Linux, not Microsoft Windows, remains the most-attacked operating system, a British security company reports.
During August, 67 per cent of all successful and verifiable digital attacks against on-line servers targeted Linux, followed by Microsoft Windows at 23.2 per cent. A total of 12,892 Linux on-line servers running e-business and information sites were successfully breached in that month, followed by 4,626 Windows servers, according to the report.
Just 360 -- less than 2 per cent -- of BSD Unix servers were successfully breached in August.
The data comes from the London-based mi2g Intelligence Unit, which has been collecting data on overt digital attacks since 1995 and verifying them. Its database has tracked more than 280,000 overt digital attacks and 7,900 hacker groups.
Linux remained the most attacked operating system on-line during the past year, with 51 per cent of all successful overt digital attacks.
Microsoft Windows servers belonging to governments, however, were the most attacked (51.4 per cent) followed by Linux (14.3 per cent) in August.
The economic damage from the attacks, in lost productivity and recovery costs, fell below average in August, to $707-million (U.S.).
The overall economic damage in August from overt and covert attacks as well as viruses and worms stood at an all-time high of $28.2-billion.
The Sobig and MSBlast malware that afflict Microsoft platforms contributed significantly to the record estimate.
"The proliferation of Linux within the on-line server community coupled with inadequate knowledge of how to keep that environment secure when running vulnerable third-party applications is contributing to a consistently higher proportion of compromised Linux servers," mi29 chairman D.K. Matai said.
"Microsoft deserves credit for having reduced the proportion of successful on-line hacker attacks perpetrated against Windows servers."
Bruse Schneier's house was just broken into from the back door. The burglars apparetnly looked for his wallet, and took money and some slips of paper with passwords on them.
The worms have crashed the network for several hours. Now the Computer Center admins put the entire dorms network behind a seperate firewall blocking ICMP and ports 135/139. I've seen the packet counts from the net admin, and it's scary! I suggested they disconnect all infected users and reconnect them only after applying patches, but they don't want to mess with that.
The people behind this
on
Cracking GSM
·
· Score: 2, Funny
Re:Risky?
on
Cracking GSM
·
· Score: 4, Informative
Nathan, Elad, and Eli Biham are not US citizens as far as I know...
Goverment can evesdrop anyway
on
Cracking GSM
·
· Score: 2, Insightful
The encryption is only between the handset and the base station. The goverment can easily evesdrop at the cellular provider (after issuing a warrant).
Hey! I know these people!
on
Cracking GSM
·
· Score: 5, Informative
Elad, Nathan, Eli Biham and Orr Dunkelman (which was not listed for some reason) are friends of mine at the Technion Israeli Institute of Technology. Their previous attack on A5/1 required a few hundred GB of HD space and dedicated telephony equipment to pull. A5/2 is a peace of cake in comparison. This new attack makes it ciphertext only. That means that you don't have to initiate a short call (for example) to the evesdropee or knowing some part of the call (like with voicemail) before breaking the encryption. It uses the signal correction mechanism to initialize itself.
In general, this is no big news, because this equipment is hard to aquire and the benefits are not that great. In comparison, CDMA and TDMA don't (effectively) encrypt calls at all.
The 10.x.x.x IPs are used for larger networks. Suppose you switch ISPs and get connected with an ISP with a NAT, or you VPN with some other network. Chances are they will be 10.x.x.x. In general use 10.x.x.x if you're running a large network and 192.168.x.x for a smaller network.
which it does by... The identity of the virus caught. For example, if you've detected it as SoBig.F, what's the problem marking SoBig.F as a "spoofer" as opposed to LoveBug which is a non-spoofer.
The virus checker should verify if the virus spoofs from addresses. If not, send a warning to the 'from' address. Otherwise, check the first "received" header and use whois to find the admin of that IP range and notify him/her. Also, we're in despearate need of an RFC for returned mail messages so they could be easily filtered.
Not always. I send mail where the 'from' address is on a different network than the one I'm sending from. I have multiple ISPs, and I use one for email and one for connecting.
It can be a security issue. I don't know the details of MSN, but consider a different network: ICQ.
The ICQ network allows anyone to add anyone else to his or her contact list without notification or authorization. The client simply sends the contact list to the server upon connection. If the server is to support older clients, it must allow for clients to be able to add users without confirmation, because the older clients don't do anything to confirm the user allowed them to add him or her.
As the old PROTOCOL is flawed, the only way to fix the problem is to remove support for the protocol from the server. This will consequently lock out older clients.
This is just a guess of a possible security reason. I guess the real security reason is the security of Microsoft's bottom line.
the known habit of M$-word to crash during saving, which ofcourse destorys not only your current work, but all SAVED work since the last backup.
For comparison, LyX backs-up the original BEFORE saving, AND in case of crash, automatically tries to save and "emergency" save. This helped me several times when a network crash cut down my X connection to the server.
There are two players, and $10 that should be split between them. One player suggests how to split the $10. The other player may accept or reject the offer. If the other player accepts, each gets as much as the first player suggested. If he or she rejects, both get nothing.
It turns out that the second player somtimes rejects the offer, even if it's in his or her best interest to accept.
The Internet Movie Database has everything there is to know about movies and TV series, and the people involved in them. An invaluable resource to all movie viewers.
Slashdot Mirror
Linux is favourite hacker target: Study
By JACK KAPICA
Globe and Mail Update
Linux, not Microsoft Windows, remains the most-attacked operating system, a British security company reports.
During August, 67 per cent of all successful and verifiable digital attacks against on-line servers targeted Linux, followed by Microsoft Windows at 23.2 per cent. A total of 12,892 Linux on-line servers running e-business and information sites were successfully breached in that month, followed by 4,626 Windows servers, according to the report.
Just 360 -- less than 2 per cent -- of BSD Unix servers were successfully breached in August.
The data comes from the London-based mi2g Intelligence Unit, which has been collecting data on overt digital attacks since 1995 and verifying them. Its database has tracked more than 280,000 overt digital attacks and 7,900 hacker groups.
Linux remained the most attacked operating system on-line during the past year, with 51 per cent of all successful overt digital attacks.
Microsoft Windows servers belonging to governments, however, were the most attacked (51.4 per cent) followed by Linux (14.3 per cent) in August.
The economic damage from the attacks, in lost productivity and recovery costs, fell below average in August, to $707-million (U.S.).
The overall economic damage in August from overt and covert attacks as well as viruses and worms stood at an all-time high of $28.2-billion.
The Sobig and MSBlast malware that afflict Microsoft platforms contributed significantly to the record estimate.
"The proliferation of Linux within the on-line server community coupled with inadequate knowledge of how to keep that environment secure when running vulnerable third-party applications is contributing to a consistently higher proportion of compromised Linux servers," mi29 chairman D.K. Matai said.
"Microsoft deserves credit for having reduced the proportion of successful on-line hacker attacks perpetrated against Windows servers."
Bruse Schneier's house was just broken into from the back door. The burglars apparetnly looked for his wallet, and took money and some slips of paper with passwords on them.
... until someone just asks you give them a pen for a second, and before you know it, they're off with all your data...
A clickable link for the lazy
One station can't DDoS anything. He was DoSing the DHCP server, not DDoSing!
The worms have crashed the network for several hours. Now the Computer Center admins put the entire dorms network behind a seperate firewall blocking ICMP and ports 135/139. I've seen the packet counts from the net admin, and it's scary! I suggested they disconnect all infected users and reconnect them only after applying patches, but they don't want to mess with that.
Prof. Eli Biham and Elad Barkan. Both good friends of mine.
Nathan, Elad, and Eli Biham are not US citizens as far as I know...
The encryption is only between the handset and the base station. The goverment can easily evesdrop at the cellular provider (after issuing a warrant).
Elad, Nathan, Eli Biham and Orr Dunkelman (which was not listed for some reason) are friends of mine at the Technion Israeli Institute of Technology. Their previous attack on A5/1 required a few hundred GB of HD space and dedicated telephony equipment to pull. A5/2 is a peace of cake in comparison. This new attack makes it ciphertext only. That means that you don't have to initiate a short call (for example) to the evesdropee or knowing some part of the call (like with voicemail) before breaking the encryption. It uses the signal correction mechanism to initialize itself.
In general, this is no big news, because this equipment is hard to aquire and the benefits are not that great. In comparison, CDMA and TDMA don't (effectively) encrypt calls at all.
The 10.x.x.x IPs are used for larger networks. Suppose you switch ISPs and get connected with an ISP with a NAT, or you VPN with some other network. Chances are they will be 10.x.x.x. In general use 10.x.x.x if you're running a large network and 192.168.x.x for a smaller network.
Furthermore, the need for modems will just decline in the future as broadband kicks in more and more everywhere.
which it does by...
The identity of the virus caught. For example, if you've detected it as SoBig.F, what's the problem marking SoBig.F as a "spoofer" as opposed to LoveBug which is a non-spoofer.
The virus checker should verify if the virus spoofs from addresses.
If not, send a warning to the 'from' address.
Otherwise, check the first "received" header and use whois to find the admin of that IP range and notify him/her.
Also, we're in despearate need of an RFC for returned mail messages so they could be easily filtered.
Not always. I send mail where the 'from' address is on a different network than the one I'm sending from. I have multiple ISPs, and I use one for email and one for connecting.
It can be a security issue. I don't know the details of MSN, but consider a different network: ICQ.
The ICQ network allows anyone to add anyone else to his or her contact list without notification or authorization. The client simply sends the contact list to the server upon connection. If the server is to support older clients, it must allow for clients to be able to add users without confirmation, because the older clients don't do anything to confirm the user allowed them to add him or her.
As the old PROTOCOL is flawed, the only way to fix the problem is to remove support for the protocol from the server. This will consequently lock out older clients.
This is just a guess of a possible security reason. I guess the real security reason is the security of Microsoft's bottom line.
http://yersex.tilegarden.com/
You have this feature in paper books as well. It's called an "Index" and it has various term for the book listed with their page numbers.
the known habit of M$-word to crash during saving, which ofcourse destorys not only your current work, but all SAVED work since the last backup.
For comparison, LyX backs-up the original BEFORE saving, AND in case of crash, automatically tries to save and "emergency" save. This helped me several times when a network crash cut down my X connection to the server.
Everyone knows the caribbiean is filled with pirates!
Install CygWin and have a true bash shell on Windows.
A lecture from the Haifa Linux Club about the subject.
There are two players, and $10 that should be split between them. One player suggests how to split the $10. The other player may accept or reject the offer. If the other player accepts, each gets as much as the first player suggested. If he or she rejects, both get nothing.
It turns out that the second player somtimes rejects the offer, even if it's in his or her best interest to accept.
The Internet Movie Database has everything there is to know about movies and TV series, and the people involved in them. An invaluable resource to all movie viewers.
P2P is not inhelently evil. In fact, I wanted to quickly download a linux distro to reinstall the machine.