From yesterday's Diary: "The ISC would like to go out on a limb and predict that the Internet will not vaporize into a cloud of nothingness this Thursday, but if it does, it's been our pleasure to help stave off its inevitable annihilation this long. "
I like the Internet Storm Center's comment about this "news". From today's diary:
"The ISC would like to go out on a limb and predict that the Internet will not vaporize into a cloud of nothingness this Thursday, but if it does, it's been our pleasure to help stave off its inevitable annihilation this long."
Old enough, so the first 'generation' of SSD companies is already out of business. E.g. Platypus (I think that was the name) build RAM based solid state drives, some of them in the right shape and with appropriate disk interfaces to match existing disk drives.
I looked into SSD for a database at one point. But I found that you can get almost the same performance by using lots of drives in a fast RAID setup. Striping the content over multiple disks does wonders! And its much cheaper.
E.g. look at something like a 12 disk setup with RAID 5+1. You got a full mirror, and essentialy 4-8 times the speed of a single drive. So you are already close to the 'order of magnitude' they SSD drives claim.
So called "white worms" have the habbit of installing their own backdoors (e.g. like Nachi). In many cases, they only fix the vulnerability to gain a stronger foothold in the system and prevent others from taking them away.
Other than that, the usual rule applies: The difference between a criminal and a security expert is written permission!
SANS still provides WIFI at conferences. It is not intended to reach into classrooms to avoid distractions. But typically, you can still get it in the classrooms that are close to the terminal room. SANS does use a 'nocat' style authentication system. Its unencrypted as everyone would have to use the same WEP key anyway. Well, but after all, thats what tools like ipsec and ssh are for.
There are too many 'incidents exchange', 'intrusion detection', 'log', 'firewall log' standards to count. Many of them IETF drafts. IDMF has a little bit of traction. There is one format the music industry came out with to ease notifications of ISPs....
Do we need yet another "standard", or do we just need ISPs that are actually reading/handling any kind of abuse notice. Some are great about this, but others just route them to/dev/null.
Ok. What I don't get: Why did they go after the guy with wiretap charges in the first place?
There are two different laws for two different things:
(1) Wiretap: covers communication on the wire
(2) Electronic Privacy Act: covers stored messages on a server
An ISP is allowed to look at neither unless there are some special exemptions (and getting a better deal from Amazon is not one of them). The Privacy Act is actually much stricter in some cases then the wiretap act.
Recently, Chinese govt. planted stories like this to justify its push to further control and restrict internet Cafes.
At first, it was a fire in Beijing. Now, Internet Cafe's have to pay hefty fines for even the smallest fire code violation (e.g. $500 if a single plastic trashcan is found).
Next, a story was heavily publicized about two teenagers who fell asleep on a train track after a couple days of gaming (of course, they got killed by a train). This story was taken to further clamp down on Internet Cafes. E.g. permits where given close to Schools or residential areas, and the Cafes had to close down over night.
This story is probably just pushed to justify the next wave. Maybe a police officer in front of every Cafe to "protect" it from the mob?
On the other hand, the Internet is used more and more for grass roots activism. Human rights organizations count about 50 or so Chinese that are currently imprisoned because of statements they published on the net.
regular phone service is secure (and does not need encryption) since the network it is using is considered secure. Climping up on phone poles is not only a lot of work, but gets you easily arrested as well.
On the internet on the other hand, you can take your pick of about 500k ready to use backdoored hosts at any day. Just pick one close enough to your target. If you are desperate, buy one of the routers in the path on IRC for a few stolen CC numbers.
What we need is a simple and fast encryption method for VoIP. Similar to the phone network, it doesn't have to be 'Fed prove'. This may make it possible to come up with something simple that will not cause excessive latency.
Of course, one issue with VoIP is that its kind of stretching the limits of current infrastructure. So any added overhead may break it.
Its rather easy to identify and "decrypt" VoIP traffic. VoIP traffic sticks out as its all UDP on particular ports where all packets have the same size.
Commercial VoIP providers do not encrypt (Vonage, Packet8,...). Any encryption overhead would easily cause too much latency. They are kind of running 'on the edge' anyway.
With encryption from the client to the providers SIP proxy, you would at least get a protection from the kids that 0wn your ISPs routers. But without, you are open all the way
One issue is that companies do not tell users what they are actually buying. Users do not want to buy "GPSM" or "3G" or "ATM". They want a fast network for a good price. Somehow companies have to tell them just that.
For example, here in the US 3G services are sold by AT&T as "MWave" and Sprint as "Vision". Neither vendor actually explains users why they want these services.
On the other hand, Verizon is doing pretty well by just simply explaining users that they provide clearer calls/better coverage. Users don't care that part of the trick is 3G and such.
China has a Maglev train (In Shanghai. From city to airport). It was build by Siemens and opened a few months back. Many technical issues as well, but its questionable how much patents this company in VA has to sell, given that a maglev train is working without them.
The screen shots show a latency in the 2 second range. Why so long? Are they actually bouncing off some satellite with their dishes;-).
BTW: This data is actually bad news for wireless networks. It tells you that you will have more and more interference issues as more people use them. Forget about full WLAN coverage from east to west coast.;-)
Well, looks like T-Online is getting a bargain. Time Warner paid 106 Billion for AOL. From the articles, T-Online is offering only 1 Billion. At that 10 cents to a dollar, maybe you got enough money;-) .
T-Online got probably the most useless abuse department of all major ISPs. I wonder what they will do to AOL? Gut whatever security they got to make it profitable?
A plasma screen is not an LCD monitor. It takes MUCH more power to run then a TV. Some plasmas can take up to 1000 W !!! Thats about as much as a vacuum cleaner and 5-10 times more than a TV.
Plasma screens have to be much brighter then LCD monitors. While LCD monitors use less power then a conventional TV (or monitor), large format Plasmas chew up way more electrons.
Blaster.B, which is the version this person is alleged to have written, is a very simple variation. Shouldn't take more than 10 minutes to write using a hex editor. All he did was change the filename and a couple of the 'Bill' strings.
On the other hand: its kind of like someone walking past a masacre, picking up the gun the culprit left and shooting everyone who still twitches.
Slashdot Mirror
From yesterday's
Diary:
"The ISC would like to go out on a limb and predict that the Internet will not vaporize into a cloud of nothingness this Thursday, but if it does, it's been our pleasure to help stave off its inevitable annihilation this long. "
I like the Internet Storm Center's comment about this "news". From today's
diary:
"The ISC would like to go out on a limb and predict that the Internet will not vaporize into a cloud of nothingness this Thursday, but if it does, it's been our pleasure to help stave off its inevitable annihilation this long."
Old enough, so the first 'generation' of SSD companies is already out of business. E.g. Platypus (I think that was the name) build RAM based solid state drives, some of them in the right shape and with appropriate disk interfaces to match existing disk drives.
I looked into SSD for a database at one point. But I found that you can get almost the same performance by using lots of drives in a fast RAID setup. Striping the content over multiple disks does wonders! And its much cheaper.
E.g. look at something like a 12 disk setup with RAID 5+1. You got a full mirror, and essentialy 4-8 times the speed of a single drive. So you are already close to the 'order of magnitude' they SSD drives claim.
So called "white worms" have the habbit of installing their own backdoors (e.g. like Nachi). In many cases, they only fix the vulnerability to gain a stronger foothold in the system and prevent others from taking them away.
Other than that, the usual rule applies: The difference between a criminal and a security expert is written permission!
SANS still provides WIFI at conferences. It is not intended to reach into classrooms to avoid distractions. But typically, you can still get it in the classrooms that are close to the terminal room. SANS does use a 'nocat' style authentication system. Its unencrypted as everyone would have to use the same WEP key anyway. Well, but after all, thats what tools like ipsec and ssh are for.
Hm. Taking over the Jumbotron is probably the ultimate "Capture the Flag" contest.
There are too many 'incidents exchange', 'intrusion detection', 'log', 'firewall log' standards to count. Many of them IETF drafts. IDMF has a little bit of traction. There is one format the music industry came out with to ease notifications of ISPs....
/dev/null.
Do we need yet another "standard", or do we just need ISPs that are actually reading/handling any kind of abuse notice. Some are great about this, but others just route them to
Ok. What I don't get: Why did they go after the guy with wiretap charges in the first place?
There are two different laws for two different things:
(1) Wiretap: covers communication on the wire
(2) Electronic Privacy Act: covers stored messages on a server
An ISP is allowed to look at neither unless there are some special exemptions (and getting a better deal from Amazon is not one of them). The Privacy Act is actually much stricter in some cases then the wiretap act.
A paper with step by step instructions on how to update a virgin Windows XP system can be found here: SANS Reading Room: Windows XP, surviving the first day (PDF)
I can't make out rings nor rectangles in that
picture. But I clearly see a big cache of WMD in the lower left corner.
to justify its push to further control and restrict internet Cafes.
At first, it was a fire in Beijing. Now, Internet
Cafe's have to pay hefty fines for even the smallest fire code violation (e.g. $500 if a single plastic trashcan is found).
Next, a story was heavily publicized about two teenagers who fell asleep on a train track after a couple days of gaming (of course, they got killed by a train). This story was taken to further clamp down on Internet Cafes. E.g. permits where given close to Schools or residential areas, and the Cafes had to close down over night.
This story is probably just pushed to justify the next wave. Maybe a police officer in front of every Cafe to "protect" it from the mob?
On the other hand, the Internet is used more and more for grass roots activism. Human rights organizations count about 50 or so Chinese that are currently imprisoned because of statements they published on the net.
regular phone service is secure (and does not need encryption) since the network it is using is considered secure. Climping up on phone poles is not only a lot of work, but gets you easily arrested as well.
On the internet on the other hand, you can take your pick of about 500k ready to use backdoored hosts at any day. Just pick one close enough to your target. If you are desperate, buy one of the routers in the path on IRC for a few stolen CC numbers.
What we need is a simple and fast encryption method for VoIP. Similar to the phone network, it doesn't have to be 'Fed prove'. This may make it possible to come up with something simple that will not cause excessive latency.
Of course, one issue with VoIP is that its kind of stretching the limits of current infrastructure. So any added overhead may break it.
Didn't openssl have ASN.1 issues recently? Did MSFT copy some of the code ;-) ?
BTW: Interesting timeline of more to come
Better keep checking for updates.
128 kBits/sec! Quite a bit up from the ealire 100Bit/sec. Too bad Mars is too far from the next CO to qualify for DSL
(first post?)
Its sad to see the "Star Trek Franchise" fail so misserably. But after Nemesis and Enterprise, it seems like they finally killed it for good.
:-/
The entire idea of a pre-quel sounded hokie from the start. But well, I did try to like it
I still think Deep Space 9 was the best series. It could have used one or two more seasons.
yes, you will get an untabble line. But it wouldn't be able to connect to anyone outside of the VPN.
Its rather easy to identify and "decrypt" VoIP traffic. VoIP traffic sticks out as its all UDP on particular ports where all packets have the same size.
Commercial VoIP providers do not encrypt (Vonage, Packet8,...). Any encryption overhead would easily cause too much latency. They are kind of running 'on the edge' anyway.
With encryption from the client to the providers SIP proxy, you would at least get a protection from the kids that 0wn your ISPs routers. But without, you are open all the way
One issue is that companies do not tell users what they are actually buying. Users do not want to buy "GPSM" or "3G" or "ATM". They want a fast network for a good price. Somehow companies have to tell them just that.
/better coverage. Users don't care that part of the trick is 3G and such.
For example, here in the US 3G services are sold by AT&T as "MWave" and Sprint as "Vision". Neither vendor actually explains users why they want these services.
On the other hand, Verizon is doing pretty well by just simply explaining users that they provide clearer calls
Even today, the most annoying spammers are not using their own computers, but insteady they are bouncing e-mail off virus infected and trojaned PCs.
So 8,000 emails / day is fine, if you have a couple thousands relays to pick from.
China has a Maglev train (In Shanghai. From city to airport). It was build by Siemens and opened a few months back. Many technical issues as well, but its questionable how much patents this company in VA has to sell, given that a maglev train is working without them.
The screen shots show a latency in the 2 second range. Why so long? Are they actually bouncing off some satellite with their dishes ;-).
;-)
BTW: This data is actually bad news for wireless networks. It tells you that you will have more and more interference issues as more people use them. Forget about full WLAN coverage from east to west coast.
Well, looks like T-Online is getting a bargain. Time Warner paid 106 Billion for AOL. From the articles, T-Online is offering only 1 Billion. At that 10 cents to a dollar, maybe you got enough money ;-) .
T-Online got probably the most useless abuse department of all major ISPs. I wonder what they will do to AOL? Gut whatever security they got to make it profitable?
Plasma screens have to be much brighter then LCD monitors. While LCD monitors use less power then a conventional TV (or monitor), large format Plasmas chew up way more electrons.
Blaster.B, which is the version this person is alleged to have written, is a very simple variation. Shouldn't take more than 10 minutes to write using a hex editor. All he did was change the filename and a couple of the 'Bill' strings.
On the other hand: its kind of like someone walking past a masacre, picking up the gun the culprit left and shooting everyone who still twitches.