My favorite example is a definition that I ran across across a while ago. A "secure" system was defined as one in which an unauthorized user couldn't get access to any files and copy the data to another computer.
(emphasys mine)
[...snip...]
By this definition, of course, all web servers that work at all are totally insecure, since their fundamental task is to hand out files to all users.
Nope. In this case, those users are authorized (as anonymous) for those files. So the definition still stands.
Wouldn't be better if the server simply returned an SMTP 550 when a virus is found? Too bad most AV plugins only work *after* the message has been accepted and not after the end of the DATA command.
No, I didn't hack it... It was the first server I admin'd that got hacked (circa 1997).
I was a network guy in those days and somehow inherited the admin of that machine (running Livingston Radius!) and managed via unrestricted telnet.
All of my unix experience came from having installed Redhat *once* as a lark, but since in the land of the blind the man with one eye is king, I was it.
I remember seeing all those funny named process in the top display, doing a search on Altavista and then begining to panic.
Eventually we switched over to FreeBSD and Solaris and my interest in unix (and hopefully, my knowledge) grew from there.
how is it impossible to block domain names rather than IP addresses with the currennt technology of the Internet?
It isn't. But it might get expensive on the hardware side. You'd need to filter everything based on the HTTP request instead of the IP. A lot of ISP are probably not prepared for that and would require investing in router/switches capable of this or forcing everyone thru a proxy server.
is this an intentional disruption by bad co-operation? when things are badly implemented, court order got suspended and no more need to handle blocking requests?
The implementation was not appropiate and was disruptive. Two wrongs don't make a right.
or are those ISPs have the same mind as Code-Red writer, who tried to DDOS whitehouse.gov's IP instead of the domain name itself.
Oh, I get it now... You are joking and I fell for it. Dang!
I hear you...I don't normally buy CDs and now I see no reason to.
[snip]
sue another music lover...opps you lost revenue for another 2000 songs...
Why? You weren't going to buy them, anyway. And if you share them, you might get sued. And everytime someone gets sued, more and more people stop sharing (which means you run out of songs to download).
So, at most, it's a futile resistance unless you can convince more people to join your boycott.
Lets face it, if you want to punish RIAA, stop buying their CDs *and* supporting artists that are part of them. Time to start the low blows, kick the nuts and the head dies (to paraphrase MAD magazine).
That said, I'll say it again (not that anyone cares): I believe downloading MP3 for which you have no rights is wrong and so is distributing them. Whether it's stealing or not, is a matter of semantics.
Take a look at this. It is the step by step installation guide of Communigate. It usually takes less than 10 minutes to do the initial install, after that the software itself comes with a very easy to use web interface (altho a bit cluttered) and has the added bonus of having it's own webmail interface, IMAP/POP/SMTP/Virtual Domains support and is available for almost any flavor of Unix you can think of. I have tested it on Solaris (Sparc) and Redhat Linux.
It also supports clustered installs, antivirus/anti-spamming plugins and LDAP. I haven't tested those yet.
As for DNS, most of the real problems I've had with DNS concern the software itself (such as, Bind refusing to listen on a given interface, etc) but the config of the domains themselves are quite simple if you are not attempting anything fancy. I can't really give you much advice on the subject.
You should download the trial version of the software and try it out for yourself. It is fully functional, except that it adds a tagline to every message that passes thru it.
The downside is that the license is mailbox based so, depending on how many you need, it might get expensive.
Agreed. By the poster's admission, "they" (I guess he means his company) are not knowledgeable on email, so I'd suggest outcourcing or buying a turn-key solution. Myself, I'm partial to Communigate Pro, but even then you need some knowledge (DNS MX records and such).
Production email is far too important in a business to start experimenting.
If, on the other hand, you can afford to experiment (maybe with a secondary domain), the easiest installation of Courier IMAP I did was on FreeBSD. There was a webmin module for it, but it was nowhere near ready when I tried it so I dropped it.
Of course, "everyone" is saying that the desicion to standarize on Win2k is wrong because it ties you to a single software vendor (Microsoft). Wouldn't the adoption of Apple tie you down to a single software *and* hardware vendor?
Unfortunatly, Spelling/grammar typicaly is looked at as well as the ideas and expression, no more or less so then published work.
Unfortunately? I believe teachers are doing students a favor by pointing out this kind of mistakes.
People are looked down when they send and inter office memo confusing "there" and "they're" and after 12+ years of education, this shouldn't be an issue.
I too am jaded by the stupid grammar and spelling police because this isn't really what you would call a professional published work, but rather a corkboard.
Agreed. I'm a bit self-concious when it comes to posting here and other bbs since english is not my first language, and the preview button has saved me from some very embarrasing mistakes. Still, fingers slip and the mind is not always fully engaged;-) but short of asking someone else to proof postings, it will keep happening so let's stop nitpicking.
I hereby offer amnesty to whoever it is that stole my car stereo two months ago.
All you have to do is come (unarmed) with me to the nearest police station and sign a full confession. I will then proceed to "forgive" you. You won't even have to return my stereo (wich you probably sold inmediatly to support your crack habit).
That's a measure I supported when my ISP started to do the same. Far too many people mindlessly clicking on executable attachemtents. Of course, you have the right to your own opinion.
You *did* complain to them, didn't you? Maybe they can set a rule not to filter anything addressed to you.
Maybe this is a bad example, but isn't the driver of the car responsible for the behavior of the passenger? If someone in the back seat decides to urinate out of the window and a cop pulls the car over, the driver might get a fine for allowing such behavior.
You know... years ago, when I was young and careless, I took a look at PBeM and tought "what a bore... play a turn and wait forever for the next one". But now that I have to deal with REAL LIFE (read work) it looks like they just might fit the bill! I can't afford to play for hours in one sitting any more.
Flying Buffalo. I'll definitely will be checking them. Anyone has more PBM or non-realtime games recommendations? Heck, I'll probably take a look at that fantasy football again.
Those interested in seeing what PBEM is about, you can lurk here.
There is no accounting for taste. Its far too subjective. I can't try to sue an automaker for claiming that buying a specific car will make me cool because it's "stylish".
If they claim, however something that is objective and verifiebly untrue, you should be able to sue. Say, McDonalds claiming that the big mac has x% of fat when it's not true.
Easy... it's not an spectator game. It's fun for the players and that's it. You can't fill an amphitheater of people paying $15 bucks to see five or ten guys duke it out in a Quake deathmatch. You can't sell pay-per-view rights for the same reason.
Why not? Maybe it's because people somehow admire the performers at some level, and a computer game screams neither physical fitness/skill (sports) nor brain power (chess, etc).
It will always have it's admirers, but so will horseshoe tossing.
Yes, I see what you mean. But at least the credit report agency has a point of contact and that sets them apart from SPEWS.
I know very little of banking and financial institutions. But I guess the banks pay the agency for their services. My point was that SPEWS/Osirusoft are (where?) maintaining the list as a service to the internet community. As comendable as that might seem, this implies that nothing is guaranteed (sp?) and if your business depends on e-mail, you should know better than to use them.
A financial agency has to strive for accuracy. After all, it's better for the bank (that pays the agency) if you qualify for a loan.
And if it comes to the worst (and reason is with you), you can always try legal pressure on the agency (IANAL). If you try that with a dsbl, even if you are right, you'll get labeled as a "cart00ney".
"we didn't block your email, the ISP using our service did, blame them."
And he does have a point. The blame is entirely on the admin that set up SPEWS as a blocking option. Why trust a third party to maintain your blocklist out of the kindness of their heart?
I'd much rather pay for it. That way, there's a contractual obligation. Accountability is a must in the business world.
However, the only policy I disagreed with SPEWS was the anonymacy (sp) one. While I understand the reasons behind it, I can't quite trust a provider that gives no appeal resource and the removal instruction are far too vague (post a message in a newsgroup and hope for the best).
Well, I guess they'll be picked up by another dsbl provider.
Of course when it says: "Steven Segal is..." I *know* it's gonna stink. I also know I'm gonna go see it.
I guess I like tacky movies. Man, I can't wait to see Segal and Van Damme film together. It would be the end-all. Heck, even Jason and Freddy found each other at last, so I guess I can hope.
Slashdot Mirror
My favorite example is a definition that I ran across across a while ago. A "secure" system was defined as one in which an unauthorized user couldn't get access to any files and copy the data to another computer.
(emphasys mine)
[...snip...]
By this definition, of course, all web servers that work at all are totally insecure, since their fundamental task is to hand out files to all users.
Nope. In this case, those users are authorized (as anonymous) for those files. So the definition still stands.
a decent 10-12kbps codec will sound fine compared to the 64kbps that G.711 uses
Indeed. However, the services that will suffer the most are legacy data over voice lines, such as fax and modems.
My favorite mousepad for my optical mouse: an A4 piece of paper. If it gets dirty, trash it and get a new one. Cheap too.
Wouldn't be better if the server simply returned an SMTP 550 when a virus is found? Too bad most AV plugins only work *after* the message has been accepted and not after the end of the DATA command.
Thank you Mr Teller.
Likewise over here. I just hope your long time partner Penn Jillette is able to carry on with your work.
BSDi... my first hacked server.
No, I didn't hack it... It was the first server I admin'd that got hacked (circa 1997).
I was a network guy in those days and somehow inherited the admin of that machine (running Livingston Radius!) and managed via unrestricted telnet.
All of my unix experience came from having installed Redhat *once* as a lark, but since in the land of the blind the man with one eye is king, I was it.
I remember seeing all those funny named process in the top display, doing a search on Altavista and then begining to panic.
Eventually we switched over to FreeBSD and Solaris and my interest in unix (and hopefully, my knowledge) grew from there.
how is it impossible to block domain names rather than IP addresses with the currennt technology of the Internet?
It isn't. But it might get expensive on the hardware side. You'd need to filter everything based on the HTTP request instead of the IP. A lot of ISP are probably not prepared for that and would require investing in router/switches capable of this or forcing everyone thru a proxy server.
is this an intentional disruption by bad co-operation? when things are badly implemented, court order got suspended and no more need to handle blocking requests?
The implementation was not appropiate and was disruptive. Two wrongs don't make a right.
or are those ISPs have the same mind as Code-Red writer, who tried to DDOS whitehouse.gov's IP instead of the domain name itself.
Oh, I get it now... You are joking and I fell for it. Dang!
I hear you...I don't normally buy CDs and now I see no reason to.
[snip]
sue another music lover...opps you lost revenue for another 2000 songs...
Why? You weren't going to buy them, anyway. And if you share them, you might get sued. And everytime someone gets sued, more and more people stop sharing (which means you run out of songs to download).
So, at most, it's a futile resistance unless you can convince more people to join your boycott.
Lets face it, if you want to punish RIAA, stop buying their CDs *and* supporting artists that are part of them. Time to start the low blows, kick the nuts and the head dies (to paraphrase MAD magazine).
That said, I'll say it again (not that anyone cares): I believe downloading MP3 for which you have no rights is wrong and so is distributing them. Whether it's stealing or not, is a matter of semantics.
Take a look at this. It is the step by step installation guide of Communigate. It usually takes less than 10 minutes to do the initial install, after that the software itself comes with a very easy to use web interface (altho a bit cluttered) and has the added bonus of having it's own webmail interface, IMAP/POP/SMTP/Virtual Domains support and is available for almost any flavor of Unix you can think of. I have tested it on Solaris (Sparc) and Redhat Linux.
It also supports clustered installs, antivirus/anti-spamming plugins and LDAP. I haven't tested those yet.
As for DNS, most of the real problems I've had with DNS concern the software itself (such as, Bind refusing to listen on a given interface, etc) but the config of the domains themselves are quite simple if you are not attempting anything fancy. I can't really give you much advice on the subject.
You should download the trial version of the software and try it out for yourself. It is fully functional, except that it adds a tagline to every message that passes thru it.
The downside is that the license is mailbox based so, depending on how many you need, it might get expensive.
Agreed. By the poster's admission, "they" (I guess he means his company) are not knowledgeable on email, so I'd suggest outcourcing or buying a turn-key solution. Myself, I'm partial to Communigate Pro, but even then you need some knowledge (DNS MX records and such).
Production email is far too important in a business to start experimenting.
If, on the other hand, you can afford to experiment (maybe with a secondary domain), the easiest installation of Courier IMAP I did was on FreeBSD. There was a webmin module for it, but it was nowhere near ready when I tried it so I dropped it.
For it to be considered prior art, your appliance has to predate January 28, 2000 (date the patent was filed)
I remember using Watchguard Webblocker feature before 1999, and it did pretty much what was described by the grandparent post.
Of course, "everyone" is saying that the desicion to standarize on Win2k is wrong because it ties you to a single software vendor (Microsoft). Wouldn't the adoption of Apple tie you down to a single software *and* hardware vendor?
Unfortunatly, Spelling/grammar typicaly is looked at as well as the ideas and expression, no more or less so then published work.
;-) but short of asking someone else to proof postings, it will keep happening so let's stop nitpicking.
Unfortunately? I believe teachers are doing students a favor by pointing out this kind of mistakes.
People are looked down when they send and inter office memo confusing "there" and "they're" and after 12+ years of education, this shouldn't be an issue.
I too am jaded by the stupid grammar and spelling police because this isn't really what you would call a professional published work, but rather a corkboard.
Agreed. I'm a bit self-concious when it comes to posting here and other bbs since english is not my first language, and the preview button has saved me from some very embarrasing mistakes. Still, fingers slip and the mind is not always fully engaged
I hereby offer amnesty to whoever it is that stole my car stereo two months ago.
All you have to do is come (unarmed) with me to the nearest police station and sign a full confession. I will then proceed to "forgive" you. You won't even have to return my stereo (wich you probably sold inmediatly to support your crack habit).
That's a measure I supported when my ISP started to do the same. Far too many people mindlessly clicking on executable attachemtents. Of course, you have the right to your own opinion.
You *did* complain to them, didn't you? Maybe they can set a rule not to filter anything addressed to you.
Maybe this is a bad example, but isn't the driver of the car responsible for the behavior of the passenger? If someone in the back seat decides to urinate out of the window and a cop pulls the car over, the driver might get a fine for allowing such behavior.
Isn't this so? IANAL.
You know... years ago, when I was young and careless, I took a look at PBeM and tought "what a bore... play a turn and wait forever for the next one". But now that I have to deal with REAL LIFE (read work) it looks like they just might fit the bill! I can't afford to play for hours in one sitting any more.
Flying Buffalo. I'll definitely will be checking them. Anyone has more PBM or non-realtime games recommendations? Heck, I'll probably take a look at that fantasy football again.
Those interested in seeing what PBEM is about, you can lurk here.
and a self-parking car has just been announced in Japan
I'd settle for a car that can move sideways to avoid lateral parking.
Somebody beat them to it.
Early Bird Intrusion Detection aims to catch the NIMDA worm.
Because only a clown would ride the segway without being snickered at.
Would he have done better time in a monocycle? Or a tiny VW with other twenty seven clowns? Now *those* questions should be answered!
Note: I like clowns. A great deal better than I like mimes, at least.
There is no accounting for taste. Its far too subjective. I can't try to sue an automaker for claiming that buying a specific car will make me cool because it's "stylish".
If they claim, however something that is objective and verifiebly untrue, you should be able to sue. Say, McDonalds claiming that the big mac has x% of fat when it's not true.
Easy... it's not an spectator game. It's fun for the players and that's it. You can't fill an amphitheater of people paying $15 bucks to see five or ten guys duke it out in a Quake deathmatch. You can't sell pay-per-view rights for the same reason.
Why not? Maybe it's because people somehow admire the performers at some level, and a computer game screams neither physical fitness/skill (sports) nor brain power (chess, etc).
It will always have it's admirers, but so will horseshoe tossing.
Yes, I see what you mean. But at least the credit report agency has a point of contact and that sets them apart from SPEWS.
I know very little of banking and financial institutions. But I guess the banks pay the agency for their services. My point was that SPEWS/Osirusoft are (where?) maintaining the list as a service to the internet community. As comendable as that might seem, this implies that nothing is guaranteed (sp?) and if your business depends on e-mail, you should know better than to use them.
A financial agency has to strive for accuracy. After all, it's better for the bank (that pays the agency) if you qualify for a loan.
And if it comes to the worst (and reason is with you), you can always try legal pressure on the agency (IANAL). If you try that with a dsbl, even if you are right, you'll get labeled as a "cart00ney".
"we didn't block your email, the ISP using our service did, blame them."
And he does have a point. The blame is entirely on the admin that set up SPEWS as a blocking option. Why trust a third party to maintain your blocklist out of the kindness of their heart?
I'd much rather pay for it. That way, there's a contractual obligation. Accountability is a must in the business world.
However, the only policy I disagreed with SPEWS was the anonymacy (sp) one. While I understand the reasons behind it, I can't quite trust a provider that gives no appeal resource and the removal instruction are far too vague (post a message in a newsgroup and hope for the best).
Well, I guess they'll be picked up by another dsbl provider.
Of course when it says: "Steven Segal is..." I *know* it's gonna stink. I also know I'm gonna go see it.
I guess I like tacky movies. Man, I can't wait to see Segal and Van Damme film together. It would be the end-all. Heck, even Jason and Freddy found each other at last, so I guess I can hope.