What if goatse.cx has been used for passing stego messages all along? I mean why else would some guy put up a random sick picture on a domain, and people would constantly post links to it.
I bet there is a secret code in anonymous Slashdot posts that set off notification to pick up the newest version of gap.jpg off of goatse.cx.
For example:
Dirty Gnu Hippie: The plan is ready, go get new instructions.
BSD is dying: Abort mission, pick up new instructions from hick.org.
Alan Thicke: Mission sucessful, drinks in safe house tonight
After all, who is going to run checksums on something silly like the goatse guy?:)
the problem is there's an evil element out there that will make use of this for their planning.
That's true of all technology. The best we can do is have the technology in everyone's hands, that way at least it can be used for good and bad, since the "bad guys" could discover it on their own anyway, and are highly motivated to do so.
I don't think you can assume that just because a fence is there, there was a building there. I'm sure there are fences all around the rocket test range to prevent people from wandering onto it. Looks like they need a wider radius though, if it crashed that close to the edge.
But package handling is still not perfect due to failed dependencies.
up2date XFree86 up2date gnome-core
For apps that are self-contained in the Red Hat installation repository, dependancies are no problem at all.
For apps that are outside the installation, but have dependancies inside the installation tree, Red Hat 8.0 will have a new feature in rpm which will tell you the name of the RPM file to fill the dependancy, not just the "whatprovides" name. This should be a help when the filename isn't always indicative of the "provides" field in the spec.
If you corrupt your box with this Ximian Gnome, you will not be able to upgrade Red Hat without uninstalling Ximian beforehand, or manually replacing all Gnome RPMs after the upgrade.
This is something they don't tell you in all those "friendly installers".
Other things may break, such as the Red Hat Network, when a Gnome related updated comes down the line. Of course if you plan to only use Red Carpet after installing Ximian, then that's not a problem.
He was an experienced computer professional who induced a somewhat confused teen to commit an illegal act.
You don't understand entrapment.
http://www.lectlaw.com/def/e024.htm
ENTRAPMENT - A person is 'entrapped' when he is induced or persuaded by law enforcement officers or their agents to commit a crime that he had no previous intent to commit; and the law as a matter of policy forbids conviction in such a case.
The part in bold is important. The kid had a previous intent to commit the acts of breaking into a computer. He was not enticed into cracking because he saw the honeypot, in fact it's nearly impossible to argue that, he had to have been running a vulnerability scanner on random subnets that he did not own, looking for computers to break into before he would even find the honeypot, that clearly establishes intent to break into computers.
Maybe your a tight assed republican, hard core christen who believe in the death penalty, and hates gays.
Libertarian, and I have no position on the death penalty. Homosexuals are OK by me.
I view crackers more like shoplifters. I don't believe what they do is harmless, and the potential loss is much higher than in the case of shoplifting, but it is usually on the same scale.
I'm not believing FUD, I'm basing my opinion on the damage I have personally seen crackers cause. I do some freelance consulting in my spare time, and sometimes I do cleanups after someone is broken into. It's a serious matter, not to be taken lightly, when a business server is compromised.
If you are running a windows firewall, like Tiny firewall, it will start dropping connections and cut you off if you try a portscan from inside it. It's some built in hard limit on NAT connections, I can't figure out how to change it.
The only reason I know is because I use Starband and I'm forced to use a Windows firewall. I get the same thing if I try to log into Gnutella too, everything gets very slow, or disconnects completely.
If your system is compromised, and you don't know, what harm has been caused? Not all comprimised systems produce monetary damages or lost productivity.
All compromised systems cost people in the form of time spent cleaning it up. Once a system is compromised, unless you were running an integrity checking program, it's basically impossible to trust any binary on it without a clean reinstall, or a tedious comparison of checksums.
In a business environment, this means downtime, and lost money, in addition to whatever you have to pay whoever is cleaning it up.
Leaving up a system that is known to be compromised could expose you to legal liability from the actions of the cracker.
I can't believe you think cracking is harmless. Even if it is never discovered, that means that your privacy is compromised, your bandwidth and resources are stolen, and could possibly open you up to more malicious attacks if there is a badly secured backdoor installed.
Maybe you are just trying to rationalize your own illegal behavior? Cracking cost companies real money, not just fabricated figures.
A lot of the numbers are trumped up, and sometimes people overreact, like those kids that were put on extended suspension for hacking their school computer, but that doesn't mean that cracking is harmless, it is far from it.
you don't need to know how to replace the engine in your car or tweak the timings in order to drive it, now do you?
You don't have to know about compiling or editing config files to use an OS either. People want to install and configure new, sometimes complex, software. This is the same as installing your own automatic transmission or installing a sunroof. This is not something a normal car user would do, and we shouldn't expect that installing and configuring complex software is something a normal user can do either.
For simple software, any binary package distribution makes it simple to do, it's only when people want to do complex things where they run into problems, and I don't see that as a flaw.
You could also probably just chmod the parallel port device so that normal users can access it. I don't know if this will work in your case, but you can usually do something like this.
I don't think anyone is asking for better hardware support.
You were just bitching about this very thing in your other reply to me.
Don't run Linux on the desktop, I won't lose sleep over it personally. You will have to find your own motivation to do it, peer pressure usually isn't a strong enough reason for most people to put in the work necessary to run Linux on the desktop.
You should have wrote it right in the first place, or at least show an effort to make it usable by mear mortals or heck even tech support folks.
No offense, but they don't care about you particularly. The ones that are paid to code generally are writing code targetted for businesses, the ones that do it in their spare time work for free.
Appreciate that people have done thousands of hours of work for the benefit of all people all over the world. The least you can do is research your hardware purchases for 30 minutes to make sure they work with Linux.
Also, since the driver accesses the parallel port directly, you must be root to make a scan and that's bullshit.
You can set the SUID bit on the program that accesses the parallel port directly, and make sure it is owned by root.
chmod u+s file
It will run as root then, and could represent a local security hole, but that's the compromise you make for direct access to the hardware as a normal user in any case.
You should set up a home server. I started using Linux as a home server, without really using X on it much, but it was working with a guy that ran Linux on his desktop that really motivated me. A lot of the stuff that I thought couldn't be done, or thought it was difficult to do, was really not. I didn't really ask him for a whole lot of help, just seeing him able to do it was motivation enough.
I'm sure one day you will make the switch, it just requires the proper motivation to learn. You will learn things that will help you with more than Linux, I'm sure some of the skills will transfer over to the RS/6000, I've noticed that a lot of the stuff I learned in Linux helped me deal with the IRIX servers at work, for example.
The problem with Red Hat was that a default install used to throw a million half-configured, un-firewalled, and unneeded services.
The emphasis is because this is no longer true. A basic firewall is installed by default unless you explicitely say not to during the install, and the only questionable service that is left running is sunrpc. (probably because the errors caused by it not running when it needs to be aren't always very clear). Of course a home user probably doesn't need sunrpc.
Other than sunrpc, I think the only other running services are sshd, sendmail, configured to only accept connections from localhost, and maybe one more I am forgetting. The point is, Red Hat is pretty damn secure now, by default.
What if goatse.cx has been used for passing stego messages all along? I mean why else would some guy put up a random sick picture on a domain, and people would constantly post links to it.
:)
I bet there is a secret code in anonymous Slashdot posts that set off notification to pick up the newest version of gap.jpg off of goatse.cx.
For example:
Dirty Gnu Hippie: The plan is ready, go get new instructions.
BSD is dying: Abort mission, pick up new instructions from hick.org.
Alan Thicke: Mission sucessful, drinks in safe house tonight
After all, who is going to run checksums on something silly like the goatse guy?
the problem is there's an evil element out there that will make use of this for their planning.
That's true of all technology. The best we can do is have the technology in everyone's hands, that way at least it can be used for good and bad, since the "bad guys" could discover it on their own anyway, and are highly motivated to do so.
I don't think you can assume that just because a fence is there, there was a building there. I'm sure there are fences all around the rocket test range to prevent people from wandering onto it. Looks like they need a wider radius though, if it crashed that close to the edge.
But package handling is still not perfect due to failed dependencies.
up2date XFree86
up2date gnome-core
For apps that are self-contained in the Red Hat installation repository, dependancies are no problem at all.
For apps that are outside the installation, but have dependancies inside the installation tree, Red Hat 8.0 will have a new feature in rpm which will tell you the name of the RPM file to fill the dependancy, not just the "whatprovides" name. This should be a help when the filename isn't always indicative of the "provides" field in the spec.
If you corrupt your box with this Ximian Gnome, you will not be able to upgrade Red Hat without uninstalling Ximian beforehand, or manually replacing all Gnome RPMs after the upgrade.
This is something they don't tell you in all those "friendly installers".
Other things may break, such as the Red Hat Network, when a Gnome related updated comes down the line. Of course if you plan to only use Red Carpet after installing Ximian, then that's not a problem.
He was an experienced computer professional who induced a somewhat confused teen to commit an illegal act.
You don't understand entrapment.
http://www.lectlaw.com/def/e024.htm
ENTRAPMENT - A person is 'entrapped' when he is induced or persuaded by law enforcement officers or their agents to commit a crime that he had no previous intent to commit; and the law as a matter of policy forbids conviction in such a case.
The part in bold is important. The kid had a previous intent to commit the acts of breaking into a computer. He was not enticed into cracking because he saw the honeypot, in fact it's nearly impossible to argue that, he had to have been running a vulnerability scanner on random subnets that he did not own, looking for computers to break into before he would even find the honeypot, that clearly establishes intent to break into computers.
Yes, I see it, it your sig supposed to be an anagram or what? There is only one "u" in the original, not two.
Yeah those women that wear short skirts in bad parts of town are asking to be raped too.
Maybe your a tight assed republican, hard core christen who believe in the death penalty, and hates gays.
Libertarian, and I have no position on the death penalty. Homosexuals are OK by me.
I view crackers more like shoplifters. I don't believe what they do is harmless, and the potential loss is much higher than in the case of shoplifting, but it is usually on the same scale.
I'm not believing FUD, I'm basing my opinion on the damage I have personally seen crackers cause. I do some freelance consulting in my spare time, and sometimes I do cleanups after someone is broken into. It's a serious matter, not to be taken lightly, when a business server is compromised.
how can you even compare the two?
Havn't you seen the movie Antitrust? It's a very good documentary.
kazaa needs to come with the settings set to NO UPLOADS ALLOWED
A) It wouldn't be much of a P2P network with no one uploading.
B) P2P is incredibly inefficient and uses tons of upstream bandwidth just sitting idle, connected to a few servers.
If you are running a windows firewall, like Tiny firewall, it will start dropping connections and cut you off if you try a portscan from inside it. It's some built in hard limit on NAT connections, I can't figure out how to change it.
The only reason I know is because I use Starband and I'm forced to use a Windows firewall. I get the same thing if I try to log into Gnutella too, everything gets very slow, or disconnects completely.
It's a job. Just like clearcutting, oildrilling, and running a slaughterhouse.
Yeah, the Nazi party employed a lot of people too. They were just doing their job.
Go ahead, invoke Godwin's law, you know I'm right.
God, you people are so full of shit. I guess if I leave my house unlocked, it is OK to hang out inside and eat some of my food.
If your system is compromised, and you don't know, what harm has been caused? Not all comprimised systems produce monetary damages or lost productivity.
All compromised systems cost people in the form of time spent cleaning it up. Once a system is compromised, unless you were running an integrity checking program, it's basically impossible to trust any binary on it without a clean reinstall, or a tedious comparison of checksums.
In a business environment, this means downtime, and lost money, in addition to whatever you have to pay whoever is cleaning it up.
Leaving up a system that is known to be compromised could expose you to legal liability from the actions of the cracker.
I can't believe you think cracking is harmless. Even if it is never discovered, that means that your privacy is compromised, your bandwidth and resources are stolen, and could possibly open you up to more malicious attacks if there is a badly secured backdoor installed.
Maybe you are just trying to rationalize your own illegal behavior? Cracking cost companies real money, not just fabricated figures.
A lot of the numbers are trumped up, and sometimes people overreact, like those kids that were put on extended suspension for hacking their school computer, but that doesn't mean that cracking is harmless, it is far from it.
you don't need to know how to replace the engine in your car or tweak the timings in order to drive it, now do you?
You don't have to know about compiling or editing config files to use an OS either. People want to install and configure new, sometimes complex, software. This is the same as installing your own automatic transmission or installing a sunroof. This is not something a normal car user would do, and we shouldn't expect that installing and configuring complex software is something a normal user can do either.
For simple software, any binary package distribution makes it simple to do, it's only when people want to do complex things where they run into problems, and I don't see that as a flaw.
You could also probably just chmod the parallel port device so that normal users can access it. I don't know if this will work in your case, but you can usually do something like this.
I don't think anyone is asking for better hardware support.
You were just bitching about this very thing in your other reply to me.
Don't run Linux on the desktop, I won't lose sleep over it personally. You will have to find your own motivation to do it, peer pressure usually isn't a strong enough reason for most people to put in the work necessary to run Linux on the desktop.
You should have wrote it right in the first place, or at least show an effort to make it usable by mear mortals or heck even tech support folks.
No offense, but they don't care about you particularly. The ones that are paid to code generally are writing code targetted for businesses, the ones that do it in their spare time work for free.
Appreciate that people have done thousands of hours of work for the benefit of all people all over the world. The least you can do is research your hardware purchases for 30 minutes to make sure they work with Linux.
But it's not harmless, monetary damages and lost productivity are real harm, it's not just a morality issue, there are tangible damages.
Also, since the driver accesses the parallel port directly, you must be root to make a scan and that's bullshit.
You can set the SUID bit on the program that accesses the parallel port directly, and make sure it is owned by root.
chmod u+s file
It will run as root then, and could represent a local security hole, but that's the compromise you make for direct access to the hardware as a normal user in any case.
You should set up a home server. I started using Linux as a home server, without really using X on it much, but it was working with a guy that ran Linux on his desktop that really motivated me. A lot of the stuff that I thought couldn't be done, or thought it was difficult to do, was really not. I didn't really ask him for a whole lot of help, just seeing him able to do it was motivation enough.
I'm sure one day you will make the switch, it just requires the proper motivation to learn. You will learn things that will help you with more than Linux, I'm sure some of the skills will transfer over to the RS/6000, I've noticed that a lot of the stuff I learned in Linux helped me deal with the IRIX servers at work, for example.
The problem with Red Hat was that a default install used to throw a million half-configured, un-firewalled, and unneeded services.
The emphasis is because this is no longer true. A basic firewall is installed by default unless you explicitely say not to during the install, and the only questionable service that is left running is sunrpc. (probably because the errors caused by it not running when it needs to be aren't always very clear). Of course a home user probably doesn't need sunrpc.
Other than sunrpc, I think the only other running services are sshd, sendmail, configured to only accept connections from localhost, and maybe one more I am forgetting. The point is, Red Hat is pretty damn secure now, by default.
He just wanted to hack to put on a IRC bot script, which is pretty harmless, wrong, but harmeless.
Tell that to the guy I just send a $600 bill to for cleaning up his computer after he was hacked by a "harmless kid looking to run IRC bots".
I'm sure he would disagree about how harmless it was.
It burns points, but in case you didn't know, you could post in the same story and undo the moderations.
I'm assuimg you probably knew that from the looks of your UID, and you just didn't want to lose the other mod point.
The problem is that Real Player for UNIX sucks. They have put almost no effort into it. Don't blame shitty apps on the OS.
That's like blaming windows because some shareware you downloaded was shitty.
What the hell is your sig supposed to be? It's like almost an anagram, but not.