Not correct.. if isps block outgoing access to port 25 then getting around that would require the cooperation of the (usually misconfigured) spam realay. They can send from any port they want but if your blocking outgoing traffic to 25 then they still get blocked.
If the only way around that is using the isp's mail server the spam suddenly gets easier to trace and the server admins will notice if someone suddenly saturates their servers with a ton of bulk email. Even if they don't it will slow the traffic because spammers usually take as many open relays as they can find and cram them so full they end up not being able to get legitemate email(including complaints) until 4 days later.
You block port 25 forcing all of your customers to use your and only your mailservers for sending to other people's isps.
Advantages? You know exactly how many mails each customer is sending so it's easier to detect a spam run and the spammers get a massive reduction in the rate they can send at since the now can't connect to 50 other mailservers and just toss in a large recipiant field per message.
It basically renders your ISP useless to spammers and thus reducing creditcard fraud and the support costs of dealing with spam complaints.
Then you add a second port or ask your isp to let traffic through to the SMTP port on your server.
It has nothing to do with contacting every other mail server and everything to do with j-random dialup ISP not allowing mailservers on 56K modems.
It's entirely logical and doesn't involve any changes to the protocol at all. And it would put a huge damper on spammers' abillity to scan for and exploit servers off in some backwater country.
I mean really.. what logical reason do AOL and friends have have for allowing customers on a $10/month disposeable account to connect *directly* to other people's mail servers?
That's because the changes were merged into the 2.5.x kernel series.
For the list of things IMB has had a hand in lately: There was the above mentioned 0(1) schedular, lockless PID allocation, faster threads, IRQ load ballancing improvements and the retooling of several drivers' SMP locking. That's just what I can remember without actually going through my kernel archives.
That's the whole point though.. this doesn't seem to provide total control it falls far short of that.
As for the millitary, they can easilly make do with terminals and put the real machines in a locked vault if they need to and get far better security than evan palladium prommises to deliver.
Linux also doesn't stop you from rebooting and loading the OS as single user mode or using a bootdisk to access the FS. If fact, other than an easilly bypassable LiLO password it doesn't try.(neither does free or openBSD.
Some problems are just not worth fixing and modded hardware is one of them. I fear the sort of screwups this sort any mechanism to protect the system from physical intrusion would lead to. Can we say support nightmare? Just imagine how much fun forgotten passwords would be with a mechanism like that.
Now OTH using TCPA to accellerate SSH migh tbe a good idea. But then they could have done that with just a mandated crypto processor and not messing with the BIOS at all.
I honesly don't know what they were trying to do.. it goes beond what is needed to ehnance security but far short of what Microsoft would need to implement palladium.
In Canada we take our monopolies and regulate the hell out of them. They get minimum service requirements or the customer gets to complain. They don't get to raise the basic services prices without going to the CRTC and justifying why.
What do we have? An excellent phone system at a reasonable price and the land based telcos seem to be doing rather well for themselves finantialy.
Regulation isn't the problem it's incompetant regulation. Had the US done what Canada did I'm sure it would have been much less of a burden on AT&T than what ended up happening. And you would probably have gotten better service out of it too.
Re:The teacher passes responsiblity to student
on
Professors vs. WiFi
·
· Score: 2
Or throw jokes in.
I always added things like "press any key to continue or any other key to exit"
The point I gave up though was when we were asked to do an assignment using a more painful way of doing something for the exact reason demonstrating how much easier the proper(tought next lesson) way is.
I did it the proper way got docked marks for not wasting my time and after the fourth run in with that I quit.
No amount of jokes could overcome the horror of having to do an assignment the wrong way simply because I was told to.
I was always fond of that bomb recipie they published. It had this jem in the refinement instructions: "set up the apperatus and *run*" if that's not enough to remove the person from the gene pool the instructions finished by saying the resulting explosives should be detonated by throwing a rock at it.
After that I stopped reading Phrack for some reason..
A frighteningly common american religious right interpretation of the mark of the beast is that it's a chip or some other embedded tracking device. "666 chip" Before that they thought it would be a tattoo.
These are the same sorts of people who go around looking for satanic symbolism on products and demand boycotts of corps like proctor and gamble because they think they once printed something on thier boxes that looked like it could be a satanic symbol. Apple was also once a victim because they ran an ad for a $666.66 computer kit. (Woz later said that he had *no* idea tht number had religious meaning to some people" Even Intel is afraid of these people as proved by their clocking up by 1 mhz to 6667 mhz a few years ago.
The finger of the beast comment was a hilliarious play on that sort of thinking.
PS no I don't care about karma.. much I'm capped anyways and it never takes me long to get it back.
That right there is one of the things that makes working with windows a pain.
On any Unix or Unix clone you can just run standard tools or write your own.
Unfortunatly with everything in a proprietary format you then end up having to build scripting languages into everything making all of your data files potential entry points for malicious code.
The move to XML has the potential to eliminate that sort of brain damage once and for all provided they actually open their file formats.
I hope they do it.. but given their past I'm not holding my breath given that the options are long term financial security for MS or Security for their customers and the risk of losing market share in the future.
I tried that once with Rogers-ATT after I quit my job (disagreement over an alliance with Ralsky) but forgot to remove myself from the paging system before I left. I felt pretty stupid when something broke a month later and they had no one who knew how to either fix it or change the number on the paging system.
Roger's told me there was no possible way to block just one sender and I would have to either change my number or disable text messaging entirely.
Ahh yes Novell.. lots of posibillites to screw that up:)
Apperently my teacher defined his backup admin account by not giving it permissions anywhere.
I screwed that completly by accident when I added him with read only access to my home dir and then removed the global classrom account("room12"). I don't think he figgured out what I did until I told him what I did without actually admitting that did something with a side affect of disruting classes for the entire afternoon.
I spend the entire year poking holes in his security. I'm sure he was glad when I left but the upside was that his system was actually secure.
And he was one of the better ones.
2 years later I found an apple printer while portscanning the school's ip block. It belonged to the mac lab teacher who also ran the school's dialup service and telnetted to it.. first thing it did was demand I set an admin password...
I think school's problems are usually that they stick whatever teacher has free time and a passable knowlege as the admin.
Ooops.. forgot to mention that was the NORAD early warning system the tubes were fitted in making it the US and Canada's joint project that still has that wonderfull leap of logic in place.
Actually that wouldn't supprise me.. for the longest time the radar used to detect incomming nukes from the USSR was fitted with replacement vacume tubes from the USSR.
Slashdot Mirror
"The judge found that Kraven exhibited "highly exaggerated muscle tone in arms and legs.""
.. if exaggerated musles make craven nonhuman
This begs the question
Not correct.. if isps block outgoing access to port 25 then getting around that would require the cooperation of the (usually misconfigured) spam realay. They can send from any port they want but if your blocking outgoing traffic to 25 then they still get blocked.
If the only way around that is using the isp's mail server the spam suddenly gets easier to trace and the server admins will notice if someone suddenly saturates their servers with a ton of bulk email. Even if they don't it will slow the traffic because spammers usually take as many open relays as they can find and cram them so full they end up not being able to get legitemate email(including complaints) until 4 days later.
So you go with webmail or have them use their own ISP's mail server.
It's not that hard.. I've also had to walk non technical customers though that problem and I still wish more isps would block 25.
You block port 25 forcing all of your customers to use your and only your mailservers for sending to other people's isps.
Advantages? You know exactly how many mails each customer is sending so it's easier to detect a spam run and the spammers get a massive reduction in the rate they can send at since the now can't connect to 50 other mailservers and just toss in a large recipiant field per message.
It basically renders your ISP useless to spammers and thus reducing creditcard fraud and the support costs of dealing with spam complaints.
Then you add a second port or ask your isp to let traffic through to the SMTP port on your server.
It has nothing to do with contacting every other mail server and everything to do with j-random dialup ISP not allowing mailservers on 56K modems.
It's entirely logical and doesn't involve any changes to the protocol at all. And it would put a huge damper on spammers' abillity to scan for and exploit servers off in some backwater country.
I mean really.. what logical reason do AOL and friends have have for allowing customers on a $10/month disposeable account to connect *directly* to other people's mail servers?
That's because the changes were merged into the 2.5.x kernel series.
For the list of things IMB has had a hand in lately: There was the above mentioned 0(1) schedular, lockless PID allocation, faster threads, IRQ load ballancing improvements and the retooling of several drivers' SMP locking. That's just what I can remember without actually going through my kernel archives.
They often compare performance to older kernels or even other department's patches.
That's the whole point though.. this doesn't seem to provide total control it falls far short of that.
As for the millitary, they can easilly make do with terminals and put the real machines in a locked vault if they need to and get far better security than evan palladium prommises to deliver.
Linux also doesn't stop you from rebooting and loading the OS as single user mode or using a bootdisk to access the FS. If fact, other than an easilly bypassable LiLO password it doesn't try.(neither does free or openBSD.
Some problems are just not worth fixing and modded hardware is one of them. I fear the sort of screwups this sort any mechanism to protect the system from physical intrusion would lead to. Can we say support nightmare? Just imagine how much fun forgotten passwords would be with a mechanism like that.
Now OTH using TCPA to accellerate SSH migh tbe a good idea. But then they could have done that with just a mandated crypto processor and not messing with the BIOS at all.
I honesly don't know what they were trying to do.. it goes beond what is needed to ehnance security but far short of what Microsoft would need to implement palladium.
He found that problem and blamed it on some sort of sleep mode. Fixed with a keepalive.
The only downside being that since hes not used to western syle junk food he got sick eating the pringles.
I think his pipe idea was better since that will probably last longer..
In Canada we take our monopolies and regulate the hell out of them. They get minimum service requirements or the customer gets to complain. They don't get to raise the basic services prices without going to the CRTC and justifying why.
What do we have? An excellent phone system at a reasonable price and the land based telcos seem to be doing rather well for themselves finantialy.
Regulation isn't the problem it's incompetant regulation. Had the US done what Canada did I'm sure it would have been much less of a burden on AT&T than what ended up happening. And you would probably have gotten better service out of it too.
Or throw jokes in.
I always added things like "press any key to continue or any other key to exit"
The point I gave up though was when we were asked to do an assignment using a more painful way of doing something for the exact reason demonstrating how much easier the proper(tought next lesson) way is.
I did it the proper way got docked marks for not wasting my time and after the fourth run in with that I quit.
No amount of jokes could overcome the horror of having to do an assignment the wrong way simply because I was told to.
I once had a pharmasist give me siniquan(anti phsychotic) instead of singular(asthma drug).
Didn't even get an appology for a week of hell and almost losing my job because I couldn't be motivated to do anything.
The way I see it a robot would be one less source of screwups provided the doctors move to an electronic perscription system.
I was always fond of that bomb recipie they published. It had this jem in the refinement instructions: "set up the apperatus and *run*" if that's not enough to remove the person from the gene pool the instructions finished by saying the resulting explosives should be detonated by throwing a rock at it.
After that I stopped reading Phrack for some reason..
oops that's 667 mhz.
A frighteningly common american religious right interpretation of the mark of the beast is that it's a chip or some other embedded tracking device. "666 chip" Before that they thought it would be a tattoo.
These are the same sorts of people who go around looking for satanic symbolism on products and demand boycotts of corps like proctor and gamble because they think they once printed something on thier boxes that looked like it could be a satanic symbol. Apple was also once a victim because they ran an ad for a $666.66 computer kit. (Woz later said that he had *no* idea tht number had religious meaning to some people" Even Intel is afraid of these people as proved by their clocking up by 1 mhz to 6667 mhz a few years ago.
The finger of the beast comment was a hilliarious play on that sort of thinking.
PS no I don't care about karma.. much I'm capped anyways and it never takes me long to get it back.
As funny as that is.. referring to the mark of the beast as a chip is simply a technophobic misinterpretation of the Bible.
Hint: hand and forhead reference is a reference to the original giving of the law of Moses.
Not quite... the whole point of the Gelatin finger trick was to coat your finger with it.
So it's warm and it can even get by the the versions that check for a pulse that worldcom was in the process of buing right before they went under..
It's sad really. I had high hopes for that technology.
That right there is one of the things that makes working with windows a pain.
On any Unix or Unix clone you can just run standard tools or write your own.
Unfortunatly with everything in a proprietary format you then end up having to build scripting languages into everything making all of your data files potential entry points for malicious code.
The move to XML has the potential to eliminate that sort of brain damage once and for all provided they actually open their file formats.
I hope they do it.. but given their past I'm not holding my breath given that the options are long term financial security for MS or Security for their customers and the risk of losing market share in the future.
I know that service.. Ironically enough Alan Ralsky uses it. One would think somone sending as much spam as he does would enjoy sales calls.
I tried that once with Rogers-ATT after I quit my job (disagreement over an alliance with Ralsky) but forgot to remove myself from the paging system before I left. I felt pretty stupid when something broke a month later and they had no one who knew how to either fix it or change the number on the paging system.
Roger's told me there was no possible way to block just one sender and I would have to either change my number or disable text messaging entirely.
Ahh yes Novell.. lots of posibillites to screw that up :)
.. first thing it did was demand I set an admin password...
Apperently my teacher defined his backup admin account by not giving it permissions anywhere.
I screwed that completly by accident when I added him with read only access to my home dir and then removed the global classrom account("room12"). I don't think he figgured out what I did until I told him what I did without actually admitting that did something with a side affect of disruting classes for the entire afternoon.
I spend the entire year poking holes in his security. I'm sure he was glad when I left but the upside was that his system was actually secure.
And he was one of the better ones.
2 years later I found an apple printer while portscanning the school's ip block. It belonged to the mac lab teacher who also ran the school's dialup service and telnetted to it
I think school's problems are usually that they stick whatever teacher has free time and a passable knowlege as the admin.
Ooops .. forgot to mention that was the NORAD early warning system the tubes were fitted in making it the US and Canada's joint project that still has that wonderfull leap of logic in place.
Actually that wouldn't supprise me.. for the longest time the radar used to detect incomming nukes from the USSR was fitted with replacement vacume tubes from the USSR.
International politics are rarely ever logical.