you make it sound like its no big deal. what if one of the records it/just/ doesn't show was your account balance, so the software defaults it to 0? databases store a lot more critical data then your little account balance too, think about it a bit.
Raw sockets allow the programmer to shape the packet to be sent out himself. You can do things like set the source ip, dest ip, and other interesting things. TCP and UDP are what is considered the alternative, and in 90% of cases there is little reason that you shouldn't be using one of these protocols.
I think the biggest reason people are screaming about it is raw sockets shouldn't be allowed because theres not much need, but they/are/ a part of the internet and Windows has an incomplete TCP/IP stack until it gets added. People used to complain that it doesnt, and when they add it they complain that it does have it. sheesh.
Anyway, If more routers would implent filtering I would imagine a lot of DDoS attacks would be prevented more or less the way speeding is - you can do it, but eventually your going to get caught. But until more administrators become informed that filtering is the solution, not much will happen.
As for the cases that it is useful? They can either find a way around it (like you can already use raw sockets in windows 95, but its just not easy), or they can redesign the protocol to be more friendly.
Indeed this is true. Here are some more files which have 'alifornia' in them. Note that this is NOT Windows 95B, but Windows 2000 Professional. Aparently they like this code.
nslookup.exe
vcmd.exe (mistake?)
finger.exe
FTP.exe
rcp.exe
rsh.exe
All located in C:\WINNT
Try convencing a game developer to implant a protocol as strong as PGP into a game, then you will find out who is the idiot.
Really, what games need that type of encryption, when one side will always been vulnerable (read memory, find key, 'internal game structure', as another poster said.)
Maybe you are scared sombody will sniff your movement on your subnet and be able to cheat that way? Hrmm... *idea light pops on*
should be drawn at multiplayer games. I personally could care less if you want to cheat on your own computer in your own time. In fact, if you wish to cheat with other cheaters that is your choice too. But once your cheats start screwing with me, then I get pissed off. The only true way to make a game 'un-hackable' is to make the client untrusted, as Diablo II does. Even D2 has been hacked, but it has by far had the fewest online cheats. Blizzard went ahead and left an open battle.net where the client would be trusted (and therefor are cheats), and there is also realms where EVERYthing is stored on the servers, and every time you click a button that click is sent to the servers and the servers tell you "ok, you swang". This puts a tremendous load on the servers (anybody who has seen Diablo II when it first came out saw the problems they had), and im sure it costs a tremendous amount of money. The only other approach to cheating that sort-of works is releasing new patches every couple months that re-work the protocol so cheats have to be re-writen, and hardly solves the problem.
Programs like PunkBuster are just as stupid (In case you dont know, that is a program to detect cheats for games). People will just hack that too to disable it. No matter what you try the cheaters will always find a way.
Consoles happen to be lucky, they will have the fewest number of cheaters because its simpley harder to cheat on. But once you start throwing consoles in the same arena as computers (xbox PC hardware) you are asking to get screwed over. The line between consoles and PC hardware seems to be getting finer and finer.
Yes, it would be nice. But who cares? Really, if they don't care now that there are ddos's then why would they care about somthing that isn't public yet. The reason these attacks still work is essentially because administrators are lazy and uneducated. If uplink providers would stop the spoofed packets from getting outside the network, then 90% of the DOS attacks would be easily traced back. But who cares, people accept the network as being down for 'technical difficulties'. As long as they dont say a 13 year old typed 30 characters on a keyboard and caused it, everything is fine.
This sounds like a great idea and all, but what incintive do I have for people to use MY bandwith, MY diskspace, etc for others? I know this sounds trollish, but one of the reasons napster was successful is because you could download music from anybody, but you coulnd't prevent people from downloading from you. Therefor you are willing to share your mp3s in return for being able to download some music. Unless you can come up with some reason for people to run the software, I don't see why people would want to run it. (Referring specificly to redcarpet)
No matter how good you think humanity really is, I sure don't see it- I'm a greedy bastard and I want my bandwith.
While your comment points out a good point, I would strongly not reccomend running xpdf& on the document. The problem is this will fork it into the background, assuming that the reader understands how to properly use a terminal and is running X Windows. Many times due to enviromental variables beyond the average users control/knowledge the application will go off into void space. This is a problem for the Slashdot Posting Joe, who by now has given up on reading and is thinking of a new goatse.cx link to post. It is my conclusion that you should therefor use xpdf, NOT forking it into the background, so you will clearly see any errors stated. Thank you.
Hello? You are overlooking a HUGE part of the WINE project - winelib. Porting a win32 app directly to linux would of course be the fastest and best way, but who is going to rewrite the thousands/millions of lines of code that directly communicates with the OS? A big portion of the WINE project is WINELIB, which eases the porting process. Wine will never fully run Windows applications because by the time it supports Windows 95, they will have created a new format (read: 64 bit). The only way is to take the best of both worlds, which is what winelib will help us out on.
Get winelib running well, and developers will look much closer at adding an operating system to their supported list much quicker. Hell, if it gets me a couple hundred sales and takes 3 days work to get working, you made a decent profit. Seems Linux fanatics will buy games ported for Linux if they are good or not. (I have a friend who picked up every Loki game just because it was cheap, and he rarely buys games.)
Years later, another fork will be created from NetLinux. The codebase will unify the strengths of unix with ease of use of the common PC. Of course, it will be released too early and will get a bad rep and later die off. *sigh*
ack i need to freken preview. i am not linux biased as in I am not here to bash linux, though I don't like it I would use it if I was given it. talk about not reading over what you write before posting...
When you configure the Bess proxy, it gives you options of catagories you wish to block. Websites such as Slashdot as considered *hacking* sites, and not informational sites. It is somewhat true that Slashdot involves hacking, but it is a different kind and I don't think people understand the difference from cracking and hacking.
On the other hand, I just installed cgi-proxy.cgi onto my webserver and encoded the URLs in ROT-13. Bye bye bess proxy, bye bye stat logging. You can take my trash urls, thank you. I read slashdot almost every day at school now.
IMHO, Linux still needs a lot of work before it should be installed or tried by average windows users. When people install it then suddenly realize what they have dived into, they say "Oh no!" and quickly run back to windows, leaving a bad impression on the user. And giving fuel for Microsoft. It doesn't stand much of a chance until everybody decides upon a central means of distributing applications before it will really become useful. Several weeks ago I installed Mandrake - it was very quick, easy, and painless. Quite easier then windows, too. However, once the system was booted up I sit here wondering, "Ok, whats next?". I *know* it installed a lot of software after looking around at RPM (which is the closest to a central packaging system) but the software was not made avable to the user, so he will probably never know he has it.
Linux has a lot of great installers, a lot of great applications (KDE 2 is very nice compared to Windows), and a lot of *free* support behind it. It however doesn't have a central menu system, a central packaging system, and simple standards that everybody can adopt. I know I'm not alone here, this has been said by a lot of other people on slashdot.
Mandrake looks like it has some kind of central menus shared through diff window managers, however they aren't very easy to edit. Even somthing as simple as this that all RPMs would add to when they were installed would be very nice to just let the person know what he has.
Disclaimer: I can't spell and I could care less about MS/Linux/BSD bashers.
Slashdot Mirror
you make it sound like its no big deal. what if one of the records it /just/ doesn't show was your account balance, so the software defaults it to 0? databases store a lot more critical data then your little account balance too, think about it a bit.
ack, bad comment. raw sockets should be in it, but some kind of permissions need to be added to it (root/users...)
Raw sockets allow the programmer to shape the packet to be sent out himself. You can do things like set the source ip, dest ip, and other interesting things. TCP and UDP are what is considered the alternative, and in 90% of cases there is little reason that you shouldn't be using one of these protocols.
/are/ a part of the internet and Windows has an incomplete TCP/IP stack until it gets added. People used to complain that it doesnt, and when they add it they complain that it does have it. sheesh.
I think the biggest reason people are screaming about it is raw sockets shouldn't be allowed because theres not much need, but they
Anyway, If more routers would implent filtering I would imagine a lot of DDoS attacks would be prevented more or less the way speeding is - you can do it, but eventually your going to get caught. But until more administrators become informed that filtering is the solution, not much will happen.
As for the cases that it is useful? They can either find a way around it (like you can already use raw sockets in windows 95, but its just not easy), or they can redesign the protocol to be more friendly.
Would you like a job as a professor? I like your theory.
Indeed this is true. Here are some more files which have 'alifornia' in them. Note that this is NOT Windows 95B, but Windows 2000 Professional. Aparently they like this code.
nslookup.exe
vcmd.exe (mistake?)
finger.exe
FTP.exe
rcp.exe
rsh.exe
All located in C:\WINNT
Try convencing a game developer to implant a protocol as strong as PGP into a game, then you will find out who is the idiot.
Really, what games need that type of encryption, when one side will always been vulnerable (read memory, find key, 'internal game structure', as another poster said.)
Maybe you are scared sombody will sniff your movement on your subnet and be able to cheat that way? Hrmm... *idea light pops on*
should be drawn at multiplayer games. I personally could care less if you want to cheat on your own computer in your own time. In fact, if you wish to cheat with other cheaters that is your choice too. But once your cheats start screwing with me, then I get pissed off. The only true way to make a game 'un-hackable' is to make the client untrusted, as Diablo II does. Even D2 has been hacked, but it has by far had the fewest online cheats. Blizzard went ahead and left an open battle.net where the client would be trusted (and therefor are cheats), and there is also realms where EVERYthing is stored on the servers, and every time you click a button that click is sent to the servers and the servers tell you "ok, you swang". This puts a tremendous load on the servers (anybody who has seen Diablo II when it first came out saw the problems they had), and im sure it costs a tremendous amount of money. The only other approach to cheating that sort-of works is releasing new patches every couple months that re-work the protocol so cheats have to be re-writen, and hardly solves the problem.
Programs like PunkBuster are just as stupid (In case you dont know, that is a program to detect cheats for games). People will just hack that too to disable it. No matter what you try the cheaters will always find a way.
Consoles happen to be lucky, they will have the fewest number of cheaters because its simpley harder to cheat on. But once you start throwing consoles in the same arena as computers (xbox PC hardware) you are asking to get screwed over. The line between consoles and PC hardware seems to be getting finer and finer.
Anyway, just my lame 2 cents.
Yes, it would be nice. But who cares? Really, if they don't care now that there are ddos's then why would they care about somthing that isn't public yet. The reason these attacks still work is essentially because administrators are lazy and uneducated. If uplink providers would stop the spoofed packets from getting outside the network, then 90% of the DOS attacks would be easily traced back. But who cares, people accept the network as being down for 'technical difficulties'. As long as they dont say a 13 year old typed 30 characters on a keyboard and caused it, everything is fine.
FAT32 file systems are widely used for copyright violation too; are they next?
Yes.
This sounds like a great idea and all, but what incintive do I have for people to use MY bandwith, MY diskspace, etc for others? I know this sounds trollish, but one of the reasons napster was successful is because you could download music from anybody, but you coulnd't prevent people from downloading from you. Therefor you are willing to share your mp3s in return for being able to download some music. Unless you can come up with some reason for people to run the software, I don't see why people would want to run it. (Referring specificly to redcarpet)
No matter how good you think humanity really is, I sure don't see it- I'm a greedy bastard and I want my bandwith.
While your comment points out a good point, I would strongly not reccomend running xpdf& on the document. The problem is this will fork it into the background, assuming that the reader understands how to properly use a terminal and is running X Windows. Many times due to enviromental variables beyond the average users control/knowledge the application will go off into void space. This is a problem for the Slashdot Posting Joe, who by now has given up on reading and is thinking of a new goatse.cx link to post. It is my conclusion that you should therefor use xpdf, NOT forking it into the background, so you will clearly see any errors stated. Thank you.
Hello? You are overlooking a HUGE part of the WINE project - winelib. Porting a win32 app directly to linux would of course be the fastest and best way, but who is going to rewrite the thousands/millions of lines of code that directly communicates with the OS? A big portion of the WINE project is WINELIB, which eases the porting process. Wine will never fully run Windows applications because by the time it supports Windows 95, they will have created a new format (read: 64 bit). The only way is to take the best of both worlds, which is what winelib will help us out on.
Get winelib running well, and developers will look much closer at adding an operating system to their supported list much quicker. Hell, if it gets me a couple hundred sales and takes 3 days work to get working, you made a decent profit. Seems Linux fanatics will buy games ported for Linux if they are good or not. (I have a friend who picked up every Loki game just because it was cheap, and he rarely buys games.)
1) Crack the server market
Seems to me the IIS server market has been cracked quite successfully... *sigh*
Years later, another fork will be created from NetLinux. The codebase will unify the strengths of unix with ease of use of the common PC. Of course, it will be released too early and will get a bad rep and later die off. *sigh*
Not if the MPAA/RIAA monkeys catch you...
ack i need to freken preview. i am not linux biased as in I am not here to bash linux, though I don't like it I would use it if I was given it. talk about not reading over what you write before posting...
When you configure the Bess proxy, it gives you options of catagories you wish to block. Websites such as Slashdot as considered *hacking* sites, and not informational sites. It is somewhat true that Slashdot involves hacking, but it is a different kind and I don't think people understand the difference from cracking and hacking.
On the other hand, I just installed cgi-proxy.cgi onto my webserver and encoded the URLs in ROT-13. Bye bye bess proxy, bye bye stat logging. You can take my trash urls, thank you. I read slashdot almost every day at school now.
It seems this post solves the question. Yet another media hype screwed over by reality.
Now you can imagine how those of us who use 1600x1200 feel.
I've seen webpages that take up approxamently 3 inches of the screen, squared, and the rest of the page is white.
IMHO, Linux still needs a lot of work before it should be installed or tried by average windows users. When people install it then suddenly realize what they have dived into, they say "Oh no!" and quickly run back to windows, leaving a bad impression on the user. And giving fuel for Microsoft. It doesn't stand much of a chance until everybody decides upon a central means of distributing applications before it will really become useful. Several weeks ago I installed Mandrake - it was very quick, easy, and painless. Quite easier then windows, too. However, once the system was booted up I sit here wondering, "Ok, whats next?". I *know* it installed a lot of software after looking around at RPM (which is the closest to a central packaging system) but the software was not made avable to the user, so he will probably never know he has it.
Linux has a lot of great installers, a lot of great applications (KDE 2 is very nice compared to Windows), and a lot of *free* support behind it. It however doesn't have a central menu system, a central packaging system, and simple standards that everybody can adopt. I know I'm not alone here, this has been said by a lot of other people on slashdot.
Mandrake looks like it has some kind of central menus shared through diff window managers, however they aren't very easy to edit. Even somthing as simple as this that all RPMs would add to when they were installed would be very nice to just let the person know what he has.
Disclaimer: I can't spell and I could care less about MS/Linux/BSD bashers.
...It's hard to tell your manager, that 'there no fix for the problem yet, but it's expected in the next pre-patch release.'
Doesn't Microsoft do this every 6 months with Service Packs?
No money? This thing is way over $10,000 and hes saying he doesn't have any money to borrow for a while to get some pictures up? What a scammer.
Why dont you ask him?
I wouldn't use Outlook, too many security features.
Excuse me?
And expect a response such as the following:
"Your fired."