One of the best programmers I've ever worked with started as an accountant and became a programmer in his 40s first with ASP and then with PHP. What he lacked in advanced knowledge he made in spades up by being careful and methodical. He never tried to show off and when he designed something it was generally right the first time and out of the 20 programmers in our office he had by far the lowest bug count.
Quite frankly, I don't think the webserver was the entry point for Cdorkd.A since as far as I read it was mainly machines with cpanel that were infected. Even if the problem wasn't cpanel Apache doesn't run with the right permissions to change it's own binary. If the entry point is elsewhere, once they are in the machine with root access discovering what web server software being used is trivial.
Rather than worrying about something as trivial as the web server software, I would be much more concerned about why none of the control panels I've come across seem to have any sort of secure design. They run as root without any sort of privilege separation and edit the config files even when daemons are available that have a database back end.
Not everything is MTV and there still are good prank shows. On TV here is Just for Laughs who specialize in harmless pranks (although the Busted for prostitution prank was a bit mean. If you like mind bending check Disappearing Blond
XFS is mostly reliable but, as I found out with several PCs, if it gets shut off at the wrong time it will need a disk repair and then you are in for some fun because their repair utility doesn't work at all on a mounted FS (even if it is read only) meaning to repair a damaged XFS volume you will now need to use a boot disk.
Fat lot of good that reporting does. Last year someone cloned my aunt's account and sent everyone a message telling them to delete the real account from their friends list.
Facebook eventually deleted the cloned account but absolutely refused to delete the account the scammer was using to reel people in. You would think that "AM ON FACEBOOK WORKING FOR THE GOVERNMENT" on his profile would have been a dead giveaway but Facebook couldn't be bothered..
It wouldn't shock me.. I once had a social studies teacher who spent a lot of his time either trying to convince us that the teacher's union is always right or that my province should split from Canada and join with Washington, Oregon and California to form a new country called "Cascadia". Throw in a Chemistry teacher who had problems with anyone not an atheist or vegetarian, a health teacher who blamed men for everything wrong in this world and I got the idea very quickly that teachers often have the view that their position gives them the right to shove their own views down the throats of the students.
The only time I have ever seen a teacher take any heat for anything that came out of their mouths was a substitute teacher who went off on a rant about how South Africa was better off under apartheid because "blacks can't run things". We never saw him again. Quite frankly, teachers can say and do what they want so long as they don't trash talk anyone for being female or not white.
The fundamental problem is that the phone system is notoriously insecure and trusts the sending provider to show accurate information. All you need to do to spoof the calling info? A digital line.. this means that any office with a T1 or better and a digital PBX can spoof calls and worse yet VOIP services often let the caller set that info as well.
We all get to suffer because the telcos are too lazy to add egress filtering.
I don't disagree with that but there is also a good reason we tend to prefer strongly typed languages: it aids in debugging. Having something error out is much easier to debug than having something return bad data or worse yet: silently corrupt data when writing.
The problem is that MySQL only looks easier on the surface. I'm not talking about badly optimized, I'm talking about queries are ambiguous and In many cases where MySQL should return an error it simply returns wrong data. The downside when trying to convert is that in a few cases we have found so far, the original author had simply kept modifying the query until the output until it roughly sent what it was supposed to and the result of that is unmaintainable code that everyone is afraid to touch.
Ironically, the fact that PostgreSQL is a better DB makes it easier to convert from PostgreSQL to MySQL than the reverse. MySQL attempts to error correct your SQL queries while PostgreSQL is much more strict. The upshot of this is that queries that works and are tested in MySQL have a good chance of not working and need to be checked (doubly so if the original programmer tried to be clever).
The company I work for is in the beginnings of a transition. Our PHP and C software have an easy switch to convert between the two databases but now we get to check to make sure every query works and returns the same results in both databases. The cleanup of our queries will be good in the long term but for now it's a LOT of work.
There are more power save states than just sleep. Most modern processors have the option to to reduce speed when idle, saving power. The same goes for the PCIe bus, and even some video cards if you run the machine full out mining bitcoins you will use extra electricity.
Personally, I would attach a power meter to one machine and compare the difference and have a look at whether it mines more value in bitcoins than the extra electricity it consumes during the process.
It isn't routers you need to worry about its home gateways and firewalls. From my experiments with it so far my ISP DSL modem doesnt allow it but my office firewall supports it fine (mainly because its Linux) but the CISCO ASA we have server side supports it poorly. With the ASA, it is all or nothing. I can allow all SCTP regardless of port or I can allow no SCTP.
While I agree that the system should do what it can to prevent intrusions and bad passwords, there are some things that users are just going to have to know not to do such as not writing their passwords on a sticky note or replying to some random email with their bank login or social security number.
I had the following conversation with my boss:
Check this link out
DNSSEC checker and your domain.. whats DNSSEC?
DNS SECURITY extension.. makes it much harder to redirect my domain by attacking the DNS layer
and you didnt do this on our domains because... ?
Your registar hasnt bothered implementing DNSSEC yet.
OK were moving everything to one that does.
It was like I told him we had no firewall or backups when I put it that way. Bosses dont like to sound insecure.
An even better way to save money is to go through the house and fix every leaky tap or toilette. Back before I finally got my first sysadmin job I worked with my father fixing/ installing sewage treatment systems and you would be amazed how many calls we got wondering why systems were 20 - 30 gallons a day above normal and ended up tracing the problem to a slow leak in a single toilette somewhere in the building.
I get it. You are one of those idiots who likes to feel smug about themselves by assuming things about other people. But you know what? I'm not going to let you get away with it this time. Look at this hall closetcds I took off my desk. The best part is that this is just most of the stuff I've bought since moving to Spain. The bulk of my collection is in boxes back in Canada because the Spanish government wouldn't let me import it.
Slashdot Mirror
One of the best programmers I've ever worked with started as an accountant and became a programmer in his 40s first with ASP and then with PHP. What he lacked in advanced knowledge he made in spades up by being careful and methodical. He never tried to show off and when he designed something it was generally right the first time and out of the 20 programmers in our office he had by far the lowest bug count.
Quite frankly, I don't think the webserver was the entry point for Cdorkd.A since as far as I read it was mainly machines with cpanel that were infected. Even if the problem wasn't cpanel Apache doesn't run with the right permissions to change it's own binary. If the entry point is elsewhere, once they are in the machine with root access discovering what web server software being used is trivial.
Rather than worrying about something as trivial as the web server software, I would be much more concerned about why none of the control panels I've come across seem to have any sort of secure design. They run as root without any sort of privilege separation and edit the config files even when daemons are available that have a database back end.
Not everything is MTV and there still are good prank shows. On TV here is Just for Laughs who specialize in harmless pranks (although the Busted for prostitution prank was a bit mean. If you like mind bending check Disappearing Blond
XFS is mostly reliable but, as I found out with several PCs, if it gets shut off at the wrong time it will need a disk repair and then you are in for some fun because their repair utility doesn't work at all on a mounted FS (even if it is read only) meaning to repair a damaged XFS volume you will now need to use a boot disk.
Fat lot of good that reporting does. Last year someone cloned my aunt's account and sent everyone a message telling them to delete the real account from their friends list.
Facebook eventually deleted the cloned account but absolutely refused to delete the account the scammer was using to reel people in. You would think that "AM ON FACEBOOK WORKING FOR THE GOVERNMENT" on his profile would have been a dead giveaway but Facebook couldn't be bothered..
It wouldn't shock me.. I once had a social studies teacher who spent a lot of his time either trying to convince us that the teacher's union is always right or that my province should split from Canada and join with Washington, Oregon and California to form a new country called "Cascadia". Throw in a Chemistry teacher who had problems with anyone not an atheist or vegetarian, a health teacher who blamed men for everything wrong in this world and I got the idea very quickly that teachers often have the view that their position gives them the right to shove their own views down the throats of the students.
The only time I have ever seen a teacher take any heat for anything that came out of their mouths was a substitute teacher who went off on a rant about how South Africa was better off under apartheid because "blacks can't run things". We never saw him again. Quite frankly, teachers can say and do what they want so long as they don't trash talk anyone for being female or not white.
Wrong link. Meant to use this one
Ugly and non creative. For what he spent on that he could have had a luxury submarine
The fundamental problem is that the phone system is notoriously insecure and trusts the sending provider to show accurate information. All you need to do to spoof the calling info? A digital line.. this means that any office with a T1 or better and a digital PBX can spoof calls and worse yet VOIP services often let the caller set that info as well.
We all get to suffer because the telcos are too lazy to add egress filtering.
I do the same and I just checked: No it doesn't.
IDC is also the company that predicted that the Itanium would be a huge success so I would take any prediction of theirs with a grain of salt.
That name must result in a lot of very disappointed foreigners.
I don't disagree with that but there is also a good reason we tend to prefer strongly typed languages: it aids in debugging. Having something error out is much easier to debug than having something return bad data or worse yet: silently corrupt data when writing.
The problem is that MySQL only looks easier on the surface. I'm not talking about badly optimized, I'm talking about queries are ambiguous and In many cases where MySQL should return an error it simply returns wrong data. The downside when trying to convert is that in a few cases we have found so far, the original author had simply kept modifying the query until the output until it roughly sent what it was supposed to and the result of that is unmaintainable code that everyone is afraid to touch.
why not just use postgres?
jeez
Ironically, the fact that PostgreSQL is a better DB makes it easier to convert from PostgreSQL to MySQL than the reverse. MySQL attempts to error correct your SQL queries while PostgreSQL is much more strict. The upshot of this is that queries that works and are tested in MySQL have a good chance of not working and need to be checked (doubly so if the original programmer tried to be clever).
The company I work for is in the beginnings of a transition. Our PHP and C software have an easy switch to convert between the two databases but now we get to check to make sure every query works and returns the same results in both databases. The cleanup of our queries will be good in the long term but for now it's a LOT of work.
They would have undone any such arrangement before selling it, same as they do for embassies.
There are more power save states than just sleep. Most modern processors have the option to to reduce speed when idle, saving power. The same goes for the PCIe bus, and even some video cards if you run the machine full out mining bitcoins you will use extra electricity.
Personally, I would attach a power meter to one machine and compare the difference and have a look at whether it mines more value in bitcoins than the extra electricity it consumes during the process.
It isn't routers you need to worry about its home gateways and firewalls. From my experiments with it so far my ISP DSL modem doesnt allow it but my office firewall supports it fine (mainly because its Linux) but the CISCO ASA we have server side supports it poorly. With the ASA, it is all or nothing. I can allow all SCTP regardless of port or I can allow no SCTP.
While I agree that the system should do what it can to prevent intrusions and bad passwords, there are some things that users are just going to have to know not to do such as not writing their passwords on a sticky note or replying to some random email with their bank login or social security number.
I had the following conversation with my boss: ... ?
Check this link out
DNSSEC checker and your domain.. whats DNSSEC?
DNS SECURITY extension.. makes it much harder to redirect my domain by attacking the DNS layer
and you didnt do this on our domains because
Your registar hasnt bothered implementing DNSSEC yet.
OK were moving everything to one that does.
It was like I told him we had no firewall or backups when I put it that way. Bosses dont like to sound insecure.
I have both DNSSEC and IPv6 working for all of the domains I moved to GANDI
An even better way to save money is to go through the house and fix every leaky tap or toilette. Back before I finally got my first sysadmin job I worked with my father fixing/ installing sewage treatment systems and you would be amazed how many calls we got wondering why systems were 20 - 30 gallons a day above normal and ended up tracing the problem to a slow leak in a single toilette somewhere in the building.
Except that to consider all terrorists Muslim, you must ignore groups like the IRA, FARC and ETA.
You are misinformed Google has several kernel developers on staff and have been rather good about sharing anything interesting they use in house.
I get it. You are one of those idiots who likes to feel smug about themselves by assuming things about other people. But you know what? I'm not going to let you get away with it this time. Look at this hall closet cds I took off my desk. The best part is that this is just most of the stuff I've bought since moving to Spain. The bulk of my collection is in boxes back in Canada because the Spanish government wouldn't let me import it.
I pay for things. I prefer to support artists I like and to back up my point: The music industry had it's largest profits ever while Napster was popular.