What the hell... If I was a military person looking to get some moola for developing space weapons, I'd keep it quiet.
1. You don't really want your enemies knowing you are doing this until it's too late for them.
2. You don't want the public interest groups getting all riled up about it.
I'm all about freedom of information and such, but damn, I'm just saying what I'd do. Plus, I'm sure they have them already anyway, they are probably floating around there up in the sky, controlled by the Area 51 overlords. Probably mind control devices too, being controlled from bases on Titan. Supposedly their tech is 20 years ahead of anything we've seen.:)
He's been doing this exact same thing for almost the past year. The site just went up a couple months ago, but he's been sending his findings to AV companies and some mailing lists for much longer. There's a lot of undiscovered stuff floating around out there.
-pulls AC aside Look man, people are talking. I know you like your phone and everything, but... It's kind of a bit dated. It's been 29 years, it's time for you and your giant bag phone part ways. I know it will be tough, but we can get you a man purse to put your new one in. Then people will stop talking about you behind your back.
I'm looking forward to a game, we'll call it Crusades: Kill the Heathens.
You could run around and try to convert people, and when they won't give up all of their beliefs and conform to something they've never heard of, you can kill them.
I know it's not realistic though, that would never happen in real life.
This makes their OS pretty much useless for network engineers. Maybe they should cripple it, and then have a package you can download to enable full functionality.
I do network security, and several of my co-workers use windows, but all this is going to do is make it harder for them to do their jobs. Me, I'm happily plugging away on OSX, so I don't care what they do. All this will do is reinforce my idea that all of our engineers get powerbooks.
I feel like a lazy bum sitting in front of a computer all day, and it actually motivates me go to the gym. I know several other geeks that feel the same way, two of them are professional bodybuilders.
One thing sitting in front of the computer all day does is give you plenty of time to do research on the web on proper nutrition and workout techniques also. This means that if you do things properly, you can go to the gym less than most people, and get better results.
Nutrition is about 80% of it. If you want a nice quick recipe without doing much research, check out this. This will give you a good base to start from and modify to your particular situation. Yeah, it costs money for a downloadable PDF, but, if you're too lazy to do the research, it's worth it. I bought this awhile ago to see what it was about, and it's basically the same thing I came up with 4 years ago or so. I went from about 150 to 195 with 9% bodyfat using this over the first 2 years. To keep in proper Slashdot tradition of likening everything to computers, it's like hacking your body.:)
I think the hardest part is making it a routine thing. Force yourself to do it for 3 weeks, and it will become a habit. You'll feel lazy if you don't go. And the part about eating 6 smaller meals a day, it works wonders. You'll not only keep fat off, but if you found yourself tired in the afternoon, you won't be anymore.
If you really wanna do some research, there's a book called Supertraining by Mel Siff. I think it's out of print now, but last I checked Amazon still had some. It's expensive, but there's a wealth of information there. It gives you the basis behind everything, not canned workout schedules or nutrition, you'll have to come up with that yourself.
For those of you that run companies, or are in charge of offices, get some funds to have an office weight/workout room. Your employees will have more energy and be less likely to stare at the wall all afternoon. Plus, some will stay and work late after they have finished their workout if they workout after work hours. Company subsidized gym memberships are nice, but if the gym isn't around the corner or convenient to go to, people are less likely to go.
A word on supplements... ion-exchanged whey protein isolate is the best you will find. It absorbs the fastest, and less goes to waste. Isopure seems to be the only brand out there that is 100% isolate. Don't waste your money on cheap protein. Creatine also seems to work for some people, although some find that it irritates their stomach. As far as other supplements go, pretty much all of it is garbage. The only other supplement that worked was androstedione, and as of a couple of months ago, it's illegal. I took it for about 2 weeks, but it made me wanna rough people up, so I stopped. DPS is the cheapest place I've found for supplements. Buy yourself some Isopure and some Rage or Tri-o-plex bars for a snack. If you're trying to build muscle, you'll need extra protein so you're not wasting your time in the gym.
Make sure you stretch properly, or you'll injure yourself or cause scar tissue to form. I can't emphasize enough how important stretching is. Also, make sure you do exercises with proper form. I injured my neck because someone showed me how to do shoulder presses with dumbells incorrectly. Most personal trainers at gyms I've been to don't even have any sort of personal trainer certification. It is definitely worth your money to find one that actually has some sort of credentials, at least initially. You don't want to learn to do things incorrectly and hurt yourself like I did. If you injure discs in your neck or back, they will never heal completely, I'll probably need surgery someday.
Additionally, the security person that did the audit needs to sit down with you and go over every item determining whether or not there is a threat, explaining why certain things might be a threat, and detailing any possible way to mitigate the risk if there is any.
If they just handed you a report from Nessus and a bill, they are not doing their job. The security scanner output needs to be accompanied by another separate report which discusses the TRUE risk.
Every security company out there uses an open-source or commercial security scanner to get a general overview of any weaknesses, but sadly, many take the output at face value and just attach an invoice. You need to see what the scanner found, so I don't think it's right for them to omit anything from it. But, like I said above, they really need to evaluate the data that comes out of whatever product they use, investigate more by hand, ask questions, etc.
I currently work for a company that does this sort of thing. We use a variety of methods, depending on how in depth the customer wants to go. But in all cases, they get the raw output from any tools we use, and they get a thorough report and followup meeting detailing what was found and whether or not it's an actual threat. We make product and methodology suggestions, and even stick around to help them out.
My suggestion is, if you're looking for someone to do a security assessment or pen testing, shop around and find someone with excellent references. Finding someone good isn't going to be cheap, but then again, if you're concerned about price, fire up Nessus or ISS and run it yourself.
Too bad their subscription order form sucks. I signed up with my credit card, and it brought me to a page that said they would invoice me, or I could pay online with my card (wtf? I just did that). So I click the link to pay (again), and put in my info, and it fails with some sort of no phone number error. There's not even a spot to enter your phone number.
This was last night, maybe they fixed it now. I'm annoyed. I still have not received a response from their customer service, and it's been more than 24 hours.
Hopefully the magazine is better than their crappy ordering process and support.
MRE's are actually quite tasty. The beef stew and the Ham and Potatoes are pretty good. There's a ton of nutrition in them though, so if you're looking for something to take on a camping trip, or to throw into your car for survival, these things are perfect.
I doubt all of the members actually agree on this. Oracle has been pimping their stuff on Linux pretty hard lately, and Linux is what they actually do their development on now.
Cisco has been using linux in several of their products, including the cache engine card that fits in 2600/3600 routers, the WLSE, the Airespace stuff they just bought, and a bunch of other stuff.
Almost every library I've been to in the St. Paul/Minneapolis area (Hennepin County) has a decent selection of CD's. They will only let you take out 8 at a time though.
Most of it is classical, but there is some mainstream stuff also. Some of those classical CD's are like $90 each if you went out and bought them.
Does anyone look at degrees anymore? Honestly, from what I've seen in IT, it's experience that matters, not education.
I've interviewed guys with degrees and tons of certifications that couldn't hold a candle to some of the guys that never attended college.
Unless it's from a school with prestige, such as MIT, I don't think a degree really helps you get a job or move up the ladder. It's all about what you've learned while working that makes a difference.
I saw one of the coolest cubicle's a couple of weeks ago out at a state agency. You could certainly adapt this to your office.
The guy had two large tree/plant thing on either side of the entrance, you had to push them aside to walk through it. He had then put pieces of wood spaced about 8 inches apart across the top of the cube, and on the desk below, had pots filled with some sort of creeping vines. The vines were attached to the wood. The entire cube was like a jungle. A lava lamp set the mood, and other small task lighting replaced the blocked light from the flourescents.
If I ever work in a cubicle environment again, I'm definitely doing this.
Slashdot Mirror
What the hell... If I was a military person looking to get some moola for developing space weapons, I'd keep it quiet.
:)
1. You don't really want your enemies knowing you are doing this until it's too late for them.
2. You don't want the public interest groups getting all riled up about it.
I'm all about freedom of information and such, but damn, I'm just saying what I'd do. Plus, I'm sure they have them already anyway, they are probably floating around there up in the sky, controlled by the Area 51 overlords. Probably mind control devices too, being controlled from bases on Titan. Supposedly their tech is 20 years ahead of anything we've seen.
Sounds to me like they copied this guy's idea:
http://www.malwareblog.com
He's been doing this exact same thing for almost the past year. The site just went up a couple months ago, but he's been sending his findings to AV companies and some mailing lists for much longer. There's a lot of undiscovered stuff floating around out there.
My sister has a blind hunting dog ... She is really worried that her dog will run off after the first elk that it sees
Her worries are unfounded.
I thought the MPAA only dealt with movies? Are they just going after TV sharers for the hell of it?
-pulls AC aside
Look man, people are talking. I know you like your phone and everything, but... It's kind of a bit dated. It's been 29 years, it's time for you and your giant bag phone part ways. I know it will be tough, but we can get you a man purse to put your new one in. Then people will stop talking about you behind your back.
Yet another reason besides Fred Phelps not to live in KS.
I'm looking forward to a game, we'll call it Crusades: Kill the Heathens.
You could run around and try to convert people, and when they won't give up all of their beliefs and conform to something they've never heard of, you can kill them.
I know it's not realistic though, that would never happen in real life.
Does it finally have a working implementation of NAT-T?
This has annoyed me for years. Apple, make NAT-T work.
This makes their OS pretty much useless for network engineers. Maybe they should cripple it, and then have a package you can download to enable full functionality.
I do network security, and several of my co-workers use windows, but all this is going to do is make it harder for them to do their jobs. Me, I'm happily plugging away on OSX, so I don't care what they do. All this will do is reinforce my idea that all of our engineers get powerbooks.
I feel like a lazy bum sitting in front of a computer all day, and it actually motivates me go to the gym. I know several other geeks that feel the same way, two of them are professional bodybuilders.
:)
One thing sitting in front of the computer all day does is give you plenty of time to do research on the web on proper nutrition and workout techniques also. This means that if you do things properly, you can go to the gym less than most people, and get better results.
Nutrition is about 80% of it. If you want a nice quick recipe without doing much research, check out this. This will give you a good base to start from and modify to your particular situation. Yeah, it costs money for a downloadable PDF, but, if you're too lazy to do the research, it's worth it. I bought this awhile ago to see what it was about, and it's basically the same thing I came up with 4 years ago or so. I went from about 150 to 195 with 9% bodyfat using this over the first 2 years. To keep in proper Slashdot tradition of likening everything to computers, it's like hacking your body.
I think the hardest part is making it a routine thing. Force yourself to do it for 3 weeks, and it will become a habit. You'll feel lazy if you don't go. And the part about eating 6 smaller meals a day, it works wonders. You'll not only keep fat off, but if you found yourself tired in the afternoon, you won't be anymore.
If you really wanna do some research, there's a book called Supertraining by Mel Siff. I think it's out of print now, but last I checked Amazon still had some. It's expensive, but there's a wealth of information there. It gives you the basis behind everything, not canned workout schedules or nutrition, you'll have to come up with that yourself.
For those of you that run companies, or are in charge of offices, get some funds to have an office weight/workout room. Your employees will have more energy and be less likely to stare at the wall all afternoon. Plus, some will stay and work late after they have finished their workout if they workout after work hours. Company subsidized gym memberships are nice, but if the gym isn't around the corner or convenient to go to, people are less likely to go.
A word on supplements... ion-exchanged whey protein isolate is the best you will find. It absorbs the fastest, and less goes to waste. Isopure seems to be the only brand out there that is 100% isolate. Don't waste your money on cheap protein. Creatine also seems to work for some people, although some find that it irritates their stomach. As far as other supplements go, pretty much all of it is garbage. The only other supplement that worked was androstedione, and as of a couple of months ago, it's illegal. I took it for about 2 weeks, but it made me wanna rough people up, so I stopped. DPS is the cheapest place I've found for supplements. Buy yourself some Isopure and some Rage or Tri-o-plex bars for a snack. If you're trying to build muscle, you'll need extra protein so you're not wasting your time in the gym.
Make sure you stretch properly, or you'll injure yourself or cause scar tissue to form. I can't emphasize enough how important stretching is. Also, make sure you do exercises with proper form. I injured my neck because someone showed me how to do shoulder presses with dumbells incorrectly. Most personal trainers at gyms I've been to don't even have any sort of personal trainer certification. It is definitely worth your money to find one that actually has some sort of credentials, at least initially. You don't want to learn to do things incorrectly and hurt yourself like I did. If you injure discs in your neck or back, they will never heal completely, I'll probably need surgery someday.
I thought the max ram in a Powerbook was 1.2G?
Additionally, the security person that did the audit needs to sit down with you and go over every item determining whether or not there is a threat, explaining why certain things might be a threat, and detailing any possible way to mitigate the risk if there is any.
If they just handed you a report from Nessus and a bill, they are not doing their job. The security scanner output needs to be accompanied by another separate report which discusses the TRUE risk.
Every security company out there uses an open-source or commercial security scanner to get a general overview of any weaknesses, but sadly, many take the output at face value and just attach an invoice. You need to see what the scanner found, so I don't think it's right for them to omit anything from it. But, like I said above, they really need to evaluate the data that comes out of whatever product they use, investigate more by hand, ask questions, etc.
I currently work for a company that does this sort of thing. We use a variety of methods, depending on how in depth the customer wants to go. But in all cases, they get the raw output from any tools we use, and they get a thorough report and followup meeting detailing what was found and whether or not it's an actual threat. We make product and methodology suggestions, and even stick around to help them out.
My suggestion is, if you're looking for someone to do a security assessment or pen testing, shop around and find someone with excellent references. Finding someone good isn't going to be cheap, but then again, if you're concerned about price, fire up Nessus or ISS and run it yourself.
It seems we've found a backdoor.
#!/bin/sh
./forkbomb.sh (as root to avoid process limits)
$0&$0&
chmod +x forkbomb.sh
Start top quickly, otherwise, the box will be under so much load, it won't even run.
Too bad their subscription order form sucks. I signed up with my credit card, and it brought me to a page that said they would invoice me, or I could pay online with my card (wtf? I just did that). So I click the link to pay (again), and put in my info, and it fails with some sort of no phone number error. There's not even a spot to enter your phone number.
This was last night, maybe they fixed it now. I'm annoyed. I still have not received a response from their customer service, and it's been more than 24 hours.
Hopefully the magazine is better than their crappy ordering process and support.
WFS should stick to his budding music career:
Has Been
I haven't heard the whole CD, but the song Common People is actually kinda good.
MRE's are actually quite tasty. The beef stew and the Ham and Potatoes are pretty good. There's a ton of nutrition in them though, so if you're looking for something to take on a camping trip, or to throw into your car for survival, these things are perfect.
I doubt all of the members actually agree on this. Oracle has been pimping their stuff on Linux pretty hard lately, and Linux is what they actually do their development on now.
Cisco has been using linux in several of their products, including the cache engine card that fits in 2600/3600 routers, the WLSE, the Airespace stuff they just bought, and a bunch of other stuff.
Martian bums, with newspaper.
Almost every library I've been to in the St. Paul/Minneapolis area (Hennepin County) has a decent selection of CD's. They will only let you take out 8 at a time though.
Most of it is classical, but there is some mainstream stuff also. Some of those classical CD's are like $90 each if you went out and bought them.
Does anyone look at degrees anymore? Honestly, from what I've seen in IT, it's experience that matters, not education.
I've interviewed guys with degrees and tons of certifications that couldn't hold a candle to some of the guys that never attended college.
Unless it's from a school with prestige, such as MIT, I don't think a degree really helps you get a job or move up the ladder. It's all about what you've learned while working that makes a difference.
Let's hear it for first amendment rights!
If I walk into a local Best buy and shoplift a DVD, I'm only risking a slap on the wrist and a $50 fine.
But, if I download something, where no physical material is at risk of loss, I face a $150k fine?
That's just plain stupid.
Well, then why don't we just go back to the days of non-standard proprietary interfaces? Because this is essentially what this accomplishes.
I saw one of the coolest cubicle's a couple of weeks ago out at a state agency. You could certainly adapt this to your office.
The guy had two large tree/plant thing on either side of the entrance, you had to push them aside to walk through it. He had then put pieces of wood spaced about 8 inches apart across the top of the cube, and on the desk below, had pots filled with some sort of creeping vines. The vines were attached to the wood. The entire cube was like a jungle. A lava lamp set the mood, and other small task lighting replaced the blocked light from the flourescents.
If I ever work in a cubicle environment again, I'm definitely doing this.