About 10 years ago,cable modems across Ontario (Canada) were knocked off the AtHome network. Thieves dug up and cut the fibre thinking it was copper, then tried again with the backup.
What many people don't realize is that Walmart sells all their products on consignment. Their suppliers don't get paid until the item is scanned at the register. So, this doesn't hurt Walmart but the company that makes the product (who is already squeezed in order to sell it)
Not only SSH, but also various web attacks. I'm seeing everything from blog hits to at least 30 variations of PhpMyAdmin. This is on a server that runs neither (and is, in fact, Zope behind Apache).
One of my clients runs an internet cafe. Partially as a result of the machines constantly failing, I set the machines up so that they refresh each time the machine is rebooted. But, from a security perspective all you need to do is reboot, wait 7 minutes, and you have a clean system. No spyware, no viruses. It's been almost a year and there have been 0 problems since.
The image was made after a clean windows install and uses parted to restore. It's stored on a partition that is hidden by grub at system boot. About the only thing that can be messed up (with a lot of effort) is finding the hidden grub files on the fat partition, and all that means is a manual boot into linux.
Obviously system updates can't be applied so I refresh the image once a month or so.
The worst part is that the phishers are getting better. It's easy to ignore mail from a bank I don't have an account with, but I had to look at the headers of my last few paypal/ebay phishes to confirm they weren't real. How many people can do this?
The Boeing 777 can takeoff and land automatically. Hell, that airplane can do anything.
No kidding. I was on a 777 a few months ago and even the cabin displays were impressive. The plane graphic was the wrong way in relation to the line marking our route... until the plane turned around and the graphic also rotated. About the only thing they missed was that the 3-D fly-by graphics were during the day and we were flying at night. They've thought about almost everything - except being stuck in cattle class 6 hours into a flight.
I can only imagine what the flight controls are like.
My Sony Ericsson T616 came from Cingular because you could buy an unlocked version without a contract. Yes, they messed up. From what I've heard, this wasn't the first time.
And, it should go without saying that the tripwire hashes/database should be on write-once media. If the hashes can be changed, you never know if they're right.
Telemarketing != sales. In fact, it screws up the reputation for people who are professional sales people.
A telemarketer could try to sell new windows to anyone, at random. They basically use a dictionary-style attack and if they're lucky they will get a sale.
A good sales person would first determine the market (ie: eliminate apartment/condo units but approach landlords). They might even drive around looking at houses and noting if the windows are old (=replacement) or new (=recently replaced). They might work with real estate agents, home inspectors, etc to qualify potential sales (15 people moved in the area. 5 of those have bad windows. 3 of them have good windows. Etc)
The point is that a proper sales person will know the person at the other end. If you're not the target market, a salesperson won't talk to you. A telemarketer would.
Most servers with built-in redundant power supplies have additional monitoring software.
If you mean two power supplies in the space of a normal ATX p/s, then the only monitoring you would have is if there was an additional serial/usb connection to the board.
I wonder why it's so hard to actually change my PIN on a regular basis. The only way to change it is to visit my branch during business hours (ie: closed by 3PM) and use the single PIN change machine. It used to be at the end of the counter, now it seems I need to ask for it.
I'd like to change my PIN on a weekly or at least monthly basis if it wasn't so difficult.
How many people have a compromized/stolen PIN that don't even know? A PIN should work like a password and expire every 30-60 days.
I once bought a $2000 item using a corporate purchasing card belonging to my boss. The transaction shouldn't have gone through - no id check, the signatures didn't match and her name (not mine) was on the card. I could have very easily stolen the card and it would have worked.
Another company I worked for would always check id above a certain amount. No id = no sale, but stolen cards were somewhat common.
The last company I worked for encouraged credit card payment over cash/cheque but never told us to check ID/signature/etc. We had home addresses in many cases though
You're talking about the federal system, which is a hand count system. (I actually supervised a poll count last year). It's largely dependant on the volunteers - having enough representatives from each side to balance things out, and having people who can count quickly (mine was quick, others weren't)
The parent refered to an automated system used in municipal elections (at least in Ontario). It's like the automated test systems- fill in the bubble next to your choice. The ballot is scanned in front of you, and stored in case of a recount. It can be hand counted if necessary. It's been used for years so it generally works.
Unix, while much better, isn't perfect either. Linux, Apache, MySQL, and friends all have security updates. And, can I remind anyone about BIND and Sendmail's history?
How does it deal with things like shift/caps-lock, alt characters (I use a mac, none of that alt-#### stuff), backspace, and me intetionally throwing loggers off by alternating the fields (mouse/tab) or position?
If everything shares a common screen/speaker/something else, then everything needs to everywhere with you. Batbelt syndrome. I can at least leave the iPod at home when all I need is the phone.
If they don't share, you still need all devices for full functionality. Batbelt syndrome.
Firewall off your test area. Viruses, worms, malware, irc, bots, etc. all want to get out and infect things, or will flood your network trying. Allow access to only the things the boxes need to see (windows update, antivirus/spyware, your local file server, etc). Block everything else, or at least be able to turn it off. Cache the updates and save bandwidth.
Log everything and watch the logs to see what the malware is trying to hit.
Ideally, use a managed switch and separate each port (or a few cheap routers) so that machines can't infect each other while they're connected.
UBCD and UBCD4win are your friends. I usually unpack the ISO's and add a bunch of other windows utilities, service packs, virus and spyware defs so that I have fewer CDs to carry around. (you never know when you'll have to fix something on dialup)
Yesterday, one of my clients told me an interesting trick. In Canada, if you attach the reply envelope to a brick, Canada Post is required to deliver the brick, and a $7.50 postage bill.
Slashdot Mirror
Won't stop them from trying.
About 10 years ago,cable modems across Ontario (Canada) were knocked off the AtHome network. Thieves dug up and cut the fibre thinking it was copper, then tried again with the backup.
I've always wondered why sync two mailboxes when we already have standards like IMAP. 1 mailbox that can't possibly get out of sync.
What many people don't realize is that Walmart sells all their products on consignment. Their suppliers don't get paid until the item is scanned at the register. So, this doesn't hurt Walmart but the company that makes the product (who is already squeezed in order to sell it)
Not only SSH, but also various web attacks. I'm seeing everything from blog hits to at least 30 variations of PhpMyAdmin. This is on a server that runs neither (and is, in fact, Zope behind Apache).
Here you go...
One of my clients runs an internet cafe. Partially as a result of the machines constantly failing, I set the machines up so that they refresh each time the machine is rebooted. But, from a security perspective all you need to do is reboot, wait 7 minutes, and you have a clean system. No spyware, no viruses. It's been almost a year and there have been 0 problems since.
The image was made after a clean windows install and uses parted to restore. It's stored on a partition that is hidden by grub at system boot. About the only thing that can be messed up (with a lot of effort) is finding the hidden grub files on the fat partition, and all that means is a manual boot into linux.
Obviously system updates can't be applied so I refresh the image once a month or so.
Of course it will be a powerbook update. I just bought one!
(ok, it's been two months, and it was because my TiBook basically fell apart)
Security? Why not have the point of sale network separated from the main corporate network? Separate switches if you're small, vlans if you're big.
Linux is a great idea but it also seems similar to "I keep driving into trees in my car, so I bought an SUV."
The worst part is that the phishers are getting better. It's easy to ignore mail from a bank I don't have an account with, but I had to look at the headers of my last few paypal/ebay phishes to confirm they weren't real.
How many people can do this?
The Boeing 777 can takeoff and land automatically. Hell, that airplane can do anything.
No kidding. I was on a 777 a few months ago and even the cabin displays were impressive. The plane graphic was the wrong way in relation to the line marking our route... until the plane turned around and the graphic also rotated. About the only thing they missed was that the 3-D fly-by graphics were during the day and we were flying at night. They've thought about almost everything - except being stuck in cattle class 6 hours into a flight.
I can only imagine what the flight controls are like.
My Sony Ericsson T616 came from Cingular because you could buy an unlocked version without a contract. Yes, they messed up. From what I've heard, this wasn't the first time.
Home users who can't find cd's and/or keys are the real problem.
And, it should go without saying that the tripwire hashes/database should be on write-once media. If the hashes can be changed, you never know if they're right.
Telemarketing != sales.
In fact, it screws up the reputation for people who are professional sales people.
A telemarketer could try to sell new windows to anyone, at random. They basically use a dictionary-style attack and if they're lucky they will get a sale.
A good sales person would first determine the market (ie: eliminate apartment/condo units but approach landlords). They might even drive around looking at houses and noting if the windows are old (=replacement) or new (=recently replaced). They might work with real estate agents, home inspectors, etc to qualify potential sales (15 people moved in the area. 5 of those have bad windows. 3 of them have good windows. Etc)
The point is that a proper sales person will know the person at the other end. If you're not the target market, a salesperson won't talk to you. A telemarketer would.
Most servers with built-in redundant power supplies have additional monitoring software.
If you mean two power supplies in the space of a normal ATX p/s, then the only monitoring you would have is if there was an additional serial/usb connection to the board.
This is the company that called their product "XP" only after Apple called theirs "X".
I wonder why it's so hard to actually change my PIN on a regular basis. The only way to change it is to visit my branch during business hours (ie: closed by 3PM) and use the single PIN change machine. It used to be at the end of the counter, now it seems I need to ask for it.
I'd like to change my PIN on a weekly or at least monthly basis if it wasn't so difficult.
How many people have a compromized/stolen PIN that don't even know? A PIN should work like a password and expire every 30-60 days.
I once bought a $2000 item using a corporate purchasing card belonging to my boss. The transaction shouldn't have gone through - no id check, the signatures didn't match and her name (not mine) was on the card. I could have very easily stolen the card and it would have worked.
Another company I worked for would always check id above a certain amount. No id = no sale, but stolen cards were somewhat common.
The last company I worked for encouraged credit card payment over cash/cheque but never told us to check ID/signature/etc. We had home addresses in many cases though
We're talking about two different systems.
You're talking about the federal system, which is a hand count system. (I actually supervised a poll count last year). It's largely dependant on the volunteers - having enough representatives from each side to balance things out, and having people who can count quickly (mine was quick, others weren't)
The parent refered to an automated system used in municipal elections (at least in Ontario). It's like the automated test systems- fill in the bubble next to your choice. The ballot is scanned in front of you, and stored in case of a recount. It can be hand counted if necessary. It's been used for years so it generally works.
Unix, while much better, isn't perfect either. Linux, Apache, MySQL, and friends all have security updates. And, can I remind anyone about BIND and Sendmail's history?
How does it deal with things like shift/caps-lock, alt characters (I use a mac, none of that alt-#### stuff), backspace, and me intetionally throwing loggers off by alternating the fields (mouse/tab) or position?
Either way you have batbelt syndrome.
If everything shares a common screen/speaker/something else, then everything needs to everywhere with you. Batbelt syndrome.
I can at least leave the iPod at home when all I need is the phone.
If they don't share, you still need all devices for full functionality. Batbelt syndrome.
Firewall off your test area. Viruses, worms, malware, irc, bots, etc. all want to get out and infect things, or will flood your network trying. Allow access to only the things the boxes need to see (windows update, antivirus/spyware, your local file server, etc). Block everything else, or at least be able to turn it off. Cache the updates and save bandwidth.
Log everything and watch the logs to see what the malware is trying to hit.
Ideally, use a managed switch and separate each port (or a few cheap routers) so that machines can't infect each other while they're connected.
UBCD and UBCD4win are your friends. I usually unpack the ISO's and add a bunch of other windows utilities, service packs, virus and spyware defs so that I have fewer CDs to carry around. (you never know when you'll have to fix something on dialup)
Yesterday, one of my clients told me an interesting trick. In Canada, if you attach the reply envelope to a brick, Canada Post is required to deliver the brick, and a $7.50 postage bill.
That gets you off a mailing list really quickly.