Really, the only real way (other than having a pristine and secure home system) to avoid this is to have the banking/financial sites use two factor authentication. Either a OTP token, a challenge response token or a USB Smart Card with a bank issued x.509v3 certificate on it. Europe uses these methods (at least our European customers do). The only reason the USA banks don't is becuase of the "convienience" factor the customers expect. They'd leave the bank in droves if you "complicated" personal banking (we already use two-factor for wholesale/corporate banking)
Except me. I'd flock (is it a flock) to a brick-n-morter bank that offered online banking with proper online security.
Ask for the opportunity to have the 3rd party justify, in writing, what each vulnerability means and assess the severity. If your boss won't go for this, you probably don't want to work for an irrational boss.
Or if you don't want to make that drastic of a move, tell him or her that you should outsource that security to the company that did the scan. That's probably why they gave such a mountain-molehill report anyway. If your boss is going to believe them, then make them "fix" the network, and then explain why they broke everything.
A third posibility would be to get a second opinion, although you run the risk of getting an equally over zealous report.
One solution would be to re-architect the systems to be completely terminal-services based. This way no data is actually on the client's system, except the window to the application.
Citrix for windows is the obvious choice, but there are ways to accomplish this with unix, Linux, and even mixing the two environment.
Then the american version appeared. Louder, noisier, with inane hosts and manufactured "conflict" between the teams where there used to be good natured competition. Less and less science, more and more "garage cam". Builds where clever engineering was forgotten in favorite of getting the best planted junk.
This trend disturbs me so much. I don't watch that much TV, but I caught a commercial for "Impossible Heist" on court TV. Looked interesting, teams would compete do all kinds of "Oceans 11" types of staged break-ins and robberies. Well, I had to turn it off it after 10 minutes. It started out with the team members bitching about the people on the other teams, and even people on their own team.
From what glimpses I've seen of reality TV is they're all like this. What really gets me is that people will probably accept this as normal behavior, and do this in real life -- badmouth co-workers, spouses, children, parents, etc, all for attention. I know people do this anyway, but I'm afraid it will increase this behavior.
I use those 100 CDR stack spindles that media come in. People at the office never re-use them, so I just grab'em, take'em home, and stack my media on them. Makes in a little of a pain to find stuff, but I use little bits of sticky notes to index major sections (OSs, Windows drivers, games, etc).
I agree. CD storage has been an issue until I started doing this. Now I keep music, backups, drivers, games, old OSs on spindles. Practically the only thing I don't keep there are the originals for store-bought software (like Mac OSX install CDs).
In my cubicle at work I also thumbtack many frequently used disks, such as Linux live CDs, which are also easily reburnt if they are damaged by hanging on the wall (which hasn't happened so far).
Mac OSX (ok, I'm sure this dates back to {Open,Next}Step) has a nice solution. Preferences are stored in an XML formated file, typically (but not necessarily) one per application. Global preferences are stored in/Library/Preferences/foo.plist, and user-specific preferences are stored in ~/Library/Preferences/foo.plist. Also, the convention is to make the file name unique by combining it with a domain name, like com.apple.SomeApplication.plist. Of course this is on top of the normal unix/etc/ files and doesn't exactly replace them, but it's a nice system that could be adopted.
The dot-com I worked for IPO'ed right around the Justice Department made their Microsoft announcement. Our stock price never really took off. Maybe not coincentally the company is still around.
I've never used Kazaa or similar P2P programs as they where ripe with security problems. I'm old fashioned enough to quite simply go to a music store and listen for my self, and buy it if I like it.
All the power to you. That's fine if you like the kind of music that comes on CDs. I worked in record stores 15-20 years ago, and got really sick of most music. Now I'm discovering (and purchasing when possible) tons of music via alternative media channels -- p2p networks, blogs, podcasts, word of mouth, and streams.
They're highballing. The public will come back with "No, we want no regulation" and the politicians will settle somewhere in the middle, say a special online auction license where you pay a small percentage per year.
Then of course they'll use that as leverage in case they want to lean on sellers of particular items, especially around election time. "Look, my beloved voters, I signed the law that would revoke online auction licenses for people selling {guns,porn}. Vote for me!"
I've considered the process of actually getting to work: getting ready to go out, get coffee, park, get settled into work, get my laptop running, and some of the same in reverse at the end of the day. Luckily I have a short commute, but it still averages 2 hours/day. That would be roughly 500 hours/year of my personal time back.
On top of that, when I do work from home I am much more efficient and can get a lot more done. At home I'm also more likely to work late occasionally (which I typically don't mind since I like the company I work for). Unfortunately, as a software engineer with difficult to measure project tasks, these types of benefits to the company are difficult to quantify, and as a result we're not officially allowed to work from home.
I would pay $1 per show, just like iTunes, provided the content was largly commercial-free (I wouldn't mind one or two in the front or back of the show). That model could have great potential for everyone. If the show producers had 10,000,000 people watching the show, bam that's $10,000,000.
Unless it were DRM'ed, which of course the show producers would require. I think this model would work without DRM though. $1 is about what it's worth to someone to buy legitimately without crawling around the net trying to find a copy, wait for it to download from a slow source, etc. And if non-DRM TV shows were offered for $1, not only would people have less incentive to download illegitimate copies, the law of supply/demand would make it less attractive to share copies.
I think anyway. That's quite a risk for TV producers to make. Hopefully they would try this out with a show.
Let's extend this to all other potential influences any time someone does something bad. For example, next time a girl breaks up with me, I want to sue the authors and publishers of the magazines she reads.
We are experiencing technical problems. Sorry for the inconvenience. We are still interested in hearing your comments if you have time to provide your feedback. You can do one of two things. You can close this window, refresh your browser, and submit your comments. Or, you can try later.
This archive by itself would be a great museum based upon the things in it that the article mentioned. Of course, someone would have to organize the collection and hire staff to maintain the buildings, but it's a shame to see our history not being put to use. Some of the stories and innovations here could serve as inspiration to our kids and current researchers much the same way that the moon landing and Hubble telescope did for some of our generation. If they setup a building with the highlights and charged a modest price for admission, it would be far better than letting these memories go to waste.
If Philadelphia suceeds you can count on the following:
# People winging about how poor the service is. # Talkshow hosts berating the government for more give-aways of taxpayer dollars (sponsored by some telco) # Saturation and further complaints (my taxdollars pay for, won't stand for it, etc)
And as soon as the first user hits it, conservative groups will complain about government aloowing its citizens to download porn, and take measures to get content they see as objectionable censored.
There are much better uses for identifiable chips than preventing fraud. This makes it much easier to track player habits down to every dollar they bet. Think of a poker game. On a player-by-player basis, you can now track every doller bet during every moment of the game. This would presumably make comensation systems more accurate (rewarding someone for being a riskier gambler rather than dead weight at a table). With a little mathematics and CPU time it would be trivial to watch for collusion between players in Blackjack and Poker.
Investigate replacing some or all of your install base with some form of centralized application services, like Citrix, MS Terminal Services, X11, VNC, etc. It may be a big undertaking at first, but in the long-run, time and money resources would be focused on keeping a small amount of large centralized clusers maintained, rather than a desktop for every employee.
Flexibility would be opened up by allowing people to work from home via the remote clients. If you went with Linux (or a few others with similar capibilities), the desktops could be diskless, further reducing desktop management. Virus/adware/spyware management would almost cease to be an issue.
Joram is beautiful. Unfortunatly it's entirely java based. Sure you can interface to native C applications, but you still end up with a huge runtime, and sometimes you need really lightweight processes.
Slashdot Mirror
Really, the only real way (other than having a pristine and secure home system) to avoid this is to have the banking/financial sites use two factor authentication. Either a OTP token, a challenge response token or a USB Smart Card with a bank issued x.509v3 certificate on it. Europe uses these methods (at least our European customers do). The only reason the USA banks don't is becuase of the "convienience" factor the customers expect. They'd leave the bank in droves if you "complicated" personal banking (we already use two-factor for wholesale/corporate banking)
Except me. I'd flock (is it a flock) to a brick-n-morter bank that offered online banking with proper online security.
Wow, well put. I never thought of it that way.
I misinterpreted the headline as "Report on [this being the] Last Decade of Online Advertising." It really got my hopes up.
Ask for the opportunity to have the 3rd party justify, in writing, what each vulnerability means and assess the severity. If your boss won't go for this, you probably don't want to work for an irrational boss.
Or if you don't want to make that drastic of a move, tell him or her that you should outsource that security to the company that did the scan. That's probably why they gave such a mountain-molehill report anyway. If your boss is going to believe them, then make them "fix" the network, and then explain why they broke everything.
A third posibility would be to get a second opinion, although you run the risk of getting an equally over zealous report.
One solution would be to re-architect the systems to be completely terminal-services based. This way no data is actually on the client's system, except the window to the application.
Citrix for windows is the obvious choice, but there are ways to accomplish this with unix, Linux, and even mixing the two environment.
Then the american version appeared. Louder, noisier, with inane hosts and manufactured "conflict" between the teams where there used to be good natured competition. Less and less science, more and more "garage cam". Builds where clever engineering was forgotten in favorite of getting the best planted junk.
This trend disturbs me so much. I don't watch that much TV, but I caught a commercial for "Impossible Heist" on court TV. Looked interesting, teams would compete do all kinds of "Oceans 11" types of staged break-ins and robberies. Well, I had to turn it off it after 10 minutes. It started out with the team members bitching about the people on the other teams, and even people on their own team.
From what glimpses I've seen of reality TV is they're all like this. What really gets me is that people will probably accept this as normal behavior, and do this in real life -- badmouth co-workers, spouses, children, parents, etc, all for attention. I know people do this anyway, but I'm afraid it will increase this behavior.
I use those 100 CDR stack spindles that media come in. People at the office never re-use them, so I just grab'em, take'em home, and stack my media on them. Makes in a little of a pain to find stuff, but I use little bits of sticky notes to index major sections (OSs, Windows drivers, games, etc).
I agree. CD storage has been an issue until I started doing this. Now I keep music, backups, drivers, games, old OSs on spindles. Practically the only thing I don't keep there are the originals for store-bought software (like Mac OSX install CDs).
In my cubicle at work I also thumbtack many frequently used disks, such as Linux live CDs, which are also easily reburnt if they are damaged by hanging on the wall (which hasn't happened so far).
Try the Universal Postal Union, specifically documents they have on properly addressing international addresses.
Also, this looks interesting: International Address Standard UPU S42-1
(BTW, I know nothing about this stuff, but I found it via Wikipedia, which these days is proving itself more useful than Google.)
Mac OSX (ok, I'm sure this dates back to {Open,Next}Step) has a nice solution. Preferences are stored in an XML formated file, typically (but not necessarily) one per application. Global preferences are stored in /Library/Preferences/foo.plist, and user-specific preferences are stored in ~/Library/Preferences/foo.plist. Also, the convention is to make the file name unique by combining it with a domain name, like com.apple.SomeApplication.plist. Of course this is on top of the normal unix /etc/ files and doesn't exactly replace them, but it's a nice system that could be adopted.
The dot-com I worked for IPO'ed right around the Justice Department made their Microsoft announcement. Our stock price never really took off. Maybe not coincentally the company is still around.
I've never used Kazaa or similar P2P programs as they where ripe with security problems. I'm old fashioned enough to quite simply go to a music store and listen for my self, and buy it if I like it.
All the power to you. That's fine if you like the kind of music that comes on CDs. I worked in record stores 15-20 years ago, and got really sick of most music. Now I'm discovering (and purchasing when possible) tons of music via alternative media channels -- p2p networks, blogs, podcasts, word of mouth, and streams.
"On a side note - Who fucking modded this as Troll? It's clearly an on-topic and at least interesting post."
I think a politician modded me down.
They're highballing. The public will come back with "No, we want no regulation" and the politicians will settle somewhere in the middle, say a special online auction license where you pay a small percentage per year.
Then of course they'll use that as leverage in case they want to lean on sellers of particular items, especially around election time. "Look, my beloved voters, I signed the law that would revoke online auction licenses for people selling {guns,porn}. Vote for me!"
I've considered the process of actually getting to work: getting ready to go out, get coffee, park, get settled into work, get my laptop running, and some of the same in reverse at the end of the day. Luckily I have a short commute, but it still averages 2 hours/day. That would be roughly 500 hours/year of my personal time back.
On top of that, when I do work from home I am much more efficient and can get a lot more done. At home I'm also more likely to work late occasionally (which I typically don't mind since I like the company I work for). Unfortunately, as a software engineer with difficult to measure project tasks, these types of benefits to the company are difficult to quantify, and as a result we're not officially allowed to work from home.
I would pay $1 per show, just like iTunes, provided the content was largly commercial-free (I wouldn't mind one or two in the front or back of the show). That model could have great potential for everyone. If the show producers had 10,000,000 people watching the show, bam that's $10,000,000.
Unless it were DRM'ed, which of course the show producers would require. I think this model would work without DRM though. $1 is about what it's worth to someone to buy legitimately without crawling around the net trying to find a copy, wait for it to download from a slow source, etc. And if non-DRM TV shows were offered for $1, not only would people have less incentive to download illegitimate copies, the law of supply/demand would make it less attractive to share copies.
I think anyway. That's quite a risk for TV producers to make. Hopefully they would try this out with a show.
Let's extend this to all other potential influences any time someone does something bad. For example, next time a girl breaks up with me, I want to sue the authors and publishers of the magazines she reads.
Maybe they were h4>0r3d
This archive by itself would be a great museum based upon the things in it that the article mentioned. Of course, someone would have to organize the collection and hire staff to maintain the buildings, but it's a shame to see our history not being put to use. Some of the stories and innovations here could serve as inspiration to our kids and current researchers much the same way that the moon landing and Hubble telescope did for some of our generation. If they setup a building with the highlights and charged a modest price for admission, it would be far better than letting these memories go to waste.
There are a few. BellSouth's Telephone Museum. I could swear there's another telco museum in San Francisco.
I can't believe I forgot about that.
If Philadelphia suceeds you can count on the following:
# People winging about how poor the service is.
# Talkshow hosts berating the government for more give-aways of taxpayer dollars (sponsored by some telco)
# Saturation and further complaints (my taxdollars pay for, won't stand for it, etc)
And as soon as the first user hits it, conservative groups will complain about government aloowing its citizens to download porn, and take measures to get content they see as objectionable censored.
There are much better uses for identifiable chips than preventing fraud. This makes it much easier to track player habits down to every dollar they bet. Think of a poker game. On a player-by-player basis, you can now track every doller bet during every moment of the game. This would presumably make comensation systems more accurate (rewarding someone for being a riskier gambler rather than dead weight at a table). With a little mathematics and CPU time it would be trivial to watch for collusion between players in Blackjack and Poker.
Investigate replacing some or all of your install base with some form of centralized application services, like Citrix, MS Terminal Services, X11, VNC, etc. It may be a big undertaking at first, but in the long-run, time and money resources would be focused on keeping a small amount of large centralized clusers maintained, rather than a desktop for every employee.
Flexibility would be opened up by allowing people to work from home via the remote clients. If you went with Linux (or a few others with similar capibilities), the desktops could be diskless, further reducing desktop management. Virus/adware/spyware management would almost cease to be an issue.
Joram is beautiful. Unfortunatly it's entirely java based. Sure you can interface to native C applications, but you still end up with a huge runtime, and sometimes you need really lightweight processes.
If you click on the linux link, it shows a graphic that says:
...yet
NO
Spyware
Adware
Malware
If you scroll down you'll see:
What they fail to compare is the amount of computing power per square inch you get with the mini.
What they also fail to compare is the amount of bugs, security vulnerabilities, viruses, and spyware per square inch you get with a windows based PC.