1. RBLs are a good penalty for the world as a whole because no one wants to create good legislation(everyone is at fault for this). 2. If you hate spam, only accept encrypted messages. After all if you only hand out your public key to 'trusted' individuals, then you know when your mail is good. 3. This is yet another reason why everyone using the Internet should be required to be licensed. If you've been busted spamming, you should lose your license.
A lot of ISPs use hardware that is NetFlow capable.
NetFlow records the source IP, source port, destination IP, and dest port, bytes sent, start and stop times of the transaction. Using packages such as FlowScan, admins can profile users traffic.
This makes it very easy to look at what your users are doing.
Here are the main questions that I have: - Who have you used, and were they any good?
Cisco has used them for their customers. - What should we look for in evaluating who to contact and their proposals?
Outside referrals from reputable companies - What services should we ask for?
Penetration testing/site evaluation How often should we re-do these audits?
Every three-six months isn't a bad cycle.
However, proposing there be a redlight district at least allows a classification for pornography. We already have legislation that makes it illegal to provide pornography to minors. Apply the same legal standard. Otherwise, as I was saying,.art should be for.art. If Bob's backyard butt plugs think's his selling such things is acceptable in.art, let an independent panel decide. Whatever the case, let there be proper structure for people to fall into more appropriate categories. It's funny how doing nothing is always better than doing something and no one else can offer any other ideas.
Let's put it this way, what place is safe for kids on the Internet? Honestly, no where because there is no clasification, no attempt to protect minors from questionable content(should a parent want to)... and for that matter, when school content becomes more increasingly online, parents(poor or rich) won't have a choice about exposing their kids to the Internet because most places will have studies online. So whether people like it or not, a.redlightdistrict.tld might not be great, but it is better than nothing. It's not perfect and nothing is. Some concession always hurts someone else, so I guess it's tfb that the porn industry is the subject of online classification. We aren't talking about censoring. We aren't talking about saying what they have to offer is any less important(to the contrary). What we are saying is that there needs to be places we can go without bob's backyard adult toys coming out and smacking us in the face because we did a search for 'yard equipment'
Besides, as I said, I'd rather have independent boards help in binding arbitration than "flat out having the government do all of the classification" or having the Senator dictate that my online book store or online news stand is an adult state. Welcome to real life, governments will always play a part in social issues. I wan't them to give some power to independent boards and leave rest out of legislation.
Either unwholesome or internet ghetto, having MANY tlds provides a better way to deal with the bs. How many adult site operators do you know would actually try for the.kid tld? Not many, and those that do would get sued. Why? Because we chose to live in a world were we use lawyers instead of guns to solve problems. Do you really think anything less than 90% of internet sites wouldn't fall in rank and file(assuming advertising and customerbase follows)? Mattle, Gap, Exxon, Playboy, and others would benefit from the better classification.
In any case, this issue is frustrating for all of us. I am not a parent but I've been doing the ISP thing for years. Let me tell you, things are much different when you have to deal with pedophlies, theives, and scam artists. There is nothing more sad about my career choice than to watch the meriad of stupid mistakes people make when it comes to 'online decisions'. Choice isn't a bad thing and it comes with consequences. Only after we've tried to exercise a choice can we decided learned from mistakes and try to make more corrections.
Your missing the point, this allows for easy classification of porn sights(something not done easily done with software). What's the other way? NetNanny and other crap packages that don't work. So setup an arbitration panel to classify sights that are in the gray area(art or otherwise). Sure there are a lot of gray areas but that's how 'we as a society' should act, with public discussion.
Otherwise your 3rd & 4th choices are self regulation(yeah what bullshit) and flat out having the government do all of the classification(suck ass)
Oh and what do you do to companies that push porn in the US and don't honor our laws? Let them come into the country, give a speech, and arrest them. 8( JUST KIDDING.
If the TLD people would just get their heads out of their behinds, we'd have.art,.school,.med,.comics...etc and then it wouldn't be a free speech issue because sites could more naturally fall into the appropriate tlds. Instead we're dealing with a bunch of money grubbing registrars, screwing us all over one way or another because more.tlds makes their services less valuable. Artificial scarcity is NO reason to hold up the tld process.
If I am remembering correctly, doesn't UCITA imply that software's respective authors are responsible? If that goes through, the expiration idea is out the door. Can you say, detrimental reliance?
You have two choices each with appox. two outcomes each. 1. Do nothing, odds are the evironment will get worse and people will suffer. a. If this is the right thing to do: then we aren't any worse for the wear b. If this is the wrong thing to do: then we're screwed when the environment collapses
2. Start cutting back on resource usage and save the environment a. If this is the right thing to do: then we saved our behinds from having famine, disease, etc. b. If whkis is the wrong thing to do: then we end up with a better environment with a better quality of life for our children
Now ask yourself, you want to gamble by taking #1's stance, or do you want to play it safe? Because if the environment takes a digger, science isn't going to do squat for us. Look at how we can hardly predict the weather past 24 hours! Do you trust your life with that? I sure as hell don't.
I would like to fall on my light sabre. This is a sad day when a bunch of no-talent morons make appearances in what should be decent films. Anyone wanna bet that madonna is in the third movie? I'm sure she'd play Jaba's 2nd/3rd/4th wife or some crap like that? Or worse yet, she'll meet her twin sister, Hillary Clinton. UG!
True, a lot of administrators do not take the time to properly secure their routing infrastructure. The problem becomes more blurred by those who insist on web interfaces to equipment. I'd gather that most web interfaces don't provide the proper level of detail one needs to properly maintain/operate routers.
The biggest issue I have is with true os-routers/network peripherals. The F5s, Linux routers, and others while very functional are multi-user operating systems. Networks routers should route, not script. I think the bar will raise considerably as soon as a lot of the networking industry understands this.
Lastly, while very possible to policy route data in the compromised router, it'll take large scale ISP breakins to cause major black holes. ISPs like AT&T, C&W, and Genuity filter BGP routes from their customer's BGP sessions to prevent bogus advertisements. However, this doesn't prevent them from fat-fingering routes and black holing someone else's network. (ie. level2peer(mom&pop ISP)-to-level1peer(ie. AT&T) isn't trusted implicitly like level1peer-to-level1peer).
Because
A) it wastes bandwidth
B) everyone is responsible for security, even moron users who think their computer should be as easy to use as a VCR and never take care of it
C) it costs money to have this extra bandwidth to be used unecessarily
Hey folks, the professional community is already dealing with Nimda. What makes you think a municipality(aka red-tape land, everyone's favorite themepark) is going to be able to move on this? Now worry about state laws requiring public facilities to have filtering..... just a start.
What kind of Token Ring switches are being used? Is your network SRB or TSRB? Secondly, Does your switching infrastructure support TrBrf/TRCrf? Isolate your port on its own TrBrf & TrCrf. That should more than isolate you.
This is nothing new. If you look back at the Reagan erra, that was when a lot of controls ran their course. Businesses found that many things were cheaper to produce. In fact, it was enough that you don't hear the crap you did 10-15 years ago about 'environmental controls' costing too much and making a company go out of business.
They'll be 2-3k patches past initial updates. My mother could look them over for 'back doors'. Then it's just a matter of watching for a 'big door' by evaluating all of their patches on regular intervals.
Otherwise, let them pile on the help.
Slashdot Mirror
I'm not using RCU or NUMA in 2.4. Sue me SCO, I'll sue your shit right back for harassment.
1. RBLs are a good penalty for the world as a whole because no one wants to create good legislation(everyone is at fault for this).
2. If you hate spam, only accept encrypted messages. After all if you only hand out your public key to 'trusted' individuals, then you know when your mail is good.
3. This is yet another reason why everyone using the Internet should be required to be licensed. If you've been busted spamming, you should lose your license.
Somebody please secure PAM and then we need to R&D an open platform for an open SecurID style token system. Then single sign on would be great.
A lot of ISPs use hardware that is NetFlow capable.
NetFlow records the source IP, source port, destination IP, and dest port, bytes sent, start and stop times of the transaction. Using packages such as FlowScan, admins can profile users traffic.
This makes it very easy to look at what your users are doing.
Here are the main questions that I have:
- Who have you used, and were they any good?
Cisco has used them for their customers.
- What should we look for in evaluating who to contact and their proposals?
Outside referrals from reputable companies
- What services should we ask for?
Penetration testing/site evaluation
How often should we re-do these audits?
Every three-six months isn't a bad cycle.
However, proposing there be a redlight district at least allows a classification for pornography. We already have legislation that makes it illegal to provide pornography to minors. Apply the same legal standard. Otherwise, as I was saying, .art should be for .art. If Bob's backyard butt plugs think's his selling such things is acceptable in .art, let an independent panel decide. Whatever the case, let there be proper structure for people to fall into more appropriate categories. It's funny how doing nothing is always better than doing something and no one else can offer any other ideas.
.redlightdistrict .tld might not be great, but it is better than nothing. It's not perfect and nothing is. Some concession always hurts someone else, so I guess it's tfb that the porn industry is the subject of online classification. We aren't talking about censoring. We aren't talking about saying what they have to offer is any less important(to the contrary). What we are saying is that there needs to be places we can go without bob's backyard adult toys coming out and smacking us in the face because we did a search for 'yard equipment'
.kid tld? Not many, and those that do would get sued. Why? Because we chose to live in a world were we use lawyers instead of guns to solve problems. Do you really think anything less than 90% of internet sites wouldn't fall in rank and file(assuming advertising and customerbase follows)? Mattle, Gap, Exxon, Playboy, and others would benefit from the better classification.
Let's put it this way, what place is safe for kids on the Internet? Honestly, no where because there is no clasification, no attempt to protect minors from questionable content(should a parent want to)... and for that matter, when school content becomes more increasingly online, parents(poor or rich) won't have a choice about exposing their kids to the Internet because most places will have studies online. So whether people like it or not, a
Besides, as I said, I'd rather have independent boards help in binding arbitration than "flat out having the government do all of the classification" or having the Senator dictate that my online book store or online news stand is an adult state. Welcome to real life, governments will always play a part in social issues. I wan't them to give some power to independent boards and leave rest out of legislation.
Either unwholesome or internet ghetto, having MANY tlds provides a better way to deal with the bs. How many adult site operators do you know would actually try for the
In any case, this issue is frustrating for all of us. I am not a parent but I've been doing the ISP thing for years. Let me tell you, things are much different when you have to deal with pedophlies, theives, and scam artists. There is nothing more sad about my career choice than to watch the meriad of stupid mistakes people make when it comes to 'online decisions'. Choice isn't a bad thing and it comes with consequences. Only after we've tried to exercise a choice can we decided learned from mistakes and try to make more corrections.
Your missing the point, this allows for easy classification of porn sights(something not done easily done with software). What's the other way? NetNanny and other crap packages that don't work. So setup an arbitration panel to classify sights that are in the gray area(art or otherwise). Sure there are a lot of gray areas but that's how 'we as a society' should act, with public discussion.
.art, .school, .med, .comics ...etc and then it wouldn't be a free speech issue because sites could more naturally fall into the appropriate tlds. Instead we're dealing with a bunch of money grubbing registrars, screwing us all over one way or another because more .tlds makes their services less valuable. Artificial scarcity is NO reason to hold up the tld process.
Otherwise your 3rd & 4th choices are self regulation(yeah what bullshit) and flat out having the government do all of the classification(suck ass)
Oh and what do you do to companies that push porn in the US and don't honor our laws? Let them come into the country, give a speech, and arrest them. 8( JUST KIDDING.
If the TLD people would just get their heads out of their behinds, we'd have
If I am remembering correctly, doesn't UCITA imply that software's respective authors are responsible? If that goes through, the expiration idea is out the door. Can you say, detrimental reliance?
You have two choices each with appox. two outcomes each.
1. Do nothing, odds are the evironment will get worse and people will suffer.
a. If this is the right thing to do: then we aren't any worse for the wear
b. If this is the wrong thing to do: then we're screwed when the environment collapses
2. Start cutting back on resource usage and save the environment
a. If this is the right thing to do: then we saved our behinds from having famine, disease, etc.
b. If whkis is the wrong thing to do: then we end up with a better environment with a better quality of life for our children
Now ask yourself, you want to gamble by taking #1's stance, or do you want to play it safe? Because if the environment takes a digger, science isn't going to do squat for us. Look at how we can hardly predict the weather past 24 hours! Do you trust your life with that? I sure as hell don't.
I would like to fall on my light sabre. This is a sad day when a bunch of no-talent morons make appearances in what should be decent films. Anyone wanna bet that madonna is in the third movie? I'm sure she'd play Jaba's 2nd/3rd/4th wife or some crap like that? Or worse yet, she'll meet her twin sister, Hillary Clinton. UG!
Hopefully someone will find a copy of this thing and get it to the 'right' people so we can me a snort signature of it.
Visit adcritic.com and see the annoying sprint ads. It's a neat site but they seem to love this crap.
True, a lot of administrators do not take the time to properly secure their routing infrastructure. The problem becomes more blurred by those who insist on web interfaces to equipment. I'd gather that most web interfaces don't provide the proper level of detail one needs to properly maintain/operate routers.
The biggest issue I have is with true os-routers/network peripherals. The F5s, Linux routers, and others while very functional are multi-user operating systems. Networks routers should route, not script. I think the bar will raise considerably as soon as a lot of the networking industry understands this.
Lastly, while very possible to policy route data in the compromised router, it'll take large scale ISP breakins to cause major black holes. ISPs like AT&T, C&W, and Genuity filter BGP routes from their customer's BGP sessions to prevent bogus advertisements. However, this doesn't prevent them from fat-fingering routes and black holing someone else's network. (ie. level2peer(mom&pop ISP)-to-level1peer(ie. AT&T) isn't trusted implicitly like level1peer-to-level1peer).
Berbee is in good shape. Give them a look, www.berbee.com
God, would someone take the lead on class action lawsuit. This has it written all over it.
Because
A) it wastes bandwidth
B) everyone is responsible for security, even moron users who think their computer should be as easy to use as a VCR and never take care of it
C) it costs money to have this extra bandwidth to be used unecessarily
Hey folks, the professional community is already dealing with Nimda. What makes you think a municipality(aka red-tape land, everyone's favorite themepark) is going to be able to move on this? Now worry about state laws requiring public facilities to have filtering..... just a start.
What kind of Token Ring switches are being used? Is your network SRB or TSRB? Secondly, Does your switching infrastructure support TrBrf/TRCrf? Isolate your port on its own TrBrf & TrCrf. That should more than isolate you.
This is nothing new. If you look back at the Reagan erra, that was when a lot of controls ran their course. Businesses found that many things were cheaper to produce. In fact, it was enough that you don't hear the crap you did 10-15 years ago about 'environmental controls' costing too much and making a company go out of business.
They'll be 2-3k patches past initial updates. My mother could look them over for 'back doors'. Then it's just a matter of watching for a 'big door' by evaluating all of their patches on regular intervals. Otherwise, let them pile on the help.
I would hope that if they do go through with it, that people still publish to BugTraq before they notify ISC. This is a load.
Intel will do with it like they do with their other products, they'll kill it. They have the 3com USR syndrom where they can't make anything right.
Onkyo TX-DS989 & Bose work just fine.