it may be a bit off-topic, but it's worth mentioning, esp. since the poster included cable modems/dsl in his question.
please please please use the AuthHosts setting if you have VNC installed on a publically accessible ip. it limits access by ip, ranges and wildcards are acceptable.
considering the relatively weak default password sceme in vnc (including no delay in missed password attempts and no default attempt logging), it's a good first step in securing access.
remind me to not vote for this article for roblimo's 'best online article' sponsorship contest. it took approx. three rereads to understand it at all, and the end result was equivalent to an ice cream headache.
i definitely don't want to hear the words 'budget' and 'space travel' in the same sentence.
here we are, sir. your neoprene scuba suit, a heavy winter jacket, two pairs of mittens, and a motorcycle helmet. ask your bunkmate to tie you down with this twine, and enjoy your flight!
steve gibson certainly has some talent. as a former iomega employee, his utility for testing zip and jaz drives for the click of death was a pain in my ass, but it was truly useful. likewise, shieldsup is good as a first step into securing your 'personal' (cable/dsl) connection.
but, cripes, does he ever has the capability to totally and unnecessarily alarm people. i think it borders on fearmongering. the exclaimation points are just the beginning.
is his 'bandwidth usage' graph a paintbrush creation? why is there no label on the horizontal axis? he virtually promises the reader that attacks like this CAN HAPPEN TO YOU and WILL HAPPEN TO YOU when Windows XP comes out. The large point fonts and colors aren't helping, steve.
still, the logs of his conversations with the haackers are particualrly interesting.
oh, and steve, if you include instructions like this: netstat -an | find ":6667"
you're just asking the kiddies to make irc servers on other ports.
he's reading the little bar graph off the web page at www.kernel.org.
please follow links prior to posting, especially if you're attempt to correct possible errors.
complex
: Lots of them. Move data between the arrays in convoluted ways, say, filling the columns in arrayB with the rows
from arrayA. Doing it with an offset of 1, for no apparent reason, is a nice touch. Makes the maintenance programmer
nervous.
even though it's so simple compared to some of the others, the idea that somebody maintaining my code in the future might look over his shoulder and draw the blinds before fixing this particularly heinous array usage is hilarious.
i believe that the last point about a 'big enough size' is true. however, the is something to be noted about too big. for example, the newspaper ad that takes up the entire page is easily and quickly filtered. a large department store in my local newspaper, for some reason, takes 4 consecutive full pages in the 'a' section of every tuesday newspaper. i, and many others, i'm sure, skip over it without a second thought.
on the web an ad that, say, take up the first 400 vertical pixels would be annoying as all hell, but people would just learn to spin their wheel mouse or hit page down to skip over it.
you're about two or three years too late. you've never seen fred astaire dance with the red devil vaccuum cleaner? or john wayne in the coors commercials?
hardware geeks and case modders rejoice, as serial ata uses a skinny litle cable, much like the audio out cable from your cd-rom to your sound card. makes the case a lot neater (imagine hiding the cables by taping them to the sides of the case!) and increases airflow. check out yummy pictures at http://www.anandtech.com/showdoc.html?i=1174.
divx is a kludge. a hack. while most of us here are ok with that, futzing with rogue.dlls, a normal non-geeked user will want to be able to trade a cd-r full of home movies (or other assorted sundries) with their even dumber friend. if this second friend can't wedge it open with media player 7/8 and it's automatic codec download (which is actually kina cool), then he's gonna give up.
that repairs them. of course, the fee may not be cheap, but the upshot is, they're the only ones i've found, maybe they have a whole warehouse full of parts.:)
http://www.neiparts.net/tama chi nes/recordacall.php3
do they have to use perl to be generous? despite their motivations (not that it matters), it's truly a great gesture.
anyways, let's say they donated this money simply to 'get famous' and make it to the front page of slashdot (!). who is to say that their advertising director didn't make a great decision.:)
you're forgetting ddos. an army of realtively useless cracked win98 boxes can flood a popular web site quite easily, esp. if those boxes have nice fat connections.
also, you may be giving win98 and win98 users too much credit. which is easier: a netbios scan to see if the entire c: drive is shared with full access and no password, or searching through bugtraq and securityfocus for a string overflow in proftd (not picking on it, just an example). granted, there may be a ready-made exploit for the proftd method, but then he has to find it, etc. etc. etc. it's easy to see how the win98 method is easier.
both of these things combine to make the vast number of win98 boxes at least somewhat attractive to the script kiddies.
this is what happens with capital gains taxes. i'm surprised more geeks aren't angry about this. if you ever listen to bob brinker (bobbrinker.com) you'll hear his stance on capital gains taxes.
for the layman: you work. you earn money, which is taxed. then, when you invest in the stock market and increase your capital (which is in theory all yours), the government taxes this as income again!
Slashdot Mirror
bursting enlarging penis? hmm, if you had pitched this ad to new line for another markie mark vehicle, boogie nights, you'd be a rich man. :)
complex
it may be a bit off-topic, but it's worth mentioning, esp. since the poster included cable modems/dsl in his question.
please please please use the AuthHosts setting if you have VNC installed on a publically accessible ip. it limits access by ip, ranges and wildcards are acceptable.
considering the relatively weak default password sceme in vnc (including no delay in missed password attempts and no default attempt logging), it's a good first step in securing access.
complex
the story is true. look on page 3 or 4 of the anandtech thread to see a reply from nugget@distributed.net.
complex
six months is a long time, but still, thank you. i was getting sick of listening to old gis episodes.
complex
a reference for those unfamiliar with the story, the jargon file entry for the tale of the kremvax: http://tuxedo.org/jargon/html/entry/kremvax.html.
soylent green is people too. coincidence? i think not.
complex
remind me to not vote for this article for roblimo's 'best online article' sponsorship contest. it took approx. three rereads to understand it at all, and the end result was equivalent to an ice cream headache.
complex
i definitely don't want to hear the words 'budget' and 'space travel' in the same sentence.
here we are, sir. your neoprene scuba suit, a heavy winter jacket, two pairs of mittens, and a motorcycle helmet. ask your bunkmate to tie you down with this twine, and enjoy your flight!
complex
steve gibson certainly has some talent. as a former iomega employee, his utility for testing zip and jaz drives for the click of death was a pain in my ass, but it was truly useful. likewise, shieldsup is good as a first step into securing your 'personal' (cable/dsl) connection.
but, cripes, does he ever has the capability to totally and unnecessarily alarm people. i think it borders on fearmongering. the exclaimation points are just the beginning.
is his 'bandwidth usage' graph a paintbrush creation? why is there no label on the horizontal axis? he virtually promises the reader that attacks like this CAN HAPPEN TO YOU and WILL HAPPEN TO YOU when Windows XP comes out. The large point fonts and colors aren't helping, steve.
still, the logs of his conversations with the haackers are particualrly interesting.
oh, and steve, if you include instructions like this: netstat -an | find ":6667"
you're just asking the kiddies to make irc servers on other ports.
complex
he's reading the little bar graph off the web page at www.kernel.org. please follow links prior to posting, especially if you're attempt to correct possible errors. complex
putting four direct links to that ftp on the front page is just horrible.
please view these rfcs at www.faqs.org.
complex
a changelog can be found on any mirror. it's named readme.v7_1.
. v7_1.
an unloaded mirror can be found here: ftp://mars.capital-data.com/pub/postgresql/README
complex
i thought the funniest entry was:
Use Three Dimensional Arrays
: Lots of them. Move data between the arrays in convoluted ways, say, filling the columns in arrayB with the rows
from arrayA. Doing it with an offset of 1, for no apparent reason, is a nice touch. Makes the maintenance programmer
nervous.
even though it's so simple compared to some of the others, the idea that somebody maintaining my code in the future might look over his shoulder and draw the blinds before fixing this particularly heinous array usage is hilarious.
i believe that the last point about a 'big enough size' is true. however, the is something to be noted about too big. for example, the newspaper ad that takes up the entire page is easily and quickly filtered. a large department store in my local newspaper, for some reason, takes 4 consecutive full pages in the 'a' section of every tuesday newspaper. i, and many others, i'm sure, skip over it without a second thought.
on the web an ad that, say, take up the first 400 vertical pixels would be annoying as all hell, but people would just learn to spin their wheel mouse or hit page down to skip over it.
complex
you're about two or three years too late. you've never seen fred astaire dance with the red devil vaccuum cleaner? or john wayne in the coors commercials?
complex
yah... that was a pretty nice show. nice show. nice.
FOR ME TO POOP ON!
just kidding. i love geeks in space. always makes me laugh incredibly loud at work, drawing glares from my less geeky coworkers.
complex
hardware geeks and case modders rejoice, as serial ata uses a skinny litle cable, much like the audio out cable from your cd-rom to your sound card. makes the case a lot neater (imagine hiding the cables by taping them to the sides of the case!) and increases airflow. check out yummy pictures at http://www.anandtech.com/showdoc.html?i=1174.
complex
thank god this was posted.
.dlls, a normal non-geeked user will want to be able to trade a cd-r full of home movies (or other assorted sundries) with their even dumber friend. if this second friend can't wedge it open with media player 7/8 and it's automatic codec download (which is actually kina cool), then he's gonna give up.
divx is a kludge. a hack. while most of us here are ok with that, futzing with rogue
i believe the seti@home hoax would qualify, no?
you're looking for a perl _interpreter_.
and you'll find it at http://www.activestate.com
perl development kit?!? well, you already have notepad.
complex
that repairs them. of course, the fee may not be cheap, but the upshot is, they're the only ones i've found, maybe they have a whole warehouse full of parts. :)
http://www.neiparts.net/tama chi nes/recordacall.php3
do they have to use perl to be generous? despite their motivations (not that it matters), it's truly a great gesture.
:)
anyways, let's say they donated this money simply to 'get famous' and make it to the front page of slashdot (!). who is to say that their advertising director didn't make a great decision.
complex
you're forgetting ddos. an army of realtively useless cracked win98 boxes can flood a popular web site quite easily, esp. if those boxes have nice fat connections.
also, you may be giving win98 and win98 users too much credit. which is easier: a netbios scan to see if the entire c: drive is shared with full access and no password, or searching through bugtraq and securityfocus for a string overflow in proftd (not picking on it, just an example). granted, there may be a ready-made exploit for the proftd method, but then he has to find it, etc. etc. etc. it's easy to see how the win98 method is easier.
both of these things combine to make the vast number of win98 boxes at least somewhat attractive to the script kiddies.
this is what happens with capital gains taxes. i'm surprised more geeks aren't angry about this. if you ever listen to bob brinker (bobbrinker.com) you'll hear his stance on capital gains taxes.
for the layman: you work. you earn money, which is taxed. then, when you invest in the stock market and increase your capital (which is in theory all yours), the government taxes this as income again!
complex
your daily counter-culture.
my prayers, sent out to st. unix at http://slashdot.org/com ments.pl?sid=00/07/24/1617240&cid=101 have been answered.
:)
thank you st. unix. thank you st. jude. thank you st. cmdrtaco.
complex