We saved a crapload of money by not renewing our support with Cyberguard. I always disliked their firewalls, and the one we had was expensive to maintain. All we basically used it for was NAT to the Internet- a previous CTO had lofty dreams that included some hypercomplex firewalling. Obviously those dreams never made it near reality. So we had this $20,000 NAT that we could have gone to Best Buy and picked something up for like $50. I talked the current CTO into letting the support slip on the Cyberguard, and the next time it broke (did so regularly) I'd install Smoothwall or just a vanilla install of RedHat and let IPTables sort everything out. I guess the firewall got wind of that, since it never broke after that. But it saved us a few grand in support costs.
Automatic response to anyone not conforming to Slashdot GroupThink (TM), now with Riboflavin!
Tell me again how filing a bug and being patient with Opensource is somehow different yet better than filing a bug and being patient with closed source?
To a non-coder, it really makes no difference where the source came from- open or closed, the source is useless. They're at the mercy of the same people.
Think bugs get fixed any faster with Opensource? I'm still waiting for various known bugs in Firefox to get fixed. Hell, one of them is in the FAQ. Very annoying bug. Sure they posted a halfassed workaround, but I'd much rather see it fixed.
Some call it trolling, some could call it asking the questions that need to be asked. Of course, the bulk of the herd here will brand me a heretic for questioning the divinity of Linus, casting a less-than-hypercritical eye on Microsoft and not participating in Slashdot GroupThink.
And before anyonce accuses me of being a Microsoft shill (again), this post is being made from a RH9 laptop.
Oh yeah. Antigen absolutely rocks. During the three years I ran it at a previous job, we never had a virus get through. Plus I love the attachment filtering it has. Really makes it easy for proactive virus filtering.
I really hope MS doesn't put their own particular stink on it. It would be really nice if they included it as an Exchange feature pack or something.
However, this isn't even a case of "we could" it's just one of those "someday, we might be able to". This idea is barely outside the realm of Sci-Fi.
Sounds like the perfect time to include "should we/what rights do we have to Mars" discussions. Maybe by answering that question first, we can avoid devoting more time and energy into a potentially moot project.
I guess this creates a new job: astroethicist. Egads. The astrolawyers will be next, filing lawsuits on behalf of Spirit, Opportunity, and Viking.
Actually, I'm reminded of Ian Malcolm from Jurassic Park: "You were so preoccupied with whether or not you could, you didn't stop to think if you should"
I'm not saying that humans are inherently evil, but we often don't think things all the way through, and my question of whether we should hasn't been answered yet.
All kidding aside, those other things are trivial in my mind in comparison to the thought of a child being abused in the same room that I'm staying in. The water here tastes worse than dinosaur piss anyway, adding some more may actually improve the taste.
Of course it isn't evidence, you idiot- the images have been altered. They're not indented to be used as evidence. That is what the original, UNEDITED photos are for.
If you're suggesting that if the pedophile should get caught, that the defense will try to use the existence of programs such as Photoshop as a defense, those eventualities have already been covered. If the defense suggests that the photos have been doctored, the defense will have to prove it. The ability to doctor photos doesn't automatically preclude their use.
I guess I can never stay at the Orleans now, because all I would be able to think about was if my room was one one where this took place. Ugh. Someone call an exorcist.
That's because you have a conscience. It's distrubing to see the pics, even with the victim removed because you can still sort of see the silhouettes and such, and you can see that things like this are happening at places that aren't some pervert's basement.
At home... Severe iptables setup to limit access to my Linux box. Even then, all shell or X access is via SSH. I use RSA Keys or Kerberos for authentication. All daemons run chrooted if possible, and I only use the Good Stuff: OpenSSH, Postfix, Apache, etc... all current builds.
My windows boxes are DMZ'd out, and I religiously keep up on all patches. No Internet Explorer, just Firefox. I do have IIS installed on a dev box, but it's locked down and has no Internet access. Pretty solid Group Policies to enforce security settings. My wireless setup uses MAC filtering, 802.11g with WPA for privacy and 802.1x RADIUS authentication using EAP-TLS. Back in the 802.11b days, I'd use WEP and an IPSec VPN to get to the network. Private stuff (email archives, billing info and pr0n) are kept on an EFS encrypted volume. I've looked into RubberHose, but I think that's going a bit too far, even for me. I used to use SmartCards for logons, but the wife kept forgetting her PIN and it was getting expensive when she kept burning out the chip after so many bad login attempts.
I suppose the next thing would be to replace my CRT monitor with an LCD to minimize TEMPEST, and get a couple of buckets of that Airshield paint to block my cellphone and wireless transmissions.
And almost all of it is not because I'm paranoid (which I am), but because I can.
Actually it is. It's a well used legal tactic to unmask anonymous critics, even if the plaintiff has no other winnable case against them. Just the threat of being able to pull back the veil of anonynimity is capable of producing a chill for some people, thereby silencing their dissent.
Does information you transmit off your property, over the phone lines, have "no reasonable expectation of privacy?"
See the Kyllo decision from the Supreme Court. Basically, aiming a thermal viewer at a residence is not a violation of the Fourth Amendement and does not require a warrant since you are radiating heat out into the public, and the viewer only passively collects these emissions.
The point is not that they surveilled him, but that they physically attatched a device to his vehichle which is where they invaded his privacy.
How is this invading his privacy? He was travelling down a public road. Unless he has either a Romulan cloaking device or the Covenant's active camo, it's going to be rather difficult to not be seen in a public place (which is what the judgement said- no expectation of privacy in a public place). Much like the courts allowing the cops to paw through your trash without a warrant once you've set it out on the curb. When you're out in public, the rules of the game have changed from when you're inside your home.
Now had they bugged the car to record whatever was said inside the passenger cabin, THEN it could be an invasion of privacy.
So you're saying that terrorists don't have infinite time, resources, skill, and knowledge?
That is correct.
Why try attempting something that takes infinte resources when it's a hell of a lot easier to commandeer a couple of airliners and crash them into tall things?
What makes you think this ID system is going to be anything like the traditional system the states are using now for drivers licenses? Ever hear of a smartcard?
Slashdot Mirror
We saved a crapload of money by not renewing our support with Cyberguard. I always disliked their firewalls, and the one we had was expensive to maintain. All we basically used it for was NAT to the Internet- a previous CTO had lofty dreams that included some hypercomplex firewalling. Obviously those dreams never made it near reality. So we had this $20,000 NAT that we could have gone to Best Buy and picked something up for like $50. I talked the current CTO into letting the support slip on the Cyberguard, and the next time it broke (did so regularly) I'd install Smoothwall or just a vanilla install of RedHat and let IPTables sort everything out. I guess the firewall got wind of that, since it never broke after that. But it saved us a few grand in support costs.
You are trolling.
Automatic response to anyone not conforming to Slashdot GroupThink (TM), now with Riboflavin!
Tell me again how filing a bug and being patient with Opensource is somehow different yet better than filing a bug and being patient with closed source?
To a non-coder, it really makes no difference where the source came from- open or closed, the source is useless. They're at the mercy of the same people.
Think bugs get fixed any faster with Opensource? I'm still waiting for various known bugs in Firefox to get fixed. Hell, one of them is in the FAQ. Very annoying bug. Sure they posted a halfassed workaround, but I'd much rather see it fixed.
Some call it trolling, some could call it asking the questions that need to be asked. Of course, the bulk of the herd here will brand me a heretic for questioning the divinity of Linus, casting a less-than-hypercritical eye on Microsoft and not participating in Slashdot GroupThink.
And before anyonce accuses me of being a Microsoft shill (again), this post is being made from a RH9 laptop.
Oh yeah. Antigen absolutely rocks. During the three years I ran it at a previous job, we never had a virus get through. Plus I love the attachment filtering it has. Really makes it easy for proactive virus filtering.
I really hope MS doesn't put their own particular stink on it. It would be really nice if they included it as an Exchange feature pack or something.
And that answer is exactly why Linux won't make it to the desktop.
No news here. Sybari already charges for Antigen. It's well worth the money, though.
I want to fix bugs, but not knowing various implementations of C, where does that leave me?
However, this isn't even a case of "we could" it's just one of those "someday, we might be able to". This idea is barely outside the realm of Sci-Fi.
Sounds like the perfect time to include "should we/what rights do we have to Mars" discussions. Maybe by answering that question first, we can avoid devoting more time and energy into a potentially moot project.
I guess this creates a new job: astroethicist. Egads. The astrolawyers will be next, filing lawsuits on behalf of Spirit, Opportunity, and Viking.
Actually, I'm reminded of Ian Malcolm from Jurassic Park: "You were so preoccupied with whether or not you could, you didn't stop to think if you should"
I'm not saying that humans are inherently evil, but we often don't think things all the way through, and my question of whether we should hasn't been answered yet.
the question: What right do we have to do this? Are we saying that we have right to all celestial bodies in the solar system?
You watch Monk a lot don't you?
All kidding aside, those other things are trivial in my mind in comparison to the thought of a child being abused in the same room that I'm staying in. The water here tastes worse than dinosaur piss anyway, adding some more may actually improve the taste.
Of course it isn't evidence, you idiot- the images have been altered. They're not indented to be used as evidence. That is what the original, UNEDITED photos are for.
If you're suggesting that if the pedophile should get caught, that the defense will try to use the existence of programs such as Photoshop as a defense, those eventualities have already been covered. If the defense suggests that the photos have been doctored, the defense will have to prove it. The ability to doctor photos doesn't automatically preclude their use.
I guess I can never stay at the Orleans now, because all I would be able to think about was if my room was one one where this took place. Ugh. Someone call an exorcist.
That's because you have a conscience. It's distrubing to see the pics, even with the victim removed because you can still sort of see the silhouettes and such, and you can see that things like this are happening at places that aren't some pervert's basement.
No shit. I see multiple vuln announcements for Ubuntu on BugTraq almost every day. Sounds like Warty Warthog has a few warts.
Uh, all modern Windows OS's have qchain built in. Only one reboot needed.
At home... Severe iptables setup to limit access to my Linux box. Even then, all shell or X access is via SSH. I use RSA Keys or Kerberos for authentication. All daemons run chrooted if possible, and I only use the Good Stuff: OpenSSH, Postfix, Apache, etc... all current builds.
My windows boxes are DMZ'd out, and I religiously keep up on all patches. No Internet Explorer, just Firefox. I do have IIS installed on a dev box, but it's locked down and has no Internet access. Pretty solid Group Policies to enforce security settings. My wireless setup uses MAC filtering, 802.11g with WPA for privacy and 802.1x RADIUS authentication using EAP-TLS. Back in the 802.11b days, I'd use WEP and an IPSec VPN to get to the network. Private stuff (email archives, billing info and pr0n) are kept on an EFS encrypted volume. I've looked into RubberHose, but I think that's going a bit too far, even for me. I used to use SmartCards for logons, but the wife kept forgetting her PIN and it was getting expensive when she kept burning out the chip after so many bad login attempts.
I suppose the next thing would be to replace my CRT monitor with an LCD to minimize TEMPEST, and get a couple of buckets of that Airshield paint to block my cellphone and wireless transmissions.
And almost all of it is not because I'm paranoid (which I am), but because I can.
Don't blame me, I didn't make up the rules. Talk to your government about it.
Actually it is. It's a well used legal tactic to unmask anonymous critics, even if the plaintiff has no other winnable case against them. Just the threat of being able to pull back the veil of anonynimity is capable of producing a chill for some people, thereby silencing their dissent.
This is how its supposed to work (aka "dog bites man"). How is it news?
Maybe because it hasn't worked in such a long time (privacy), that it's newsworthy when it does.
Does information you transmit off your property, over the phone lines, have "no reasonable expectation of privacy?"
See the Kyllo decision from the Supreme Court. Basically, aiming a thermal viewer at a residence is not a violation of the Fourth Amendement and does not require a warrant since you are radiating heat out into the public, and the viewer only passively collects these emissions.
The point is not that they surveilled him, but that they physically attatched a device to his vehichle which is where they invaded his privacy.
How is this invading his privacy? He was travelling down a public road. Unless he has either a Romulan cloaking device or the Covenant's active camo, it's going to be rather difficult to not be seen in a public place (which is what the judgement said- no expectation of privacy in a public place). Much like the courts allowing the cops to paw through your trash without a warrant once you've set it out on the curb. When you're out in public, the rules of the game have changed from when you're inside your home.
Now had they bugged the car to record whatever was said inside the passenger cabin, THEN it could be an invasion of privacy.
After that version, Intel dropped support for Alpha and MIPS, and look what happened to them.
Actually, it was Microsoft that dropped Alpha, MIPS and PPC support after NT4.
So you're saying that terrorists don't have infinite time, resources, skill, and knowledge?
That is correct.
Why try attempting something that takes infinte resources when it's a hell of a lot easier to commandeer a couple of airliners and crash them into tall things?
What makes you think this ID system is going to be anything like the traditional system the states are using now for drivers licenses? Ever hear of a smartcard?