It depends on the company and its policy's of course but this is not that uncommon.
I would say that in most cases this is not for spying on the employees rather protecting them by letting IDS/IPS-systems be able to read the network traffic even when using SSL to find botnets, infected hosts and malware. But the solution sure makes it *possible* for the company to spy on the employees and my personal opinion is that a company using this technique should make sure the employees know that SSL is being intercepted.
Why is LastPass not an option? The password database is always synced to your laptop/cellphone so there is no problem accessing your passwords when you are offline. The security is the most robust I have found when it comes to password management, especially when you use 2-factor auth.
You can easily see what networks the phone has saved as it probes for them even if it is connected to a network already.
There are application which just listens to what networks phones and other devices probes for and then automatically broadcast a SSID that matches to make them connect. By this method you could get just any phone in the area to connect to you at the same time.
actually, Comcast is offering a very good 6RD service to its customers.
6RD is my favorite IPv6 tunneling technology as it is more or less as good as native. It gives you your own globaly routed/64 v6 prefixes from you ISPs v6-pool and if configured correctly it is as effective as native v6 would be.
I work at a major ISP in Sweden and we are currently looking in to deploying 6RD to be able to deliver IPv6 to all of our customers within the near future.
More about Comcasts 6RD here: http://www.comcast6.net/index.php/6rd-config
This might be interesting, due to some Swedish laws on religious freedom the Swedish police might have problems trying to seize the servers and computers of this followers as they are only practising their religion.
Not a problem at all, very few use their bandwith at the full rate.
All the participants had 100Mbit accessports, except a few at a Telia VIP table.
Still the max bandwith peaked at about 24Gbit/s when highest.
Isn't this exactly what route flap damping (RFC 2439) that is used on most BGProuters today is made to prevent?
Wouldn't the routers just class the link as "flapping" and ignore updates for it for a while?
Slashdot Mirror
It depends on the company and its policy's of course but this is not that uncommon. I would say that in most cases this is not for spying on the employees rather protecting them by letting IDS/IPS-systems be able to read the network traffic even when using SSL to find botnets, infected hosts and malware. But the solution sure makes it *possible* for the company to spy on the employees and my personal opinion is that a company using this technique should make sure the employees know that SSL is being intercepted.
Why is LastPass not an option? The password database is always synced to your laptop/cellphone so there is no problem accessing your passwords when you are offline. The security is the most robust I have found when it comes to password management, especially when you use 2-factor auth.
Alright, yeah I suppose mikrotik routers could be pretty common at WISPs, that is true.
I... what? Never ever worked with an ISP using MikroTik routers. Or are you talking about small like collage student ISPs or something?
I don't really see the need, any switch capable of Dot1q will solve the problem for you anyhow...
You can easily see what networks the phone has saved as it probes for them even if it is connected to a network already. There are application which just listens to what networks phones and other devices probes for and then automatically broadcast a SSID that matches to make them connect. By this method you could get just any phone in the area to connect to you at the same time.
actually, Comcast is offering a very good 6RD service to its customers. 6RD is my favorite IPv6 tunneling technology as it is more or less as good as native. It gives you your own globaly routed /64 v6 prefixes from you ISPs v6-pool and if configured correctly it is as effective as native v6 would be.
I work at a major ISP in Sweden and we are currently looking in to deploying 6RD to be able to deliver IPv6 to all of our customers within the near future.
More about Comcasts 6RD here: http://www.comcast6.net/index.php/6rd-config
This might be interesting, due to some Swedish laws on religious freedom the Swedish police might have problems trying to seize the servers and computers of this followers as they are only practising their religion.
Not a problem at all, very few use their bandwith at the full rate. All the participants had 100Mbit accessports, except a few at a Telia VIP table. Still the max bandwith peaked at about 24Gbit/s when highest.
They have switched but some are still using the old system of course. -"The metric system is in official use within the United Kingdom; however, use of Imperial unit is widespread in many cases." http://en.wikipedia.org/wiki/Imperial_system#Current_use_of_imperial_units
Isn't this exactly what route flap damping (RFC 2439) that is used on most BGProuters today is made to prevent? Wouldn't the routers just class the link as "flapping" and ignore updates for it for a while?