you could be caught?
This seems like a dumb question, but I have seen a lot of articles that point to words in the virus itself and point to where it must have come from.
Isn't it possible, that there are many public locations in the US that you don't have to log in to, that you can put a virus out undetected? Maybe even write up the virus so no associations are tied to yourself?
It just seems to me that it could be easily done, yet the "people responsible" are caught within a week.
Maybe this says something about the whole security of the internet, and the applications we currently use?
Have you ever used a jukebox, rented a video, paid for 15 minutes in a parking spot? Why not buy all of them? Some people don't have the money, or some don't need to own them.
Those who have money, make more money. Those who don't, work hard to make more or make the rich more money. (At college last semester, I put quarters in the meters because I didn't have the $100 at once to buy a sticker. Ended up paying more. The money generate from meters vs. stickers was mainly from the meters. Most the meters were the kids like me, not the others that had the cash, but just an example)
Forgot to ask, how much money do you make off studio albums vs. concert ticket sales and advertising?
Did you know I can read my local paper for free on the internet? Yet, I still get the paper in paper form every sunday? Hmmmm. Seems some businesses have adapted the technology and used it to their benefit? Maybe they are smarter than the music industry?
This month another band that fought ticketmaster and has an image of "against corporate america" will release an album. The band is Pearl Jam, the album's name is Binaural.
I could easily download the songs from the internet. I have downloaded studio songs in the past, say at work when I don't have my CD with me. I have downloaded full concerts, rare songs, and cover songs of other bands. (Should this be banned, a musician playing other musicians songs?)
I do have every Pearl Jam album released here in the states, and I will buy the next album. I support Pearl Jam, and I would very much like to see them on tour this summer.
Okay, who cares about Pearl Jam huh? Well who cares about Metallica. I bought many of their albums, and the last couple just downright sucked! I contributed money to this "art"? I downloaded S & M, and I haven't listened to it all the way through, and deleted that 100 MB of music from my hard drive.(Hey, maybe this is why they are against MP3's, people will hear their new stuff, not like it, and not buy the album?
The bands that I couldn't afford to support yesterday, I am supporting today.
By the way, what percent of people have a dialup 56k line or less? Just wait if you think it is bad now!
Slashdot Mirror
What you have is functionality, knowledge or lack of, vs security.
And most "average" users use windows, and more "techy" users use Linux. Or so they say, no flames please, I use both because I have to.
Outlook, you can run .vbs scripts by default. Some "viruswalls" let everything in except a list of file extensions listed by default? Why? Why not deny everything except a list of files excepted? Well, arguements could be made that they you have to keep including different file types. But then, you also have to keep restoring files servers and such if a virus gets in.
"They are from"
"
"
"
I've heard various arguements on how this virus was spread using outlook. Whether it does or doesn't, how do you turn off this default setting? I saw an email Microsoft sent out a couple days after the virus was loose. It gave directions on how to turn this off I believe.
Don't tobacco and alcohol products have warnings on them? People just stop even noticing the warnings after a while. Same thing.
I have seen machines infected by the "Love Virus" that used Notes 4.x clients sent by other people using Outlook mail clients.
The one thing you should never say is never. There is always a way.
Besides, it is not the security leaks that you hear about on the news you should be worried about. It's the ones you don't.
Your file server is a linux machine. A user runs the virus. (I know that is dumb, but it happenned more than once, they don't know what a script is and just click on it. Which, by the way, looks like a .txt file since by default file extensions are hidden)They are using a MS OS, and Lotus Notes. The virus would be able to reach the files on the file server if they have a drive mapped, no?
I am.
Why not make a mail client as secure as possible, then open it up as a business requires more functionality?
Today's faced paced world, with not enough IT people, things are often overlooked. Security is one of them. If they were secured as much as possible by default, would that be better? Well, we would overlook "not unsecuring", or less "functionality" instead of the opposite.
Why are drives shared by default in Windows NT 4.0? Wouldn't it make more sense to have them not shared by default, then share them as needed?
Seems to make sense to me.
At least they released the code.
For those who talk about what applications are secure. Nothing is secure. Why do you think applications have so many bugs? You can't we make blue prints of applications like a building. You can't take many of the same scientific and engineering approaches with software. As much money that is pumping into the "technology world", you would think that it would be more secure. It just isn't so. Many books and articles have been written about Software engineering. Yet, every year there are more "software engineering" jobs and less people to fill them. This trend is not likely to get any better in the near future.
Why? Good question. If I knew the answers, I would be making money for my ideas and comments. All I know is that is that those who know, will prevail. Those who depend on those who know will always depend on those who know.
Why wait for a service pack of 10,000 fixes months later when you can get the fix you want the next day it was discovered?
The benefit of open source equals better software, less money. Depends what side of the fence you are on.
There are arguements both ways, but if Microsoft owns 90% of the desktops in the world, wouldn't people write things that effect 9 out of 10 users? If another OS were dominating like that, wouldn't people exploit it.
Just a question. (wasn't apache.org kindly hacked last week?)
No sides, I just want something that gets the job done.
Unless of course you are on crack.
This seems like a dumb question, but I have seen a lot of articles that point to words in the virus itself and point to where it must have come from.
Isn't it possible, that there are many public locations in the US that you don't have to log in to, that you can put a virus out undetected? Maybe even write up the virus so no associations are tied to yourself?
It just seems to me that it could be easily done, yet the "people responsible" are caught within a week.
Maybe this says something about the whole security of the internet, and the applications we currently use?
Maybe this is the point. News, press, rebellion, and more money?
Have you ever used a jukebox, rented a video, paid for 15 minutes in a parking spot? Why not buy all of them? Some people don't have the money, or some don't need to own them.
Those who have money, make more money. Those who don't, work hard to make more or make the rich more money. (At college last semester, I put quarters in the meters because I didn't have the $100 at once to buy a sticker. Ended up paying more. The money generate from meters vs. stickers was mainly from the meters. Most the meters were the kids like me, not the others that had the cash, but just an example)
Only unless you pay the $30 or $40 Dollars. Version 5.x is out.
Did the government say this isn't the case last Friday against mp3.com?
Forgot to ask, how much money do you make off studio albums vs. concert ticket sales and advertising?
Did you know I can read my local paper for free on the internet? Yet, I still get the paper in paper form every sunday? Hmmmm. Seems some businesses have adapted the technology and used it to their benefit? Maybe they are smarter than the music industry?
This month another band that fought ticketmaster and has an image of "against corporate america" will release an album. The band is Pearl Jam, the album's name is Binaural.
I could easily download the songs from the internet. I have downloaded studio songs in the past, say at work when I don't have my CD with me. I have downloaded full concerts, rare songs, and cover songs of other bands. (Should this be banned, a musician playing other musicians songs?)
I do have every Pearl Jam album released here in the states, and I will buy the next album. I support Pearl Jam, and I would very much like to see them on tour this summer.
Okay, who cares about Pearl Jam huh? Well who cares about Metallica. I bought many of their albums, and the last couple just downright sucked! I contributed money to this "art"? I downloaded S & M, and I haven't listened to it all the way through, and deleted that 100 MB of music from my hard drive.(Hey, maybe this is why they are against MP3's, people will hear their new stuff, not like it, and not buy the album?
The bands that I couldn't afford to support yesterday, I am supporting today.
By the way, what percent of people have a dialup 56k line or less? Just wait if you think it is bad now!
Never say never.