The characters in Net Force used hand gestures to control computers. Apparently they were originally designed for use with games and VR, and caught on for everything else.
While on the subject of Clancy:
I really like Clancy's stuff, but occasionally there are technical errors made. Once such ball drop was to define security by obscurity as knowing full well what services were running on a box, but being able to do nothing about it. I think this was in one of the Net Force books.
Yes, I know that Clancy didn't actually write the Net Force books, but he's made blunders in the Ryan series:-/
...and the first original title was Licence to Kill (which borrowed Felix Leiter's maiming by a shark, which sets Bond off on a personal vendetta, from "Live and Let Die").
This was not a title some movie maker made up. It's the title of a 007 book by John Gardner, and indeed tells of Leiter and another shark episode. I've read several of the Gardner books, and like them.
RSA private keys are two primes, and the public key is the product of the two primes. So in other words, if you have a 128 bit RSA public key, breaking the key is reduced to searching for two ~64 bit primes, and primes are much more sparse than composites.
What's to stop someone from caluclating the product for all possible combinations of primes in the aforementioned range and dumping this to a database? Wouldn't this eliminate the hassle of having to otherwise deduce the 2 primes used to generate said product?
///
Bleh, it should be painfully obvious to everyone reading this post that I Am Not A Crytpologist:-/
I used to work as a courier, and made a couple of deliveries to a chicken plant (they needed parts for some machine occasionally). I have to tell you that that processing plant stank worse than anything I've ever had the misfortune to be around. Worse, in fact, than a hog farm after a rain. I don't know how the regular employees could stand it. I'm glad I only went there 2 or 3 times.
The Logical Link (from that OSI model in the first chapter of the MCSE book you never read) indetifiers consist of the ubiquitous MAC address and an SSID.
Nope. SSID is strictly a wireless thing, and has nothing to do with the definition of LLC. 802.3, for example, doesn't know anything about SSIDs.
a 56-bit key was really a ~26-bit key
Wrong again: it's a 64-bit key with 24 bits for the Initialization Vector, leaving 40 bits of actual encryption. I think you are confusing this with 56-bit SSL. Likewise, 128-bit WEP is 104 bits + 24 bits IV.
For one thing, there are bundles upon bundles of dark fiber (run but never utilized) stretched between the metropolitan centers that they've yet to find a use for.
Secondly, laying fiber is expensive. The cost of converting to VoIP from their regular gear has got to be enormous, and if they had to lay fiber there's now way they could afford it. The only way Sprint could justify the conversion is if they were able to use their existing lines.
***************
Speaking of Sprint, last year at my old company (hi, John!), Sprint quoted us $11,000 per month to link 5 offices in a 2-state area with single T1s carrying voice and data, with a black-box hub of some sort buried somewhere in their network. It was rather hard to keep a straight face during our meeting with them. My last project (I almost completed it before geting laid off, bleh) at my old company was to replace a $150/mo. 56k line running Citrix with a $50/mo. DSL line at one of our remote offices using FreeS/WAN IPSec.
"and if one person eats up the majority of the bandwidth, you have a small arms family fued going on in North Florida."
IIRC, iproute2 is able to selectively throttle connections based on username and other identifiying qualities (such as per IP address, etc.). I haven't looked at the package (no need as of yet), but I would imagine that this would be a good tool to use against kazaa servers, etc..
The best thing is, the luser eating all your bandwidth doesn't have to be told that you're cutting back on his speed --- you're the admin, you run your network the way you want, etc. --- and if you knock it down incrementally over the course of a few weeks, he probably won't realize what's happening;-)
I avoid the nightmare scenario of someone printing 500 copies of goat-man to my color printer.
I get your point, but since wireless places everybody on a big LAN (the same goes for cable modem networks), it is smart to disable file and print sharing on a windows PC. If this isn't practical (the user has several PCs in his apartment and needs to share files and printers, or the WLAN is at an office doing the same), the inner network needs to be behind a firewall.
Either way, ports 137-139 should be firewalled off, regardless. That goes for anyone, really, whether on a party-line network such as wireless, or dialup or DSL. The old maxim holds true... put up a firewall (http://zonelabs.com if nothing else) and only open holes for the services you want exposed. Micros~1 file and print sharing is definitely not something to share with the rest of the world.
If you were wiring a large office, sure. But the poster is asking about wiring up an apartment/condo for broadband. The most you're ever going to get out of a T1 is 1.5mbps. Running cat5 with a few 10-base switches is all that's needed.
Since each user is in his own apartment, he isn't going to want his neighbors across the hall browsing his hard drive. Security is going to be a problem, methinks, and needs to be addressed and signed off on by each subscribed user. That's what I would do if it were my project. Hence, bandwidth between the nodes isn't an issue, unless a group of tenants get together and start throwing LAN parties (quake? I don't game, but you get the idea).
Broadcasts and other garbage on the wire might be an issue, but I still maintain that the outbound pipe is the whole point to this excercise. The switches will cut down on the broadcasts, running firewalls on each host will cut down on some of the other junk (I'd make this a part of the installation fee). If the LAN gets a worm, that'll kill your bandwidth, but in that case the admin will have more problems to worry about than the slow network.
Hmm... I'm starting to like this idea:-) I wonder if I could sell apartment networking here in New Orleans?
Alcohol is in solution with water, and as such won't do much good against a good glob of lipid (oil/grease). Yeah, sure, it'll cut some stuff, like greasy fingerprints, etc., but some oil-based materials need oil-based solvents. Non-lipid-based solvents are repelled by these substances... like water off a duck's back, as the saying goes.
Also there are ionic charges to consider, covalent bonding, and other factors. It's been 20+ years since I took chemistry, so most of this is a vague memory.
Plastic is of course made from crude oil (not all plastics come from crude, but you get the idea) and therefore readily dissolves in strong lipid solvents.
Hey, I didn't flunk out of college for nothing, man...
AFAIK, they shut off these phones due to the security risks invoved... you know, terrorists calling each other in-flight to coordinate their attacks, etc.
I flew American in January (2003) and regular cellphones were banned, as well. In fact, one of the pilots came back to the passenger section on one of my flights and demanded that a passenger turn off his cellphone immediately. I quess the crew had some way of monitoring active cell connections, or something (or maybe the stewardess went and reported him, dunno).
Then again, I've only flown once since 9-11, and the restrictions on that flight (part of it was an international flight) may have just been local to the plane I was on. Anyone else have any information about this?
Quick! We need to pass laws outlawing solar temperature rises.
On the other hand, maybe the tree huggers will finally get off our backs now, since nothing we do here on earth (anyone fancy laws against thermodynamics?) matters a whole lot with regard to the mean temperature of the earth as a whole.
Um, the PIN (if it is indeed one) printed on the card is even more of a security lapse than some secretary's password on a post-it, stuck to her monitor.
I used to work at a donut place (Coffe Call in Baton Rouge, a Cafe Du Monde knockoff), and one Monday evening as I punched in I noticed a card with the name "Phat Ho" on it. I thought it was a joke, laughed a bit, and tossed the card in the trash.
It turned out that the name was legit, and belonged to a new employee who was Vietnamese. Apparently he had gotten hired the previous weekend (I worked weeknights), because he showed up that Friday night and couldn't find his card. I introduced myself to him, and almost couldn't refrain from laughing when he told me his name. I declined to inform him that I was the one that tossed his card, of course.
He was a nice guy, once I got to know him. Apparently his name is a common one where his parents were from (anyone remember the singer Don Ho?). He took a lot of abuse from several of guys I worked with, but was cool about it.
I've found that taking a gulp of coca-cola and letting it fizz in my mouth before swallowing usually does the trick. If no carbonated beverage is available, swishing water in my mouth really hard, then swallowing really fast also works.
You're kidding, right? The BSA doesn't produce any software. They only run this scam (IMHO, the whole thing is a scam, from beginning to end) because they can get cash from Microsoft and other companies that write software by threatening these companies' customers.
Personally, I refuse to play. I will not purchase any software from any company that employs the services of collection agencies such as the BSA. Furthermore, I will do everything in my power to dissuade my clients from purchasing software from these companies.
Me? I'm not. Everything I have is behind a *nix firewall. I'm just making an observation, that's all.
MySQL listens on every port by default, but unless you specifically tell it to accept connections from X user on Y interface (loopback or ethN, whatever), it will ignore everything you throw at it.
I certainly didn't count on getting labelled a troll.
He's not talking about the book he's reviewing, the bland book he refers to is Hacking Exposed, which only appears to be the pattern for Hacking Linux Exposed.
Someone wanna help me out here? The linksys gear on the shelves now states that it's 802.11b gear, but goes up to 22 Mbps. Their older stuff (I've got 3 of the older ones, from when Office Whatever closed out their stock a few months back) is straight 11 Mbps.
Is their current 22 Mbps stuff forward-looking to 802.11g? Anyone know?
Slashdot Mirror
While on the subject of Clancy:
I really like Clancy's stuff, but occasionally there are technical errors made. Once such ball drop was to define security by obscurity as knowing full well what services were running on a box, but being able to do nothing about it. I think this was in one of the Net Force books.
Yes, I know that Clancy didn't actually write the Net Force books, but he's made blunders in the Ryan series :-/
This was not a title some movie maker made up. It's the title of a 007 book by John Gardner, and indeed tells of Leiter and another shark episode. I've read several of the Gardner books, and like them.
What's to stop someone from caluclating the product for all possible combinations of primes in the aforementioned range and dumping this to a database? Wouldn't this eliminate the hassle of having to otherwise deduce the 2 primes used to generate said product?
Bleh, it should be painfully obvious to everyone reading this post that I Am Not A Crytpologist :-/
I used to work as a courier, and made a couple of deliveries to a chicken plant (they needed parts for some machine occasionally). I have to tell you that that processing plant stank worse than anything I've ever had the misfortune to be around. Worse, in fact, than a hog farm after a rain. I don't know how the regular employees could stand it. I'm glad I only went there 2 or 3 times.
Nope. SSID is strictly a wireless thing, and has nothing to do with the definition of LLC. 802.3, for example, doesn't know anything about SSIDs.
a 56-bit key was really a ~26-bit key
Wrong again: it's a 64-bit key with 24 bits for the Initialization Vector, leaving 40 bits of actual encryption. I think you are confusing this with 56-bit SSL. Likewise, 128-bit WEP is 104 bits + 24 bits IV.
For one thing, there are bundles upon bundles of dark fiber (run but never utilized) stretched between the metropolitan centers that they've yet to find a use for.
Secondly, laying fiber is expensive. The cost of converting to VoIP from their regular gear has got to be enormous, and if they had to lay fiber there's now way they could afford it. The only way Sprint could justify the conversion is if they were able to use their existing lines.
***************
Speaking of Sprint, last year at my old company (hi, John!), Sprint quoted us $11,000 per month to link 5 offices in a 2-state area with single T1s carrying voice and data, with a black-box hub of some sort buried somewhere in their network. It was rather hard to keep a straight face during our meeting with them. My last project (I almost completed it before geting laid off, bleh) at my old company was to replace a $150/mo. 56k line running Citrix with a $50/mo. DSL line at one of our remote offices using FreeS/WAN IPSec.
Geeks = 1, Sprint = 0 :-)
IIRC, iproute2 is able to selectively throttle connections based on username and other identifiying qualities (such as per IP address, etc.). I haven't looked at the package (no need as of yet), but I would imagine that this would be a good tool to use against kazaa servers, etc..
The best thing is, the luser eating all your bandwidth doesn't have to be told that you're cutting back on his speed --- you're the admin, you run your network the way you want, etc. --- and if you knock it down incrementally over the course of a few weeks, he probably won't realize what's happening ;-)
I get your point, but since wireless places everybody on a big LAN (the same goes for cable modem networks), it is smart to disable file and print sharing on a windows PC. If this isn't practical (the user has several PCs in his apartment and needs to share files and printers, or the WLAN is at an office doing the same), the inner network needs to be behind a firewall.
Either way, ports 137-139 should be firewalled off, regardless. That goes for anyone, really, whether on a party-line network such as wireless, or dialup or DSL. The old maxim holds true... put up a firewall (http://zonelabs.com if nothing else) and only open holes for the services you want exposed. Micros~1 file and print sharing is definitely not something to share with the rest of the world.
Since each user is in his own apartment, he isn't going to want his neighbors across the hall browsing his hard drive. Security is going to be a problem, methinks, and needs to be addressed and signed off on by each subscribed user. That's what I would do if it were my project. Hence, bandwidth between the nodes isn't an issue, unless a group of tenants get together and start throwing LAN parties (quake? I don't game, but you get the idea).
Broadcasts and other garbage on the wire might be an issue, but I still maintain that the outbound pipe is the whole point to this excercise. The switches will cut down on the broadcasts, running firewalls on each host will cut down on some of the other junk (I'd make this a part of the installation fee). If the LAN gets a worm, that'll kill your bandwidth, but in that case the admin will have more problems to worry about than the slow network.
Hmm... I'm starting to like this idea :-) I wonder if I could sell apartment networking here in New Orleans?
Also there are ionic charges to consider, covalent bonding, and other factors. It's been 20+ years since I took chemistry, so most of this is a vague memory.
Plastic is of course made from crude oil (not all plastics come from crude, but you get the idea) and therefore readily dissolves in strong lipid solvents.
Hey, I didn't flunk out of college for nothing, man...
It's about time someone did something to correct these errors.
(it's funny, go ahead and laugh, willya?)
I flew American in January (2003) and regular cellphones were banned, as well. In fact, one of the pilots came back to the passenger section on one of my flights and demanded that a passenger turn off his cellphone immediately. I quess the crew had some way of monitoring active cell connections, or something (or maybe the stewardess went and reported him, dunno).
Then again, I've only flown once since 9-11, and the restrictions on that flight (part of it was an international flight) may have just been local to the plane I was on. Anyone else have any information about this?
On the other hand, maybe the tree huggers will finally get off our backs now, since nothing we do here on earth (anyone fancy laws against thermodynamics?) matters a whole lot with regard to the mean temperature of the earth as a whole.
(/sarcasm)
Um, the PIN (if it is indeed one) printed on the card is even more of a security lapse than some secretary's password on a post-it, stuck to her monitor.
It turned out that the name was legit, and belonged to a new employee who was Vietnamese. Apparently he had gotten hired the previous weekend (I worked weeknights), because he showed up that Friday night and couldn't find his card. I introduced myself to him, and almost couldn't refrain from laughing when he told me his name. I declined to inform him that I was the one that tossed his card, of course.
He was a nice guy, once I got to know him. Apparently his name is a common one where his parents were from (anyone remember the singer Don Ho?). He took a lot of abuse from several of guys I worked with, but was cool about it.
Arizonan: "but it's a dry heat"
Minnesotan: "but it's a dry cold"
Louisianan: "but it's a dry rain"
I've found that taking a gulp of coca-cola and letting it fizz in my mouth before swallowing usually does the trick. If no carbonated beverage is available, swishing water in my mouth really hard, then swallowing really fast also works.
Personally, I refuse to play. I will not purchase any software from any company that employs the services of collection agencies such as the BSA. Furthermore, I will do everything in my power to dissuade my clients from purchasing software from these companies.
I run SuSE, mostly, and IIRC it's there by default, on every version I've ever installed:
If debian restricts the socket to localhost by default, that's a good thing.
Troll, indeed... Hrmph.
MySQL listens on every port by default, but unless you specifically tell it to accept connections from X user on Y interface (loopback or ethN, whatever), it will ignore everything you throw at it.
I certainly didn't count on getting labelled a troll.
Grr...
Gr.... All the more reason to run a host firewall on every machine.
Someone wanna help me out here? This is just for sparcs, right? Which BSDs do SMP on i386 hardware?
He's not talking about the book he's reviewing, the bland book he refers to is Hacking Exposed, which only appears to be the pattern for Hacking Linux Exposed.
As far as your last point goes, do you have any data that backs this up?
Is their current 22 Mbps stuff forward-looking to 802.11g? Anyone know?