I had a friend once that got all the AOL cds that he had and made them into a wall mosaic of the Q3 logo....
Then there are all those coasters out there....
and not to forget the various uses the cases can be used for... (ashtray for the metal ones, or cd cases, or dvd cases)....
What about internet2?
on
Web Zeitgeist
·
· Score: 3, Insightful
What about sites that are located in internet2. Wasnt that supposed have been created by the major research universities as a result of the commercialism of the "Regular" internet?
http://www.internet2.edu/
Many universities now have their own internal search engines that their students connect to... Many of those searches are not factored in these results either.
Many users go directly to their most used sites like cnn.com or espn.com and search for what they want there. Those results may not be factored in to the google or lycos results...
Then comes places like AOL that still have millions of users that do searches from within the AOL client which are not factored in either...
Re:Woe as me
on
Web Zeitgeist
·
· Score: 5, Interesting
Think of who the driving forces on the internet are today.... excluding the sex factor (which actually is relevant...) the major "new" influx of people on the internet are the 12-22 year olds that take their broadband access for granted.
There are millions of college students who are entering "wired" dorms and campuses that give them huge amounts of bandwidth to download stuff... so their interests would definitly show up as a factor in the results...
The problem with ettercap is that it allows for a man-in-the middle attack against ssh 1 implemenations. That includes seeing the cleartext data passing through....
Also... many routers/firewalls and access devices that have ssh only have ssh 1 capability.... so there goes that protection.... since ettercap can intercept those... (Yes... the fingerprint presented would not match.... but then how many would know to check the fingerprint?)
eh... all they had to do was tell the cabbie that if s/he took them there straight there would be a $10.00 in it for them so they save some time...
Its a well known non-secret that for a cabbie to make any money in Las Vegas they have to charge at least $10.00 a fare.... Thats why they got the scenic route..
Ahh. but the way that it is calculated is that if it takes only 3 mins per day deleting spam, it is costing the company 25 man hours per day to "just press delete". The real time spent on spam deleteion may be up to 6 times that number. Also... some of the spam may be from 3k to several megabytes. for a 100k spam message that reaches everyony, thats about 50mb of disk space. Multiply that by 20 spams/day, and the cost of disk storage for the mail server goes up..... (also the backup tape unit backing up the mail would have to increase in size)...
Spam costs the company ALOT more than the software and the 3 fulltime people when all the other stuff is added up...
The big difference betweem the two is that email spam the brunt of the cost is paid by the reciever, and NOT the sender. The reciever pays for their own email account. They pay their ISP for the bandwidth they use to download the mail. They pay the ISP for the storage disk space that the stuff takes. Most spammers also use "other" peoples servers to send their junk. The spam often has incorrect mail headers that end up causing more load on the servers sending the stuff, cauing more work for those servers and for those that have to handle the costs of "cleanup" and postmaster bounces....
Snail mail spam is paid for by the sender. The content of snail mail spam is regulated by the FTC under certain guidelines. The postoffice is getting paid to deliver it.
I no longer inform sites that they have a problem without a written agreement that says that they will not consider anything I tell them as "hacking" even if it is used as so.
This is because I used to have an informal agreement (this was back in 1997) with an ISP where I knew one of the lead tech support/security persons well (or so I thought; we went to Uni. together). I regulary informed him of problems with their system and possible security problems.
Well, one of their systems was used as a stepping stone to break into other systems. One of the issues that I had told them about {three months before} was the one that may have been used. They blamed me since at the time it was not a widely known issue and they needed a scapegoat to cover their asses with the customers whose data was compromised. Yes, I had an UNFriendly visit from the local law enforcement people.. Luckily the charges were finally dropped....
What they are getting is your full attention if something goes wrong with the configuration since you are probably going to care more if your own site is affected by any possible downtime that can occur.
IE: they get a tech monitoring it for free off-hours
Also, the pessimist might think that they are also making it so that if there IS a problem, then they have a "fall-guy" to cover them if it came down to it..
Unofrtunately, they would fall under "knowingly contributing" once they are informed of the "license breach" if they dont take immediate action to take down the "offending/breaching" item...
Does it preclude the person from saying "I found a flaw in PGP" without saying what the flaw is. [maybe even only saying THAT 30 days after sending the initial message to PGP corp informing them of the details of the flaw]...
This may put a little pressure on PGP corp to fix the flaw.... And alert others that there may be a flaw that can be found with a little digging on their own so that they can also inform PGP corp thus adding more pressure....
The ISP is probably counting the costs incurred trying to trace the problem. Exmaples.. {not from the real case}
Example: If they had to hire an outside consultant to find the problem. {problem being that there is more bandwidth being used than the number of modems in the area can use if legally configured). If that consultant charges the average going rate of $250/hr,at 40 hours to find it... thats 10k.
Equipment needed to insure QOS for other customers who were complaining? [example 2 headends at $30-50k a piece]
extra phone support/email techs needed to handle calls related to slowdowns on that segment during that time. 2 at $10/hr for 6-10 months 30-60k
some cell providers contract with some colleges/airports/convention centers to provide limited coverage. IE: you can get a signal maybe up to a mile aruound the campus/airport/center, but anywhere else is a hit-and-miss...
The issue is not just the number of downloads... Thare are other settings that would affect your bandwidth. Example: The supernode setting and if you are sharing any files....
As soon as your node becomes "live", you may be getting hundreds of query requests (searches...etc); This is made worse if you have a NAT/PAT router. This is because your node is advertising that it exists {remmember, it is seeing the OUTSIDE Public address as the sourse of the connection]; other nodes try to connect to it... but cant reach it so the connection has to time out first... {at up to 2 mins for a tcp port to time out].... this can mean thousands of connections opening to your public IP. If the isp throttles based on incoming connections, then your modem may disconnect...
RFC 2010 has the guidelines on what is needed for a root nameserver operations. Those guidelines had not been followed as closely as they should have. My feeling is that even as a result of the recent DOS attacks that they are trying to bring everything to ATLEAST rfc2010 standards and then maybe improve some more... esp. since that RFC was written in 1996, WAY before any of the "new" DOS attacks {like the ones that got Yahoo....) were so easy to do...
Actually the price of a new car already has the loss which the resale value would be to the car company tacked on. [one of the many reasons a car loses about %30 value once it leaves the dealership]
If they dont want to put in a flashable codec chip/ have the codec on the disc, why not make an "expansion" slot [pcmcia/cartridge/etc] that has the codec chips on them. That way you can update the chip whenever the "standard" changes...
of course the manufacturers may not want to implement this since they wont be able to have "built in obselecense" [or sell a new version with the new chip for $$$$$$]
The one that I loathe is the "hotbar" IE/outlook menu customiser (http://www.hotbar.com) which allows someone that has hotbar to send a card to a friend... but what the card does is download the hotbar and install it on the unknowning friends system...
It also contains some social engineering.. "Upgrade outlook - add COLOR to your Emails" link...
bah..
just had to remove these from about a gazillion corp machines... and the virus scanners dont see it as a virus...
"Yes, I know about Adaware, but average Sally or Joe computer user does not. They think that the copy of Norton bundled with their Gateway or Dell will protect them from everything bad and that it's okay to click on "Yes" when prompted "Do you want to install and run X by Spyware Inc.?""
Not only that... but many "Joe computer users" dont realize that the anti-virus that came bundled with their system is most probably a trial version (30 days or whatever); or that they have to pay for internet updates (liveupdate?).. The scanner may not even let them know that it is not being updated except in logs buried deep in the filesystem...
Slashdot Mirror
I had a friend once that got all the AOL cds that he had and made them into a wall mosaic of the Q3 logo....
Then there are all those coasters out there....
and not to forget the various uses the cases can be used for... (ashtray for the metal ones, or cd cases, or dvd cases)....
What about sites that are located in internet2. Wasnt that supposed have been created by the major research universities as a result of the commercialism of the "Regular" internet?
http://www.internet2.edu/
Many universities now have their own internal search engines that their students connect to... Many of those searches are not factored in these results either.
Many users go directly to their most used sites like cnn.com or espn.com and search for what they want there. Those results may not be factored in to the google or lycos results...
Then comes places like AOL that still have millions of users that do searches from within the AOL client which are not factored in either...
Think of who the driving forces on the internet are today.... excluding the sex factor (which actually is relevant...) the major "new" influx of people on the internet are the 12-22 year olds that take their broadband access for granted.
There are millions of college students who are entering "wired" dorms and campuses that give them huge amounts of bandwidth to download stuff... so their interests would definitly show up as a factor in the results...
The problem with ettercap is that it allows for a man-in-the middle attack against ssh 1 implemenations. That includes seeing the cleartext data passing through....
Also... many routers/firewalls and access devices that have ssh only have ssh 1 capability.... so there goes that protection.... since ettercap can intercept those... (Yes... the fingerprint presented would not match.... but then how many would know to check the fingerprint?)
right there tells me that you are not a lawyer... cause a lawyer would have also sent a bill......
eh... all they had to do was tell the cabbie that if s/he took them there straight there would be a $10.00 in it for them so they save some time...
Its a well known non-secret that for a cabbie to make any money in Las Vegas they have to charge at least $10.00 a fare.... Thats why they got the scenic route..
Ahh. but the way that it is calculated is that if it takes only 3 mins per day deleting spam, it is costing the company 25 man hours per day to "just press delete". The real time spent on spam deleteion may be up to 6 times that number. Also... some of the spam may be from 3k to several megabytes. for a 100k spam message that reaches everyony, thats about 50mb of disk space. Multiply that by 20 spams/day, and the cost of disk storage for the mail server goes up..... (also the backup tape unit backing up the mail would have to increase in size)...
Spam costs the company ALOT more than the software and the 3 fulltime people when all the other stuff is added up...
The big difference betweem the two is that email spam the brunt of the cost is paid by the reciever, and NOT the sender. The reciever pays for their own email account. They pay their ISP for the bandwidth they use to download the mail. They pay the ISP for the storage disk space that the stuff takes. Most spammers also use "other" peoples servers to send their junk. The spam often has incorrect mail headers that end up causing more load on the servers sending the stuff, cauing more work for those servers and for those that have to handle the costs of "cleanup" and postmaster bounces....
Snail mail spam is paid for by the sender. The content of snail mail spam is regulated by the FTC under certain guidelines. The postoffice is getting paid to deliver it.
I no longer inform sites that they have a problem without a written agreement that says that they will not consider anything I tell them as "hacking" even if it is used as so.
This is because I used to have an informal agreement (this was back in 1997) with an ISP where I knew one of the lead tech support/security persons well (or so I thought; we went to Uni. together). I regulary informed him of problems with their system and possible security problems.
Well, one of their systems was used as a stepping stone to break into other systems. One of the issues that I had told them about {three months before} was the one that may have been used. They blamed me since at the time it was not a widely known issue and they needed a scapegoat to cover their asses with the customers whose data was compromised. Yes, I had an UNFriendly visit from the local law enforcement people.. Luckily the charges were finally dropped....
chech them and their IP block in SPEWS
Do you really think its free?
What they are getting is your full attention if something goes wrong with the configuration since you are probably going to care more if your own site is affected by any possible downtime that can occur.
IE: they get a tech monitoring it for free off-hours
Also, the pessimist might think that they are also making it so that if there IS a problem, then they have a "fall-guy" to cover them if it came down to it..
Unofrtunately, they would fall under "knowingly contributing" once they are informed of the "license breach" if they dont take immediate action to take down the "offending/breaching" item...
blame the DMCA....
My question is:
Does it preclude the person from saying "I found a flaw in PGP" without saying what the flaw is. [maybe even only saying THAT 30 days after sending the initial message to PGP corp informing them of the details of the flaw]...
This may put a little pressure on PGP corp to fix the flaw.... And alert others that there may be a flaw that can be found with a little digging on their own so that they can also inform PGP corp thus adding more pressure....
They could require the webmaster or the forum moderator to take the comment out; or else they would face legal hassle.
The ISP is probably counting the costs incurred trying to trace the problem. Exmaples.. {not from the real case}
,at 40 hours to find it... thats 10k.
/email techs needed to handle calls related to slowdowns on that segment during that time. 2 at $10/hr for 6-10 months 30-60k
Example: If they had to hire an outside consultant to find the problem. {problem being that there is more bandwidth being used than the number of modems in the area can use if legally configured). If that consultant charges the average going rate of $250/hr
Equipment needed to insure QOS for other customers who were complaining? [example 2 headends at $30-50k a piece]
extra phone support
it can all add up very quickly.
some cell providers contract with some colleges/airports/convention centers to provide limited coverage. IE: you can get a signal maybe up to a mile aruound the campus/airport/center, but anywhere else is a hit-and-miss...
The issue is not just the number of downloads... Thare are other settings that would affect your bandwidth. Example: The supernode setting and if you are sharing any files....
As soon as your node becomes "live", you may be getting hundreds of query requests (searches...etc); This is made worse if you have a NAT/PAT router. This is because your node is advertising that it exists {remmember, it is seeing the OUTSIDE Public address as the sourse of the connection]; other nodes try to connect to it... but cant reach it so the connection has to time out first... {at up to 2 mins for a tcp port to time out].... this can mean thousands of connections opening to your public IP. If the isp throttles based on incoming connections, then your modem may disconnect...
RFC 2010 has the guidelines on what is needed for a root nameserver operations. Those guidelines had not been followed as closely as they should have. My feeling is that even as a result of the recent DOS attacks that they are trying to bring everything to ATLEAST rfc2010 standards and then maybe improve some more... esp. since that RFC was written in 1996, WAY before any of the "new" DOS attacks {like the ones that got Yahoo....) were so easy to do...
http://www.ietf.org/rfc/rfc2010.txt?number=2010
because it still uses the AIM protocol / port.... {only the application here is written in Java/ActiveX instead of C}
Actually the price of a new car already has the loss which the resale value would be to the car company tacked on. [one of the many reasons a car loses about %30 value once it leaves the dealership]
Yes..
... Now if you put linux on it... then thats another story.
If it had a MS product on it.
[the MS product has to go with the machine]
If they dont want to put in a flashable codec chip/ have the codec on the disc, why not make an "expansion" slot [pcmcia/cartridge/etc] that has the codec chips on them. That way you can update the chip whenever the "standard" changes...
of course the manufacturers may not want to implement this since they wont be able to have "built in obselecense" [or sell a new version with the new chip for $$$$$$]
The one that I loathe is the "hotbar" IE/outlook menu customiser (http://www.hotbar.com) which allows someone that has hotbar to send a card to a friend... but what the card does is download the hotbar and install it on the unknowning friends system...
It also contains some social engineering.. "Upgrade outlook - add COLOR to your Emails" link...
bah..
just had to remove these from about a gazillion corp machines... and the virus scanners dont see it as a virus...
even though it KILLS the systems efficency....
"Yes, I know about Adaware, but average Sally or Joe computer user does not. They think that the copy of Norton bundled with their Gateway or Dell will protect them from everything bad and that it's okay to click on "Yes" when prompted "Do you want to install and run X by Spyware Inc.?""
Not only that... but many "Joe computer users" dont realize that the anti-virus that came bundled with their system is most probably a trial version (30 days or whatever); or that they have to pay for internet updates (liveupdate?).. The scanner may not even let them know that it is not being updated except in logs buried deep in the filesystem...
That setting is not always there. It is driver specific (it changes the same item that the registry uses).