Anyone remember that old army recruitment song? ("There's no life like it...")
Makes you want to reconsider becoming an Admin
I'd never reconsider being an Admin.. I love this job... situations such as the author describes don't happen that often for me (only once or twice a year,) but when they do, they're a rush.. I get a kick out of stress (as long as I have sufficient time to recouperate:)
Anyway, MOST of the tools I mentioned above will also LOG activity from inside the network, which is something a lot of people seem to ignore in their security policy. A company using masquerading can not use it, and use the Apache proxying module or FWTK to log accesses
Why can't someone using masquerading log accesses? I do it all the time (actually, using Squid instead of Apache.) Simply block outgoing connections to remote port 80 (and 1080 & 8080, if you're paranoid) to force users to use the proxy, then use masquerading (with connection logging - yes, you CAN do that, through a command-line switch) for everything else.
You seem to think that masq and proxying are mutually exclusive, which is not the case.
Security is certainly difficult, but network security is totally possible
If you're suggesting that it's possible to totally secure your network, then you're just plain wrong.
It doesn't matter how often you do a "sweep", it doesn't matter what tools you use, you can only scan for holes that you know about. What happens when a cracker finds a hole that you DIDN'T know about?
Any sysadmin that believes his/her network is impregnable is a poor sysadmin, because they delude themselves that they're better than they are. Remember the old adage "Pride goeth before a fall."
Great... Phase5 is probably the largest vapourware company in the world (percentage-wise - number of products they announce, relative to number that actually ship,) and has the _WORST_ tech-support - even worse than Microsoft...
I guess this puts an end to QNX's interest in the Amiga market..
Hmm.. interesting theory - what if QNX is aware of Phase5's shortcomings, and is doing this to save face? (We couldn't carry through with our promises because the hardware company we partnered with dropped the ball...)
Go to comp.sys.amiga.marketplace, find someone selling a Video Toaster/Flyer, and be done with it..
This is the best NLE you're going to find for the money.. consumer-level PC stuff just doesn't cut it (unless all you're going to do is editing footage of your Kid's little league games.)
If you want to be a video hacker, then use Linux, if you want to be a videographer, use something else; someone has already invented that wheel.
I know that it's a long shot, but if it's the only shot you have, it doesn't cost anything to try..
Yeah but that opens up a real problem with most people namely that you have to go through them to get any info.
Yes, but if you don't have the headers, it's better than nothing..
Who says that anyone will do anything?
There's no guarantee that anyone will do anything, but if you don't ask, you're guaranteed that they they won't... (it's like the lottery - you can't win if you don't buy a ticket:o)
Most ISP's are anti-spam, so it stands to reason that they might be inclined to help..
It is possible to trace an email back to the originating server, assuming that you have the co-operation of the sysadmins of the relay at the other end; he knows from where the bounce originated, and (probably) has the message ID (but if not, he has the 'source' email address:o).. ask the sysadmin for that server (hopefully s/he's a Linux user:o) to parse his/her sendmail logs and find out where it came from.
She runs windows and Linux (mandrake - which I installed to make my father happy..)
Computers will _NEVER_ be simple enough for her to use, as evidenced by this exchange.
Mom: "Your aunt just sent me a letter she wrote in WordPerfect, but I can't open it. When I go into WordPerfect and select OPEN, it's not there."
Me: "Well, where did you save it? You'll need to tell WordPerfect where to look for the file."
Mom: "Oh God, that's horrible, I can't do that - it's all too complicated."
Someone who WON'T (not can't, but refuses to try to) understand directories isn't someone who will ever be able to use a computer. fully. "A system your mother could use" is _NOT_ a good yardstick by any means.
How do they plan to keep Mr x, who downloaded a $.99 song, from sending it to everybody he knows?
They probably don't.
There will always be pirates burning CD's, and people illegally trading MP3's.. but I'm guessing that the fact that it's simple and cheap enough to do it legally now will encourage people who honor the artists to do buy legitimate copies.
Personally, I think this is a _GREAT_ idea (one I had some time ago, too..) I'm hoping that this becomes widespread, so I never have to go to a store and waste time *hoping* that they carry a CD I want (which doesn't happen often - usually the CD's I want to buy are 'out of stock'.)
The key behind this is convenience - it's inexpensive, and it's easy.
OK, So Keanu isn't a great actor, but at least he's better than some other action heroes ("ADRIAN!") - he can at least articulate more than three or four words in a movie...
Seemingly it will not be realised on VHS - is this true? Can someone confirm?
It will not be made available for purchase on VHS, but will be made available for rental.
Honestly though, I can't think of a better reason to buy a DVD player :o)
I guess you've never heard of the MAPS RBL (Mail Abuse Protection System Realtime Blackhole List.)
This is pretty much what you describe, and isn't limited to "the top ten ISPs" - any ISP can use it (in fact, Sendmail 8.9 has a configuration macro to use their database.)
MAPS is very successful, and has been turned against such 'giants' as Microsoft and AOL (forcing them to close open relays.)
all POP servers only accept email with a valid reply-to address, which they querey
First, a nitpick... POP servers don't accept mail from ANYONE. The POP protocol(s) are for retrieving mail, not sending. SMTP is for sending (which is probably what you meant.)
But anyway, what happens if someone forges the reply-to address? It's pretty simple to do - just open your mailbox preferences and type in the address of someone else.. if the servers you're talking about check the ip address to see if this is a valid email relay for this address (which isn't possible to do - for a number of reasons) then all you'd need to do is set the return address to someone else on that server...
If your friend couldn't spam, then it's because he/she didn't know what they were doing. (for example, it's pretty trivial to set up your own SMTP server, and use that as a mail relay...)
something like "ipchains -A forward -p 80 -d 10.0.0.1/255.255.255.0 -j MASQ" would forward port 80 to 10.0.0.1
I don't think that will work...
According to the ipchains man page, that command will masquerade all traffic destined to 10.0.0.x using protocol 80 (unknown protocol, my/etc/services goes from AH (51) to OSPF(89)..) since ipchains only works with TCP(6), UDP(17), and ICMP(1), my guess is that the command would error out.
In any case, ipchains won't do what you're trying here... some sort of redirection program is necessary.
This is the problem with software patents - NONE of them make sense.
Splitting the screen so the compared source files are both displayed simultaneously (which is what the article implied - if I am not wrong) is just a logical extension. Is it not?
That's irrelevant... what's relevant is that the USPTO didn't (and wouldn't) know that, so they grant the patent.. once that's done, it's simply a matter of the person with the most $$$$ (to spend on lawyers) wins the suit.
The problem is that while you can't patent something that's "obvious", the body that decides what's obvious and what isn't doesn't know anything about software, and therefore just grants them; once that's done, you have to go to court if someone decides that you're infringing on them.
I doubt it crashed..(roxen has an automatic restart function that would restart the server in most cases anyway,)
More than likely Aleph has the # of accepts set too low, and hasn't enabled http keep-alives.... (it's a pretty "busy" site - lots of connections requred for each page..)
Place blame where blame resides, in the lumber company that cuts the trees and the people who buy the end products.
I agree with you... it's like I'm always saying, why do people always blame the poor, innocent cocaine dealers? Place blame where blame resides, in the Coca farmers that grow the plants, and the druggies who buy the end product.
Maybe blaming the stores that sell it IS putting blame where blame resides.
----------------- "Sometimes you have to take an opposing point of view to make people understand you." - Moe Berg (paraphrased)
They really should delay a week or two to allow a catch-up on technology.
Sorry, that was one of the terms.. the Linux people are not allowed to use any patches that did not exist (or were not publicly available) before April 5, 1999.
Also, (reading between the lines) they have to use Apache.
This is a set-up, pure and simple. Gee, getting hardware that one OS is tuned for, and the other OS doesn't support, then comparing them. Red Hat should have just published a press release that they wouldn't participate until more equitable hardware was used.
I tried going to Mindcraft's site to look for the terms, but the site was down... could it be that the server got attacked by the latest DOS last night?:)
I can't recall the number of times I've been asked how to fix something telco related (anyone here ever deal with Ascend products?) - my favourite reply: "Wave a dead chicken in the air and paw through some goat entrails. Should fix it right up." (although I got a nasty look when I recommended this to the head of a Catholic school:)
Yes, this is a great position; some sort of government watchdog group would probably be the best place to start... if you're in the US, you could always try here
Be prepared for an uphill battle - most people in power are pro-corporate welfare (which this would be considered..) think of your congressman, his first line of defense would probably be "but we NEED to spend money on this, because it keeps all those citizens employed."
This would probably work better in other countries, where that particular defense wouldn't work... (for you Canadians reading, try The Canadian Taxpayer Federation
But it didn't seem like a movie. Just a conglomeration of skits put together that on their own were hilarious.
This is exactly what Myers movies are about... actually, your comment above is almost exactly what I heard someone say about Wayne's World... and that really is a great movie... (if you like that sort of humor...) I think that Myers has a knack for turning sketch comedy into movies, which is a real talent..
It lists PCMCIA support as "poor" - I don't know where the writer got this tidbit, but I've never had any problems with PCMCIA under Linux (with a variety of different notebooks)
Something that astounded everyone here in our tech department was the fact that Linux recognized and installed an IBM Home&Away modem/NIC with no problems at all... this after they had given up trying to get these cards to work at all in Win98/NT.. (they could sometimes get the NIC part to work under 95, if they screwed around enough, using exactly the right combination of DLLs & drivers..)
Just my 2 bits..
Not all of Canada got to see it...
on
Bootlegging Buffy
·
· Score: 2
In Edmonton, the only channel that carries it is YTV, and they didn't show it.. (They claimed that "it was made unavailable to them by their supplier".)
It was a shame, because I (um, I mean my wife:o) was looking forward to seeing it..
So don't go around thinking that Canada is THAT much less restrictive than the US..
Anyone remember that old army recruitment song? ("There's no life like it...")
:)
Makes you want to reconsider becoming an Admin
I'd never reconsider being an Admin.. I love this job... situations such as the author describes don't happen that often for me (only once or twice a year,) but when they do, they're a rush.. I get a kick out of stress (as long as I have sufficient time to recouperate
Anyway, MOST of the tools I mentioned above will also LOG activity
from inside the network, which is something a lot of people seem to
ignore in their security policy. A company using masquerading can not
use it, and use the Apache proxying module or FWTK to log accesses
Why can't someone using masquerading log accesses? I do it all the
time (actually, using Squid instead of Apache.) Simply block outgoing
connections to remote port 80 (and 1080 & 8080, if you're paranoid)
to force users to use the proxy, then use masquerading (with
connection logging - yes, you CAN do that, through a command-line
switch) for everything else.
You seem to think that masq and proxying are mutually exclusive, which
is not the case.
Security is certainly difficult, but network security is totally
possible
If you're suggesting that it's possible to totally secure your
network, then you're just plain wrong.
It doesn't matter how often you do a "sweep", it doesn't matter what
tools you use, you can only scan for holes that you know about. What
happens when a cracker finds a hole that you DIDN'T know about?
Any sysadmin that believes his/her network is impregnable is a poor
sysadmin, because they delude themselves that they're better than they
are. Remember the old adage "Pride goeth before a fall."
Great... Phase5 is probably the largest vapourware company in the
world (percentage-wise - number of products they announce, relative to
number that actually ship,) and has the _WORST_ tech-support -
even worse than Microsoft...
I guess this puts an end to QNX's interest in the Amiga market..
Hmm.. interesting theory - what if QNX is aware of Phase5's
shortcomings, and is doing this to save face? (We couldn't carry
through with our promises because the hardware company we partnered
with dropped the ball...)
Go to comp.sys.amiga.marketplace, find someone selling a Video Toaster/Flyer, and be done with it..
This is the best NLE you're going to find for the money.. consumer-level PC stuff just doesn't cut it (unless all you're going to do is editing footage of your Kid's little league games.)
If you want to be a video hacker, then use Linux, if you want to be a videographer, use something else; someone has already invented that wheel.
Geez, $3500!?!?!?!
For that kind of money, it had better include a little arm that extends and scratches my balls when they itch...
Yes, it looks nice, but I'm not about to go get a second mortgage for a CHAIR.
I know that it's a long shot, but if it's the only shot you have, it doesn't cost anything to try..
:o)
Yeah but that opens up a real problem with most people namely that you have to go through them to get any info.
Yes, but if you don't have the headers, it's better than nothing..
Who says that anyone will do anything?
There's no guarantee that anyone will do anything, but if you don't ask, you're guaranteed that they they won't... (it's like the lottery - you can't win if you don't buy a ticket
Most ISP's are anti-spam, so it stands to reason that they might be inclined to help..
It is possible to trace an email back to the originating server, :o) .. ask the sysadmin for that server (hopefully s/he's a :o) to parse his/her sendmail logs and find out where it
assuming that you have the co-operation of the sysadmins of the relay
at the other end; he knows from where the bounce originated, and
(probably) has the message ID (but if not, he has the 'source' email
address
Linux user
came from.
Try This ISP .. well worth a look.
They have very good resources on setting up minimal mgetty dial-up, as
well as using Portslave (Radius client)
My mother has a computer...
She runs windows and Linux (mandrake - which I installed to make my
father happy..)
Computers will _NEVER_ be simple enough for her to use, as evidenced
by this exchange.
Mom: "Your aunt just sent me a letter she wrote in WordPerfect, but I
can't open it. When I go into WordPerfect and select OPEN, it's not
there."
Me: "Well, where did you save it? You'll need to tell WordPerfect
where to look for the file."
Mom: "Oh God, that's horrible, I can't do that - it's all too
complicated."
Someone who WON'T (not can't, but refuses to try to) understand
directories isn't someone who will ever be able to use a computer.
fully. "A system your mother could use" is _NOT_ a good yardstick by
any means.
How do they plan to keep Mr x, who downloaded a $.99 song, from
sending it to everybody he knows?
They probably don't.
There will always be pirates burning CD's, and people illegally
trading MP3's.. but I'm guessing that the fact that it's simple and
cheap enough to do it legally now will encourage people who honor the
artists to do buy legitimate copies.
Personally, I think this is a _GREAT_ idea (one I had some time ago,
too..) I'm hoping that this becomes widespread, so I never have to go
to a store and waste time *hoping* that they carry a CD I want (which
doesn't happen often - usually the CD's I want to buy are 'out of
stock'.)
The key behind this is convenience - it's inexpensive, and it's easy.
I can see it now...
the script says:
Rocky: "bblwauh muhmwwbm dahhumn ddn ANNDNNDUUUHHH!"
but Sly goes:
"dahhumn ddn ADRIAN!"
And the director is head to say:
"CUT! Perfect Sly! You said a word - We can use that!"
OK, So Keanu isn't a great actor, but at least he's better than some
other action heroes ("ADRIAN!") - he can at least articulate more than
three or four words in a movie...
Seemingly it will not be realised on VHS - is this true? Can someone
confirm?
It will not be made available for purchase on VHS, but will be made
available for rental.
Honestly though, I can't think of a better reason to buy a DVD player
:o)
I guess you've never heard of the MAPS RBL (Mail Abuse Protection System Realtime Blackhole List.)
This is pretty much what you describe, and isn't limited to "the top ten ISPs" - any ISP can use it (in fact, Sendmail 8.9 has a configuration macro to use their database.)
MAPS is very successful, and has been turned against such 'giants' as Microsoft and AOL (forcing them to close open relays.)
all POP servers only accept email with a valid reply-to address, which they querey
First, a nitpick... POP servers don't accept mail from ANYONE. The POP protocol(s) are for retrieving mail, not sending. SMTP is for sending (which is probably what you meant.)
But anyway, what happens if someone forges the reply-to address? It's pretty simple to do - just open your mailbox preferences and type in the address of someone else.. if the servers you're talking about check the ip address to see if this is a valid email relay for this address (which isn't possible to do - for a number of reasons) then all you'd need to do is set the return address to someone else on that server...
If your friend couldn't spam, then it's because he/she didn't know what they were doing. (for example, it's pretty trivial to set up your own SMTP server, and use that as a mail relay...)
something like
/etc/services goes from AH (51) to OSPF(89)..) since ipchains only works with TCP(6), UDP(17), and ICMP(1), my guess is that the command would error out.
"ipchains -A forward -p 80 -d 10.0.0.1/255.255.255.0 -j MASQ" would forward port 80 to 10.0.0.1
I don't think that will work...
According to the ipchains man page, that command will masquerade all traffic destined to 10.0.0.x using protocol 80 (unknown protocol, my
In any case, ipchains won't do what you're trying here... some sort of redirection program is necessary.
Is it just me, or does this make no sence.
This is the problem with software patents - NONE of them make sense.
Splitting the screen so the compared source files are both
displayed simultaneously (which is what the article implied - if I am
not wrong) is just a logical extension. Is it not?
That's irrelevant... what's relevant is that the USPTO didn't (and
wouldn't) know that, so they grant the patent.. once that's done, it's
simply a matter of the person with the most $$$$ (to spend on lawyers)
wins the suit.
The problem is that while you can't patent something that's "obvious",
the body that decides what's obvious and what isn't doesn't know
anything about software, and therefore just grants them; once that's
done, you have to go to court if someone decides that you're
infringing on them.
THis is why ALL software patents suck...
I doubt it crashed..(roxen has an automatic restart function that
would restart the server in most cases anyway,)
More than likely Aleph has the # of accepts set too low, and hasn't
enabled http keep-alives.... (it's a pretty "busy" site - lots of
connections requred for each page..)
Place blame where blame resides, in the lumber company that cuts the trees and the people who buy the end products.
I agree with you... it's like I'm always saying, why do people always blame the poor, innocent cocaine dealers? Place blame where blame resides, in the Coca farmers that grow the plants, and the druggies who buy the end product.
Maybe blaming the stores that sell it IS putting blame where blame resides.
-----------------
"Sometimes you have to take an opposing point of view to make people understand you." - Moe Berg (paraphrased)
They really should delay a week or two to allow a catch-up on
:)
technology.
Sorry, that was one of the terms.. the Linux people are not allowed to
use any patches that did not exist (or were not publicly available)
before April 5, 1999.
Also, (reading between the lines) they have to use Apache.
This is a set-up, pure and simple. Gee, getting hardware that one OS
is tuned for, and the other OS doesn't support, then comparing them.
Red Hat should have just published a press release that they wouldn't
participate until more equitable hardware was used.
I tried going to Mindcraft's site to look for the terms, but the site
was down... could it be that the server got attacked by the latest DOS
last night?
I can't recall the number of times I've been asked how to fix something telco related (anyone here ever deal with Ascend products?) - my favourite reply: "Wave a dead chicken in the air and paw through some goat entrails. Should fix it right up." (although I got a nasty look when I recommended this to the head of a Catholic school :)
VooDoo all the way!
Yes, this is a great position; some sort of government watchdog group would probably be the best place to start... if you're in the US, you could always try here
Be prepared for an uphill battle - most people in power are pro-corporate welfare (which this would be considered..) think of your congressman, his first line of defense would probably be "but we NEED to spend money on this, because it keeps all those citizens employed."
This would probably work better in other countries, where that particular defense wouldn't work... (for you Canadians reading, try The Canadian Taxpayer Federation
But it didn't seem like a movie. Just a conglomeration of skits put
together that on their own were hilarious.
This is exactly what Myers movies are about... actually, your
comment above is almost exactly what I heard someone say about Wayne's
World... and that really is a great movie... (if you like that sort
of humor...) I think that Myers has a knack for turning sketch
comedy into movies, which is a real talent..
Just my 2c
It lists PCMCIA support as "poor" - I don't know where the writer got this tidbit, but I've never had any problems with PCMCIA under Linux (with a variety of different notebooks)
Something that astounded everyone here in our tech department was the fact that Linux recognized and installed an IBM Home&Away modem/NIC with no problems at all... this after they had given up trying to get these cards to work at all in Win98/NT.. (they could sometimes get the NIC part to work under 95, if they screwed around enough, using exactly the right combination of DLLs & drivers..)
Just my 2 bits..
In Edmonton, the only channel that carries it is YTV, and they didn't show it.. (They claimed that "it was made unavailable to them by their supplier".)
:o) was looking forward to seeing it..
It was a shame, because I (um, I mean my wife
So don't go around thinking that Canada is THAT much less restrictive than the US..