rm -- \* should get it for you. The -- will stop accepting arguments, and the \ should escape the '*' into a literal character. This should also prevent it from grabbing '.' and '..' as well.
Someone should grab a VMware live image and try it out for us:)
Well the real problem was that around the ending of Book 4, Tor came to Jordan and asked him to extend the series and stretch it out. I am most certain this is documented somewhere and came directly from RJ himself.
Of course, RJ started out writing just one book, then during the process came up with more story and wanted a trilogy. If you read carefully, you can actually see how Book 3 really is a good ending to the saga, and it's evident how Book 4 does start on a new thread entirely. It's a very different series starting at Book 4 (similar to how Book 2 started).
But this is about when Tor came in and asked for more. So, he drew up some extended storyline of course for books 4-6 or so. Book 4 was stunning. just great!. Books 5-7 were *definitely* filler with mild forward-moving story. But then he got his act back together with Book 8 and THAT's when he did another 'reboot' of sorts and started putting story elements back together. The second half of Book 8, the whole of Book 9, and the interesting storytelling of Book 10 are all very tightly woven and they work very well.
Book 11 certainly was the house-cleaning book (heh, some "decisive action" taking place rather early made me smile) and sets the stage very smoothly for Book 12.
So yes, I agree it got slow and lazy in the middle. If we could have those books plus first half of Book 8 condensed and re-written to a 200 page novel, that'd be great:)
Anyway, I just wanted to toss that bit of insight up. I hope it helps 'cope' in some way with the whole thing. Once I found out about it, I felt better about it.
So, what is the deal? Are parents raising street stupid kids? Too sheltered perhaps, and they don't know what to do when confronted with possible danger? Yes.
Gen-X is the generation at fault here. They were a wonderful generation right up to the point where they began breeding. Exceptions abound, I know. I have good Gen-X friends who are great parents, and I know some Gen-X folks who are terrible.
A few years ago I did some personal research on this "phenomenon". Based on what I can gather, it happened around the late 70s and during the 80s. They had a great time, a great life. Other than the 1979 oil crisis, the Vietnam situation, Korean conflict, and the Gulf battles, that generation never really knew what it was like to live life "tough". Sure, the US had a major economic recession, the 1987 market crash was rough, but it wasn't devastating like the 1929 crash. During the 60s and 70s, their parents, the baby boomers, gave them everything. They did *not* seem to abuse this, however, so don't misunderstand.
Another fact is they were also the generation that largely grew up in split families, so they didn't have that "single family" focus (I'm not advocating the psychology behind it, just pointing it out). I think this lead them to be more absolved of responsibility. They were also the generation behind the creation of today's technology. This lead them to be more automated and less directly-connected to things. A baby boomer would never dream of telecommuting, but for a Gen-X'er, it's an obvious option.
So, my (very) brief thesis concludes with: Gen-X doesn't know how to handle the responsibility of parenting and having to stick with something to the end. They've largely been in a disposable society and almost always had something they can replace midway through, or buy a new one, or pass off to someone else ("hey mom, baby-sit for me, will ya?"). Now, they have to live life "tough", despite that they are only spawning one or two children each.
But yes, parents are raising stupid kids, the "Gen-Y" (aka "Who cares?" and "bubblegum pop") crowd. Gen-Y has grown up entirely immersed in technology from day zero; which is kinda cool, actually! They have already been mimicking some of Gen-X's laissez fare attitudes and poor track record.
One thing skewing this now, is that Gen-X is breeding later than the boomers (age range 29-33 for the first child, versus 22-25 for boomers). This is stretching the generational ranges quite a bit. We'll be seeing "sub-generations" in another 10 years, probably. I don't know what effect this will have, but it will certainly be interesting. Especially since Gen-Y is already starting to breed the next generation, and today's Kindergarten students are the first wave.
I'm hopeful for our future, but Gen-X did a major disservice.
(disclosure: i am age 30, born in 1977, during the official generational "gap" between Gen-X and Gen-Y.)
Exactly. I wasn't thinking so much as looking into the packets, but perhaps see what hosts keep contacting it over time (develop a pattern). And yeah, do something like QoS to keep the Windows box from compounding matters.
The Bleeding-Edge rules for Snort has a list of known hosts to be infected with Storm. Would that be a decent place to start collecting activity to/from those hosts?
If not, then why not put a Windows pawn in place, put it behind a good firewall (maybe*), have a switch to mirror the traffic to record everything, then let that pawn be infected and watch what it does and where it goes. I know each infection only has a subset of other known peers, but at least you can start extracting known peers out of the list. Then watch for the C&C traffic, and *poof* there's the 'inner circle' you want.
*maybe a firewall, maybe not.. if you want to watch all the traffic you might not want anything getting in the way, in order to catch all the traffic. You'll have to sacrifice that system anyway. I can see a larger datacenter-type network having available segments and IP space to hang a machine off the core network rather than someone downstream on a T1 or something small like that.
Am I thinking too logically here? This really doesn't seem to be any more difficult than a typical honeynet project challenge. I'm surprised I haven't seen any further posts on various lists like this. Maybe I'm oversimplifying the whole thing, I dunno.
This is IBMs VM OS from the 1970s. We are just now catching up to just over 30 years ago. Good work team. You almost missed it. Any later and it would have been from 40 years ago.
I'm both impressed and saddened at the reinvention of this wheel.
That would be OK too, because then they can detected it encrypted with "foo algorithm" and send you a targeted advertisement that "Biz bang Algorithm is better" and then offer you links to crypto products and stuff. Either way, they win:) It's brilliant.
Microsoft SQL Server was derived from Sybase many eons ago. Like any good project, tho, I would venture a guess that they've "gone their own way" by now (at least I hope).
You and others who spout this same rhetoric are misguided and are being quite revisionist. The US intelligence groups had Saddam absolutely completely 100% contained and under surveillance. He couldn't fart without us knowing about it
After World War I, Hitler was mostly ignored and shrugged off as some loud-mouth twit with no real agenda. He was ignored *BY THE EUROPEANS*. The US didn't care either way because we had our own problems in the 30s and FDR was trying to fix this nation. When Hitler finally rose to power, the rest of Europe STILL did nothing. When he violated the first of many treaties (Treaty of Versailles in which Germany promised to disarm, pay up to fix what they broke, give up territories and sit in the corner and feel really bad about what they did), Europe still did nothing. Hitler invaded Poland, and Europe still did nothing. Hitler was a European problem that they should have handled.
Saddam, on the other hand, was a regional problem but quickly became a global problem after he invaded Kuwait. The UN immediately dispatched forces to the region and the US led Operation Desert Shield to push Iraq back across the border. The UN quickly drew the northern and southern "No-Fly Zones" at the 32nd and 36th parallels (latitude coordinates). At that point, Operation Desert Storm was enacted and we had Saddam under complete quarantine and the spy satellites never left his head. We had missiles armed and ready to fire any time he or his crew moved near the no-fly zones, which they constantly tried to cross. Every time they did, the US fired the patriot missiles and launched other air strikes as needed.
Hitler and Saddam are completely different. Please stop imagining such correlations.
The advisory I read earlier this week for the Check Point Edge firewall, specifically, said the URL would have been most effective if the attacker knew the device's IP. The proof-of-concept I saw worked to add a new admin user and password to the device. It used "https://192.168.10.1/blah blah" which is the default IP of the Edge out-of-the-box. Although for the Edge, specifically, it acts as a DNS proxy which can intercept the silly "my.firewall" and "my.vpn" DNS names and redirects them to the device itself which negates any advantages of changing the IP range... >sigh.
Other devices (Linksys, etc) use 192.168.1.1 (as we know all too well). So changing the IP (preferably the range, but at least the device) would help mitigate this attack. (keyword: "help")
The Check Point Edge attack was slick. Simple, effective, and scary.
Anyone with a Check Point Edge or SofaWare appliance, be aware that if you do the reset procedure, you will be restoring both the original configuration *AND* the original firmware image that shipped with the product. Yes, the original image is still there. If you have a very old v3.x firmware box like I had one time, after upgrading to v6.5.x (back then) and then doing a reset, you're in for a surprise:)
I think that's one of the changes Check Point is making to the Edge appliances. There are no details in the release notes for v7.0.45 of their Edge firmware, but I think they added some session timeout/cookie timeout stuff. This came out rather quickly, so it must not have been too hard to "fix".
Anyone here like me who does managed firewall work, please notify your clients and get them updated! But this is Slashdot, and we all update our stuff don't we?:) Also, this kind of thing is irrespective of whether or not you allow remote web management of your device. Also, this is further evidence for why you should not use the default internal IP range the device gives you. Please always change the local LAN IP range!
I'm surprised it took this long to find something like this, but I'm not at all surprised it existed. I've loved web interfaces like these but I've always been nervous about them.
Slashdot Mirror
rm -- \* should get it for you. The -- will stop accepting arguments, and the \ should escape the '*' into a literal character. This should also prevent it from grabbing '.' and '..' as well.
Someone should grab a VMware live image and try it out for us :)
Except Star Wars wasn't in the future. It happened a long time ago in a galaxy far, far away...
Well the real problem was that around the ending of Book 4, Tor came to Jordan and asked him to extend the series and stretch it out. I am most certain this is documented somewhere and came directly from RJ himself.
:)
Of course, RJ started out writing just one book, then during the process came up with more story and wanted a trilogy. If you read carefully, you can actually see how Book 3 really is a good ending to the saga, and it's evident how Book 4 does start on a new thread entirely. It's a very different series starting at Book 4 (similar to how Book 2 started).
But this is about when Tor came in and asked for more. So, he drew up some extended storyline of course for books 4-6 or so. Book 4 was stunning. just great!. Books 5-7 were *definitely* filler with mild forward-moving story. But then he got his act back together with Book 8 and THAT's when he did another 'reboot' of sorts and started putting story elements back together. The second half of Book 8, the whole of Book 9, and the interesting storytelling of Book 10 are all very tightly woven and they work very well.
Book 11 certainly was the house-cleaning book (heh, some "decisive action" taking place rather early made me smile) and sets the stage very smoothly for Book 12.
So yes, I agree it got slow and lazy in the middle. If we could have those books plus first half of Book 8 condensed and re-written to a 200 page novel, that'd be great
Anyway, I just wanted to toss that bit of insight up. I hope it helps 'cope' in some way with the whole thing. Once I found out about it, I felt better about it.
Seeya!
hahah! mod parent up! well said :)
Gen-X is the generation at fault here. They were a wonderful generation right up to the point where they began breeding. Exceptions abound, I know. I have good Gen-X friends who are great parents, and I know some Gen-X folks who are terrible.
A few years ago I did some personal research on this "phenomenon". Based on what I can gather, it happened around the late 70s and during the 80s. They had a great time, a great life. Other than the 1979 oil crisis, the Vietnam situation, Korean conflict, and the Gulf battles, that generation never really knew what it was like to live life "tough". Sure, the US had a major economic recession, the 1987 market crash was rough, but it wasn't devastating like the 1929 crash. During the 60s and 70s, their parents, the baby boomers, gave them everything. They did *not* seem to abuse this, however, so don't misunderstand.
Another fact is they were also the generation that largely grew up in split families, so they didn't have that "single family" focus (I'm not advocating the psychology behind it, just pointing it out). I think this lead them to be more absolved of responsibility. They were also the generation behind the creation of today's technology. This lead them to be more automated and less directly-connected to things. A baby boomer would never dream of telecommuting, but for a Gen-X'er, it's an obvious option.
So, my (very) brief thesis concludes with: Gen-X doesn't know how to handle the responsibility of parenting and having to stick with something to the end. They've largely been in a disposable society and almost always had something they can replace midway through, or buy a new one, or pass off to someone else ("hey mom, baby-sit for me, will ya?"). Now, they have to live life "tough", despite that they are only spawning one or two children each.
But yes, parents are raising stupid kids, the "Gen-Y" (aka "Who cares?" and "bubblegum pop") crowd. Gen-Y has grown up entirely immersed in technology from day zero; which is kinda cool, actually! They have already been mimicking some of Gen-X's laissez fare attitudes and poor track record.
One thing skewing this now, is that Gen-X is breeding later than the boomers (age range 29-33 for the first child, versus 22-25 for boomers). This is stretching the generational ranges quite a bit. We'll be seeing "sub-generations" in another 10 years, probably. I don't know what effect this will have, but it will certainly be interesting. Especially since Gen-Y is already starting to breed the next generation, and today's Kindergarten students are the first wave.
I'm hopeful for our future, but Gen-X did a major disservice.
(disclosure: i am age 30, born in 1977, during the official generational "gap" between Gen-X and Gen-Y.)
Exactly. I wasn't thinking so much as looking into the packets, but perhaps see what hosts keep contacting it over time (develop a pattern). And yeah, do something like QoS to keep the Windows box from compounding matters.
The Bleeding-Edge rules for Snort has a list of known hosts to be infected with Storm. Would that be a decent place to start collecting activity to/from those hosts?
If not, then why not put a Windows pawn in place, put it behind a good firewall (maybe*), have a switch to mirror the traffic to record everything, then let that pawn be infected and watch what it does and where it goes. I know each infection only has a subset of other known peers, but at least you can start extracting known peers out of the list. Then watch for the C&C traffic, and *poof* there's the 'inner circle' you want.
*maybe a firewall, maybe not.. if you want to watch all the traffic you might not want anything getting in the way, in order to catch all the traffic. You'll have to sacrifice that system anyway. I can see a larger datacenter-type network having available segments and IP space to hang a machine off the core network rather than someone downstream on a T1 or something small like that.
Am I thinking too logically here? This really doesn't seem to be any more difficult than a typical honeynet project challenge. I'm surprised I haven't seen any further posts on various lists like this. Maybe I'm oversimplifying the whole thing, I dunno.
Can't we just turn off the Internet? Just close the tubes?
This is IBMs VM OS from the 1970s. We are just now catching up to just over 30 years ago. Good work team. You almost missed it. Any later and it would have been from 40 years ago.
I'm both impressed and saddened at the reinvention of this wheel.
If so, have I accidentally logged into some kind of bizarro-Slashdot, where everyone is polite and respectful?
:)
No, that episode of Smallville airs in 2 weeks.
Clearly, you're eligible enough :)
"No good will come of this".
... oh my.
:)
I got images of various "Resident Evil" scenes with zombies flooding the Northeast US and
On a serious note, kudos to the lab geeks at MIT! You guys do some fantastic work
That would be OK too, because then they can detected it encrypted with "foo algorithm" and send you a targeted advertisement that "Biz bang Algorithm is better" and then offer you links to crypto products and stuff. Either way, they win :) It's brilliant.
Yes, this is truly wondrous and all that jazz, but... will it blend?
Microsoft SQL Server was derived from Sybase many eons ago. Like any good project, tho, I would venture a guess that they've "gone their own way" by now (at least I hope).
)
(can I link to Wikipedia for this and not get flamed? The info here really is quite accurate: http://en.wikipedia.org/wiki/Microsoft_SQL_Server
yum! gimme gimme gimme!!
You and others who spout this same rhetoric are misguided and are being quite revisionist. The US intelligence groups had Saddam absolutely completely 100% contained and under surveillance. He couldn't fart without us knowing about it
After World War I, Hitler was mostly ignored and shrugged off as some loud-mouth twit with no real agenda. He was ignored *BY THE EUROPEANS*. The US didn't care either way because we had our own problems in the 30s and FDR was trying to fix this nation. When Hitler finally rose to power, the rest of Europe STILL did nothing. When he violated the first of many treaties (Treaty of Versailles in which Germany promised to disarm, pay up to fix what they broke, give up territories and sit in the corner and feel really bad about what they did), Europe still did nothing. Hitler invaded Poland, and Europe still did nothing. Hitler was a European problem that they should have handled.
Saddam, on the other hand, was a regional problem but quickly became a global problem after he invaded Kuwait. The UN immediately dispatched forces to the region and the US led Operation Desert Shield to push Iraq back across the border. The UN quickly drew the northern and southern "No-Fly Zones" at the 32nd and 36th parallels (latitude coordinates). At that point, Operation Desert Storm was enacted and we had Saddam under complete quarantine and the spy satellites never left his head. We had missiles armed and ready to fire any time he or his crew moved near the no-fly zones, which they constantly tried to cross. Every time they did, the US fired the patriot missiles and launched other air strikes as needed.
Hitler and Saddam are completely different. Please stop imagining such correlations.
Standards? We don't need no stinkin' standards! ;-)
The advisory I read earlier this week for the Check Point Edge firewall, specifically, said the URL would have been most effective if the attacker knew the device's IP. The proof-of-concept I saw worked to add a new admin user and password to the device. It used "https://192.168.10.1/blah blah" which is the default IP of the Edge out-of-the-box. Although for the Edge, specifically, it acts as a DNS proxy which can intercept the silly "my.firewall" and "my.vpn" DNS names and redirects them to the device itself which negates any advantages of changing the IP range... >sigh.
Other devices (Linksys, etc) use 192.168.1.1 (as we know all too well). So changing the IP (preferably the range, but at least the device) would help mitigate this attack. (keyword: "help")
The Check Point Edge attack was slick. Simple, effective, and scary.
Anyone with a Check Point Edge or SofaWare appliance, be aware that if you do the reset procedure, you will be restoring both the original configuration *AND* the original firmware image that shipped with the product. Yes, the original image is still there. If you have a very old v3.x firmware box like I had one time, after upgrading to v6.5.x (back then) and then doing a reset, you're in for a surprise :)
I think that's one of the changes Check Point is making to the Edge appliances. There are no details in the release notes for v7.0.45 of their Edge firmware, but I think they added some session timeout/cookie timeout stuff. This came out rather quickly, so it must not have been too hard to "fix".
Anyone here like me who does managed firewall work, please notify your clients and get them updated! But this is Slashdot, and we all update our stuff don't we? :) Also, this kind of thing is irrespective of whether or not you allow remote web management of your device. Also, this is further evidence for why you should not use the default internal IP range the device gives you. Please always change the local LAN IP range!
I'm surprised it took this long to find something like this, but I'm not at all surprised it existed. I've loved web interfaces like these but I've always been nervous about them.
This thread has been Godwin-ed! :) Wow, and in under an hour, *again*! Impressive work.
What channel should I set my TiVo to record? I don't wanna miss it!
But dude, I *LOVED* that sig on this post: Karma: Chameleon (Mostly due to the fact that you come and go.) hahaha!!!11!!one