RTFA... Tempe traded the ability of the wireless company to utilize the 4.7 GHZ band in exchange for them providing wifi service to the entire city. No money flows from Tempe to the wireless company, at any level, police, fire, or for any other municipal services. In addition, all Tempe and ASU related sites will be availiable free of charge.
The rest will be a subscription service.
I generally oppose government running services, but I think this is a good way of doing it. A private company is given a 4 year monopoly in exchange for ponying up to build the infrastructure to do it.
I have one, and no, it doesn't... It tracks on a lot of surfaces, but not glass or mirrors... and you must keep it close to the surface to track--it's a lot more sensitive than an optical in that way. After you have it for two days, you adjust and it's not a big deal.
On the plus side, it tracks very nicely, and is very precise. It's definately a very good mouse for any FPS gamer--I never have it jump around, and I can move pixel by pixel, even at high sensitivities.
The first MX1000 I had was defective, used to jitter around--I called logitech and they replaced the mouse. They spoke English well, didn't put me on long holds, and resolved my issue promptly. Definately have good things to say about their customer service.
To all you people out there whining about the price of gaming mice... these products aren't for you. It's like whining about the price of dragsters compared to an Escort.
Firefox is only supposed to download and install from things in the whitelist. Unfortunately, it doesn't check the site correctly, and therefore can be tricked into thinking another site is mozilla.org
So even though you "secured" your system, it's still vunerable because as long as you have anything in your whitelist (especially mozilla.org or the defaults), you're vunerable.
Once the whitelist is working again properly, this won't be an issue.
If this isn't a troll, this person needs a new brain. Releasing 0day exploits doesn't do anything for security. It's not like Mozilla has been sitting on this problem for 6 months. They've been working on a fix. Releasing a 0day just gives the devels hell.
My favorite quote: "What higher purpose is there above full disclosure with a proof of
concept? Disclosure spreads awareness, and awareness allows defense. This is so horribly taken out of context, it's not even funny. Disclosure allows defense, but not in circumstances like this. Is every end user supposed to go out, download the source, and patch their browser right now? Rediculous.
tuytumadre@att.net wrote:
> So apparently, the secret is out. I wish that this could have been used
> for good purposes but I guess that just isn't possible these days...
What 'good purposes' did you have in mind?
What higher purpose is there above full disclosure with a proof of
concept? Disclosure spreads awareness, and awareness allows defense.
The secret is no longer a secret, and it didn't remain one as long as
you had hoped it would. This reduces the chances that the secret will be
exploited against people who aren't aware that there is a secret.
Nothing at all would have been gained by delaying disclosure, other than
to give attackers a bigger window of opportunity to mount successful
attacks and design new exploits that will launch successfully against a
completely unprepared computing public.
Your belief that you could keep a secret, or that you have any right to
keep such a secret even if you could, is moronic and it's wrong-headed.
But every good script written requires a raw socket implementation. Sure, the real hackers can copy off each other, but script kiddies don't have the expertise to import a raw socket implementation into another virus script they have. That would be a huge merge.
Also, Steve Gibson only recommended it be removed from XP Home, not professional or server. Name one piece of software that XP Home users need that requires raw sockets.
I didn't say this was a solution--I only said it helps. Requiring a raw socket implementation bundled with each virus makes it significantly harder to distribute viruses. Not impossible--harder.
I worked at Arizona State University, and here's how they dealt with it:
Every student has to register their mac address with their ID. If any computer registered to that ID spams viruses, all of them get deregistered, and the ID is locked out. Then they have to attend a mandatory security meeting.
Now, they have a piece of software which must be installed on your computer, which does realtime checking of a firewall and virus scanner. If those aren't installed, you can't be on the network.
They lock people out based on mac address. If you change your mac address, sure, you can re-register, but you gotta find a friend who's willing to attend the mandatory meeting in two days when you get his login name banned too.
Another big problem is people plugging routers in backwards. They basically become DHCP servers to the network, and can prevent people from getting real addresses. We had one router take out 40 people.
All in all, I'd say the PLAN isn't bad (other than forcing you to install software), but it sure wasn't good. I won't go into how badly it was actually implemented, I'll just say: IF YOU WANT GOOD INTERNET, STAY AWAY FROM ASU--ESPECIALLY GAMING. It cuts out at least once a week, and they block gaming.
Here's how it should be done:
1) The switches on each floor need to block DHCP offers coming FROM the residents. That's a must.
2) Block RPC ports on all switches, as well as samba shares, and any outgoing email traffic NOT going to YOUR email servers. Allow foreign email on a person-by-person basis... if someone has an email server hosted for them, for instance.
3) Block all other windows services ports. Windows has a limited number of services to attack. Other than RPC, there's 3 or 4 ports that can be attacked. Block all traffic on these--I forget the numbers, but if you do a network scan when viruses hit, you'll learn them quickly. Usually, they're not used by residents... they're like remote administration, etc.
If you lock down those ports for all traffic, and block outgoing packets to standard IMAP ports, I'll bet you'll cut down your problems by 99%. I just hope you have managed switches on the floors.
Technically, you are right...
But Gibson's claim is that by not providing easy access to raw sockets, it becomes much harder to engineer viruses or other malware to produce successful attacks. He never claims it's impossible--in fact, he claims that the user can reimplement raw socket support--but reimplementing raw sockets is significantly more difficult than using an existing API.
And considering that a large majority of viruses and malware is due to 5cr1p7 k1dd135, and not real hackers, this helps.
Remember, this doesn't make Windows secure, it's just one step to make it less harmful... and that's Gibson's claim. It's one piece of the puzzle (that's mostly empty at this point).
Realize that the "normals" know their job...
on
Geeks in Management?
·
· Score: 3, Insightful
better than you. Ask them for input. People generally are interested in making themselves more productive, and almost always know better than management what is holding them back in their job, or where they can improve their efficiency. If you think you know best how they can do their job (and therefore, don't listen to their suggestions), you will most likely end up hurting the company.
I work for one... Workforce software (http://www.workforcesoftware.com). They make time and attendance software for large companies (1000+). They expect people to work hard and know how to program (99% of the people who apply can't write code), but they treat their employees well and value loyal people.
On a sidenote, you could try therapeutic massage. That and a split keyboard eliminated my tendonitis (I thought it was carpal tunnel).
What? I posted about Sollog on A PUBLIC FORUM that has obvious logical and rational holes in it, and people dare to post on Wikipedia that it might be wrong?
Lemme just go make my own web page that only I can control and bash the creator of Wikipedia.
Sure, unions force companies to hire more people and raise wages... in the short run. In the long run, the artificially raised wages causes outsourcing (domestic or international), and some companies to go bankrupt (which hurts both the owners of the company and the employees). Remember, macro-economics dictates that the way to improve the quality of life for society in general is to raise the overall production of goods. Forcing companies out of business or overseas runs directly contrary to this.
Now, don't get me wrong. Unions are definately needed in some companies, but they're not a solution to low wages, underemployment, and overtime. Some people still work overtime in unions, unions don't create jobs in the long run, and unions only raise wages for those that remain employed. Remember, the leader of most unions are just as selfish as owners of many companies... they want to get the best union deal for themselves... not for you. Finally, unions protect everyone, hard working people and people that hardly contribute anything.
Personally, I work hard, I'm a personable individual, and I have skills that I can market, mostly those I learned on my own time. I'm employed at a wonderful software development company who cares about its employees, and treats us fairly. I work 40-50 hrs/week, which I believe is reasonable. I've been employed in both good and bad work environments, and you just leave the bad ones. There's enough good environments to pick from that I don't believe we need to unionize the software industry, yet. Let the free market regulate itself.
I don't get why it would be legally admissable... What is a write-blocker and why would you need to use it? Doing a straight copy on a computer doesn't change the original files, so why is it legally considered tampering?
I installed SP2 on three systems, and it worked flawlessly on all three. On my main system before SP2, XP would not allow me to install my SATA driver. I installed the SATA driver when I installed the OS, but once the OS was loaded, it referred to my SATA device as an "unknown device". Attempts to load the correct driver only caused the system to not boot.
I've been living with no driver officially installed for the device, which basically means that all the caching and performance increases that one would normally have (DMA, write caching, etc) for their hard drive were not activated on mine. Now with SP2, it let me install the driver and it booted fine without any problems. As a result, my computer runs twice as fast on almost every application and about 20 times faster when using virtual disk drivers (www.jetico.com) for container file encryption.
Their security center which monitors antivirus, firewalls, and automatic updates, as well as their HUGE automatic update selection box on startup are all good things too. I worked at a helpdesk for 6 months and 90% of the problems were users who had automatic updates turned off or set to install on notification (which they never selected).
It is not right, however, to make 25 copies for friends.
Actually, it is. According to The Audio Home Recording Act of 1992 , it is perfectly legal for you to make UNLIMITED first generation copies of any music you purchase legally in the United States. In return, the recording industry gets a cut of every blank CD and CD writer sold in the United States. This is to account for the total amount of copying and piracy that goes on.
It is NOT right for you to make 25 copies for friends that you didn't obtain legally, but as long as you have purchased the CD, you can give it to as many friends as you want, and although they can't legally recopy the CD and give it to their friends, you have done nothing wrong.
Of course, the recording industry doesn't want you to know this. They'd rather collect their royalties off blank CD media and have you not copy as well. But you pay for it, so use it. It's your right.
But they should still bring up a single pop-up box/warning when it's installing/starting up. Many people who have 'pirated' copies don't know they were pirated at all. Often, a friend or relative builds them a computer, and just installs a pirated copy rather than buy one.
This one student at the college purchased the computer, and it had a pirated copy on it. Apparently, the person who was assembling computers was just installing pirated copies instead of buying a copy of windows XP for each computer he was making. Therefore, they bought a computer with what they thought was a legal copy and ended up getting ripped off.
I told them to contact the person and inform him that they would like a full registered copy in a sealed box that they could use with a non-activated key. Without attempting to install SP1, they would never have known.
Well, I'm glad they left the development libraries in. Here's why:
I tutor inner city kids, of all ages. Some just use knoppix for kids, which removes the development stuff for games and such, while other older kids are actually interested in learning how to use a computer.
For one of them, I'm actively using G++ to teach him about how to program in C++. Without knoppix, that would have been much more difficult, and I probably would have ended up downloading the free (as in beer) MS compiler.
Since it's included on knoppix, I can teach him both linux and C++ at the same time.
Actually, current viruses are real malware, especially the ones that try to shut down virus scanners.
They cause the computer to run really slow, and screw things up, including networking settings, killing IE, destroy the cryptography service, so that you can't get updates, and the ability to repair the TCP/IP layer.
When you get multiple viruses on a machine, they can cause it to not even startup--Especially the ones that try to shut down virus scanners (Gaobot).
I know they're not malware in the sense that they format your HD or anything, but when your server runs at 10% of it's normal speed, that's enough to take down almost any operation.
Actually, I'm doing just that. I'm setting up a computer lab for an inner city homeless outreach with little or no computer budget. I've managed to scrape together 3 different computers, and for consistancy, I've used Knoppix for Kids on all of them.
It comes pre-installed with educational software, word processing, web browsing, and if it ever fails, they just reboot the computer.
On the other hand, I could use an illegal copy of windows, or even if I could get a legal copy of windows for free, it would contain little or NO educational software. Then I'd have to go pay for educational software, which isn't cheap.
Linux has really been the best thing ever for these kids learning about computers. Many of these kids have never used a computer before at all.
Slashdot Mirror
RTFA... Tempe traded the ability of the wireless company to utilize the 4.7 GHZ band in exchange for them providing wifi service to the entire city. No money flows from Tempe to the wireless company, at any level, police, fire, or for any other municipal services. In addition, all Tempe and ASU related sites will be availiable free of charge.
The rest will be a subscription service.
I generally oppose government running services, but I think this is a good way of doing it. A private company is given a 4 year monopoly in exchange for ponying up to build the infrastructure to do it.
I usually see them on news sites/message boards...
And they're always pop-unders... They currently work on all browsers--not sure when it'll be fixed.
I have one, and no, it doesn't... It tracks on a lot of surfaces, but not glass or mirrors... and you must keep it close to the surface to track--it's a lot more sensitive than an optical in that way. After you have it for two days, you adjust and it's not a big deal.
On the plus side, it tracks very nicely, and is very precise. It's definately a very good mouse for any FPS gamer--I never have it jump around, and I can move pixel by pixel, even at high sensitivities.
The first MX1000 I had was defective, used to jitter around--I called logitech and they replaced the mouse. They spoke English well, didn't put me on long holds, and resolved my issue promptly. Definately have good things to say about their customer service.
To all you people out there whining about the price of gaming mice... these products aren't for you. It's like whining about the price of dragsters compared to an Escort.
Uhhh, wasn't that Samir that said that? Samir was the good programmer, Michael was just some lazy, never do anything guy.
...you must be new here.
See, the thing is, the whitelist is broken.
Firefox is only supposed to download and install from things in the whitelist. Unfortunately, it doesn't check the site correctly, and therefore can be tricked into thinking another site is mozilla.org
So even though you "secured" your system, it's still vunerable because as long as you have anything in your whitelist (especially mozilla.org or the defaults), you're vunerable.
Once the whitelist is working again properly, this won't be an issue.
From the same website:
If this isn't a troll, this person needs a new brain. Releasing 0day exploits doesn't do anything for security. It's not like Mozilla has been sitting on this problem for 6 months. They've been working on a fix. Releasing a 0day just gives the devels hell.
My favorite quote: "What higher purpose is there above full disclosure with a proof of concept? Disclosure spreads awareness, and awareness allows defense. This is so horribly taken out of context, it's not even funny. Disclosure allows defense, but not in circumstances like this. Is every end user supposed to go out, download the source, and patch their browser right now? Rediculous.
tuytumadre@att.net wrote:
> So apparently, the secret is out. I wish that this could have been used
> for good purposes but I guess that just isn't possible these days...
What 'good purposes' did you have in mind?
What higher purpose is there above full disclosure with a proof of concept? Disclosure spreads awareness, and awareness allows defense.
The secret is no longer a secret, and it didn't remain one as long as you had hoped it would. This reduces the chances that the secret will be exploited against people who aren't aware that there is a secret. Nothing at all would have been gained by delaying disclosure, other than to give attackers a bigger window of opportunity to mount successful attacks and design new exploits that will launch successfully against a completely unprepared computing public.
Your belief that you could keep a secret, or that you have any right to keep such a secret even if you could, is moronic and it's wrong-headed.
Sincerely,
Jason Coombs jasonc@science.org
Absolutely...
But every good script written requires a raw socket implementation. Sure, the real hackers can copy off each other, but script kiddies don't have the expertise to import a raw socket implementation into another virus script they have. That would be a huge merge.
Also, Steve Gibson only recommended it be removed from XP Home, not professional or server. Name one piece of software that XP Home users need that requires raw sockets.
I didn't say this was a solution--I only said it helps. Requiring a raw socket implementation bundled with each virus makes it significantly harder to distribute viruses. Not impossible--harder.
I worked at Arizona State University, and here's how they dealt with it:
Every student has to register their mac address with their ID. If any computer registered to that ID spams viruses, all of them get deregistered, and the ID is locked out. Then they have to attend a mandatory security meeting.
Now, they have a piece of software which must be installed on your computer, which does realtime checking of a firewall and virus scanner. If those aren't installed, you can't be on the network.
They lock people out based on mac address. If you change your mac address, sure, you can re-register, but you gotta find a friend who's willing to attend the mandatory meeting in two days when you get his login name banned too.
Another big problem is people plugging routers in backwards. They basically become DHCP servers to the network, and can prevent people from getting real addresses. We had one router take out 40 people.
All in all, I'd say the PLAN isn't bad (other than forcing you to install software), but it sure wasn't good. I won't go into how badly it was actually implemented, I'll just say: IF YOU WANT GOOD INTERNET, STAY AWAY FROM ASU--ESPECIALLY GAMING. It cuts out at least once a week, and they block gaming.
Here's how it should be done:
1) The switches on each floor need to block DHCP offers coming FROM the residents. That's a must.
2) Block RPC ports on all switches, as well as samba shares, and any outgoing email traffic NOT going to YOUR email servers. Allow foreign email on a person-by-person basis... if someone has an email server hosted for them, for instance.
3) Block all other windows services ports. Windows has a limited number of services to attack. Other than RPC, there's 3 or 4 ports that can be attacked. Block all traffic on these--I forget the numbers, but if you do a network scan when viruses hit, you'll learn them quickly. Usually, they're not used by residents... they're like remote administration, etc.
If you lock down those ports for all traffic, and block outgoing packets to standard IMAP ports, I'll bet you'll cut down your problems by 99%. I just hope you have managed switches on the floors.
Technically, you are right... But Gibson's claim is that by not providing easy access to raw sockets, it becomes much harder to engineer viruses or other malware to produce successful attacks. He never claims it's impossible--in fact, he claims that the user can reimplement raw socket support--but reimplementing raw sockets is significantly more difficult than using an existing API. And considering that a large majority of viruses and malware is due to 5cr1p7 k1dd135, and not real hackers, this helps. Remember, this doesn't make Windows secure, it's just one step to make it less harmful... and that's Gibson's claim. It's one piece of the puzzle (that's mostly empty at this point).
Yeah. And monkeys might fly out of my butt, too.
And that's.... today.
better than you. Ask them for input. People generally are interested in making themselves more productive, and almost always know better than management what is holding them back in their job, or where they can improve their efficiency. If you think you know best how they can do their job (and therefore, don't listen to their suggestions), you will most likely end up hurting the company.
Oh, and also, watch Office Space.
I work for one... Workforce software (http://www.workforcesoftware.com). They make time and attendance software for large companies (1000+). They expect people to work hard and know how to program (99% of the people who apply can't write code), but they treat their employees well and value loyal people.
On a sidenote, you could try therapeutic massage. That and a split keyboard eliminated my tendonitis (I thought it was carpal tunnel).
My Treo 650 allows me to directly save the pictures to a SD card... You can then move them with any SD reader.
Alternatively, you can retrieve them at a hotsync, or email them to yourself via the built-in email client.
What? I posted about Sollog on A PUBLIC FORUM that has obvious logical and rational holes in it, and people dare to post on Wikipedia that it might be wrong?
Lemme just go make my own web page that only I can control and bash the creator of Wikipedia.
(assumes calm, psychic voice) This is not the wikipedia page you are looking for.
Sure, unions force companies to hire more people and raise wages... in the short run. In the long run, the artificially raised wages causes outsourcing (domestic or international), and some companies to go bankrupt (which hurts both the owners of the company and the employees). Remember, macro-economics dictates that the way to improve the quality of life for society in general is to raise the overall production of goods. Forcing companies out of business or overseas runs directly contrary to this.
Now, don't get me wrong. Unions are definately needed in some companies, but they're not a solution to low wages, underemployment, and overtime. Some people still work overtime in unions, unions don't create jobs in the long run, and unions only raise wages for those that remain employed. Remember, the leader of most unions are just as selfish as owners of many companies... they want to get the best union deal for themselves... not for you. Finally, unions protect everyone, hard working people and people that hardly contribute anything.
Personally, I work hard, I'm a personable individual, and I have skills that I can market, mostly those I learned on my own time. I'm employed at a wonderful software development company who cares about its employees, and treats us fairly. I work 40-50 hrs/week, which I believe is reasonable. I've been employed in both good and bad work environments, and you just leave the bad ones. There's enough good environments to pick from that I don't believe we need to unionize the software industry, yet. Let the free market regulate itself.
You must be new here...
One... two.. skip a few... twenty.
I don't get why it would be legally admissable... What is a write-blocker and why would you need to use it? Doing a straight copy on a computer doesn't change the original files, so why is it legally considered tampering?
Here's a good impression:
I installed SP2 on three systems, and it worked flawlessly on all three. On my main system before SP2, XP would not allow me to install my SATA driver. I installed the SATA driver when I installed the OS, but once the OS was loaded, it referred to my SATA device as an "unknown device". Attempts to load the correct driver only caused the system to not boot.
I've been living with no driver officially installed for the device, which basically means that all the caching and performance increases that one would normally have (DMA, write caching, etc) for their hard drive were not activated on mine. Now with SP2, it let me install the driver and it booted fine without any problems. As a result, my computer runs twice as fast on almost every application and about 20 times faster when using virtual disk drivers (www.jetico.com) for container file encryption.
Their security center which monitors antivirus, firewalls, and automatic updates, as well as their HUGE automatic update selection box on startup are all good things too. I worked at a helpdesk for 6 months and 90% of the problems were users who had automatic updates turned off or set to install on notification (which they never selected).
Overall I've been very happy with it.
It is not right, however, to make 25 copies for friends.
Actually, it is. According to The Audio Home Recording Act of 1992 , it is perfectly legal for you to make UNLIMITED first generation copies of any music you purchase legally in the United States. In return, the recording industry gets a cut of every blank CD and CD writer sold in the United States. This is to account for the total amount of copying and piracy that goes on.
It is NOT right for you to make 25 copies for friends that you didn't obtain legally, but as long as you have purchased the CD, you can give it to as many friends as you want, and although they can't legally recopy the CD and give it to their friends, you have done nothing wrong.
Of course, the recording industry doesn't want you to know this. They'd rather collect their royalties off blank CD media and have you not copy as well. But you pay for it, so use it. It's your right.
But they should still bring up a single pop-up box/warning when it's installing/starting up. Many people who have 'pirated' copies don't know they were pirated at all. Often, a friend or relative builds them a computer, and just installs a pirated copy rather than buy one.
This one student at the college purchased the computer, and it had a pirated copy on it. Apparently, the person who was assembling computers was just installing pirated copies instead of buying a copy of windows XP for each computer he was making. Therefore, they bought a computer with what they thought was a legal copy and ended up getting ripped off.
I told them to contact the person and inform him that they would like a full registered copy in a sealed box that they could use with a non-activated key. Without attempting to install SP1, they would never have known.
Well, I'm glad they left the development libraries in. Here's why:
:)
I tutor inner city kids, of all ages. Some just use knoppix for kids, which removes the development stuff for games and such, while other older kids are actually interested in learning how to use a computer.
For one of them, I'm actively using G++ to teach him about how to program in C++. Without knoppix, that would have been much more difficult, and I probably would have ended up downloading the free (as in beer) MS compiler.
Since it's included on knoppix, I can teach him both linux and C++ at the same time.
That's why it's in there
Actually, current viruses are real malware, especially the ones that try to shut down virus scanners.
They cause the computer to run really slow, and screw things up, including networking settings, killing IE, destroy the cryptography service, so that you can't get updates, and the ability to repair the TCP/IP layer.
When you get multiple viruses on a machine, they can cause it to not even startup--Especially the ones that try to shut down virus scanners (Gaobot).
I know they're not malware in the sense that they format your HD or anything, but when your server runs at 10% of it's normal speed, that's enough to take down almost any operation.
Actually, I'm doing just that. I'm setting up a computer lab for an inner city homeless outreach with little or no computer budget. I've managed to scrape together 3 different computers, and for consistancy, I've used Knoppix for Kids on all of them.
It comes pre-installed with educational software, word processing, web browsing, and if it ever fails, they just reboot the computer.
On the other hand, I could use an illegal copy of windows, or even if I could get a legal copy of windows for free, it would contain little or NO educational software. Then I'd have to go pay for educational software, which isn't cheap.
Linux has really been the best thing ever for these kids learning about computers. Many of these kids have never used a computer before at all.