I use Truecrypt. It is free and open source. Provides much more flexibility and the encrypted source file(s) can be stored on any medium (network, flash, floppy, etc..) Sure it is not durectly integrated into the OS but for me, it strikes the perfect balance between security and piece of mind.
Can you describe the support MS has available to the consumer with valid copies of Windows? The only time MS provides support is for versions bought directly from them and for a very limited time and still requires a credit card number. For the other 99.9% of the Windows users have an OEM version which MS does not provide direct support for, you are required to contact your computer vendor for support. Companies with volume licenses bought directly from MS negotiate support contracts with the software assurance program and pay for a number a support cases per year as well. Bottom line, there is a very small subset of cases where a legit licensed copy of Windows will get you support from MS without paying for it.
but remember that it often takes huge losses before a company changes its approach to doing business.
That in it self is the problem. Trying to sustain your business with the reputation of your past products/services does not work very long. The business will continue to suffer as time goes on. Soon the company will start spinning off branches of itself to "focus on core products", then the parent either goes broke or merges to try to hang on. HP comes to mind here but they are much further down that road then Intel is.
Kerio personal firewall popped these up during the install of the MSI (expected I guess, cert maybe?):
Remote Point: 12.158.80.10, port http [80] Remote Point: crl.verisign.com [12.158.80.10], port http [80]
Then: Direction: outgoing Local Point: localhost [127.0.0.1], port 1980 Adapter: N/A Remote Point: 127.0.0.1, port 1980 Protocol: UDP Application path: C:\WINDOWS\system32\msiexec.exe Description: Windows® installer
Then Spybot teatimer warned about changes to the registy (expected):
Shortly after, Microsoft AntiSpyware warned about three times about an IE toolbar being added and would I like to allow it (expected as well).
After restarting my browser and clicking on the icon, another warning from Kerio:
Direction: outgoing Local Point: 0.0.0.0, port 2037 Adapter: N/A Remote Point: localhost [127.0.0.1], port 9100 Protocol: TCP
Followed again by MS AntiSpyware and then Kerio alerting about the Google binary trying to contact the internet.
With all these damn protection mechanisms loaded, I cant get anything done;)
Shortly after, I uninstalled it. I'll just stick to local network squid proxy for now.. On a side note.. My squid operates transparent and I use some filtering as well. I tried to go to a site I know is blocked and it was still blocked with the Google Accelerator running. Once again, as expected because the Google proxy is running on the local machine. I wanted to check and verify for myself though.
With Outlook, the from address will always be replaced with the pretty looking address (real name) and there is very little header information included to check the real source. You can send email from bosses_secretary@company.com to boss@company.com from the outside and 99% of the time, there would be no way to determine if that email actually came from outside or not. You could add another twist and use the "reply to" header and fudge it a little, like "Secretary, Bosses" stealth_address@hotmail.com. Outlook will show a mail from Secretary, Bosses but any replay would actually go to stealth_address@hotmail.com. I know it sounds obvious to you and I but how many people actually right click and verify the properties of the address thrown automatically in the to field on a reply? Consider that these people are not computer people and I can assure you it would work. I would never actually do this though...
If you do not intend to use them over the public internet, use your OS or firewall to block them from getting to your PC, just as you would any other not used port. Maybe that should be the OS default. Don't trust the ISP to be your firewall. That would be a very short term band-aid until the next exploit that uses a different port.
135-139,445 These ports are intended to work over the internet, just not normally used. How many home users need incoming 1434? How about 1494? Should the ISP block that to? Who determines what should be blocked or where to draw the line on what should and should not be allowed?
Double edged sword. How are they supposed to just know someone on their network is a zombie? Monitor for the evil bit? Yes they could monitor all traffic and ports the users generate and use but that would turn into a/. YRO story shortly after. There is no magical method to determine what is legitimate traffic and what is not. Instead of posting your comment like 5 times a week (in your words), do you have any technical method or path to determine what seperates malicious traffic from non malicious traffic? If ISP were liable, they would monitor and block just about everything but plain text port 80 traffic and the ISP would be providing a useless service to the users. Comcast does appear to investigate and act on abuse claims.
Anyone have a link to a decent summary of this entire story as it was played out? I've browsed through the past/. articles and searched Goolge but nothing I've found gives a decent summary or big picture history.
Re:Hold on, I need to type a message to 911...
on
Microsoft's 911 Patent
·
· Score: 2, Interesting
Do a little checking about how many times over the years police have been dispatched to 911 calls where there was no response from the caller to the query about the nature of the emergency
I often listen to my local police on my scanner. Dropped calls with no answer/busy on call back are a very common occurence. I would say at least 1 every 1-2 hours. An officer is dispatched to the location and checks it out. I have no idea how many more times a dropped call is answered on call back from the 911 operator but the combination of the two is probably high. I've called 911 by accident at least twice and both times my initial reaction was to hang up but I stayed on and explained it was an accident. One time they actually asked to speak to another person in the car.
It takes exactly ONE person to transfer something to digital. That is not an order of a magnatude harder. I did not walk to school uphill both ways but I did a lot of analog copying when I was younger as did most people 30-35 and above years old. It is not a challenging task at all. Even though it is done in "real time", you set it up and walk away, when you get back it is done. Copying analog to your computer is no different.
I agree with your entire post and I do not agree with running as root either but... The whole purpose of and market for Linspire/Lindows/Lyroris and whatever, is not going to be the AVERAGE person and the average person is not using a SQL database to store and reference their data. It will placed as regular files under/home/user/my\ documents just like in Windows. That is what he is refering too. The possible vector to discount his theory of the data being owned by the user so who cares would be a rogue program that would need root privleges to run could then wipe out the users data. That would be the likely situation, just as Windows suffers from now. I actually have shortcuts to start IE as a reglaur user on my Win systems. It works well.
The websense application is not your problem. Either the group setting up the specific websense blocks or your desire to run these specific tools is. What department is managing your websense proxy and what department are you in? I assume by the tools you mention and require, you are in some subset of the IT department. If your websense is blocking it, you need to find out who maintains it and ask them why and to unblock it or put you in a less restrictive group. The simple fact that you seem to be out of the loop on this already shows one group of management is not talking to another. This situation is no different then a managed switch blocking an unauthorized mac address from joining the network. If you really want and need that access point or your laptop plugged in and on the network, go through the proper channels.
Someone should develop some kind of output/interoperability standard and rally support in the closed source sector.
What dream world do you live in? There is no standard because companies do not want a standard. Technically, it is not really the lack of "standard" being the problem. It is the fact that companies go out of their way to prevent interoperability by not releasing specs so others could use the format. It is not just an oversight, it is by design.
Blueovalnews went through this exact thing several years ago with Ford. The court and the rulings were in Blueovalnews's favor. They were even posting actual scanned internal Ford documents online of past and future vehicles. Here is the timeline.
If they didn't release these crippled products in these countries, people would get the idea that they couldn't compete
I would say looking at what they have crippled and/or removed, they are already sending a very loud and clear message that they can not compete. 800x600 max resolution? No more then 3 applications running? What is that, like 1992? They might as well start selling DOS and Windows 3.1 with the Trumpet Winsock TCP/IP stack. That would actually have more capability then what they are offering here. Heck, I ran almost exactly that with a 486DX33 and it worked great. I'm sure AfterDark(R) could start selling some new and improved screen savers for it too.
I believe just over an hour maybe. Speaking of time but getting off topic.. I remember two very specific arcade games that I could play for well over two hours on a single game, Donkey Kong and Excitebike. Donkey Kong was still challenging the whole way through and I actually would lose at some point but only due to the random falling barrels. Excitebike was just flat out boring and I had hit a point where the game was getting no harder and I would just walk away (and probably never played it again). I remember people playing Dragonslayer (the laser disc based game) and completing the game after an extremely long time. I never really got into that game because it was nothing but remembering which way to move, kind of like a glorified Simon game.
You really think it is imagination that is missing? I think it is more a lack of people interested in playing pinball and maybe even the game rooms that do not want to use space for the machines. With the latest video games, action, excitement and the $1-$2 to play them seems like a better choice for them to have.
you need like 1,000,000,000,000,000,000 points to get a free game these days?
Na.. All it normally takes is one multiball session and 1 or 2 trips up the ramps during the multiball.
I do miss pinball. I know of several places that still have them but I am getting bored playing the same machines over and over again, even more so when one of the flippers is weak and I know they will never get it fixed.
I remember in the early/mid 90's I used to go to a local gameroom the game room several times a week and play pinball, they had at least 20 different machines. It got to the point where my wife thought something fishy was going on. I actually "flipped" the score playing Rollerball, It gave me another credit for exceeding the free game score a second time but it did not register as a high score when I was done playing. I had 137 million and the previous high score was 40 million. It was very frustrating to beat the previous 1st place score by just under 100 million and only get to leave my initial under second place.
The headline was clearly misleading and quite honestly, the whole article is garbage.
Here is the first paragraph:
Microsoft has granted clemency to the 19 year-old author of the Blaster worm. Rather than pay $500,000 in restitution, the youth will be sentenced to 225 hours of community service, which may not involve computers.
Nothing in that article implies anything but MS made this decision themselves. You see anything about a judge, a court? Anything from the judicial branch of our government at all in there? See the big Microsoft granted, I see nothing of a judge or court at all. Is this the clearly part you are refering too?
Then the last two paragraphs that are not related to this specific "fine" dropping and only references something that already happened last year.
Jeffrey Lee Parson, of Minnesota, was sentenced this year to 18 months in prison and 10 hours of community service. The defense argued that Parson suffered from mental-health problems.
U.S. District Judge Marsha Pechman said the sentence reflected that although he was 18 at the time of the attack, his maturity level was much younger than that. She also said his home life contributed to the problem.
Judge and court are involved in there. The article is garbage and it is not clear at all.
I have no problems with 1280x1024. It does take a little "training" to get used to the 1:1.25 instead of the typical 1:1.33. I imagine being native with that resolution on anything smaller then a 19 inch screen would be the suck though.
Those are "professional associations" used for testing and certification of some skill meets some level. The place of employment normally forces the certifications (not licences) as it looks good to have plaques on the wall. Not that I fully agree with either but that is a huge difference from what functions a union provides.
Slashdot Mirror
I use Truecrypt. It is free and open source. Provides much more flexibility and the encrypted source file(s) can be stored on any medium (network, flash, floppy, etc..) Sure it is not durectly integrated into the OS but for me, it strikes the perfect balance between security and piece of mind.
Can you describe the support MS has available to the consumer with valid copies of Windows? The only time MS provides support is for versions bought directly from them and for a very limited time and still requires a credit card number. For the other 99.9% of the Windows users have an OEM version which MS does not provide direct support for, you are required to contact your computer vendor for support. Companies with volume licenses bought directly from MS negotiate support contracts with the software assurance program and pay for a number a support cases per year as well. Bottom line, there is a very small subset of cases where a legit licensed copy of Windows will get you support from MS without paying for it.
but remember that it often takes huge losses before a company changes its approach to doing business.
That in it self is the problem. Trying to sustain your business with the reputation of your past products/services does not work very long. The business will continue to suffer as time goes on. Soon the company will start spinning off branches of itself to "focus on core products", then the parent either goes broke or merges to try to hang on. HP comes to mind here but they are much further down that road then Intel is.
Just for reference...
;)
Kerio personal firewall popped these up during the install of the MSI (expected I guess, cert maybe?):
Remote Point: 12.158.80.10, port http [80]
Remote Point: crl.verisign.com [12.158.80.10], port http [80]
Then:
Direction: outgoing
Local Point: localhost [127.0.0.1], port 1980
Adapter: N/A
Remote Point: 127.0.0.1, port 1980
Protocol: UDP
Application path: C:\WINDOWS\system32\msiexec.exe
Description: Windows® installer
Then Spybot teatimer warned about changes to the registy (expected):
Shortly after, Microsoft AntiSpyware warned about three times about an IE toolbar being added and would I like to allow it (expected as well).
After restarting my browser and clicking on the icon, another warning from Kerio:
Direction: outgoing
Local Point: 0.0.0.0, port 2037
Adapter: N/A
Remote Point: localhost [127.0.0.1], port 9100
Protocol: TCP
Followed again by MS AntiSpyware and then Kerio alerting about the Google binary trying to contact the internet.
With all these damn protection mechanisms loaded, I cant get anything done
Shortly after, I uninstalled it. I'll just stick to local network squid proxy for now..
On a side note.. My squid operates transparent and I use some filtering as well. I tried to go to a site I know is blocked and it was still blocked with the Google Accelerator running. Once again, as expected because the Google proxy is running on the local machine. I wanted to check and verify for myself though.
Why anonymous? Make it interesting.
With Outlook, the from address will always be replaced with the pretty looking address (real name) and there is very little header information included to check the real source. You can send email from bosses_secretary@company.com to boss@company.com from the outside and 99% of the time, there would be no way to determine if that email actually came from outside or not. You could add another twist and use the "reply to" header and fudge it a little, like "Secretary, Bosses" stealth_address@hotmail.com. Outlook will show a mail from Secretary, Bosses but any replay would actually go to stealth_address@hotmail.com. I know it sounds obvious to you and I but how many people actually right click and verify the properties of the address thrown automatically in the to field on a reply? Consider that these people are not computer people and I can assure you it would work. I would never actually do this though...
If you do not intend to use them over the public internet, use your OS or firewall to block them from getting to your PC, just as you would any other not used port. Maybe that should be the OS default. Don't trust the ISP to be your firewall. That would be a very short term band-aid until the next exploit that uses a different port.
135-139,445
These ports are intended to work over the internet, just not normally used. How many home users need incoming 1434? How about 1494? Should the ISP block that to? Who determines what should be blocked or where to draw the line on what should and should not be allowed?
Double edged sword. How are they supposed to just know someone on their network is a zombie? Monitor for the evil bit? Yes they could monitor all traffic and ports the users generate and use but that would turn into a /. YRO story shortly after. There is no magical method to determine what is legitimate traffic and what is not. Instead of posting your comment like 5 times a week (in your words), do you have any technical method or path to determine what seperates malicious traffic from non malicious traffic? If ISP were liable, they would monitor and block just about everything but plain text port 80 traffic and the ISP would be providing a useless service to the users. Comcast does appear to investigate and act on abuse claims.
Anyone have a link to a decent summary of this entire story as it was played out? I've browsed through the past /. articles and searched Goolge but nothing I've found gives a decent summary or big picture history.
Do a little checking about how many times over the years police have been dispatched to 911 calls where there was no response from the caller to the query about the nature of the emergency
I often listen to my local police on my scanner. Dropped calls with no answer/busy on call back are a very common occurence. I would say at least 1 every 1-2 hours. An officer is dispatched to the location and checks it out. I have no idea how many more times a dropped call is answered on call back from the 911 operator but the combination of the two is probably high. I've called 911 by accident at least twice and both times my initial reaction was to hang up but I stayed on and explained it was an accident. One time they actually asked to speak to another person in the car.
It takes exactly ONE person to transfer something to digital. That is not an order of a magnatude harder. I did not walk to school uphill both ways but I did a lot of analog copying when I was younger as did most people 30-35 and above years old. It is not a challenging task at all. Even though it is done in "real time", you set it up and walk away, when you get back it is done. Copying analog to your computer is no different.
MySQL, for instance, runs as a separate user.
/home/user/my\ documents just like in Windows. That is what he is refering too.
I agree with your entire post and I do not agree with running as root either but...
The whole purpose of and market for Linspire/Lindows/Lyroris and whatever, is not going to be the AVERAGE person and the average person is not using a SQL database to store and reference their data. It will placed as regular files under
The possible vector to discount his theory of the data being owned by the user so who cares would be a rogue program that would need root privleges to run could then wipe out the users data. That would be the likely situation, just as Windows suffers from now. I actually have shortcuts to start IE as a reglaur user on my Win systems. It works well.
The websense application is not your problem. Either the group setting up the specific websense blocks or your desire to run these specific tools is.
What department is managing your websense proxy and what department are you in? I assume by the tools you mention and require, you are in some subset of the IT department. If your websense is blocking it, you need to find out who maintains it and ask them why and to unblock it or put you in a less restrictive group. The simple fact that you seem to be out of the loop on this already shows one group of management is not talking to another.
This situation is no different then a managed switch blocking an unauthorized mac address from joining the network. If you really want and need that access point or your laptop plugged in and on the network, go through the proper channels.
you would not see it defract into a rainbow. Instead, you'd see a red beam, a green beam, and a blue beam.
Damn, I started using a lossy format for my music, now you want me to start using a lossy light format! What's the world coming too!!
Someone should develop some kind of output/interoperability standard and rally support in the closed source sector.
What dream world do you live in? There is no standard because companies do not want a standard. Technically, it is not really the lack of "standard" being the problem. It is the fact that companies go out of their way to prevent interoperability by not releasing specs so others could use the format. It is not just an oversight, it is by design.
Blueovalnews went through this exact thing several years ago with Ford. The court and the rulings were in Blueovalnews's favor. They were even posting actual scanned internal Ford documents online of past and future vehicles. Here is the timeline.
Are you actually trying to imply the concept of drag and drop is something hard to do?
If they didn't release these crippled products in these countries, people would get the idea that they couldn't compete
I would say looking at what they have crippled and/or removed, they are already sending a very loud and clear message that they can not compete. 800x600 max resolution? No more then 3 applications running? What is that, like 1992? They might as well start selling DOS and Windows 3.1 with the Trumpet Winsock TCP/IP stack. That would actually have more capability then what they are offering here. Heck, I ran almost exactly that with a 486DX33 and it worked great. I'm sure AfterDark(R) could start selling some new and improved screen savers for it too.
I believe just over an hour maybe. Speaking of time but getting off topic.. I remember two very specific arcade games that I could play for well over two hours on a single game, Donkey Kong and Excitebike. Donkey Kong was still challenging the whole way through and I actually would lose at some point but only due to the random falling barrels. Excitebike was just flat out boring and I had hit a point where the game was getting no harder and I would just walk away (and probably never played it again). I remember people playing Dragonslayer (the laser disc based game) and completing the game after an extremely long time. I never really got into that game because it was nothing but remembering which way to move, kind of like a glorified Simon game.
Correction.. It was Rollergames, not Rollerball.
You really think it is imagination that is missing? I think it is more a lack of people interested in playing pinball and maybe even the game rooms that do not want to use space for the machines. With the latest video games, action, excitement and the $1-$2 to play them seems like a better choice for them to have.
you need like 1,000,000,000,000,000,000 points to get a free game these days?
Na..
All it normally takes is one multiball session and 1 or 2 trips up the ramps during the multiball.
I do miss pinball. I know of several places that still have them but I am getting bored playing the same machines over and over again, even more so when one of the flippers is weak and I know they will never get it fixed.
I remember in the early/mid 90's I used to go to a local gameroom the game room several times a week and play pinball, they had at least 20 different machines. It got to the point where my wife thought something fishy was going on.
I actually "flipped" the score playing Rollerball, It gave me another credit for exceeding the free game score a second time but it did not register as a high score when I was done playing. I had 137 million and the previous high score was 40 million. It was very frustrating to beat the previous 1st place score by just under 100 million and only get to leave my initial under second place.
The headline was clearly misleading and quite honestly, the whole article is garbage.
Here is the first paragraph:
Microsoft has granted clemency to the 19 year-old author of the Blaster worm. Rather than pay $500,000 in restitution, the youth will be sentenced to 225 hours of community service, which may not involve computers.
Nothing in that article implies anything but MS made this decision themselves. You see anything about a judge, a court? Anything from the judicial branch of our government at all in there? See the big Microsoft granted, I see nothing of a judge or court at all. Is this the clearly part you are refering too?
Then the last two paragraphs that are not related to this specific "fine" dropping and only references something that already happened last year.
Jeffrey Lee Parson, of Minnesota, was sentenced this year to 18 months in prison and 10 hours of community service. The defense argued that Parson suffered from mental-health problems.
U.S. District Judge Marsha Pechman said the sentence reflected that although he was 18 at the time of the attack, his maturity level was much younger than that. She also said his home life contributed to the problem.
Judge and court are involved in there. The article is garbage and it is not clear at all.
How can MS "fine" someone? Are they really that close to the government now that they can hand out their own judgement and punishment?
I have no problems with 1280x1024. It does take a little "training" to get used to the 1:1.25 instead of the typical 1:1.33. I imagine being native with that resolution on anything smaller then a 19 inch screen would be the suck though.
Those are "professional associations" used for testing and certification of some skill meets some level. The place of employment normally forces the certifications (not licences) as it looks good to have plaques on the wall. Not that I fully agree with either but that is a huge difference from what functions a union provides.