...why in the world wasn't all the data feeds sent to & from a drone encrypted ALREADY? It took someone sniffing the wireless feed for someone to realize this?!
I've been using KeePass for years, and recently started using the portable version coupled with DropBox - viola, access to my passwords from anywhere, all nice and synchronized up! On my own PCs I have the DropBox client running all the time, and if I'm elsewhere and can't get a remote connection to my home PC, I can temporary download my files from the DropBox website without needing the client.
My town, in its infinite wisdom, had a road crew tearing up a lane of traffic directly in front of my polling place (only a 2-lane road with a center turn lane). People could still get in & out obviously but it made things more difficult for sure. I'd love to know who's brilliant scheduling idea that was...
I'll second that, we use Openfire within our IT department (spanning 3 locations plus accessible via VPN). Spark is the primary client we give to our people but they're also free to use any other Jabber client they want like Pidgin, Miranda, Exodus, etc. We have SSL enabled and message auditing & archiving turned on which is also important for businesses in certain markets. We have it authenticating off our Active Directory via LDAP lookup. There's also a Flash-based web client which simply is a SWF that can be dropped in any web server, but we don't use that at present.
I just called also, and if you have a password set up on your account for billing purposes (i.e., you have to provide it when calling to make any changes to your service or billing), then they ask you for that instead of SSN.
True, and I'm extremely happy with the card I got, just seems like every time I build myself a new system, something new & cool comes out 2 weeks later.:)
If you don't already have all of the monitoring hardware in place, check out the NetBotz (now owned by APC) suite of monitoring products. You buy one rack-mount system, and can tie any number of sensor "pods" (or even third-party sensors via customizable input contacts), and all sensors report back to the main unit for logging and alerting. It can also forward the SNMP traps onto an existing network monitoring system if you have one.
I don't believe they'll monitor UPS equipment however. For that, here at my company we use the APC InfraStruXure (ISX) manager appliance, since all of our power equipment is APC. It's a nice little 1U rackmount that manages all APC devices you point it at, and it's a central point for management and monitoring/alerting. APC also has their own APC-branded (not NetBotz) line of environmental monitors which also have customizable input & output contacts, and they can be managed by the ISX manager appliance along with the power equipment.
If you do already have a variety of monitoring sensors, if they can communicate to the network, then presumably they can send SNMP traps? You could have those sent to any central SNMP monitoring system (like Zenoss) to have it actually send out the alerts.
I've been using DomainSite.com for a few years now and have been very happy. Transfers have all gone very smoothly, they have a good un-cluttered management interface, and best of all...NO ADS! I even moved all of the domains for the company I work for to them last year.
I used to use GoDaddy as well but got tired of their cluttered interface and constant ads for their add-on services. I'm glad I left them before all this suspension BS started.
I absolutely agree about ST:25th Anniv....I had a heck of a lot of fun playing that game. Really captured the style of the original series, including a fair bit of humor. And the ship combat was well done for the time...good use of localized shield and hull damage. It didn't try to mold Star Trek into a space RTS game which it's really not.
At my company, we use AdventNet's OpManager and like it a lot. The price was right for us, and for us their pricing model works well. Pricing based on the number of technicians instead of number of monitored nodes works perfectly for a company like mine with few admins/techs but many devices. Paying per node just gets unwieldy, especially if your environment is changing or growing rapidly.
OpManager is fully capable of what you're looking for, I think you should give it another look despite your feelings about the pricing.
And who cares about the theme of a monitoring system? Does it work? If so, then is a shiny WinXP-like theme really a deal breaker? Come on...
If the application already has a basis for Oracle support, I can't see the logic of throwing that away instead of continue to support Oracle for new features. The monetary argument really doesn't hold water since Oracle 10g Express edition is free for development, deployment, and distribution, so developers could develop & test against Oracle syntax just as easily as Postgres.
I know that as a corporate sysadmin, I would love to make use of more open-source projects, but I'm not in a position to introduce more database engines into our environment, so most of the time I have to pass. We're an Oracle shop. If I can get an open source app that supports Oracle, fantastic. If not, I'm not going to install MySQL or Postgres just to run one application, so I'll go find something else or get it on our list of internal dev projects.
Keeping the Oracle support there only increases the project's potential exposure, and with Oracle providing a free version of the database, supporting it should not be a huge financial investment like it used to be.
You beat me to the punch...there's no way we'd switch our RHEL servers (only 3 at this point) to Ubuntu unless HP and Oracle certified it. Right now they only certify for RHEL and SLES, and we don't enjoy the thought of running an unsupported configuration of Oracle Applications...it's complex enough as it is:). And HP doesn't provide a driver & management pack for ProLiant servers for Ubuntu either (or Debian for that matter).
But, if all of that does happen, which isn't out of the question, I would certainly give it the consideration it's due.
I happened to watch the webcast of the keynote today before seeing this article, and the article is being a bit liberal with what was said.
What he said was that Vista is the most secure *Windows* OS ever, and *possibly* the most secure OS in the industry. I added the emphasis, but "possibly" hardly qualifies as a "bold declaration" to me.
I like the design a lot. Very clean, still readable, and the clearly-indicated quoted sections are great. Very nice to clearly see what's quoted and what's editorial at first glance. Kudos.
I am a network security manager at my company, and we do ban Skype as well as most other protocols outside of NTP, HTTP(S), and FTP, for two very simple reasons:
1. Bandwidth. We only have a T1 for our office Internet connection, because that's all we need to run our business. Streaming media crushes it pretty quickly with 100 employees sharing 1.544 MBit. 2. No valid business purpose. This is a business. People are paid to do a job. They don't need Skype, AIM, RealPlayer, etc etc to do that job. We run WebSense (though the filter set is not at all harsh, and we disabled logging and reporting) to filter web traffic for the same reason.
The company you work for has every right to control exactly what what comes in and out of its network. Heck, most companies disallow personal phone calls anyway, so why do you need Skype?
No, as far as I remember it was still a v1 hardware revision, using Prism54. But according to some stuff I read at the time (can't find links at the moment), Netgear made some modification to offload some functionality from the chipset to the firmware, making it incompatible with the Linux firmware.
Here's the linkage...they basically list all their PCMCIA models and HW revisions, and link to a number of Linux driver projects, including Madwifi, Prism54, linux-wlan-ng, etc.
I've been using a D-Link DWL-G650 (Atheros chipset) with the Madwifi drivers quite successfully for a while now. Even have WPAv2 working. This is using Gentoo and its awesome wrapper config scripts for network/wireless setup.
Prior to this card, I had a Netgear WG511 which worked using the Prism54 drivers. But then it died and I got an RMA replacement...the replacement I received (same hardware revision, mind you) did not work because of something that they offloaded from the hardware into firmware, which the Prism54 firmware did not replicate. Saving $0.02 a card cost them Linux support, but do they seem to care? Nope.
D-Link at least links right to the Madwifi project from their support FAQ. Even that little bit of a nudge is more than most others will give.
I had gotten a few strange non-spam emails on one of my gmail accounts, and basically wrote back to the person explaining that I'm not who they thought I was.
But now that I look back on those emails, I notice that they were addressed to firstname.lastname@gmail.com, while my address is firstnamelastname@gmail.com.
My official title at my company is "Assistant Network & Security Manager". In reality, I do network and systems admin, as well as systems and user security, as well as some programming, etc etc...
I'm probably underpaid, but I don't mind very much. I get 4 weeks vacation that I can take any time without hassle. I am on flex time year-round when the rest of the company only gets limited flex during summer. The company pays over 80% of our medical benefits, has a very generous 401(k) match, and they throw thousands of dollars per employee per year into our ESOP plan.
The base pay is only part of the package...the benefits are what make the deal.
That looks like exactly what I've been searching for. Shame it's not F/OSS, but I'm sure my company will have no problem paying for it, given our big security push lately thanks to Sarbanes-Oxley. Thanks!
On the subject of password storage, I love programs like KeePass for personal use, where I am the only person accessing the file. However, none of these programs work very well in a multi-user environment primarily because of file locking issues and the like.
At work we have several passwords which need to be shared between multiple people (admins, devs, management, etc). Yet I have been completely unable to find any truly multi-user variation on this theme. Also, all of the desktop apps that I have found use a single master password, and have no capability for a username/password style of authentication to control who can see what passwords.
If anyone knows of anything like this, I would greatly appreciate some sharing. (Or if someone wants to write one, I'd happily beta test for you:)
Slashdot Mirror
...why in the world wasn't all the data feeds sent to & from a drone encrypted ALREADY? It took someone sniffing the wireless feed for someone to realize this?!
I've been using KeePass for years, and recently started using the portable version coupled with DropBox - viola, access to my passwords from anywhere, all nice and synchronized up! On my own PCs I have the DropBox client running all the time, and if I'm elsewhere and can't get a remote connection to my home PC, I can temporary download my files from the DropBox website without needing the client.
My town, in its infinite wisdom, had a road crew tearing up a lane of traffic directly in front of my polling place (only a 2-lane road with a center turn lane). People could still get in & out obviously but it made things more difficult for sure. I'd love to know who's brilliant scheduling idea that was...
I'll second that, we use Openfire within our IT department (spanning 3 locations plus accessible via VPN). Spark is the primary client we give to our people but they're also free to use any other Jabber client they want like Pidgin, Miranda, Exodus, etc. We have SSL enabled and message auditing & archiving turned on which is also important for businesses in certain markets. We have it authenticating off our Active Directory via LDAP lookup. There's also a Flash-based web client which simply is a SWF that can be dropped in any web server, but we don't use that at present.
I just called also, and if you have a password set up on your account for billing purposes (i.e., you have to provide it when calling to make any changes to your service or billing), then they ask you for that instead of SSN.
True, and I'm extremely happy with the card I got, just seems like every time I build myself a new system, something new & cool comes out 2 weeks later. :)
Thus is life though...
...they come out with these just after I buy a new 7900GS, thinking that a DX10 card was going to be out of my price range for a long while....sigh.
If you don't already have all of the monitoring hardware in place, check out the NetBotz (now owned by APC) suite of monitoring products. You buy one rack-mount system, and can tie any number of sensor "pods" (or even third-party sensors via customizable input contacts), and all sensors report back to the main unit for logging and alerting. It can also forward the SNMP traps onto an existing network monitoring system if you have one.
I don't believe they'll monitor UPS equipment however. For that, here at my company we use the APC InfraStruXure (ISX) manager appliance, since all of our power equipment is APC. It's a nice little 1U rackmount that manages all APC devices you point it at, and it's a central point for management and monitoring/alerting. APC also has their own APC-branded (not NetBotz) line of environmental monitors which also have customizable input & output contacts, and they can be managed by the ISX manager appliance along with the power equipment.
If you do already have a variety of monitoring sensors, if they can communicate to the network, then presumably they can send SNMP traps? You could have those sent to any central SNMP monitoring system (like Zenoss) to have it actually send out the alerts.
I've been using DomainSite.com for a few years now and have been very happy. Transfers have all gone very smoothly, they have a good un-cluttered management interface, and best of all...NO ADS! I even moved all of the domains for the company I work for to them last year.
I used to use GoDaddy as well but got tired of their cluttered interface and constant ads for their add-on services. I'm glad I left them before all this suspension BS started.
I absolutely agree about ST:25th Anniv....I had a heck of a lot of fun playing that game. Really captured the style of the original series, including a fair bit of humor. And the ship combat was well done for the time...good use of localized shield and hull damage. It didn't try to mold Star Trek into a space RTS game which it's really not.
At my company, we use AdventNet's OpManager and like it a lot. The price was right for us, and for us their pricing model works well. Pricing based on the number of technicians instead of number of monitored nodes works perfectly for a company like mine with few admins/techs but many devices. Paying per node just gets unwieldy, especially if your environment is changing or growing rapidly.
OpManager is fully capable of what you're looking for, I think you should give it another look despite your feelings about the pricing.
And who cares about the theme of a monitoring system? Does it work? If so, then is a shiny WinXP-like theme really a deal breaker? Come on...
If the application already has a basis for Oracle support, I can't see the logic of throwing that away instead of continue to support Oracle for new features. The monetary argument really doesn't hold water since Oracle 10g Express edition is free for development, deployment, and distribution, so developers could develop & test against Oracle syntax just as easily as Postgres.
I know that as a corporate sysadmin, I would love to make use of more open-source projects, but I'm not in a position to introduce more database engines into our environment, so most of the time I have to pass. We're an Oracle shop. If I can get an open source app that supports Oracle, fantastic. If not, I'm not going to install MySQL or Postgres just to run one application, so I'll go find something else or get it on our list of internal dev projects.
Keeping the Oracle support there only increases the project's potential exposure, and with Oracle providing a free version of the database, supporting it should not be a huge financial investment like it used to be.
You beat me to the punch...there's no way we'd switch our RHEL servers (only 3 at this point) to Ubuntu unless HP and Oracle certified it. Right now they only certify for RHEL and SLES, and we don't enjoy the thought of running an unsupported configuration of Oracle Applications...it's complex enough as it is :). And HP doesn't provide a driver & management pack for ProLiant servers for Ubuntu either (or Debian for that matter).
But, if all of that does happen, which isn't out of the question, I would certainly give it the consideration it's due.
I happened to watch the webcast of the keynote today before seeing this article, and the article is being a bit liberal with what was said.
What he said was that Vista is the most secure *Windows* OS ever, and *possibly* the most secure OS in the industry. I added the emphasis, but "possibly" hardly qualifies as a "bold declaration" to me.
I like the design a lot. Very clean, still readable, and the clearly-indicated quoted sections are great. Very nice to clearly see what's quoted and what's editorial at first glance. Kudos.
Leaked? Really? Pretty sure I could have snapped some screenshots of WMP11 from the last few copies of the Vista CTP from TechNet. :P
Gotta love a little irony...
I tried to print the page for later reading, but Firefox 1.5 didn't preview or print it correctly...had to open it in IE to print.
Things that make you go "hmmmm"...
I am a network security manager at my company, and we do ban Skype as well as most other protocols outside of NTP, HTTP(S), and FTP, for two very simple reasons:
1. Bandwidth. We only have a T1 for our office Internet connection, because that's all we need to run our business. Streaming media crushes it pretty quickly with 100 employees sharing 1.544 MBit.
2. No valid business purpose. This is a business. People are paid to do a job. They don't need Skype, AIM, RealPlayer, etc etc to do that job. We run WebSense (though the filter set is not at all harsh, and we disabled logging and reporting) to filter web traffic for the same reason.
The company you work for has every right to control exactly what what comes in and out of its network. Heck, most companies disallow personal phone calls anyway, so why do you need Skype?
No, as far as I remember it was still a v1 hardware revision, using Prism54. But according to some stuff I read at the time (can't find links at the moment), Netgear made some modification to offload some functionality from the chipset to the firmware, making it incompatible with the Linux firmware.
Here's the linkage...they basically list all their PCMCIA models and HW revisions, and link to a number of Linux driver projects, including Madwifi, Prism54, linux-wlan-ng, etc.
& question=General%20Wireless
http://support.dlink.com/faq/view.asp?prod_id=357
I'll second the parent comment.
I've been using a D-Link DWL-G650 (Atheros chipset) with the Madwifi drivers quite successfully for a while now. Even have WPAv2 working. This is using Gentoo and its awesome wrapper config scripts for network/wireless setup.
Prior to this card, I had a Netgear WG511 which worked using the Prism54 drivers. But then it died and I got an RMA replacement...the replacement I received (same hardware revision, mind you) did not work because of something that they offloaded from the hardware into firmware, which the Prism54 firmware did not replicate. Saving $0.02 a card cost them Linux support, but do they seem to care? Nope.
D-Link at least links right to the Madwifi project from their support FAQ. Even that little bit of a nudge is more than most others will give.
I had gotten a few strange non-spam emails on one of my gmail accounts, and basically wrote back to the person explaining that I'm not who they thought I was.
But now that I look back on those emails, I notice that they were addressed to firstname.lastname@gmail.com, while my address is firstnamelastname@gmail.com.
Doh.
You hit it on the head here.
My official title at my company is "Assistant Network & Security Manager". In reality, I do network and systems admin, as well as systems and user security, as well as some programming, etc etc...
I'm probably underpaid, but I don't mind very much. I get 4 weeks vacation that I can take any time without hassle. I am on flex time year-round when the rest of the company only gets limited flex during summer. The company pays over 80% of our medical benefits, has a very generous 401(k) match, and they throw thousands of dollars per employee per year into our ESOP plan.
The base pay is only part of the package...the benefits are what make the deal.
That looks like exactly what I've been searching for. Shame it's not F/OSS, but I'm sure my company will have no problem paying for it, given our big security push lately thanks to Sarbanes-Oxley. Thanks!
On the subject of password storage, I love programs like KeePass for personal use, where I am the only person accessing the file. However, none of these programs work very well in a multi-user environment primarily because of file locking issues and the like.
:)
At work we have several passwords which need to be shared between multiple people (admins, devs, management, etc). Yet I have been completely unable to find any truly multi-user variation on this theme. Also, all of the desktop apps that I have found use a single master password, and have no capability for a username/password style of authentication to control who can see what passwords.
If anyone knows of anything like this, I would greatly appreciate some sharing. (Or if someone wants to write one, I'd happily beta test for you