We can spell just fine, but some people have issues dealing with homonyms (words that sound alike but are spelled differently and have different meanings. ie. See and Sea).
Out of curiousity, are you refering to? "real firewalls" (ie. Cisco PIX, etc.), "appliance" type firewalls (linksys, etc.), machines running as a firewall (Linux or Windows machine running firewalling software), "local firewalls" (machine running a piece of software to firewall itself.... marginally in the previous category but also includes things like ZoneAlarm or Symantec/McAfee Personal Firewall).
I would imagine that each group has its own probability of being cracked "easily", with the chance of a box being cracked getting lower toward the front of the list (all assuming proper configuration). I would think that for the average tech-person, a Firewall appliance should be relatively secure (and securable).
Please explain your position, I'm curious why you think they are just a deterrant?
Makes me glad I have a firewall between me and the internet (even at home for my LAN). I didn't even know about all the Popup spam until an article came around talking about it. It just hadn't been an issue. Yes, its better to be informed than clueless, but a decent firewall is still a help:)
It'd be nice to have more countries pull up and dock with the International Space Station, but I bet when they built it they just didn't put in enough garage space. I mean, it was already over-budget, what would the point of putting in docking for twelve, when a two car garage (with one in the driveway for emergencies) would suffice?
Of course, the important thing most ISS astronauts are probably asking themselves is: Do they Deliver?;)
For now, yes. It does however allow Ogg to gain more traction in the market. First it was used mostly by home hobbiests, and Video Game makers. This could signal a move more toward mainstream hobbiests. If enough move then it might make sense to for some players to start abandoning mp3 (although I doubt this will happen anytime soon).
Remember, mp3 had a huge lead and dominates the market. A move away from that is sure to be slow, but if no alternative exists, then the holders of the mp3 patents can extort any price they'd like.
Speaking of Star Trek, since Klingons have violet blood (based on one of the movies), it's probably based on hemerythrin (also iron-based and found in some invertebrates here).
Interesting... but I would think twice before telling a Klingon that he has a lot in common with the physiology of Earth Invertibrates.
He might think you shouldn't have any backbone either:p
Can current intrusion detection systems be set up to handle "Zombie logging"?
I can see a host being hit with a DDoS. It should be possible to log as many of the Zombies as possible (IP and DNS?) along with a timestamp (synced to an internationally recognized source if available), and then have a tool roll through that log either in "real time" to pull down DNS and run a check against the system in question (perhaps using the nmap to get the OS) or perhaps to also check for "known methods of communication" between Zombies and Zombie Masters (should we just call the Liches?... Necromancers sounded too Cool... these people are scum). You should then be able to generate a breakdown by ISP with detailed information that could be mailed to the ISP (either individually, or more reasonably, bundled together), listing the information on the Zombie and its use in the DDoS attack.
I realise that several of these features rely on Internet accessability. If you have only one pipe and it is being saturated, then the best you could hope for is logging, and then analysing. If you could have any sort of a backup connection for that one machine though (a dial-up account perhaps?) then this might be an interesting option.
Its exactly that additude that has kept me from wearing a T-shirt I picked it up. The front is blank, the back read in big white letters (on a black T-shirt): Bomb disposal technician. If you see me running, try to keep up!
I just get the feeling too few people have a sense of humor now-a-days:(
The nice part about that is that you still need (potentially), the second connection to bridge a secure and insecure network.
I just have this (probably paranoid) fear that if Intel starts putting APs on every mobo, then soon after there will be exploits to enable/break into/or crash machines with those chips. Just load airBlow (like snort but different) and watch those machines that are listening go through convulsions. At least with an AP, they can be easily rebooted, are single purpose devices, and can be locked down by security. I don't trust PCs in users hands the same way:)
This is of course not including the user who decides to enable their AP so they can wander around the office and connect to their PC with their PDA, or perhaps bridges the internal network via their PC/AP so they can browse from the bathroom (seen something similar to happen).
Yes these things can happen today, but including these abilities on the Motherboard are going to make it that much easier for a clueless user to get it half-right. They'll turn things on, which will work (as they should), but might not be as secure as they should be. I just don't trust that vendors will get the default configuration right, and most users don't [know|care|know enough to care].
I think what he is suggesting is that Case Manufacturers should be enthusiastic about this since it increases the chances of a person needing a new Case, so they should be pushing along with MotherBoard Manufacturers to make this happen.
Can every (better) mac also act as an Access Point and Router for that 802.11 card or is it just usable to connect TO Access Points?
I don't think just putting an 802.11 card into a PC (mac or intel), can make it act as an AP, which is what Intel is talking about doing. Having a PC be able to act as an AP and Router isn't neccesarily a bad thing, but considering that most of those PCs will be running Windows, I would bet most of them will also not be properly secured. This could be very serious, not so much for home users, but in the corporate world.
On the other hand, I guess I can think of it as job security.
The Entire point of producing a console system is to have complete dominance over what software can run on it anyway.
Maybe NOW it is, since Microsoft introduced the concept of loss-leading on the hardware...made up by software licensing.
Umm... you do realize that this was the case with CONSOLE systems since way before Microsoft got involved?
Sony and Nintendo have consistently sold console systems as loss-leaders with the plan to recoup costs primarily from game licenses.
Not trying to stick up for MS, but they hardly *innovated* that particular tactic.
Try to remember that we are not talking about a general purpose computer, we are talking about a specific purpose, console system. If you don't like them, great, don't buy them. There are lots of games that are made for the PC (heck, I just broke down and bought my first console since the Atari 2600 'cause I didn't see the need).
A console is ENTIRELY about control.
The console manufacturer typically charged an exhorbitant fee for a dev kit.
They also charged premium prices for distribution.
For those charges, a game company would have access to a relatively captive audience (they already own the system, if they don't buy any games then its their loss), and a fixed set of hardware/software (so that they can specifically target the game... when done right).
Not saying that all development houses take advantage of everything, and recently there has been a trend toward a more open approach on the Dev kit side, but it still is preaty much about control.
You know, this sounds like what I remember from the Windows 3.1 days.
Companies were still somewhat used to people using DOS and knowing how to get around a shell. The installers were so-so and sometimes wouldn't uninstall.
Things started to unify quite a bit by the time Win95 and Win98 rolled through, and more or less by the end of Win98SE most companies had install/uninstall features that worked properly... but that was because there are only a few (outside of proprietary) INSTALL programs, like InstallShield (who was the official MS selected installer for a while).
I think Linux needs more unity for an INSTALL program, then you'll see the actual programs that get installed/uninstalled be more united.
It'll probably be much improved in ~2-3 years (with incrimental improvement until then as more and more package maintainers standardize things within a GUI)
Considering the tremendous amount of your time that these are taking up, has your employer considered charging the company making them (for those "rediculous" ones perhaps)?
If the item has been well researched (and is truly "in good faith") then it should be a relatively trivial matter for you to follow up, but if not then the filing company is basically asking YOUR company to perform the investigative phase for them... they should therefore be billed accordingly.
Actually, from what I understand, the "under penalty of purjory" bit in the DMCA is that the lawyers submitting the notice are swearing that they are authorized by the Copyright holder to be doing it, NOT that they are swearing a given complaint is correct.
Personally I think the law should be changed to the later so we can prosecute these bone-heads as apropriate for using scripted code without real checks as to what they found.
My comment was mostly in fun, agreeing with the initial poster that "profiling" certainly exists (and as much as I hate to admit it, it also one of the most basic forms of "looking for a suspicious character"). The danger comes when it is used independantly of other tools like... say... "evidence".
Of course the other part was a bit of pandering (i admit), that all of the "white-collar" crime that is being hyped in the media (Enron & Anderson for instance) is hurting the U.S. economy in ongoing ways that are being ignored.
We both agree that someone killing you is bad, usually its called murder. If someone is stealing my money to make themselves rich, its usuall called Theft (or in the case of some of these CEO's I might say Assault). While certainly not in the same class, they both sound like crimes to me.
(and as an FYI I live in New York and was working just a few blocks away from the WTC. Perhaps I just tend to have a much blacker sense of humor than I should. Hope I didn't offend.)
dark middle-eastern looking men are Terrorists... they hurt our economy by destroying resources, spreading fear, and general mayhem.
white balding men are Embezzalers and Stock Manipulators (for instance a certain umbrella organization or "canopy" group we can all think of), they hurt the economy by destroying competitors resources (money, clients, possible engagements/sales), spreading fear and...
Thanks, it was a fun read... my favorite bit is this for the "Request For Relief":
WHEREFORE Red Hat Respectfully Requests: A. A Permanent injunction restraining SCO and its oficers, directors, partners, agents, servents, employees and attorneys, and those persons in active concert or participation with SCO from representing by any means whatsoever, directly or indirectly, or doing any other acts or things calculated or likely to cause confusion, mistake or to decieve purchasers, buisness partners and/or investors into believing that Red Hat's LINUX products and/or the LINUX products used by Red Hat's customers and partners violates any of SCO's intelectual property or trade secret rights;
(emphesis and spelling mistakes mine... darn PDF file)
So... if the Injunction is filed... does that solve IBM's (their partner) problem?:)
I get the feeling that while SCO and MS (if MS is at all to blame for funding) were playing Chess, someone at Red Hat and IBM (if IBM is at all to blame for backing Red Hat) were practicing GO.
Slashdot Mirror
know.
We can spell just fine, but some people have issues dealing with homonyms (words that sound alike but are spelled differently and have different meanings. ie. See and Sea).
Okay,
:)
Why does it feal like I'm watching a guy on the street corner hustling a game of three card monty?
Of course its nice to be sitting here watching others point out the shills
Quite possibly/probably.
... marginally in the previous category but also includes things like ZoneAlarm or Symantec/McAfee Personal Firewall).
Out of curiousity, are you refering to?
"real firewalls" (ie. Cisco PIX, etc.), "appliance" type firewalls (linksys, etc.), machines running as a firewall (Linux or Windows machine running firewalling software), "local firewalls" (machine running a piece of software to firewall itself.
I would imagine that each group has its own probability of being cracked "easily", with the chance of a box being cracked getting lower toward the front of the list (all assuming proper configuration). I would think that for the average tech-person, a Firewall appliance should be relatively secure (and securable).
Please explain your position, I'm curious why you think they are just a deterrant?
joo R 0wn3d
:)
Makes me glad I have a firewall between me and the internet (even at home for my LAN). I didn't even know about all the Popup spam until an article came around talking about it. It just hadn't been an issue. Yes, its better to be informed than clueless, but a decent firewall is still a help
It'd be nice to have more countries pull up and dock with the International Space Station, but I bet when they built it they just didn't put in enough garage space. I mean, it was already over-budget, what would the point of putting in docking for twelve, when a two car garage (with one in the driveway for emergencies) would suffice?
;)
Of course, the important thing most ISS astronauts are probably asking themselves is:
Do they Deliver?
Either the same pilot or a similarly massed pilot to be named later? ;)
For now, yes. It does however allow Ogg to gain more traction in the market. First it was used mostly by home hobbiests, and Video Game makers. This could signal a move more toward mainstream hobbiests. If enough move then it might make sense to for some players to start abandoning mp3 (although I doubt this will happen anytime soon).
Remember, mp3 had a huge lead and dominates the market. A move away from that is sure to be slow, but if no alternative exists, then the holders of the mp3 patents can extort any price they'd like.
Interesting
He might think you shouldn't have any backbone either
Ah. ... my Naivite. I assumed that Zombie machines were being used directly for the DDoS and to hide those who are controlling the Zonbie machines.
I was just thinking of something similar.
... Necromancers sounded too Cool ... these people are scum). You should then be able to generate a breakdown by ISP with detailed information that could be mailed to the ISP (either individually, or more reasonably, bundled together), listing the information on the Zombie and its use in the DDoS attack.
Can current intrusion detection systems be set up to handle "Zombie logging"?
I can see a host being hit with a DDoS. It should be possible to log as many of the Zombies as possible (IP and DNS?) along with a timestamp (synced to an internationally recognized source if available), and then have a tool roll through that log either in "real time" to pull down DNS and run a check against the system in question (perhaps using the nmap to get the OS) or perhaps to also check for "known methods of communication" between Zombies and Zombie Masters (should we just call the Liches?
I realise that several of these features rely on Internet accessability. If you have only one pipe and it is being saturated, then the best you could hope for is logging, and then analysing. If you could have any sort of a backup connection for that one machine though (a dial-up account perhaps?) then this might be an interesting option.
Thoughts anyone?
Its exactly that additude that has kept me from wearing a T-shirt I picked it up. The front is blank, the back read in big white letters (on a black T-shirt): Bomb disposal technician. If you see me running, try to keep up!
:(
I just get the feeling too few people have a sense of humor now-a-days
Hmm maybe someone used their old Primestar Dish, and wanted to see what they would recieve within that 10 mile line-of-site limit? :)
Talk about a DDoS!
j/k
Yes, but don't worry ... It'll be back.
Absolutely true.
:)
The nice part about that is that you still need (potentially), the second connection to bridge a secure and insecure network.
I just have this (probably paranoid) fear that if Intel starts putting APs on every mobo, then soon after there will be exploits to enable/break into/or crash machines with those chips. Just load airBlow (like snort but different) and watch those machines that are listening go through convulsions. At least with an AP, they can be easily rebooted, are single purpose devices, and can be locked down by security. I don't trust PCs in users hands the same way
This is of course not including the user who decides to enable their AP so they can wander around the office and connect to their PC with their PDA, or perhaps bridges the internal network via their PC/AP so they can browse from the bathroom (seen something similar to happen).
Yes these things can happen today, but including these abilities on the Motherboard are going to make it that much easier for a clueless user to get it half-right. They'll turn things on, which will work (as they should), but might not be as secure as they should be. I just don't trust that vendors will get the default configuration right, and most users don't [know|care|know enough to care].
I think what he is suggesting is that Case Manufacturers should be enthusiastic about this since it increases the chances of a person needing a new Case, so they should be pushing along with MotherBoard Manufacturers to make this happen.
Can every (better) mac also act as an Access Point and Router for that 802.11 card or is it just usable to connect TO Access Points?
I don't think just putting an 802.11 card into a PC (mac or intel), can make it act as an AP, which is what Intel is talking about doing. Having a PC be able to act as an AP and Router isn't neccesarily a bad thing, but considering that most of those PCs will be running Windows, I would bet most of them will also not be properly secured. This could be very serious, not so much for home users, but in the corporate world.
On the other hand, I guess I can think of it as job security.
Umm
Sony and Nintendo have consistently sold console systems as loss-leaders with the plan to recoup costs primarily from game licenses.
Not trying to stick up for MS, but they hardly *innovated* that particular tactic.
Try to remember that we are not talking about a general purpose computer, we are talking about a specific purpose, console system. If you don't like them, great, don't buy them. There are lots of games that are made for the PC (heck, I just broke down and bought my first console since the Atari 2600 'cause I didn't see the need).
A console is ENTIRELY about control.
The console manufacturer typically charged an exhorbitant fee for a dev kit.
They also charged premium prices for distribution.
For those charges, a game company would have access to a relatively captive audience (they already own the system, if they don't buy any games then its their loss), and a fixed set of hardware/software (so that they can specifically target the game
Not saying that all development houses take advantage of everything, and recently there has been a trend toward a more open approach on the Dev kit side, but it still is preaty much about control.
Gee ... I would have thought that most people had moved on from Napster to BitTorrent, KAZAA or eDonkey/Overnet
You know, this sounds like what I remember from the Windows 3.1 days.
... but that was because there are only a few (outside of proprietary) INSTALL programs, like InstallShield (who was the official MS selected installer for a while).
Companies were still somewhat used to people using DOS and knowing how to get around a shell. The installers were so-so and sometimes wouldn't uninstall.
Things started to unify quite a bit by the time Win95 and Win98 rolled through, and more or less by the end of Win98SE most companies had install/uninstall features that worked properly
I think Linux needs more unity for an INSTALL program, then you'll see the actual programs that get installed/uninstalled be more united.
It'll probably be much improved in ~2-3 years (with incrimental improvement until then as more and more package maintainers standardize things within a GUI)
Considering the tremendous amount of your time that these are taking up, has your employer considered charging the company making them (for those "rediculous" ones perhaps)?
... they should therefore be billed accordingly.
If the item has been well researched (and is truly "in good faith") then it should be a relatively trivial matter for you to follow up, but if not then the filing company is basically asking YOUR company to perform the investigative phase for them
Actually, from what I understand, the "under penalty of purjory" bit in the DMCA is that the lawyers submitting the notice are swearing that they are authorized by the Copyright holder to be doing it, NOT that they are swearing a given complaint is correct.
Personally I think the law should be changed to the later so we can prosecute these bone-heads as apropriate for using scripted code without real checks as to what they found.
Karma Hogs
Absolutely true.
... say ... "evidence".
My comment was mostly in fun, agreeing with the initial poster that "profiling" certainly exists (and as much as I hate to admit it, it also one of the most basic forms of "looking for a suspicious character"). The danger comes when it is used independantly of other tools like
Of course the other part was a bit of pandering (i admit), that all of the "white-collar" crime that is being hyped in the media (Enron & Anderson for instance) is hurting the U.S. economy in ongoing ways that are being ignored.
We both agree that someone killing you is bad, usually its called murder.
If someone is stealing my money to make themselves rich, its usuall called Theft (or in the case of some of these CEO's I might say Assault). While certainly not in the same class, they both sound like crimes to me.
(and as an FYI I live in New York and was working just a few blocks away from the WTC. Perhaps I just tend to have a much blacker sense of humor than I should. Hope I didn't offend.)
Remember ...
... they hurt our economy by destroying resources, spreading fear, and general mayhem.
...
... maybe you have a point :)
dark middle-eastern looking men are Terrorists
white balding men are Embezzalers and Stock Manipulators (for instance a certain umbrella organization or "canopy" group we can all think of), they hurt the economy by destroying competitors resources (money, clients, possible engagements/sales), spreading fear and
hmmm
(emphesis and spelling mistakes mine
So
I get the feeling that while SCO and MS (if MS is at all to blame for funding) were playing Chess, someone at Red Hat and IBM (if IBM is at all to blame for backing Red Hat) were practicing GO.