It still amazes me that residential broadband connections don't filter this as standard. I guess while it's technically easy, it's all about cost, and it's cheaper to leave a customer running an infected machine than have them call your helldesk.
Students are placing a lot of trust in these folk. What if one of the writers sells an old laptop on eBay and the recipient posts the hundreds of essays on the interwebs. If you were to wait twenty years before doing so, you would probably find at least a few of the clients now hold well paid jobs. Similarly, these folk are at very great risk of future blackmail when their job, family and home are on the line.
Students will eventually suffer if it becomes too much of a problem. Courses will simply revert back to 100% final exams.
If the schools internet policy bans p2p software, they're still going to discipline and possibly expel the student.
Sure there may be little or no legal consequences, but screwing up your degree because you breach a contract you freely entered into might not be the smartest move.
From TFA, Google filed 20 defenses taking an 'everything but the kitchen sink' approach. In other words, they listed every defense they could conceive of, so that Oracle has to defeat each individual defense. If one fails, Google will then rely upon the others.
Furthermore, it's a strategic move - if the others were responsible, Oracle could find itself in the position of trying to sue either companies with much smaller bank balances like the Open handset Alliance or some 20 year old student. That's a lot less attractive than a bumper payday from Google.
If there is no pedestrian then you can skip the pedestrian phase, which saves a lot of time. As pedestrians are slow.
Ah, you see it is different in the United States - there is no pedestrian phase. They just 'allow' pedestrians to cross when traffic is moving in their direction. So, if North South traffic has a green light, North South pedestrians have a green light. Similarly for East West.
The vast majority of traffic lights in the United States don't apparently have a separate period for pedestrians to cross unencumbered by motor vehicles - which outside the big cities are also allowed to turn left of a red light, even when pedestrians have a Walk signal.
Then they wonder why no-one wants to walk anywhere!
Can you come up with a better explanation as to why one would get different rates using different browsers?
Sure - he has visited the Capital One site many times in Firefox, or has recently visited lots of Finance websites. Cookies told Capital One this information. Figuring he was already likely to buy from Capital one, they offered a premium rate.
With the other browsers he was viewed as a new customer - therefore more valuable to poach - and received various rates as a marketing exercise to see which would be the most profitable rate for the company to advertise while maximizing new custom.
Will it stop someone carrying an AK-47 forcing their way into a home and directing the occupants to vote in a particular way while watching them do so?
Given they are in Cambridge, England, they are probably less concerned about FDA approval.
Can't say I know how long approval in the UK will take either, and I agree that if anything does come of this it will be at the long end of their estimate at the soonest.
I wonder if the figures include iPads? Apple have shipped almsot ten million all of which are pretty much required to use Safari as their browser. I'd have to imagine ten million additional clients would show up in the stats.
Yes, I'm a geek. My time was more than paid for in reduced call costs. A day or so configuring asterisk probably saved me about $1,500 in international call costs in the first year of ownership.
There were two points I was trying to make. My setup has been almost maintenance free, meaning a very small TCO. Secondly, there are GUIs available that really should make this within the competence level of many small business tech's.
Crikey, I've run my house on asterisk with very little maintenance for the best part of a decade. I have multiple incoming numbers, least cost routing, Direct Inward System Access on a 1-800 number which I can use from hotels/airports etc, conference calling that gets used for family calls and work. An added bonus is the easy NAT traversal of the IAX protocol. It's easy to get a box up and running behind a domestic router.
For anyone looking for a really easy set-up, there's things like Trixbox.
Certainly it can seem daunting and there are pitfalls to beware of. However, small businesses are often spending a fortune on telephony that could be better placed, or they could be enjoying a feature set well beyond that currently available to them. As an example, we had a Nortel PBX with about 20 extensions and were looking for an extra two lines. Either we needed a card installed to provide the extra lines, or they could make a software change to enable VoIP and we could have added two SIP phones using our existing networking. The cost of either option was > $3,000.
Actually, much as it pains me, I think they want iPhones.
If they run Zimbra (open source groupware) as their mail server and use iPhone 4s they can sync email over imap, calendars over caldav and contacts over carddav.
Zimbra has an open sourced evolution connector too, if they don't want to change their desktop software.
I don't believe you can purchase a chassis with an externally accessible hard drive array, hard drives and carriages for the drives to emulate a tape changer for less money than you can purchase a large capacity tape changer and the equivalent storage in tapes.
Thecus have sold NAS boxes with hotswappable drives for a good number of years now starting at a few hundred dollars.
Something like the thecus N5200 will cost about $800 but give you five bays, hot spare, automatic rebuilding and hot swappable drives.
This is an awful idea. I had some experience with such an experiment; it didn't work. The computers were failing left and right, and the vendor distanced itself from the situaton. You will first be forced to maintain all that herd, and eventually you will become a scapegoat.
This is the correct answer. Seriously, don't even consider 1,000 hand built computers.
Buying 1,000 desktops should give you a lot of leverage. First thing you should be doing is getting bids from HP and IBM as well as Dell. But I'd have thought three quotes would already be a bare minimum in your corporate requirements. Remember and add a service deal. At $1,000 per PC, I'd be expect a four year maintenance deal with next day or even same day on site service.
Your thought was to have a standard configuration that would last 18 months. Well desktops should be able to run for four years, plenty of businesses are doing that already, and those Dell computers now have a lifespan 2.66 times that of your computers with Dell supporting the hardware for the duration.
If you have onsite tech staff, you should also be able to bypass technical support and simply declare parts as failed and have replacements shipped out. If you don't have staff that can support that, you should at least get priority business support that gets you a knowledgeable tech and a guaranteed fast answer time.
I'm not sure if you didn't read or didn't understand my post.
What I did was point out the fundamental difference between spoofing a MAC address and an IP address.
Once you change the MAC address, it becomes the address of the card. Sure you could use that to spoof the identity of another device on the network, but that's a consequence of your intent, not of changing the MAC address.
When spoofing an IP address, that act itself fits your definition of spoofing.
You may wish to use one term for two very different changes. IMHO that only serves to confuse matters and does no one any favours.
Spoofing is misdescribing things a bit. It's not like spoofing an IP address where you present an address diffferent to that you're actually using and which can cause issues with a lack of return traffic (data being sent to the spoofed IP).
Usually your MAC address can be user set using ifconfig - something like
ifconfig eth0 hw ether 00:01:02:03:04:05
That then becomes your MAC address. It's not being spoofed, it's the address your card has and will present when connected to a network.
I was pulling 60+ login attempts a second for almost the entire month.
fail2ban is your friend. Simply block their IP after three failed attempts.
Actually, I think this should become a standard feature for most VoIP software. It's simply too easy to scan for weak passwords.
When I've seen scans they tend to be numerical too. I wonder if it's worth having honeypot extensions in the low numbers.
Of course, if you're using asterisk and allow registrations from remote IPs and you have extensions.conf configured to allow calls to international destinations that you're unlikely to call then that's a bit foolhardy.
Better than that, I've heard it. And for the same reason, very many businesses won't consider dropping their POTS connection.
It's one things entrusting your calls to VOIP if you have a dedicated high bandwidth internet connection, ideally with QOS as far as possible between yourself and the VOIP provider. It's another thing altogether to trust your business calls to the available bandwidth of a random skype supernode that's being used to navigate round the NAT between your laptop and the skype POTS termination point.
Don't get me wrong - skype is a great tool. And for inter office calls between staff members, where call quality issues can be worked around it's fine. But for the customer facing side of the vast majority of businesses, it just won't pass muster.
Actually, you were. The grandparent Pharmboy (216950) posted twice. The bit where he wrote 'I am pretty sure that the basis for the lawsuits in my above statements' might have been considered a clue.
Slashdot Mirror
Do either of them filter outbound smtp?
It still amazes me that residential broadband connections don't filter this as standard. I guess while it's technically easy, it's all about cost, and it's cheaper to leave a customer running an infected machine than have them call your helldesk.
Wow, I think my K6 pentium clone could compile the kernel faster than that!
Students are placing a lot of trust in these folk. What if one of the writers sells an old laptop on eBay and the recipient posts the hundreds of essays on the interwebs. If you were to wait twenty years before doing so, you would probably find at least a few of the clients now hold well paid jobs. Similarly, these folk are at very great risk of future blackmail when their job, family and home are on the line.
Students will eventually suffer if it becomes too much of a problem. Courses will simply revert back to 100% final exams.
If the schools internet policy bans p2p software, they're still going to discipline and possibly expel the student.
Sure there may be little or no legal consequences, but screwing up your degree because you breach a contract you freely entered into might not be the smartest move.
From TFA, Google filed 20 defenses taking an 'everything but the kitchen sink' approach. In other words, they listed every defense they could conceive of, so that Oracle has to defeat each individual defense. If one fails, Google will then rely upon the others.
Furthermore, it's a strategic move - if the others were responsible, Oracle could find itself in the position of trying to sue either companies with much smaller bank balances like the Open handset Alliance or some 20 year old student. That's a lot less attractive than a bumper payday from Google.
Ah, you see it is different in the United States - there is no pedestrian phase. They just 'allow' pedestrians to cross when traffic is moving in their direction. So, if North South traffic has a green light, North South pedestrians have a green light. Similarly for East West.
The vast majority of traffic lights in the United States don't apparently have a separate period for pedestrians to cross unencumbered by motor vehicles - which outside the big cities are also allowed to turn left of a red light, even when pedestrians have a Walk signal.
Then they wonder why no-one wants to walk anywhere!
Will it stop someone carrying an AK-47 forcing their way into a home and directing the occupants to vote in a particular way while watching them do so?
Correct me if I'm wrong, but were the hanging chads not created by machines?
Actually, I'll be out exercising.
Given they are in Cambridge, England, they are probably less concerned about FDA approval.
Can't say I know how long approval in the UK will take either, and I agree that if anything does come of this it will be at the long end of their estimate at the soonest.
I wonder if the figures include iPads? Apple have shipped almsot ten million all of which are pretty much required to use Safari as their browser. I'd have to imagine ten million additional clients would show up in the stats.
I've used Gizmo5, Google Voice, Broadvoice and Junction Networks for US based calls.
There's an example of LCR using extensions.conf here:
http://www.voip-info.org/tiki-index.php?page=Asterisk%20least%20cost%20routing%20using%20broadvoice
It demonstrates how to test for carrier availability and failover if necessary.
That 3k was for TWO additional lines on a phone system that had already cost over $20k, or $1,000 per extension!
Yes, I'm a geek. My time was more than paid for in reduced call costs. A day or so configuring asterisk probably saved me about $1,500 in international call costs in the first year of ownership.
There were two points I was trying to make. My setup has been almost maintenance free, meaning a very small TCO. Secondly, there are GUIs available that really should make this within the competence level of many small business tech's.
Asterisk 1.8 includes contributions from hundreds of community developers, as well as the Digium development team. Asterisk 1.8 updates include:
http://www.telecomreseller.com/2010/10/21/digium-releases-asterisk-1-8-hundreds-of-enhancements/
Crikey, I've run my house on asterisk with very little maintenance for the best part of a decade. I have multiple incoming numbers, least cost routing, Direct Inward System Access on a 1-800 number which I can use from hotels/airports etc, conference calling that gets used for family calls and work. An added bonus is the easy NAT traversal of the IAX protocol. It's easy to get a box up and running behind a domestic router.
For anyone looking for a really easy set-up, there's things like Trixbox.
Certainly it can seem daunting and there are pitfalls to beware of. However, small businesses are often spending a fortune on telephony that could be better placed, or they could be enjoying a feature set well beyond that currently available to them. As an example, we had a Nortel PBX with about 20 extensions and were looking for an extra two lines. Either we needed a card installed to provide the extra lines, or they could make a software change to enable VoIP and we could have added two SIP phones using our existing networking. The cost of either option was > $3,000.
Actually, much as it pains me, I think they want iPhones.
If they run Zimbra (open source groupware) as their mail server and use iPhone 4s they can sync email over imap, calendars over caldav and contacts over carddav.
Zimbra has an open sourced evolution connector too, if they don't want to change their desktop software.
Thecus have sold NAS boxes with hotswappable drives for a good number of years now starting at a few hundred dollars.
Something like the thecus N5200 will cost about $800 but give you five bays, hot spare, automatic rebuilding and hot swappable drives.
This is the correct answer. Seriously, don't even consider 1,000 hand built computers.
Buying 1,000 desktops should give you a lot of leverage. First thing you should be doing is getting bids from HP and IBM as well as Dell. But I'd have thought three quotes would already be a bare minimum in your corporate requirements. Remember and add a service deal. At $1,000 per PC, I'd be expect a four year maintenance deal with next day or even same day on site service.
Your thought was to have a standard configuration that would last 18 months. Well desktops should be able to run for four years, plenty of businesses are doing that already, and those Dell computers now have a lifespan 2.66 times that of your computers with Dell supporting the hardware for the duration.
If you have onsite tech staff, you should also be able to bypass technical support and simply declare parts as failed and have replacements shipped out. If you don't have staff that can support that, you should at least get priority business support that gets you a knowledgeable tech and a guaranteed fast answer time.
I'm not sure if you didn't read or didn't understand my post.
What I did was point out the fundamental difference between spoofing a MAC address and an IP address.
Once you change the MAC address, it becomes the address of the card. Sure you could use that to spoof the identity of another device on the network, but that's a consequence of your intent, not of changing the MAC address.
When spoofing an IP address, that act itself fits your definition of spoofing.
You may wish to use one term for two very different changes. IMHO that only serves to confuse matters and does no one any favours.
Spoofing is misdescribing things a bit. It's not like spoofing an IP address where you present an address diffferent to that you're actually using and which can cause issues with a lack of return traffic (data being sent to the spoofed IP).
Usually your MAC address can be user set using ifconfig - something like
ifconfig eth0 hw ether 00:01:02:03:04:05
That then becomes your MAC address. It's not being spoofed, it's the address your card has and will present when connected to a network.
fail2ban is your friend. Simply block their IP after three failed attempts.
Actually, I think this should become a standard feature for most VoIP software. It's simply too easy to scan for weak passwords.
When I've seen scans they tend to be numerical too. I wonder if it's worth having honeypot extensions in the low numbers.
Of course, if you're using asterisk and allow registrations from remote IPs and you have extensions.conf configured to allow calls to international destinations that you're unlikely to call then that's a bit foolhardy.
Better than that, I've heard it. And for the same reason, very many businesses won't consider dropping their POTS connection.
It's one things entrusting your calls to VOIP if you have a dedicated high bandwidth internet connection, ideally with QOS as far as possible between yourself and the VOIP provider. It's another thing altogether to trust your business calls to the available bandwidth of a random skype supernode that's being used to navigate round the NAT between your laptop and the skype POTS termination point.
Don't get me wrong - skype is a great tool. And for inter office calls between staff members, where call quality issues can be worked around it's fine. But for the customer facing side of the vast majority of businesses, it just won't pass muster.
Actually, you were. The grandparent Pharmboy (216950) posted twice. The bit where he wrote 'I am pretty sure that the basis for the lawsuits in my above statements' might have been considered a clue.