That really IS an interesting question. What is worse, bouncing it, or accepting it?
If an admin were to bounce it then the only way to take care of it *correctly* would be to parse the header and send it to the ISP of the luser who is infected. They will (hopefully) notify the owner of the affected machine, and THAT user gets to fix their machine. Or, they can boost the economy a little and hire someone to do it or go buy some AV software.
Now a better way in my opinion would be to blackhole all emails received. Why? Less processing. Less bandwidth. Propogation of the worm is stopped dead in its tracks. Those that have it will get rid of it soon enough (in theory) and the congestion caused by the worm will be less than if they were bounced.
Then, there are those like me who are still learning what being a sysadmin is, and rely on pre-made tools like this one:
http://www.impsec.org/email-tools/procmail-secur it y.html
As I understand it, it will either bounce OR blackhole the whole email.
Looks like I have some reading to do!
All comments, constructive critisism, and pointers are welcome!
Vbulletin is a PHP/MySQL based solution that I believe would work. It costs a bit of money ($200) but its well worth it. I run PHPbb at www.battleborncruisers.com and it works very nice for the price ($0)
You might want to check out the web pages for the MegaSquirt EFI controller, it tells tons of info about how to interface with the cars EFI system. For example, you'd have to use a A/D converter and hook into the Throttle Position Sensor in order to sense when the pedal is floored, and then play a certain song.
Its do-able for sure.
Do a google search for 'megasquirt' and you'll come up with tons of hits. They have an excellent mailing list too:)
I tried it on Linux in an Outlook 2000 environtment. It worked relatively good, except it does not handle attachments in the same manner. For example when changing shifts we'll send a "start here" type of email to our public address that we all check. Outlook lets you open those attachments (which are.eml files, a handoff of all the email that needs to be answered at the time of the shift change) and Evolution does not. It will only display them in series in the attachment window. Not very handy. So, I did not use it. I had to go back to Windows with Outlook 2002.
Get an APC 9210 power switch off Ebay. Then make sure that your system turns on immediatly when power is applied. Login to the power switch, turn on the power to that box, and viola.
We use these where I work for remote control of systems that have to be cold-booted every so often.
A few years ago I saw just a hint of the northern lights at Pyramid Lake here in Nevada, north of Reno. Very cool. Hopefully the same will happen again and my kids can see it.
I can't vouch for the migration abilities of Cpanel as I've never had to use them. I have almost 30 Plesk servers and I will say that as of their 6.0 version, IT SUCKS. Don't waste your money!
Cpanel rocks, I am extremely pleased with it and I have 4 servers running it right now.
FYI I host about 10,000 web sites at my data center, and have around 150 servers at last count. Some of those are dedicated server customers, who I also recommend Cpanel to.
On our servers we tend to do nothing more than make sure that we are firewalled so tight that even the ugliest security hole will go unnoticed by black-hats, because they won't be able to get that far. That being said, we STILL patch the servers once we see that the patch has been in use for a few days without problems by other users.
There's nothing better than installing a patch-for-a-patch. The recent SSH exploits come to mind, had to do everything twice!
I work for a hosting company, and yes we've had this problem, although not on such a massive scale. We found that by removing any catch-all type setup, and bouncing the email address, the end users are much happier. This of course doesn't change the loading on the server much. IF however you know which IP's the emails are being sent from, your ISP can block those IP's with iptables, or, even in their router.
I work at a colocation and dedicated server facility. We also host almost 12000 websites. You can put 100 websites and 250 mail users on ANY box you can find. Seriously. Celeron 400 or higher, 128MB ram although 256 will be better. Get a couple of 60GB IDE drives, and make a cron job to back up the critical files to the second drive nightly.
Oh yeah run Linux, less overhead = cheaper box = more $$ for stuff you REALLY need.
Re:Yeah but will they let you keep it?
on
Junkyard Wars Tour
·
· Score: 5, Funny
No but I know how to spell Canada.
C, eh, n, eh, d, eh.
Re:Yeah but will they let you keep it?
on
Junkyard Wars Tour
·
· Score: 1
I'll have to check for Reno. Probably San Francisco or Los Angeles, or some other big town that doesn't suck. Hey, I'm listening to that song in your sig right now, Networkink*Man.
"There's your shoes and there's the door"
Yeah but will they let you keep it?
on
Junkyard Wars Tour
·
· Score: 4, Interesting
Or will they crush it at the end of the competition?
Seriously, this sounds like fun. Hey Junkyard Wars, over here in Reno, eh?!
Are you looking for remote as in "in the next rack over" or "somewhere across the internet" or somewhere in between? In short, define "remote."
Tape is probably the best bet so far. As far as getting a good 'image' of it, tar it and stick it on a tape. Since you don't want hard drive array, and optical is out, tape is going to be the best way, I think, unless another/. reader has a better idea.
Its light, its strong, and returns to shape. I could see how car suspensions could be made infinitely lighter with such a metal. Imagine, not needing springs anymore, the suspension links ARE the springs;)
Things like this are what will make electric cars and extremely effecient cars possible, I think.
Trying to put a computer in every home? Try getting clean water in every home first. For now lets work on that. We can put in computers once we can help them READ.
Theriouthly, I would thue the cwap out of any dentitht that put a thot in my tongue and made it numb. Any thtupid thod that thought he could get away with that and not get thued, would be theriothly mithtaken.
All jesting aside, I would do some serieous research of PAST cases of this happening, because it may or may not be a matter of malpractice. You really need to talk to a lawyer about this, not slashdot.
Slashdot Mirror
That really IS an interesting question. What is worse, bouncing it, or accepting it?
r it y.html
If an admin were to bounce it then the only way to take care of it *correctly* would be to parse the header and send it to the ISP of the luser who is infected. They will (hopefully) notify the owner of the affected machine, and THAT user gets to fix their machine. Or, they can boost the economy a little and hire someone to do it or go buy some AV software.
Now a better way in my opinion would be to blackhole all emails received. Why? Less processing. Less bandwidth. Propogation of the worm is stopped dead in its tracks. Those that have it will get rid of it soon enough (in theory) and the congestion caused by the worm will be less than if they were bounced.
Then, there are those like me who are still learning what being a sysadmin is, and rely on pre-made tools like this one:
http://www.impsec.org/email-tools/procmail-secu
As I understand it, it will either bounce OR blackhole the whole email.
Looks like I have some reading to do!
All comments, constructive critisism, and pointers are welcome!
Vbulletin is a PHP/MySQL based solution that I believe would work. It costs a bit of money ($200) but its well worth it. I run PHPbb at www.battleborncruisers.com and it works very nice for the price ($0)
Hangin' Tough, oh yeah!
You might want to check out the web pages for the MegaSquirt EFI controller, it tells tons of info about how to interface with the cars EFI system. For example, you'd have to use a A/D converter and hook into the Throttle Position Sensor in order to sense when the pedal is floored, and then play a certain song.
:)
Its do-able for sure.
Do a google search for 'megasquirt' and you'll come up with tons of hits. They have an excellent mailing list too
Worked for me. Haven't looked at a bill in 2 years and going. She handles the bills way better than I ever did.
:p
Alternatively, you could just scan them all and put them into HTML, and then search them with google.
Especially your credit card statements...
I tried it on Linux in an Outlook 2000 environtment. It worked relatively good, except it does not handle attachments in the same manner. For example when changing shifts we'll send a "start here" type of email to our public address that we all check. Outlook lets you open those attachments (which are .eml files, a handoff of all the email that needs to be answered at the time of the shift change) and Evolution does not. It will only display them in series in the attachment window. Not very handy. So, I did not use it. I had to go back to Windows with Outlook 2002.
Hopefully it'll work out better for you.
No, I know how to build a server. I also know how to survive being slashdotted.
Yep the site was slashdotted, my poor little 5MB ds3 wasn't quite enough to handle it. BTW I'm the host not the site owner.
Check the mirrors folks its a good site!
Sorry to wbglinks.net!!!
Get an APC 9210 power switch off Ebay. Then make sure that your system turns on immediatly when power is applied. Login to the power switch, turn on the power to that box, and viola.
We use these where I work for remote control of systems that have to be cold-booted every so often.
A few years ago I saw just a hint of the northern lights at Pyramid Lake here in Nevada, north of Reno. Very cool. Hopefully the same will happen again and my kids can see it.
I almost forgot, if you need first hand word about Cpanel and Plesk, feel free to email me r y a n @ r y a n f l o w e r s . c o m
Fix the spacing in the email address.
Take care
Ryan
I can't vouch for the migration abilities of Cpanel as I've never had to use them. I have almost 30 Plesk servers and I will say that as of their 6.0 version, IT SUCKS. Don't waste your money!
Cpanel rocks, I am extremely pleased with it and I have 4 servers running it right now.
FYI I host about 10,000 web sites at my data center, and have around 150 servers at last count. Some of those are dedicated server customers, who I also recommend Cpanel to.
On our servers we tend to do nothing more than make sure that we are firewalled so tight that even the ugliest security hole will go unnoticed by black-hats, because they won't be able to get that far. That being said, we STILL patch the servers once we see that the patch has been in use for a few days without problems by other users.
There's nothing better than installing a patch-for-a-patch. The recent SSH exploits come to mind, had to do everything twice!
I work for a hosting company, and yes we've had this problem, although not on such a massive scale. We found that by removing any catch-all type setup, and bouncing the email address, the end users are much happier. This of course doesn't change the loading on the server much. IF however you know which IP's the emails are being sent from, your ISP can block those IP's with iptables, or, even in their router.
You shouldn't be so SOL, in my opinion.
Don't you think "Rain Man" would be more appropriate? ;)
I work at a colocation and dedicated server facility. We also host almost 12000 websites. You can put 100 websites and 250 mail users on ANY box you can find. Seriously. Celeron 400 or higher, 128MB ram although 256 will be better. Get a couple of 60GB IDE drives, and make a cron job to back up the critical files to the second drive nightly.
Oh yeah run Linux, less overhead = cheaper box = more $$ for stuff you REALLY need.
No but I know how to spell Canada.
C, eh, n, eh, d, eh.
I'll have to check for Reno. Probably San Francisco or Los Angeles, or some other big town that doesn't suck. Hey, I'm listening to that song in your sig right now, Networkink*Man.
"There's your shoes and there's the door"
Or will they crush it at the end of the competition?
Seriously, this sounds like fun. Hey Junkyard Wars, over here in Reno, eh?!
Are you looking for remote as in "in the next rack over" or "somewhere across the internet" or somewhere in between? In short, define "remote."
/. reader has a better idea.
Tape is probably the best bet so far. As far as getting a good 'image' of it, tar it and stick it on a tape. Since you don't want hard drive array, and optical is out, tape is going to be the best way, I think, unless another
Read the article once it comes back up, my post will make MUCH more sense after you have.
Its light, its strong, and returns to shape. I could see how car suspensions could be made infinitely lighter with such a metal. Imagine, not needing springs anymore, the suspension links ARE the springs ;)
Things like this are what will make electric cars and extremely effecient cars possible, I think.
Trying to put a computer in every home? Try getting clean water in every home first. For now lets work on that. We can put in computers once we can help them READ.
Theriouthly, I would thue the cwap out of any dentitht that put a thot in my tongue and made it numb. Any thtupid thod that thought he could get away with that and not get thued, would be theriothly mithtaken.
All jesting aside, I would do some serieous research of PAST cases of this happening, because it may or may not be a matter of malpractice. You really need to talk to a lawyer about this, not slashdot.
Thank god!!!!!!