For situations where changes might cause loss of easy SSH access, It's not difficult to preserve the original networking config, fire up a screen session, issue a networking config restore/restart command followed by a sleep of $seconds, make your changes, restart networking, and terminate the screen session if everything worked out okay. I'm sure you thought of that, though. Right? I'm also sure you have out of band console access to servers that matter to you, just in case something goes wrong. Right?
Re:another example of having lost the plot
on
Fedora 17 Released
·
· Score: 2
At least for the server side of things, nobody in their right mind runs Fedora on production systems anyhow.
don't treat me like a 7 year ago girl looking for a new cuddly toy
And with that, I'm honestly afraid of the kind of replies you're apt (oh wait, they use yum... crap, that makes this worse) to get related to this release's codename.
Laugh while you can, fools! Shadowy government operatives in several key nations have leaked rumblings about the Final Ubuntu Codename, the ultimate mark of the End Times, the Last Word and Testament of the unholy Mark (Shuttleworth) of the Beast upon the blissfully ignorant army of Well Meaning Open Source Evangelists... and its name shall be the Ultimate Tyranny, the Final Cataclysm, the undeniable prelude to the Opening of the Heavens.
All will bow before the radiant glow of Zionist Zebra.
I'm sorry to have to tell you this, but unless you live in some unimaginably remote stretch of wilderness, cut off from civilization, hunting and gathering for your food with no contact with anyone outside your immediate and locally housed family unit, and managed to make your/. post via avian carrier routed through a few dozen otherwise unrelated handlers, then you are a number. You are actually several numbers, and while your sentiment is understandable, it is not grounded in reality. Again, sorry about that.
Or he could save himself a ton of grief and just use rdiff-backup, which happens to use librsync, produces incremental differential backups, stores said backups as files you can simply browse, works equally well on local and remote filesystems, and is dead simple to use. I've used it for years now on a ton of systems.
You're using an online password manager service, operated by someone else, on servers you don't control, to store login credentials for lots of other sites in one place? That seems like a disasterpiece waiting to happen.
Yes, I did review their site, including their security and privacy page. After digesting that information and reading over everything else on their site once more, I still see this is a pretty bad move. My primary concerns don't rest with the cryptographic algorithms being used, but relate much more to how those algorithms are implemented and how their infrastructure is controlled. That said, use whatever you like.
You don't appear to understand how data mining and behavioral modeling on a massive scale actually work. I'm sorry to have to be the one to inform you of this, but (1) you're leaking data like a sieve every day, regardless of what you think you are or aren't signed into, and (2) you are not the unique, delicate flower you might perceive yourself to be. If anything, a month's worth of your DNS queries is more than adequate to build a surprisingly accurate model of "you." Have fun with that thought, and think a little more about every point of contact you have every day in terms of communications. If you really need me to break if down further for you, let me know, and I'll be happy to get in touch with you off this thread.
You must have missed the fact that I was addressing potential concerns stemming from Google logging DNS queries and using them for (insert something horrible here). In fact, I said "Any DNS provider you use can do the same thing." This is a true statement. Note that I never said there weren't alternate DNS resolver services in operation; of course there are dozens, and they all theoretically suffer from the same potential issues as Google's service.
Specifically, one of the services you listed (OpenDNS) has taken a massive amount of flack in the not-too-distant past for intercepting NXDOMAIN responses and serving up ad pages instead of actually conveying the appropriate status. Varios ISPs have done precisely the same thing with their resolvers as well. Perhaps it will clarify things a bit to mention that I actually use 8.8.8.8 as my default resolver in many places, although I do run my own resolvers (unbound) in many other places as well. In any event, what was your point again?
Great, so go ahead and set up fully tunneled point to point VPN communications from your home to $somewhere_else. I'm really not kidding; you're completely free to implement this. However, if you're operating at that level of paranoia, make sure you're operating your own DC, with your own fiber, etc. Then of course that upstream provider could still sniff your traffic, so make sure everything is encrypted, ad infinitum. Have fun with all that.
I believe you've missed the point. Let me rehash it for you. Most people don't shut down their computers, or even put them into standby mode, when they step away from them to run a quick errand. For example, let's say a guy by the name of Leeth Axor decides he's temporarily grown weary of attaining world domination via proxy kiddie antics, and he's suddenly got a deep and abiding thirst for an ice cold Mega Caf Thirsty Boy Gulp fountain beverage. So he heads down to Snacks 'R Us on the corner to obtain said energy boosting goodness.
On the way to Snacks 'R Us, he's accosted by several young toughs who inquire as to the value of his footwear, but I digress. That's beside the point. What's important here is the fact that young Leeth has stepped away from his console (probably didn't even lock it, meaning his pants are indeed very baggy). Let's assume for the sake of argument that Captain Federali has a few of his mates monitoring our buddy Leeth's domicile via various means, including physical/photographic/videographic surveillance, in addition to Ultra Happy Fun network taps on his Super Badass Ultra Upgraded Home Broadband Connection, slurping up both his wireless emanations (did he really think SUPRHAX0R was a great key, really?) and sitting on a tap at the local coax/fiber interface as well. Thanks, Local ISP!
Now, the fun thing about in-depth physical and network surveillance is El Capitan's boys have a pretty darn good idea whether or not our hero's workstation is active or in a zombified state. You see, even when he's not actively using it to perpetrate acts of Great Justice upon the Evil Corporate Overlords of the world, that darn workstation is just a chirpin' away on the network anyhow. Sure, anything of value is ostensibly encrypted, but you gotta understand: that doesn't really matter here. Anyhow, I'm digressing again, I'll get to that last point in a minute. The key point here is this lets the Boys in Blue (well, cheap dark blue suits anyhow, or maybe coveralls to go with the construction logo on their van, whatever) know that ye olde workstation is, in fact, still lit up like a frat boy crashing his first sorority party on the gosh darned network.
Man, you know what? I was gonna keep this thing rolling, get into all sorts of fun anecdotes about MITM attacks, the potential for major CAs to be compromised by government actors, fun stories about naughty hardware/software injection combos, all sorts of stuff really. I really did mean to get to the part about how in the end it doesn't even matter if young Leeth actually powers his workstation off stone cold every time he goes to take a crap. The trouble is, I'm kinda tired right now, so you're just gonna have to wait until tomorrow (maybe, or maybe the next day, I dunno) for the rest of the gripping tale. Sorry to let you down tonight, but never fear, you'll get to hear the whole story eventually. Peace out for now, champ.
It's even more shocking to assume that he turned his computer off every time he walked away from it. Sure, the trial hasn't been held yet, and (probably) none of us were anywhere near his apartment when the deeds were done. That said, your post proves one thing quite handily: you're a complete idiot.
Go read the BBB entries for the referenced organization, cross reference that with what you can find with a couple of cursory Google queries, then come back and tell me it's a false flag operation. On the slim to none chance that it is, they still appear to deserve some serious attention.
On a side note, it's once again entirely depressing to see how the BBB actually operates with regard to horrendous behavior on the part of participating businesses.
Slashdot Mirror
Toy Story 2
Toy Story 3
For situations where changes might cause loss of easy SSH access, It's not difficult to preserve the original networking config, fire up a screen session, issue a networking config restore/restart command followed by a sleep of $seconds, make your changes, restart networking, and terminate the screen session if everything worked out okay. I'm sure you thought of that, though. Right? I'm also sure you have out of band console access to servers that matter to you, just in case something goes wrong. Right?
At least for the server side of things, nobody in their right mind runs Fedora on production systems anyhow.
don't treat me like a 7 year ago girl looking for a new cuddly toy
And with that, I'm honestly afraid of the kind of replies you're apt (oh wait, they use yum... crap, that makes this worse) to get related to this release's codename.
Rule 34. Just think about that. Now try not to have nightmares.
A warrant is a lot different from a subpoena. You should learn about subpoenas.
Laugh while you can, fools! Shadowy government operatives in several key nations have leaked rumblings about the Final Ubuntu Codename, the ultimate mark of the End Times, the Last Word and Testament of the unholy Mark (Shuttleworth) of the Beast upon the blissfully ignorant army of Well Meaning Open Source Evangelists... and its name shall be the Ultimate Tyranny, the Final Cataclysm, the undeniable prelude to the Opening of the Heavens.
All will bow before the radiant glow of Zionist Zebra.
You have no chance to survive make your time.
Prolly the only folk you are not a number for, are your local friends/family.
Nah, if he has a will, he's still a number for them.
I'm sorry to have to tell you this, but unless you live in some unimaginably remote stretch of wilderness, cut off from civilization, hunting and gathering for your food with no contact with anyone outside your immediate and locally housed family unit, and managed to make your /. post via avian carrier routed through a few dozen otherwise unrelated handlers, then you are a number. You are actually several numbers, and while your sentiment is understandable, it is not grounded in reality. Again, sorry about that.
Or he could save himself a ton of grief and just use rdiff-backup, which happens to use librsync, produces incremental differential backups, stores said backups as files you can simply browse, works equally well on local and remote filesystems, and is dead simple to use. I've used it for years now on a ton of systems.
Is that related to Shiny New Shit Syndrome? I hear many folks around here are afflicted with that illness.
You're using an online password manager service, operated by someone else, on servers you don't control, to store login credentials for lots of other sites in one place? That seems like a disasterpiece waiting to happen.
Yes, I did review their site, including their security and privacy page. After digesting that information and reading over everything else on their site once more, I still see this is a pretty bad move. My primary concerns don't rest with the cryptographic algorithms being used, but relate much more to how those algorithms are implemented and how their infrastructure is controlled. That said, use whatever you like.
Search rankings do not suffer from any manipulation, marketing driven or otherwise.
That's one of the funniest things I've read all day.
You don't appear to understand how data mining and behavioral modeling on a massive scale actually work. I'm sorry to have to be the one to inform you of this, but (1) you're leaking data like a sieve every day, regardless of what you think you are or aren't signed into, and (2) you are not the unique, delicate flower you might perceive yourself to be. If anything, a month's worth of your DNS queries is more than adequate to build a surprisingly accurate model of "you." Have fun with that thought, and think a little more about every point of contact you have every day in terms of communications. If you really need me to break if down further for you, let me know, and I'll be happy to get in touch with you off this thread.
You must have missed the fact that I was addressing potential concerns stemming from Google logging DNS queries and using them for (insert something horrible here). In fact, I said "Any DNS provider you use can do the same thing." This is a true statement. Note that I never said there weren't alternate DNS resolver services in operation; of course there are dozens, and they all theoretically suffer from the same potential issues as Google's service.
Specifically, one of the services you listed (OpenDNS) has taken a massive amount of flack in the not-too-distant past for intercepting NXDOMAIN responses and serving up ad pages instead of actually conveying the appropriate status. Varios ISPs have done precisely the same thing with their resolvers as well. Perhaps it will clarify things a bit to mention that I actually use 8.8.8.8 as my default resolver in many places, although I do run my own resolvers (unbound) in many other places as well. In any event, what was your point again?
Unbound is indeed fantastic. It's my resolver of choice, and I use it heavily.
Great, so go ahead and set up fully tunneled point to point VPN communications from your home to $somewhere_else. I'm really not kidding; you're completely free to implement this. However, if you're operating at that level of paranoia, make sure you're operating your own DC, with your own fiber, etc. Then of course that upstream provider could still sniff your traffic, so make sure everything is encrypted, ad infinitum. Have fun with all that.
Any DNS provider you use can do the same thing. If you don't like this, feel free to operate your own resolvers.
Obligatory
I truly believe this is obligatory.
I believe you've missed the point. Let me rehash it for you. Most people don't shut down their computers, or even put them into standby mode, when they step away from them to run a quick errand. For example, let's say a guy by the name of Leeth Axor decides he's temporarily grown weary of attaining world domination via proxy kiddie antics, and he's suddenly got a deep and abiding thirst for an ice cold Mega Caf Thirsty Boy Gulp fountain beverage. So he heads down to Snacks 'R Us on the corner to obtain said energy boosting goodness.
On the way to Snacks 'R Us, he's accosted by several young toughs who inquire as to the value of his footwear, but I digress. That's beside the point. What's important here is the fact that young Leeth has stepped away from his console (probably didn't even lock it, meaning his pants are indeed very baggy). Let's assume for the sake of argument that Captain Federali has a few of his mates monitoring our buddy Leeth's domicile via various means, including physical/photographic/videographic surveillance, in addition to Ultra Happy Fun network taps on his Super Badass Ultra Upgraded Home Broadband Connection, slurping up both his wireless emanations (did he really think SUPRHAX0R was a great key, really?) and sitting on a tap at the local coax/fiber interface as well. Thanks, Local ISP!
Now, the fun thing about in-depth physical and network surveillance is El Capitan's boys have a pretty darn good idea whether or not our hero's workstation is active or in a zombified state. You see, even when he's not actively using it to perpetrate acts of Great Justice upon the Evil Corporate Overlords of the world, that darn workstation is just a chirpin' away on the network anyhow. Sure, anything of value is ostensibly encrypted, but you gotta understand: that doesn't really matter here. Anyhow, I'm digressing again, I'll get to that last point in a minute. The key point here is this lets the Boys in Blue (well, cheap dark blue suits anyhow, or maybe coveralls to go with the construction logo on their van, whatever) know that ye olde workstation is, in fact, still lit up like a frat boy crashing his first sorority party on the gosh darned network.
Man, you know what? I was gonna keep this thing rolling, get into all sorts of fun anecdotes about MITM attacks, the potential for major CAs to be compromised by government actors, fun stories about naughty hardware/software injection combos, all sorts of stuff really. I really did mean to get to the part about how in the end it doesn't even matter if young Leeth actually powers his workstation off stone cold every time he goes to take a crap. The trouble is, I'm kinda tired right now, so you're just gonna have to wait until tomorrow (maybe, or maybe the next day, I dunno) for the rest of the gripping tale. Sorry to let you down tonight, but never fear, you'll get to hear the whole story eventually. Peace out for now, champ.
It's even more shocking to assume that he turned his computer off every time he walked away from it. Sure, the trial hasn't been held yet, and (probably) none of us were anywhere near his apartment when the deeds were done. That said, your post proves one thing quite handily: you're a complete idiot.
Go read the BBB entries for the referenced organization, cross reference that with what you can find with a couple of cursory Google queries, then come back and tell me it's a false flag operation. On the slim to none chance that it is, they still appear to deserve some serious attention.
On a side note, it's once again entirely depressing to see how the BBB actually operates with regard to horrendous behavior on the part of participating businesses.
The VP is apparently great at forcing the President's hand on major social issues.
I'll just go ahead and bookmark your post.