It's not that hard if you have a decent IDS that does file/directory hashing.
There are open source ones too that do this like OSsec that can run as server client model or stand alone.
The bussiness cost bennifit is not there with money lost in downtime when you can effectively irradiate threat.
That's why we do risk analysis in the field.
Of course they are:
Surface RT was released shortly before surface pro. RT using arm and pro using x86 architecture. Surface RT applications were touted to not run on surface pro or on your OC while everything surface pro = win 8 on your pc. With that and the RT price point why wouldn't you a) go to a competitor or B) wait for pro or even better c) use another win 8 tablet with an atom processor for cheaper than the pro ? Microsoft did a good job of splitting its potential buyer base
Your information unfortunately is completely inaccurate. While I agree with your sentiments that the drm comments were and are unsatisfactory, when you attempt to flame bait at least use facts. For instance Xbox1 is already sold out of initial units on amazon as oppose to your completely inaccurate grindings about no one wanting to purchase them.
Since each student will probably only need 1 or 2 vms virtual box from oracle would be just fine and free.
It also works well with a developer / system admin practice tool call vagrant... Which allows one to spin up, roll back, and destroy virtual machines at will via command shell as if one was SSHed into thier vm. (Will force your students to learn how to manage thier machines without a GUI) and if they break something developing or just brick themselves administering its as easy as typing vagrant destroy and then vagrant up and back in business.
As far as root access:
Yes they should be given the power on their vm to root and then discouraged to use it. They should be encouraged to set up appropriate user/groups and permissions on their vm as consistent with Linux/unix best business practices and appropriately manage their sudoers file. They can elevate themselves when necessary via the sudo command, and disable telnet completely and disable root login through SSH. All this will start good hygiene and practices for day 1.
Osprey doesn't have a glitch. Its crashes were due to a flight phenomena common in helicopter flight, but the pilots were fixed wing converted. Now the training issue has been addressed and the v-22 hasn't crashed in a while. It in fact is one of my favorite to be transported on in theater because compared to the UH-60/CH-46/7 it's much faster thereby decreasing my "attack surface" during flight.
Myself and about 4 other friends of mine in high-school did the same thing with HCL and aluminum with 2 liter bottles. We also used c02 dry ice an other fun things. Not to mention we distilled hydrogen with batteries and other methods to fill balloons and create big mushroom clouds, by which we lit by using alcohol poured on concrete in front of our house. Our parents sometimes watched us other times
Not. Our neighbor was a fire marshal and sometimes watched for fun.
We would video tape these experiments and our AP chem teacher would play them for our class. It was celebrated.
Potassium was my fav.
Now 2 of above friends are chemists. One of them teaching. Another a computer science grad that works for amazon and I'm a sys admin doing network defense.
Good thing our school supported us. When we did dumb stuff they called our parents. None of us have criminal records.
as some one with asthma,
the new inhalers suck sorry... there is a big differance.
and to the person that mentioned "primatine mist". The only time I ever use primatine is if for some reason I'm in a pinch and the only way to get releaf is to go to a wallgreens which sells primatine... primatine sucks even more...
While I'm a big fan of eliminating sources of CFC's... when it comes to a health issue like this there needs to be a viable replacement first.
Very little UAV surveying is done on U.S. soil as it's against FAA regulations to have Drones in most of our airspace due to aviodance regulations. That doesn't mean that border patrols don't use them however... or there aren't any Active ROZ areas for training purposes, but for what your stating ( like watching vehicles and traffic enforcement) it's just not currently being done becauses of the regulations.
That being said... I think it would save the tax payer a lot of money if some of these regulations were deconflicted so lets say... something like a scaneagle could linger over a stretch of highway like I-5 for half a day as opposed to other traffic enforcement which costs more and is less effective. We've learned many lessons from Iraq and Afghanistan on highway patrolling with UAV's and I think we should apply them to home.
If your chief concern as you posted is smart phone portability for phone connectivity... the current smart phones DO fit in your pocket. I'm pretty sure my iphone 4 fits in all styles of my pockets on all my pants. Smart phones aren't the bulky crackberries of last decade... you should check out your local phone store. If you currently have an ipod touch you should already know this... as an ipod touch is basically the same size as an iphone save for a little depth... and it should fit in your pocket.
Western Washington University and University of Washington are TWO different Universities! This post speaks as if they are 1 and can lead to some serious confusion and mismanagement of the information.
This was such a poorly written article I don't know where to begin. The sources are not properly quoted. The grammar and spelling is worse than my own ( which is amazing)... I don't think I can trust the journalistic integrity of the source article due to it's own neglegence.
Pro: It seems google is setting its self up to potentially take a huge portion of the bussiness computing market. If this model is successful companies would not need as robust of an IT department and it drives hardware budget expenditures WAY down for enterprise solutions. Microsoft could be in trouble unless there are some "drastic" changes with windows 8 ( they assure us there are... namely supposely it can run on ARM archetecture which means it may be even more lightweight than chrome as it could even potentially run on your cellular device).
Con: Information Assurance and security. The ability for a company to manage thier own information and security is huge. There hasn't been a great proof of concept to show that google can do so more safely, or ensure that they themselves would not fall prey to attacks, or thier own users mishandling information. Also depending on the permission model (MAC[Mandatory Access Controls]/DAC[Discretionary/ etc...) it could be problematic handling shared resources depending on the overhead needed. If RSA can be hacked and PII stolen, Google can easily be. And a company with PII on thier information structure could find themselves with a lawsuit.
To caviet... let me ask you if you think RSA ( the major cyber security company) runs all windows on thier servers? Yet they got pwned. They were socialy enginered... then the user installed a root kit on the system which allowed access to their servers... root kit = malware. Now thier NIDS ( network based intrusion detection) caught what was happening when it was in progress... but by the time they were able to respond the damage had been done and a lot of information access and ripped.
Many of you are forgetting there are many forms of AV out there. You are all talking about signature based which relies on after 0 day signatures of known virii. These ARE helpful... but yes its after it's on your system. There are other types of AV , heuristics/behavior/anomily/signature based systems. AV doesn't hurt you unless your allowing it to take up to many resources which a good sys admin or user shouldn't allow to happen.
If I'm running a Unix / Lunix / OS X / Windows server farm for a company I should definately do what I can to protect it. Network based intrusion detection systems, Host based ( NIDS HIDS) firewalls, DMZ's for incomming traffic ( demiliterized zones) Honeypots ( places set up to lure hackers so you can watch thier activity) you think all these concepts were developed for "windows only machines" ?
So your saying because it's less targeted, I shouldn't use it? That's like saying because I have a lower sperm cell count I don't have to use condems.
By your reasoning I shouldn't have to use NIDS HIDS either if I'm running off of a linux server... oh wait most things run on the net off of a unix based system( I'm lumping OSX and Linux together as they are a branch off of unix). But you won't find 1 company that has ANY IT security NOT running these things. Your internet servers... not running windows... still using security... and thier security people would be fired if they weren't as they should be.
Yes, less targeted because lower home user market share... but still targeted and thus still require protection for a smart user. Think of it like this. Soft targets are the targets that get hit. If you don't protect yourself... you stand a higher risk of being exploited. OSX, Linux, Unix, Windows all need 3rd party detection, signature, hueristics, anomoly/behavior based... it's all needed. I know YOUR specifically talking signature based but there are many forms of AV out there ( I just pointed them out). Sorry I'm a security guy by proffession and I think you as a user should be informed.
As a system admin and Information Assurance officer I myself run windows, linux ( virtualized) , and OS X. I use 3rd party malware detection on all 3 systems that are signature based. They are very much needed. It's silly for average users to think that just because they are running OSX which is a less targeted operating system that they aren't targeted. In fact... safari the OSX default browser ( which I like just because it's GUI is intutive to me) is probably the least secure of all the major web browsers ( if you look at the stats at each pwn to own competetion it gets busted the fastest). There are known OSX exploits and many of the same things apply. Man in the middle attacks, SQL injections, sneak ack attacks, all forms of malware... still apply. Just because you are using a specific operating system don't get lulled into a false sense of security.
I have a patent for a "container which typically holds liquids". Now I can sue anyone that has something remotely resembling a drinking glass... " wait u have an ice chest?... That ice chest is holding water?... Nope I'm suing...
1/2 of my forefathers were brought to this country as slaves, where they earned a faught for thier freedom.
The other 1/2 of my forefathers left your God foresaken country for a reason...
That reason was better video gaming.
The new update I think addresses this issue. One of the notes are:
Addresses an issue with MacBook Air (Mid 2010) computers that could cause a kernel panic.
The update released today. You should get it and see if it resolves your problems.
It seems that this was also a problem on the 2010 models that have been re-uped since they switched to the Raedeons from the nVids. The video drivers from the boot camp CD cause issues and lock ups..... i've read this from multiple sources:
Check this link out to replace your current video drivers
http://wilby.com/cameron_blog/?p=118
Agreed. Readinig about the error however I'm hoping it's not a heating issue reguarding chassis enginering. With the added speed and power of new model under the same chasis design... even the old one ran hot pushing the bubble without having major issues. If it's something that can be fixed with firmware or operating system update that would be great. I really want to buy one of these but I'm not going to until this issue gets resoleved. I might have to settle for one of the new sandy bridge HP's or an m17x which are less portible.
The router IS classified as a computer according to the Dutch rubric. It has a processor albeit not x86 it's a SOC (system on a chip). It does store quite a bit of data to include configurations, routing tables, and includes passwords. The data was also accessed and exploited (indirectly) by the intruder to gain access to the Internet, thereby classifying this as illegal to thier own standard. The judge was wrong on his classification, and the prosecution failed to provide the proper expert witness testimony to clarify what a router is and does.
As far as the misguided "you better learn how to secure your router or it's your own fault." routine... Wireless is always considered an unsecure medium for this of us that are in the security field. Even WPA-2 is vulnerable given penetration software (freely found on the Internet), rainbow tables, time and other methodology. WPA-1 and WEP are even worse and a script kiddy can look up how to break into thier neighbor's wifi on YouTube. Fact of the matter is... If u have a wireless access point (most of us do) it's not impossible to crack. But, if you do encrypt it (and in this case it was encrypted)... most people feel they have a right to privacy on that network and should be able to assume that it's "reasonably secure" as the law should afford us (the general public) these rights and protections. (from a western legal ideological point of view). In the U.S. This has been accomplished by the electronic data acts... And the constitution.
Posted from my iPhone:-)
Yes,...
The press release stated that they had no idea thier app was going to rocket to #1 on launch day. This actually seems like a viable explenation. They also have stated they're working to fix the issue and bring back the full content.
Slashdot Mirror
Absolutely. The UDOO board is better than both and costs less than the intel board... Comes daring ready, quad core, with nic and wireless...
It's not that hard if you have a decent IDS that does file/directory hashing. There are open source ones too that do this like OSsec that can run as server client model or stand alone. The bussiness cost bennifit is not there with money lost in downtime when you can effectively irradiate threat. That's why we do risk analysis in the field.
Of course they are: Surface RT was released shortly before surface pro. RT using arm and pro using x86 architecture. Surface RT applications were touted to not run on surface pro or on your OC while everything surface pro = win 8 on your pc. With that and the RT price point why wouldn't you a) go to a competitor or B) wait for pro or even better c) use another win 8 tablet with an atom processor for cheaper than the pro ? Microsoft did a good job of splitting its potential buyer base
Your information unfortunately is completely inaccurate. While I agree with your sentiments that the drm comments were and are unsatisfactory, when you attempt to flame bait at least use facts. For instance Xbox1 is already sold out of initial units on amazon as oppose to your completely inaccurate grindings about no one wanting to purchase them.
Since each student will probably only need 1 or 2 vms virtual box from oracle would be just fine and free. It also works well with a developer / system admin practice tool call vagrant... Which allows one to spin up, roll back, and destroy virtual machines at will via command shell as if one was SSHed into thier vm. (Will force your students to learn how to manage thier machines without a GUI) and if they break something developing or just brick themselves administering its as easy as typing vagrant destroy and then vagrant up and back in business. As far as root access: Yes they should be given the power on their vm to root and then discouraged to use it. They should be encouraged to set up appropriate user/groups and permissions on their vm as consistent with Linux/unix best business practices and appropriately manage their sudoers file. They can elevate themselves when necessary via the sudo command, and disable telnet completely and disable root login through SSH. All this will start good hygiene and practices for day 1.
Osprey doesn't have a glitch. Its crashes were due to a flight phenomena common in helicopter flight, but the pilots were fixed wing converted. Now the training issue has been addressed and the v-22 hasn't crashed in a while. It in fact is one of my favorite to be transported on in theater because compared to the UH-60/CH-46/7 it's much faster thereby decreasing my "attack surface" during flight.
History... Rinse cycle repeat.
Myself and about 4 other friends of mine in high-school did the same thing with HCL and aluminum with 2 liter bottles. We also used c02 dry ice an other fun things. Not to mention we distilled hydrogen with batteries and other methods to fill balloons and create big mushroom clouds, by which we lit by using alcohol poured on concrete in front of our house. Our parents sometimes watched us other times Not. Our neighbor was a fire marshal and sometimes watched for fun. We would video tape these experiments and our AP chem teacher would play them for our class. It was celebrated. Potassium was my fav. Now 2 of above friends are chemists. One of them teaching. Another a computer science grad that works for amazon and I'm a sys admin doing network defense. Good thing our school supported us. When we did dumb stuff they called our parents. None of us have criminal records.
as some one with asthma, the new inhalers suck sorry... there is a big differance. and to the person that mentioned "primatine mist". The only time I ever use primatine is if for some reason I'm in a pinch and the only way to get releaf is to go to a wallgreens which sells primatine... primatine sucks even more... While I'm a big fan of eliminating sources of CFC's... when it comes to a health issue like this there needs to be a viable replacement first.
Very little UAV surveying is done on U.S. soil as it's against FAA regulations to have Drones in most of our airspace due to aviodance regulations. That doesn't mean that border patrols don't use them however... or there aren't any Active ROZ areas for training purposes, but for what your stating ( like watching vehicles and traffic enforcement) it's just not currently being done becauses of the regulations. That being said... I think it would save the tax payer a lot of money if some of these regulations were deconflicted so lets say... something like a scaneagle could linger over a stretch of highway like I-5 for half a day as opposed to other traffic enforcement which costs more and is less effective. We've learned many lessons from Iraq and Afghanistan on highway patrolling with UAV's and I think we should apply them to home.
If your chief concern as you posted is smart phone portability for phone connectivity... the current smart phones DO fit in your pocket. I'm pretty sure my iphone 4 fits in all styles of my pockets on all my pants. Smart phones aren't the bulky crackberries of last decade... you should check out your local phone store. If you currently have an ipod touch you should already know this... as an ipod touch is basically the same size as an iphone save for a little depth... and it should fit in your pocket.
Western Washington University and University of Washington are TWO different Universities! This post speaks as if they are 1 and can lead to some serious confusion and mismanagement of the information.
This was such a poorly written article I don't know where to begin. The sources are not properly quoted. The grammar and spelling is worse than my own ( which is amazing)... I don't think I can trust the journalistic integrity of the source article due to it's own neglegence.
Pro: It seems google is setting its self up to potentially take a huge portion of the bussiness computing market. If this model is successful companies would not need as robust of an IT department and it drives hardware budget expenditures WAY down for enterprise solutions. Microsoft could be in trouble unless there are some "drastic" changes with windows 8 ( they assure us there are... namely supposely it can run on ARM archetecture which means it may be even more lightweight than chrome as it could even potentially run on your cellular device). /DAC[Discretionary/ etc...) it could be problematic handling shared resources depending on the overhead needed. If RSA can be hacked and PII stolen, Google can easily be. And a company with PII on thier information structure could find themselves with a lawsuit.
Con: Information Assurance and security. The ability for a company to manage thier own information and security is huge. There hasn't been a great proof of concept to show that google can do so more safely, or ensure that they themselves would not fall prey to attacks, or thier own users mishandling information. Also depending on the permission model (MAC[Mandatory Access Controls]
To caviet... let me ask you if you think RSA ( the major cyber security company) runs all windows on thier servers? Yet they got pwned. They were socialy enginered... then the user installed a root kit on the system which allowed access to their servers... root kit = malware. Now thier NIDS ( network based intrusion detection) caught what was happening when it was in progress... but by the time they were able to respond the damage had been done and a lot of information access and ripped. Many of you are forgetting there are many forms of AV out there. You are all talking about signature based which relies on after 0 day signatures of known virii. These ARE helpful... but yes its after it's on your system. There are other types of AV , heuristics/behavior/anomily/signature based systems. AV doesn't hurt you unless your allowing it to take up to many resources which a good sys admin or user shouldn't allow to happen. If I'm running a Unix / Lunix / OS X / Windows server farm for a company I should definately do what I can to protect it. Network based intrusion detection systems, Host based ( NIDS HIDS) firewalls, DMZ's for incomming traffic ( demiliterized zones) Honeypots ( places set up to lure hackers so you can watch thier activity) you think all these concepts were developed for "windows only machines" ?
So your saying because it's less targeted, I shouldn't use it? That's like saying because I have a lower sperm cell count I don't have to use condems. By your reasoning I shouldn't have to use NIDS HIDS either if I'm running off of a linux server... oh wait most things run on the net off of a unix based system( I'm lumping OSX and Linux together as they are a branch off of unix). But you won't find 1 company that has ANY IT security NOT running these things. Your internet servers... not running windows... still using security... and thier security people would be fired if they weren't as they should be. Yes, less targeted because lower home user market share... but still targeted and thus still require protection for a smart user. Think of it like this. Soft targets are the targets that get hit. If you don't protect yourself... you stand a higher risk of being exploited. OSX, Linux, Unix, Windows all need 3rd party detection, signature, hueristics, anomoly/behavior based... it's all needed. I know YOUR specifically talking signature based but there are many forms of AV out there ( I just pointed them out). Sorry I'm a security guy by proffession and I think you as a user should be informed.
no.
if you believe no, your a not very intelligent and I want that coolaid your drinking.
As a system admin and Information Assurance officer I myself run windows, linux ( virtualized) , and OS X. I use 3rd party malware detection on all 3 systems that are signature based. They are very much needed. It's silly for average users to think that just because they are running OSX which is a less targeted operating system that they aren't targeted. In fact... safari the OSX default browser ( which I like just because it's GUI is intutive to me) is probably the least secure of all the major web browsers ( if you look at the stats at each pwn to own competetion it gets busted the fastest). There are known OSX exploits and many of the same things apply. Man in the middle attacks, SQL injections, sneak ack attacks, all forms of malware... still apply. Just because you are using a specific operating system don't get lulled into a false sense of security.
I have a patent for a "container which typically holds liquids". Now I can sue anyone that has something remotely resembling a drinking glass... " wait u have an ice chest? ... That ice chest is holding water?... Nope I'm suing...
1/2 of my forefathers were brought to this country as slaves, where they earned a faught for thier freedom. The other 1/2 of my forefathers left your God foresaken country for a reason... That reason was better video gaming.
The new update I think addresses this issue. One of the notes are: Addresses an issue with MacBook Air (Mid 2010) computers that could cause a kernel panic. The update released today. You should get it and see if it resolves your problems.
It seems that this was also a problem on the 2010 models that have been re-uped since they switched to the Raedeons from the nVids. The video drivers from the boot camp CD cause issues and lock ups ... .. i've read this from multiple sources:
Check this link out to replace your current video drivers
http://wilby.com/cameron_blog/?p=118
Agreed. Readinig about the error however I'm hoping it's not a heating issue reguarding chassis enginering. With the added speed and power of new model under the same chasis design... even the old one ran hot pushing the bubble without having major issues. If it's something that can be fixed with firmware or operating system update that would be great. I really want to buy one of these but I'm not going to until this issue gets resoleved. I might have to settle for one of the new sandy bridge HP's or an m17x which are less portible.
The router IS classified as a computer according to the Dutch rubric. It has a processor albeit not x86 it's a SOC (system on a chip). It does store quite a bit of data to include configurations, routing tables, and includes passwords. The data was also accessed and exploited (indirectly) by the intruder to gain access to the Internet, thereby classifying this as illegal to thier own standard. The judge was wrong on his classification, and the prosecution failed to provide the proper expert witness testimony to clarify what a router is and does. As far as the misguided "you better learn how to secure your router or it's your own fault." routine... Wireless is always considered an unsecure medium for this of us that are in the security field. Even WPA-2 is vulnerable given penetration software (freely found on the Internet), rainbow tables, time and other methodology. WPA-1 and WEP are even worse and a script kiddy can look up how to break into thier neighbor's wifi on YouTube. Fact of the matter is... If u have a wireless access point (most of us do) it's not impossible to crack. But, if you do encrypt it (and in this case it was encrypted)... most people feel they have a right to privacy on that network and should be able to assume that it's "reasonably secure" as the law should afford us (the general public) these rights and protections. (from a western legal ideological point of view). In the U.S. This has been accomplished by the electronic data acts... And the constitution. Posted from my iPhone :-)
Yes,... The press release stated that they had no idea thier app was going to rocket to #1 on launch day. This actually seems like a viable explenation. They also have stated they're working to fix the issue and bring back the full content.