I have seen this before. It's called "The Stand" and is a book from Stephen King.
There are lots of books and movies about this matter.
What really surprises me is that only now (after all the books, movies and publicity about Biological Warfare) the Lawmakers are starting to think about it.
Planning ahead ? I don't think so. Only in the sense that nobody tried it yet. But the idea has been around for a long time.
Thats not the worst of it.
Even worst are those people that forward HOAXes e-mail warnings thinking they are making a great service to humankind. And they are so sure of themselves. After all, it gotta be true. They read it on the Web !
Actually, the EULA for NT4 Server states that it shouldn't be used for mission-critical tasks, such as controlling a nuclear power plant. The
reason? It contains Java technology.
Yeah, right. I'm sure thats the only reason...
Please, excuse me now while I fall from my chair laughting...
What I really would like to see is a Nuclear Reactor on Redmond, controled by M$ products. If the product fails, it just meltsdown. I think that is the only way to make M$ products suck a little less. Considering, of course, that they could fix them in less then 24h, that is the aproximate time it would take the reactor do meltdown with the first rWin crash.
No, really. What scares the sh1t out of me is that someone would seriously consider AND use M$ products in a nuclear facility.
Re:What to do? COUNTERSUE FOR WRONGFUL ARREST!
on
Adobe Backs Down
·
· Score: 1
You are completly off the mark here.
THe whole point is that Adobe didn't filed a complain. It only tipped to the law enforcement that Dimitry "might" be doing something wrong, and it would be nice if they investigated.
Now, Adobe decides to play nice and back off ? Nah. It's quite simple. They got what they wanted. Dimitry was in jail, the soft is no longer sold on USA, and fear of prision has spread far and wide. On top of that, by taking the atitude of Defending Dimitry now, they manage to get out of this as the good guys.
Actualy, this kind of thing makes me sick. If they want to play hardball, at least have the decency to say it's so. ---
It's more likely to stop you from being promoted, once they can't get someone to replace you.
And, be real. If you are a bad employee, that wouldn't stop you from being fired.
That being said, I hope you were kidding.:-) But I have to said it, in case someone took your comments seriously.
So, instead of having a script kid hacking into your site to download MP3, leaving lots of logs where you can pick you the flaw and fix it, you make certain that only the super hacker who will try stealing your CC number, putting a stealth module into your kernel, and don't leave you any trace of his presence will get into your system.
Really, how bad is an attack by a script kid ? The worst they will do is to deface your site. In that case, you simply restore your backups, after fixing the flaw.
As stated before (in a lot of posts), there is no 100% secure software. If I'm going to be hacked (after using all the security methods I can), I prefer to be hacked by a script kid.
I agree with your point, and would like to expand a little further.
Lets just say that is obscurity is the only method I use, it's really bad. If I have other methods, it's just not important (was you rightly stated).
Hell, lets just get it a little more clear, in case someone missed my point here:
Security though obscurity is either bad (in case thats the only method you use), or plain useless (if you use other methods).
That being said, lets just consider that hiding the dust under the carpet is still a very use method, and someone needed to make certain they have some article to justify their salaries.
It's quite possible to prove anything one the paper. On real life, thats another matter entirely. We all have seen the efects of security though obscurity, and sufered with it. A gram of fact means more then a ton of theories.
Please, lets not assume that layoffs equals a company going downhill.
As we well know, in todays competitive environment, a company has to adapt. I have seen in the past companies improving the quality of their products after a layoff. How can we outsiders tell what these layoffs represent ? We simply can't.
We really don't know what kind of people are being kicked off. How can we be sure that they were not getting the the way ? Or maybe SuSe just plans to handle some positions to third party companies, which is not always a good thing, but is not always bad either.
A think people that see these layoffs as a bad sign are a little ahead of themselves. We should wait and see what happens.
Which just agree with my initial statement (the mutt+w3m comment was kind of a side note).
But this brings another problems that I think we forgot to mention. Almost no software safe of anything. Lets just consider a buffer overflow in glibc (as we had in the past). This would cause havoc on a great number of applications, even tho these applications are safe by themselves.
I have a feeling this is way too offtopic, but... Alas, if only someone had done this to Microsoft in the times of MSDOS,
But they did. PCDOS (IBM) was released togheter with MSDOS. Then, we had DR-DOS, Novell-DOS and some others.
The point is not that MSDOS was better, but that Microsoft had a better, yet controvertible, marketing aproch.
They actualy use the same Ranking mechanism. The only diference is that they are "smarter", and do so in a better order.
I'm sure everybody remember the Amazon.com 1-Click patente (links/updates, please). I would not be surprised if they managed to patente the Ranking mechanism.
Ever posted to a mailing list ?
I kind of remember a version of Outlook (Express?) that automagicaly recorded every sender of every e-mail it touched on its address book.
I hope you are not serious, or you are in for a nasty surprise.
What is this binary exploit something on your machine ? Remember a worm that was attacking RH machine some time ago ?
Never, ever, not even consider running something you are not VERY sure of in a production machine. If you want to test it, make sure you do so in a machine you can easily reinstall, and that is not connected to any network.
Any mailer that displays even plain HTML as soon as you view the message can be attacked
Errr, I'm still waiting to see any HTML attack agains my mutt+w3m reader.
Now, be serious. The problem is not HTML nor JavaScript, but the bad programing skills used to create some mail readers.
Or simply plain stupidity, like OutLook running lost of things by itself.
The is that it is impossible (thanks God) to create a computer program that is smarted then a human being (at least, smarter then us/. reader). So, if someone create some kind of smart program that decides to do this or that on itself, you can be sure that someone will outwit the program and create a hell.
Thanks God someone noticed it !
I do sometimes (often?) mis-spell. The main reason is that I'm not a native english speaker (I'm brazilian). But this time, it was a joke (or a joke attempt:-)), as you rightly noticed.
DO you know what is scarier ? Lemme tell you a little about my cable provider, Virtua, here in Brazil.
4Gig/month, lots of filters (basic service ports, like 80/tcp, 21/tcp etc), including a filter that block any protocol that is not TCP, UDP or ICMP.
But do you want to know what is even worst ? There are no competitors. This is the only Cable provider in the whole state. So, I have to stick with it.
Guess how much I have to pay for a 128Kbits (thats right, 128K cable) ? Something like US$40/month. Plus the Cable TV signature (which we must have to have the cable access), which is something like US$35/month.
Wonderful... ---
I don't see shipping with everything turned off as something bad. Conectiva Linux is shipped like this for some time now. I'm pretty sure other distrubutions also are, and I never saw anyone complaining about it.
Much better then having tens of daemons running just after a fresh install.
And this is not even advanced security features. It's plain basic: don't leave anything running that you don't need to. ---
I don't know if I should agree with you or not.
By one point of view, you are right, of course. Ppl are really forgeting how to right and speak correctly.
On the other side, isn't that the effect of the natural language development ? How many ppl do you know that say "thy" anymore ?
But I do agree that there is a very thin line between ignorance of the language, and the language historical evolution.
This kind of thing remembers me too much of things like "Security Thorugh Obscurity". It's simply insane. People will have ideas. Thats a point. Of corse, if I have contact with inteligent people, I would have more ideas. But they simply cannot ban everything, so it's a worthless effort.
There is no use to pretend something one doesn't like simply does not exist. It will continue existing, no matter if one acknoledges it or not.
Anyway, China is not what it used to be anymore. It's useless to close the bay after the horse has escaped.
No, you got it all wrong. The point is that having jokes written by IBM engineers will be more profitable. Guess how many jokes does it take for you to throw the darn machine out of the window ? Then, you have to buy a new one
Slashdot Mirror
I have seen this before. It's called "The Stand" and is a book from Stephen King.
There are lots of books and movies about this matter.
What really surprises me is that only now (after all the books, movies and publicity about Biological Warfare) the Lawmakers are starting to think about it.
Planning ahead ? I don't think so. Only in the sense that nobody tried it yet. But the idea has been around for a long time.
---
I totaly agree.But my example would have been The AOL Virus.
Boy, that made my stomach hurt from laughting.
---
Thats not the worst of it.
Even worst are those people that forward HOAXes e-mail warnings thinking they are making a great service to humankind. And they are so sure of themselves. After all, it gotta be true. They read it on the Web !
---
Actually, the EULA for NT4 Server states that it shouldn't be used for mission-critical tasks, such as controlling a nuclear power plant. The reason? It contains Java technology.
... ...
Yeah, right. I'm sure thats the only reason
Please, excuse me now while I fall from my chair laughting
---
What I really would like to see is a Nuclear Reactor on Redmond, controled by M$ products. If the product fails, it just meltsdown. I think that is the only way to make M$ products suck a little less. Considering, of course, that they could fix them in less then 24h, that is the aproximate time it would take the reactor do meltdown with the first rWin crash.
No, really. What scares the sh1t out of me is that someone would seriously consider AND use M$ products in a nuclear facility.
---
A quick and simple answer:
obscurity != secrecy
---
You are completly off the mark here.
THe whole point is that Adobe didn't filed a complain. It only tipped to the law enforcement that Dimitry "might" be doing something wrong, and it would be nice if they investigated.
Now, Adobe decides to play nice and back off ? Nah. It's quite simple. They got what they wanted. Dimitry was in jail, the soft is no longer sold on USA, and fear of prision has spread far and wide. On top of that, by taking the atitude of Defending Dimitry now, they manage to get out of this as the good guys.
Actualy, this kind of thing makes me sick. If they want to play hardball, at least have the decency to say it's so.
---
It's more likely to stop you from being promoted, once they can't get someone to replace you. :-) But I have to said it, in case someone took your comments seriously.
And, be real. If you are a bad employee, that wouldn't stop you from being fired.
That being said, I hope you were kidding.
---
So, instead of having a script kid hacking into your site to download MP3, leaving lots of logs where you can pick you the flaw and fix it, you make certain that only the super hacker who will try stealing your CC number, putting a stealth module into your kernel, and don't leave you any trace of his presence will get into your system.
Really, how bad is an attack by a script kid ? The worst they will do is to deface your site. In that case, you simply restore your backups, after fixing the flaw.
As stated before (in a lot of posts), there is no 100% secure software. If I'm going to be hacked (after using all the security methods I can), I prefer to be hacked by a script kid.
---
I agree with your point, and would like to expand a little further.
Lets just say that is obscurity is the only method I use, it's really bad. If I have other methods, it's just not important (was you rightly stated).
Hell, lets just get it a little more clear, in case someone missed my point here:
Security though obscurity is either bad (in case thats the only method you use), or plain useless (if you use other methods).
That being said, lets just consider that hiding the dust under the carpet is still a very use method, and someone needed to make certain they have some article to justify their salaries.
It's quite possible to prove anything one the paper. On real life, thats another matter entirely. We all have seen the efects of security though obscurity, and sufered with it. A gram of fact means more then a ton of theories.
---
Please, lets not assume that layoffs equals a company going downhill.
As we well know, in todays competitive environment, a company has to adapt. I have seen in the past companies improving the quality of their products after a layoff. How can we outsiders tell what these layoffs represent ? We simply can't.
We really don't know what kind of people are being kicked off. How can we be sure that they were not getting the the way ? Or maybe SuSe just plans to handle some positions to third party companies, which is not always a good thing, but is not always bad either.
A think people that see these layoffs as a bad sign are a little ahead of themselves. We should wait and see what happens.
---
Which just agree with my initial statement (the mutt+w3m comment was kind of a side note).
But this brings another problems that I think we forgot to mention. Almost no software safe of anything. Lets just consider a buffer overflow in glibc (as we had in the past). This would cause havoc on a great number of applications, even tho these applications are safe by themselves.
---
I have a feeling this is way too offtopic, but ...
Alas, if only someone had done this to Microsoft in the times of MSDOS,
But they did. PCDOS (IBM) was released togheter with MSDOS. Then, we had DR-DOS, Novell-DOS and some others.
The point is not that MSDOS was better, but that Microsoft had a better, yet controvertible, marketing aproch.
---
They actualy use the same Ranking mechanism. The only diference is that they are "smarter", and do so in a better order.
I'm sure everybody remember the Amazon.com 1-Click patente (links/updates, please). I would not be surprised if they managed to patente the Ranking mechanism.
---
Ever posted to a mailing list ?
I kind of remember a version of Outlook (Express?) that automagicaly recorded every sender of every e-mail it touched on its address book.
---
I hope you are not serious, or you are in for a nasty surprise.
What is this binary exploit something on your machine ? Remember a worm that was attacking RH machine some time ago ?
Never, ever, not even consider running something you are not VERY sure of in a production machine. If you want to test it, make sure you do so in a machine you can easily reinstall, and that is not connected to any network.
---
I did. There was a buffer overflow in Pine a year or two ago.
---
Any mailer that displays even plain HTML as soon as you view the message can be attacked /. reader). So, if someone create some kind of smart program that decides to do this or that on itself, you can be sure that someone will outwit the program and create a hell.
Errr, I'm still waiting to see any HTML attack agains my mutt+w3m reader.
Now, be serious. The problem is not HTML nor JavaScript, but the bad programing skills used to create some mail readers.
Or simply plain stupidity, like OutLook running lost of things by itself.
The is that it is impossible (thanks God) to create a computer program that is smarted then a human being (at least, smarter then us
---
Thanks God someone noticed it ! :-)), as you rightly noticed.
I do sometimes (often?) mis-spell. The main reason is that I'm not a native english speaker (I'm brazilian). But this time, it was a joke (or a joke attempt
---
DO you know what is scarier ? Lemme tell you a little about my cable provider, Virtua, here in Brazil. ...
4Gig/month, lots of filters (basic service ports, like 80/tcp, 21/tcp etc), including a filter that block any protocol that is not TCP, UDP or ICMP.
But do you want to know what is even worst ? There are no competitors. This is the only Cable provider in the whole state. So, I have to stick with it.
Guess how much I have to pay for a 128Kbits (thats right, 128K cable) ? Something like US$40/month. Plus the Cable TV signature (which we must have to have the cable access), which is something like US$35/month.
Wonderful
---
I don't see shipping with everything turned off as something bad. Conectiva Linux is shipped like this for some time now. I'm pretty sure other distrubutions also are, and I never saw anyone complaining about it.
Much better then having tens of daemons running just after a fresh install.
And this is not even advanced security features. It's plain basic: don't leave anything running that you don't need to.
---
I don't know if I should agree with you or not.
By one point of view, you are right, of course. Ppl are really forgeting how to right and speak correctly.
On the other side, isn't that the effect of the natural language development ? How many ppl do you know that say "thy" anymore ?
But I do agree that there is a very thin line between ignorance of the language, and the language historical evolution.
---
This kind of thing remembers me too much of things like "Security Thorugh Obscurity". It's simply insane. People will have ideas. Thats a point. Of corse, if I have contact with inteligent people, I would have more ideas. But they simply cannot ban everything, so it's a worthless effort.
There is no use to pretend something one doesn't like simply does not exist. It will continue existing, no matter if one acknoledges it or not.
Anyway, China is not what it used to be anymore. It's useless to close the bay after the horse has escaped.
---
No, you got it all wrong. The point is that having jokes written by IBM engineers will be more profitable. Guess how many jokes does it take for you to throw the darn machine out of the window ? Then, you have to buy a new one
---
I guess the whole point is that a celular phone, or this kind of dummie, can't yell at you "BEWARE THAT TRUCK !" when you are looking the wrong way.
---