I run our entire manufacturing floor on kde desktops and I spend a total of about 5 minutes a week or less maintaining those systems. Thin client is where it is at when it comes to maintenance in a corporate environment. The problem is all of the wanna be linux admins going and loading linux on the client machines, hell that is just plain stupid, it is the windows sell tons of licenses model of deployment. Install a server and fire up remote x, sit back and enjoy.
While watching american casino on discovery last week I seen a tech converting a slot machine to take coins instead of dollars. He started up the machine and the camera panned to the screen. The first thing that appeard on the screen was?
I have 4 servers running GFS in active active mode accessing disk across fiber channel. The problem is obvious, you don't know what you are doing. I can kill off three out of 4 nodes and still be running. Go back to your windows wannabe active passive cluster and quit talking shit.
Man can you even imagine how fast those trojaned windows boxes on fiber are going to be able to throw spam at the world.? Hell I bet it will only take 10 seconds vs the normal 20 seconds for a windows machine to be exploited.
Well no if your friend is not the copyright holder to the material in question you are still going to be tried. A better idea is to flood your web servers with fake mp3 files with realistic names. The RIAA mistakenly sends you a takedown notice and you sue them for damages.
why do you think segmenting the network is going to help, let me give you this senario which will show you that is not going to do shit.
1. joe hacker takes a jpg image and inserts a zombie trojan.
2. joe hacker uploads this to a web server.
3. joe researcher who has user level access to the database navigates to joe's web page containing the zombie containing image.
4. joe hacker now owns a client on the inside and has easy access to the data, but wait you say we got a firewall that will solve it.
5. joe hacker being smarter than the resident MCSE at the hospital and knowing of course about firewalls programmed the zombie to retrieve all remote commands from a web server using a simple get request probably somebody else's that joe hacker owns.
We had a similar incident occur here at work and let me tell you the firewall did nothing, the hacker fully owned the machine and was attempting to use it to exploit other machines.
Firewalls are usless against well crafted attacks and virus scanners are false hope.
Yea and then you got some mcse at work using IE. Guess what it will take less than a second to own and or destroy your entire network because some MCSE admin viewed the wrong page on the internet. AD doesn't mean shit it us just a way to manage privs not the magic bullet you claim.
Most of the bright windows admins on here are going to tell you to use permissions to lock down the workstations and take machine admin rights from the users. Now you have to sit back and ask yourself is that really going to help? Yes it is probably going to help but they are really luring themselves into a false sense of security. Now ask yourself how many of the windows admins that you know use IE? That right most if not all of them use IE. So now ask yourself what does that got to do with anything? Well if IE can execute code easily at user level privs then what happens when that stupid windows admin browses to a page containing malicious code? That's right the worm, virus, trojan has full admin privs.
What do you do to avoid catching the flu? That's right you get a flu shot. So do yourself a favor and get a flu shot, install mozilla on the clients everyone will thank you for it anyhow.
Setting permissions the way you do will help some but IE has enough holes to drive a truck through. It makes absolutely no difference if they are locked down or not. The fact that IE can be used to execute code makes you and your network vulnerable.
Being the good little MCSE that you are you probably jepordize your network by using IE on your own machine. Now imagine you hitting that nice little web page that joe hacker left on the internet that installs code on your machine and executes it, bingo that's right he has your entire network by the bag.
It is not the users fault his machine is infected with this stuff. Hell I watched a admin with a sp2 machine hit a web site yesterday with IE and the web site tried uploading some malicious code. It infected his machine and crashed it. Now tell me how on earth that it is his fault that IE allowed this to happen. Oh I know you are going to tell me he is visiting the wrong web sites right?
Nasty hacker crafts email that appears to be from microsoft talking about this great new software that can be downloaded from their site. Of course mindless MCSE network admin does not realize it is a phishing attack and clicks to see the greatest new stuff from the redmond lords. Now nasty hacker owns your entire network......priceless
Are Windows 98, Windows 98 Second Edition, or Windows Millennium Edition critically affected by any of the vulnerabilities that are addressed in this security bulletin?
No. None of these vulnerabilities are critical in severity on Windows 98, on Windows 98 Second Edition, or on Windows Millennium Edition. For more information about severity ratings, visit the following Web site.
Don't sweat it, a remotely exploitable shell is not critical!
Everything these guys touch turns into a bloated mess. We run thousands of web service transactions a day at work and not a single one of them uses anything WS and or SOAP related. We choose to stick with xml-rpc since it is simple yet powerful. There is not a single reason so far that we could come up with that would justify us moving to WS and SOAP.
Slashdot Mirror
I run our entire manufacturing floor on kde desktops and I spend a total of about 5 minutes a week or less maintaining those systems. Thin client is where it is at when it comes to maintenance in a corporate environment. The problem is all of the wanna be linux admins going and loading linux on the client machines, hell that is just plain stupid, it is the windows sell tons of licenses model of deployment. Install a server and fire up remote x, sit back and enjoy.
While watching american casino on discovery last week I seen a tech converting a slot machine to take coins instead of dollars. He started up the machine and the camera panned to the screen. The first thing that appeard on the screen was?
....
lilo loading
The slide has already begun!
I have 4 servers running GFS in active active mode accessing disk across fiber channel. The problem is obvious, you don't know what you are doing. I can kill off three out of 4 nodes and still be running. Go back to your windows wannabe active passive cluster and quit talking shit.
Well look at that the Migration costs are cheaper as well as the TCO. See that argument works very well with linux as well as windows.
actually build 3 opteron boxes and put on the mosix kernel and kick the hell out of any box.
How about I just grab about 5 2gh machines off of pricewatch for a 150$ a piece and load up mosix and kick the shit out of both of those boxes.
And on the average that means that your junk windows box can be exploited in 30 sec from a cold metal start.
Remember that little deal a while ago about ibm building some off line web technology that auto syncs when you regain a connection?
The technology we are talking about is called App Play and guess what it uses for data syncronization?
It does not matter if they open sourced it since they where going to be puttting it on tons of clients anyhow.
Man can you even imagine how fast those trojaned windows boxes on fiber are going to be able to throw spam at the world.? Hell I bet it will only take 10 seconds vs the normal 20 seconds for a windows machine to be exploited.
And a butt load of BEER! +100
I think somebody else already posted this but yes it .
1 5& f=1
can be done for under 100$
Complete sys - AMD Athlon XP 2100+ No OS 128MB,20GBHD CDROM Video Sound Keyboard mouse
Hmmm No OS bet that can be fixed...
http://www.pricewatch.com/h/prc.aspx?i=335&a=52
That being said I wonder if the accelerometers are installed in the right direction?
Anyone bring a honeypot online and execute the code yet to see if anyone knocks?
Well no if your friend is not the copyright holder to the material in question you are still going to be tried. A better idea is to flood your web servers
with fake mp3 files with realistic names. The RIAA mistakenly sends you a takedown notice and you sue them for damages.
why do you think segmenting the network is going to help, let me give you this senario which will show you that is not going to do shit.
1. joe hacker takes a jpg image and inserts a zombie trojan.
2. joe hacker uploads this to a web server.
3. joe researcher who has user level access to the database navigates to joe's web page containing the zombie containing image.
4. joe hacker now owns a client on the inside and has easy access to the data, but wait you say we got a firewall that will solve it.
5. joe hacker being smarter than the resident MCSE at the hospital and knowing of course about firewalls programmed the zombie to retrieve all
remote commands from a web server using a simple get request probably somebody else's that joe hacker owns.
We had a similar incident occur here at work and let me tell you the firewall did nothing, the hacker fully owned the machine and was attempting
to use it to exploit other machines.
Firewalls are usless against well crafted attacks and virus scanners are false hope.
I bet debian does not charge more either. Oh hell I am willing to go out on a limb and suggest that Red Hat will probably not either.
Yea and then you got some mcse at work using IE. Guess what it will take less than a second to own and or destroy your entire network because some MCSE admin viewed the wrong page on the internet. AD doesn't mean shit it us just a way to manage privs not the magic bullet you claim.
Most of the bright windows admins on here are going to tell you to use permissions to lock down the workstations and take machine admin rights from the users. Now you have to sit back and ask yourself is that really going to help? Yes it is probably going to help but they are really luring themselves into a false sense of security. Now ask yourself how many of the windows admins that you know use IE? That right most if not all of them use IE. So now ask yourself what does that got to do with anything? Well if IE can execute code easily at user level privs then what happens when that stupid windows admin browses to a page containing malicious code? That's right the worm, virus, trojan has full admin privs.
What do you do to avoid catching the flu? That's right you get a flu shot. So do yourself a favor and get a flu shot, install mozilla on the clients everyone will thank you for it anyhow.
Setting permissions the way you do will help some but IE has enough holes to drive a truck through. It makes absolutely no difference if they are locked down or not. The fact that IE can be used to execute code makes you and your network vulnerable.
Being the good little MCSE that you are you probably jepordize your network by using IE on your own machine. Now imagine you hitting that nice little web page that joe hacker left on the internet that installs code on your machine and executes it, bingo that's right he has your entire network by the bag.
If you have a spyware problem fix it, no self respecting old school bbs user would use windows.
It is not the users fault his machine is infected with this stuff. Hell I watched a admin with a sp2 machine hit a web site yesterday with IE and the web site tried uploading some malicious code. It infected his machine and crashed it. Now tell me how on earth that it is his fault that IE allowed this to happen. Oh I know you are going to tell me he is visiting the wrong web sites right?
Nasty hacker crafts email that appears to be from
microsoft talking about this great new software that can be downloaded from their site. Of course mindless MCSE network admin does not realize it is a phishing attack and clicks to see the greatest new stuff from the redmond lords. Now nasty hacker owns your entire network......priceless
Wow now these are guys I can trust!
Are Windows 98, Windows 98 Second Edition, or Windows Millennium Edition critically affected by any of the vulnerabilities that are addressed in this security bulletin?
No. None of these vulnerabilities are critical in severity on Windows 98, on Windows 98 Second Edition, or on Windows Millennium Edition. For more information about severity ratings, visit the following Web site.
Don't sweat it, a remotely exploitable shell is
not critical!
C# is alot behind because it cannot run on all the platforms that java can.
Everything these guys touch turns into a bloated mess. We run thousands of web service transactions a day at work and not a single one of them uses anything WS and or SOAP related. We choose to stick with xml-rpc since it is simple yet powerful. There is not a single reason so far that we could come up with that would justify us moving to WS and SOAP.