How are these normally installed--inline or failover?
The reason I ask is that if they're implemented inline, they might be able to kinda act as a proxy for the A/C. That could be important because apparently Van Eck/Tempest phreaking has become somewhat passe' in fedland. Instead it's (apparently) possible to observe what a computer is doing by reading the power lines. No, I don't have references; it's really a he-said-she-said thing.
But what I'm wondering is if you could use a flywheel to clean and sterilize your A/C current usage.
CERT spend their time validating what they produce rather than posting at the first opportunity. This is why they are the top resource for security people online, and why amateur offerings like BugTraq don't get the same recognition from serious organisations.
Hooey.
I am a security professional (I get paid for writing IDS signatures) and traditionally CERT would be the LAST place I would expect to find out about a vulnerability. It's changed dramatically in the last six months, though. They've even scooped bugtraq once or twice.
Now we know why they've picked up the pace. Expect to see them become a dotcom and go public.
You may also want to check out Intrusion Detection: An Introduction to Internet Surveillance, Correlation, Trace Back, Traps, and Response by Edward Amoroso. I think it's a good introduction to the topics which covers a bunch of the theory behind this stuff.
I've also looked at Intrusion Dection: Network Security Beyond the Firewall by Terry Escamilla, and it's not bad.
I know I've got another book lying around somewhere, but I can't find it and don't remember who wrote it.:(
"IT is easy to run a secure computer system. You merely have to disconnect all dial-up connections and permit only direct-wired terminals, put the machine and its terminals in a shielded room, and post a guard at the door." - F.T. Grampp and R. H. Morris.
Slashdot Mirror
How are these normally installed--inline or failover?
The reason I ask is that if they're implemented inline, they might be able to kinda act as a proxy for the A/C. That could be important because apparently Van Eck/Tempest phreaking has become somewhat passe' in fedland. Instead it's (apparently) possible to observe what a computer is doing by reading the power lines. No, I don't have references; it's really a he-said-she-said thing.
But what I'm wondering is if you could use a flywheel to clean and sterilize your A/C current usage.
CERT spend their time validating what they produce rather than posting at the first opportunity. This is why they are the top resource for security people online, and why amateur offerings like BugTraq don't get the same recognition from serious organisations.
Hooey.
I am a security professional (I get paid for writing IDS signatures) and traditionally CERT would be the LAST place I would expect to find out about a vulnerability. It's changed dramatically in the last six months, though. They've even scooped bugtraq once or twice.
Now we know why they've picked up the pace. Expect to see them become a dotcom and go public.
I've also looked at Intrusion Dection: Network Security Beyond the Firewall by Terry Escamilla, and it's not bad.
I know I've got another book lying around somewhere, but I can't find it and don't remember who wrote it. :(
"IT is easy to run a secure computer system. You merely have to disconnect all dial-up connections and permit only direct-wired terminals, put the machine and its terminals in a shielded room, and post a guard at the door." - F.T. Grampp and R. H. Morris.