Please don't tell me you believe in the automatic knee jerk reaction that Mac's are more secure and you wont get a virus etc. They are not targeted by viruses and malware as much, but there are viruses out there. The only thing that makes them more secure, is that even as administrator, any critical changes to the system, even many non-critical require the user to enter a username and password.
Sure, in many regards they are, but they are just as vulnerable to phishing and social engineering as any system is.
It is this reaction that causes many people to hate mac owners, or those who do talk about the benefits/drawbacks of both systems in relation to the mac being more suitable for the task.
I don't even know where to begin with the rest of your comments about 0 carbon footprint.
So you encrypt the channel of communication to your ISP's mail server, which says nothing of what happens to your email sent via that mail server once it reaches it. For them to send your email - they must be able to read it - and as its only sent via an encrypted channel - and not encrypted in itself, they can.
If they decided to - there could log your message, or store it however they wanted - and then send it. Don't think because your using SSL that your email is automatically safe - all you are protecting is the communication channel between your computer, and the mail server - outside of that - you have no real control.
I access MSN via a VPN - but thats only the traffic between my computer and my VPN server. It doesn't say anything about the traffic from my VPN server to MSN
Even using SSL - any mail server your email passes through can read, and store, and log your emails unless the contents of the email are specifically encrypted
Of course - if we saved up for a home theatre system, and stopped going to the movies - it would be the fault of the movie piracy rather than anything else wouldn't it. It couldn't be ads could it
I mean the fact that we are watching DVD's rather than going to the cinema would reduce box office takings damn pirates....
On a side note - any timeline on the release of Pirates of the Caribbean 3?
Well, in the next rollout - which occurs every 3 years, our network of SOE workstation/server combos may be setup for SP2, but only if some older software is decommisioned.
Until then - well SP2 breaks numerous software applications in a department where money is always limited. How much does it cost to fix an incompatibility in some software that is used every day in a statewide distribution that was writen over 10 years ago?
Or not use SP2. Easy choice.
In relation to giving access to a share for large files. [> 200GB]
Ok, give me the names you want to have write access to this share.. "I can't be bothered to give u all the names, just give them all access" - [Hundreds of Users] You realise that defeats the purpose of having home folders & quota's & that they can delete anything on the drive, and that we have no backup policy or the facilities to back up that drive [> 200 GB] So...Just Do It
Sound familiar anyone?
This is just basic NTFS and share access rights - nothing complex.
And I am just a technician - not a security consultant. If they ignore us when we say this - what makes you think they are going to listen to a consultant telling them something they have already dismissed?
Yes there is a difference - and yes at least some of us know the difference..
Fair Use means you can rip an mp3 from CD you own - and put it on your iPod (Just as an example). We cannot do that legally here in Aust, to put music on our iPod legally we have to purchase the music in an mp3 format or have the permission of the copywrite owner
Fair Dealing deals with research and education - and is different from personal use.
People don't follow standards because they cost to much??
Yes a browser that is free is able to adhere to standards, yet a browser, although free - which has a huge multinational behind them cannot meet these standards.
Come On..
People don't use the standards because
A - They are lazy. This is an attitute put in place by both Microsofts refusal to implement w3c standards - a body setup to govern web standards..
You will find, that the sites coded to work in multiple browsers are actually elegantly coded in most aspects except for workaround to provide cross browser compatibility.
B - All the WYSWYG editors use IE's built in rendering engine. And as such - anything which works in that - won't work in alternate browsers - of which an increasing marktet share is being shared among these alternate browsers.
C - The code generated by all of M$'s own editors is useless. Just have a look at the code from Frontpage, although newer versions, and dare I say it - Save as a Web Page in Office.. The use of IE as the primary browser for years, has resulted in a lack of care about code guidelines, elegance, and has also contributed to a boom in would be coders.. You only need to look at some of the utterly disgusting - and hard to read sites out there, to understand this.
D - Something useful - Such as a div - 0 pixels from the left, top and bottom borders of the window - is able to be used in all these browser. In IE - Nope.
Improvement on re-installation routine. Requires user to do some work downloading latest versions/and slipstreaming pre-install.
Slipstream the latest service pack onto the CD. Install Windows. Install Latest Drivers. Use Latest Autopatcher to patch computer - and upgrade other components. (WMP10/Win Msg 5.1/MSN Messenger 7 - Remove MS JVM, Install Sun Java + more) Install Firewall (Your Choice) Install AV (Your Choice) Install Microsoft Anti-spyware (Or another Resident AV) Plug network cable in - From Router with firewall Apply any further patches that may have been released since Autopatcher. Patch MS Office (If Running) Install Spybot S&D - Immunise Install SpywareBlaster - Apply Immunisations. Install Firefox/Opera - Only use IE for WinUpd/OfficeUpd or Sites that don't work)
Even if GMail is blocked via pop
- as the ports are not standard it is where I work - ie not 110/25.
You can still access the web version. Or at least the secure version.
The non-secure version, is blocked at my work, but who in their right mind would use http for email when https is also available, and can't be blocked without blocking all https traffic.
Yes we may have gimp for photoshop - but it doesn't compare.
Ask anyone who uses photoshop to try gimp, and they will immediately get frustrated with the interface, lack of some features etc.
As for flash editors. MM Flash itself it an 'OK' product, but for most people that I know will not take the time and effort to produce a flash, when a gif will suffice.
ALthough many sensors such as IR, and motion would not be suitable. As I am sure many ppl have mentioned rf sensors. Passive may not be so good, but active would. Also the other idea about giving them active and a large cell range is also good.
As long as the data is only used for purpose of tracking users currently in the system there should not be a problem.
Consider talking to phone companies. There may be a way to detect the transmission of mobile phones to the gsm towers - they try even if out of range . You could use this signal to localise where the user is. Caution with this one though.
You may love linux and slashdot as everyone else (almost) but don't complain about it when ppl post linux comments etc. The reason that slashdot works so well is that ppl use it. If the usrs want to use it for linux - let them. Don't complain. Besides whats the other alternative - bagging microsoft? that happens already. U will also find that most of the ppl using slash dot use linux rather than windoz so of course most of the comments will be linux based
If ppl are going into a cafe most of the time like i do its for checking email, icq or other small tasks. U can put up with a small banner if u actually use a browser. As long as they don't slow down ur connection jsut ignore them.
For those of you who complain that ur 'parents' dont know what a firewall is.
All you need to do is install a silent firewall - ie zone alarm with all the alerts turned off. Even if its only the standard version. Make sure they can access what they want and let it do its work. It starts automatically and blocks 90% of the attacks. Set their av to update automatically, and every month of so patch the system. (more freq if they have broadband.) Works for me and my systems and my families have not been hit with virus/worms/etc since I installed it around bugbear/welchia. (When I got of my arse and decided to waste dial up time appling patches that shouldnt need to be patched.)
There are two options, Norton Ghost works well for images but takes about 20 minutes and doesn't work on Mac OS. Not sure about Unix/Linux.
However there is hardware out there that will remove any changes to the system on next boot, even if hd is formated. The solution I know of is called ZeroCard. Set the computer up, install the PCI Card, then set it up with password. When you want to change it, do so, restart and boot either of disk or hold down a key and enter the password. (I'm a bit sketchy on the details, its been a while since I looked at it)
If microsoft continues to produce software with security holes in it, then it should fulfill its obligations and notify all its clients each time a new security breach is found, rather than to let the clients get the information second hand form other experts. These experts are doing microsofts job, and although i dont agree with releasing the code to crack through, they are fulfilling a gap in microsofts security niche that needs to be filled. The customers have a right to feel safe with their computer system. Maybe if microsoft produced software without the security holes than there would not be any need for these experts to release the code. Even if microsoft succeeds in getting the security experts to stop releasing the code, others will just release it themselves. Which comes first the chicken or the egg. Its a paradox.
Slashdot Mirror
Please don't tell me you believe in the automatic knee jerk reaction that Mac's are more secure and you wont get a virus etc. They are not targeted by viruses and malware as much, but there are viruses out there. The only thing that makes them more secure, is that even as administrator, any critical changes to the system, even many non-critical require the user to enter a username and password.
Sure, in many regards they are, but they are just as vulnerable to phishing and social engineering as any system is.
It is this reaction that causes many people to hate mac owners, or those who do talk about the benefits/drawbacks of both systems in relation to the mac being more suitable for the task.
I don't even know where to begin with the rest of your comments about 0 carbon footprint.
Yes and then they unplug one of them so they can power the Vacuum Cleaner.
Yes.
So you encrypt the channel of communication to your ISP's mail server, which says nothing of what happens to your email sent via that mail server once it reaches it. For them to send your email - they must be able to read it - and as its only sent via an encrypted channel - and not encrypted in itself, they can.
If they decided to - there could log your message, or store it however they wanted - and then send it. Don't think because your using SSL that your email is automatically safe - all you are protecting is the communication channel between your computer, and the mail server - outside of that - you have no real control.
I access MSN via a VPN - but thats only the traffic between my computer and my VPN server. It doesn't say anything about the traffic from my VPN server to MSN
Even using SSL - any mail server your email passes through can read, and store, and log your emails unless the contents of the email are specifically encrypted
Of course - if we saved up for a home theatre system, and stopped going to the movies - it would be the fault of the movie piracy rather than anything else wouldn't it. It couldn't be ads could it
I mean the fact that we are watching DVD's rather than going to the cinema would reduce box office takings
damn pirates....
On a side note - any timeline on the release of Pirates of the Caribbean 3?
Well, in the next rollout - which occurs every 3 years, our network of SOE workstation/server combos may be setup for SP2, but only if some older software is decommisioned. Until then - well SP2 breaks numerous software applications in a department where money is always limited. How much does it cost to fix an incompatibility in some software that is used every day in a statewide distribution that was writen over 10 years ago? Or not use SP2. Easy choice.
Bold Text = Me
Italic Text = Boss
In relation to giving access to a share for large files. [> 200GB]
Ok, give me the names you want to have write access to this share..
"I can't be bothered to give u all the names, just give them all access" - [Hundreds of Users]
You realise that defeats the purpose of having home folders & quota's & that they can delete anything on the drive, and that we have no backup policy or the facilities to back up that drive [> 200 GB]
So...Just Do It
Sound familiar anyone?
This is just basic NTFS and share access rights - nothing complex.
And I am just a technician - not a security consultant. If they ignore us when we say this - what makes you think they are going to listen to a consultant telling them something they have already dismissed?
Yes there is a difference - and yes at least some of us know the difference..
Fair Use means you can rip an mp3 from CD you own - and put it on your iPod (Just as an example).
We cannot do that legally here in Aust, to put music on our iPod legally we have to purchase the music in an mp3 format or have the permission of the copywrite owner
Fair Dealing deals with research and education - and is different from personal use.
People don't follow standards because they cost to much?? Yes a browser that is free is able to adhere to standards, yet a browser, although free - which has a huge multinational behind them cannot meet these standards. Come On.. People don't use the standards because A - They are lazy. This is an attitute put in place by both Microsofts refusal to implement w3c standards - a body setup to govern web standards.. You will find, that the sites coded to work in multiple browsers are actually elegantly coded in most aspects except for workaround to provide cross browser compatibility. B - All the WYSWYG editors use IE's built in rendering engine. And as such - anything which works in that - won't work in alternate browsers - of which an increasing marktet share is being shared among these alternate browsers. C - The code generated by all of M$'s own editors is useless. Just have a look at the code from Frontpage, although newer versions, and dare I say it - Save as a Web Page in Office.. The use of IE as the primary browser for years, has resulted in a lack of care about code guidelines, elegance, and has also contributed to a boom in would be coders.. You only need to look at some of the utterly disgusting - and hard to read sites out there, to understand this. D - Something useful - Such as a div - 0 pixels from the left, top and bottom borders of the window - is able to be used in all these browser. In IE - Nope.
Lol.. They don't support w3c standards in the browser - why should there pages support them...
Nah - its not that Microsoft sucks because the release patches.
Neither does OS suck because they release patches.
Its because microsoft takes so long to release patches for certain vulnerabilities that have been documents - even up to half a year before..
And that the continue to promote products that have been proven to be seriously flawed, and release new versions without those flaws fixed.
There is a difference between releasing a product, and then patching it - and releasing a product knowing it needs patches before its released.
I gotta admit - look how much testing the do on the patches they do release. Service Pack 2 anyone?
Download the adblock xpi.
Download NoScript xpi - and only allow javascript to run on trusted sites.
If a popup occurs - track it down via the source - and block it - almost guarantee its from another server than the website.
Using NoScript xpi makes it even easier. You can allow scripts for slashdot.org but not falkg.net for a single page - thats my settings for this site.
Improvement on re-installation routine.
Requires user to do some work downloading latest versions/and slipstreaming pre-install.
Slipstream the latest service pack onto the CD.
Install Windows.
Install Latest Drivers.
Use Latest Autopatcher to patch computer - and upgrade other components. (WMP10/Win Msg 5.1/MSN Messenger 7 - Remove MS JVM, Install Sun Java + more)
Install Firewall (Your Choice)
Install AV (Your Choice)
Install Microsoft Anti-spyware (Or another Resident AV)
Plug network cable in - From Router with firewall
Apply any further patches that may have been released since Autopatcher.
Patch MS Office (If Running)
Install Spybot S&D - Immunise
Install SpywareBlaster - Apply Immunisations.
Install Firefox/Opera - Only use IE for WinUpd/OfficeUpd or Sites that don't work)
Even if GMail is blocked via pop - as the ports are not standard it is where I work - ie not 110/25. You can still access the web version. Or at least the secure version. The non-secure version, is blocked at my work, but who in their right mind would use http for email when https is also available, and can't be blocked without blocking all https traffic.
Yes we may have gimp for photoshop - but it doesn't compare. Ask anyone who uses photoshop to try gimp, and they will immediately get frustrated with the interface, lack of some features etc. As for flash editors. MM Flash itself it an 'OK' product, but for most people that I know will not take the time and effort to produce a flash, when a gif will suffice.
ALthough many sensors such as IR, and motion would not be suitable. As I am sure many ppl have mentioned rf sensors. Passive may not be so good, but active would. Also the other idea about giving them active and a large cell range is also good. As long as the data is only used for purpose of tracking users currently in the system there should not be a problem. Consider talking to phone companies. There may be a way to detect the transmission of mobile phones to the gsm towers - they try even if out of range . You could use this signal to localise where the user is. Caution with this one though.
You may love linux and slashdot as everyone else (almost) but don't complain about it when ppl post linux comments etc. The reason that slashdot works so well is that ppl use it. If the usrs want to use it for linux - let them. Don't complain. Besides whats the other alternative - bagging microsoft? that happens already. U will also find that most of the ppl using slash dot use linux rather than windoz so of course most of the comments will be linux based
If ppl are going into a cafe most of the time like i do its for checking email, icq or other small tasks. U can put up with a small banner if u actually use a browser. As long as they don't slow down ur connection jsut ignore them.
For those of you who complain that ur 'parents' dont know what a firewall is. All you need to do is install a silent firewall - ie zone alarm with all the alerts turned off. Even if its only the standard version. Make sure they can access what they want and let it do its work. It starts automatically and blocks 90% of the attacks. Set their av to update automatically, and every month of so patch the system. (more freq if they have broadband.) Works for me and my systems and my families have not been hit with virus/worms/etc since I installed it around bugbear/welchia. (When I got of my arse and decided to waste dial up time appling patches that shouldnt need to be patched.)
There are two options, Norton Ghost works well for images but takes about 20 minutes and doesn't work on Mac OS. Not sure about Unix/Linux.
However there is hardware out there that will remove any changes to the system on next boot, even if hd is formated. The solution I know of is called ZeroCard. Set the computer up, install the PCI Card, then set it up with password. When you want to change it, do so, restart and boot either of disk or hold down a key and enter the password. (I'm a bit sketchy on the details, its been a while since I looked at it)
Hope this helps.
If microsoft continues to produce software with security holes in it, then it should fulfill its obligations and notify all its clients each time a new security breach is found, rather than to let the clients get the information second hand form other experts. These experts are doing microsofts job, and although i dont agree with releasing the code to crack through, they are fulfilling a gap in microsofts security niche that needs to be filled. The customers have a right to feel safe with their computer system. Maybe if microsoft produced software without the security holes than there would not be any need for these experts to release the code. Even if microsoft succeeds in getting the security experts to stop releasing the code, others will just release it themselves. Which comes first the chicken or the egg. Its a paradox.