if the transmission lines get shut off (perhaps the switch caused a cascading failure, as has happened before), of course power plants (no matter what type) will shut down --- there's nowhere for the power to go! What they need is a really big lightbulb that they light up if there's nowhere else for the power to go.
From my own experience, every electronic map I've ever seen (Google, Mapquest, my Mio GPS) has the layout of my neighborhood completely and frustratingly wrong. So why not move to somewhere with exquisitely accurate and detailed mapping? I hear that the nuclear reactors in Pyongyang and Iran have been mapped out quite well.
In the UK, everyone and their dog has a mobile phone. Pretty much. Well, of the people who do online banking here, I'd guess 99.9%. Sorry about your backwater. Wouldn't you also agree that it's a lot cheaper to use something that $huge_percentage of people already have, and supplement those people who don't with an alternative? Also, I carry my phone with me anyway - I don't want to have to carry an RSA token around just in case I need to make a payment when I'm not at my home.
And to the other person who replied - SMSes on my network are pretty much 100%, and immediate.
Sod carrying around yet another thing. I carry a device capable of Out Of Band communication with me already, and I would imagine that 99.9% of the online-banking users in the UK do to. It's called a mobile phone.
Just register my number with the bank, and when I log in, I first enter my username and password, and then, on a second screen, the 6 digit code that has just been texted to my phone. Voila. Ivan Hacker who has a keystroke logger on my Linux box can't use the username and password anyway, and the mugger that snatches my phone from me in the street will only have it for a few minutes/hours until I cancel it. Plus, he'll just sell it for crack.
Did you ever do that science experiment where you try to burn a paper cup containing water? Doesn't work until you boil off all the water. Nope, never did that. One would just assume that it would burn through the cup, and then the water would fall out on to the heat source.
let it never be said I don't stay above-board in every circumstance. Yep, you're right:) Best post every bit of information about yourself, just in case any of it is important to what I might say next:)
A clever man learns by his mistakes. A wise man learns by the mistakes of others.
Watch someone else pee on the fence. Point, laugh, never do it yourself.
(Full disclosure: I have a GMail account. Er, I think this is only done if you work for the company/have shares in them, not if you are one of the hundreds of millions that uses a popular free service provided by the company.
Well personally I think its the parents job, and not society's, to filter what the children should see. We've got to turn to "Frosty Piss (770223)" to save us all have we?
This would be like writing your credit card number on the front of your shirt -//in infrared ink//. Sure, you'd need fancy infrared optics to read it - but why the hell would you take that chance? Security through obscurity is no security at all. I write all my credit card numbers on my shirts in big letters.
Care to say, *which option* should we disable in the kernel.config ? Good question. I, from what I can see, don't think it has an option that you can disable. I just edited/usr/src/linux/fs/splice.c, and changed the line (round about line 1200-ish - differs slightly) from
If you use software that doesn't require 2.6.17 or newer, it won't need vmsplice (because vmsplice didn't exist before then), and if you do run software that hard requires 2.6.17 or newer, chances are it won't use vmsplice anyhow. I'm safe! My soon-to-be-1000-day-uptime box can be left untouched!
$ uprecords # Uptime | System Boot up -> 1 961 days, 13:05:42 | Linux 2.6.11-hardened-r Fri Jun 24 11:18:25 2005
Lameness filter encountered. Post aborted!
Reason: Please use fewer 'junk' characters.
Lameness filter encountered. Post aborted!
Reason: Please use fewer 'junk' characters.
I have tested the exploit on a Linux VPS box within a VPS as a standard user, and it didn't work. Not sure if this is luck, kernel config, or good VPS design (Hello Bertl!), but either way I am happy. /me will start using GRSec again. It might not stop/have stopped this (I have no idea), but it's just an extra layer of difficulty.
Do as I do, and run Firefox as another user.. Then all it can read is stuff I've saved from the web, and cache, cookies, etc. Not great, but not as bad as being able to read my normal user's data.
I live thousands of miles away from them That's one of the arguments *for* installing Linux. Very easy to support remotely. Just whack Ubuntu on, and tell them it's Windows Vista or something.
Oh, absolutely. I was about 18, and I didn't think about privacy, or indeed the change from carrot to stick. However, if I'd patented it, and made a few million, I'd have probably thought about it for a few minutes from the comfort of my luxury villa, while my supermodel g/f got me a nice drink.
Slashdot Mirror
Stripped down version, command line only.... Sounds like...
"Those who don't understand UNIX are condemned to reinvent it, poorly." - Henry Spencer
Give them another 5 - 10 years, and maybe, just maybe, they'll get there.
In the UK, everyone and their dog has a mobile phone. Pretty much. Well, of the people who do online banking here, I'd guess 99.9%. Sorry about your backwater. Wouldn't you also agree that it's a lot cheaper to use something that $huge_percentage of people already have, and supplement those people who don't with an alternative? Also, I carry my phone with me anyway - I don't want to have to carry an RSA token around just in case I need to make a payment when I'm not at my home.
And to the other person who replied - SMSes on my network are pretty much 100%, and immediate.
Use a mobile phone to text the user the second part of the authentication code. It's so simple, so easy, so cheap - and very effective.
Sod carrying around yet another thing. I carry a device capable of Out Of Band communication with me already, and I would imagine that 99.9% of the online-banking users in the UK do to. It's called a mobile phone.
Just register my number with the bank, and when I log in, I first enter my username and password, and then, on a second screen, the 6 digit code that has just been texted to my phone. Voila. Ivan Hacker who has a keystroke logger on my Linux box can't use the username and password anyway, and the mugger that snatches my phone from me in the street will only have it for a few minutes/hours until I cancel it. Plus, he'll just sell it for crack.
I thought heat didn't conduct well in space, and that it was fairly chilly up there.
Is it a first? :)
A clever man learns by his mistakes. A wise man learns by the mistakes of others.
Watch someone else pee on the fence. Point, laugh, never do it yourself.
-----BEGIN PGP MESSAGE----- Version: GnuPG v1.4.6 (GNU/Linux) hQIOA4kr/HrL2H4tEAf+O9nM0aaT3SRp/ifwQarCfUTnnSE68NbQdNBDoNrISJkK aBLRBbVjW5DQRGgRgB7nfVdyLEl9ZR7qAlt2SNdGPaKepWaPHd6soXvtiMnNfCoS FM9pQdj7dtU5EJ3tFrpU5HAVXvuuT3yZWLUQ0/HxQOWQkTONGZb3FxwxvoiQ2CPh yH+ZDm6qh3xKVmtYshw/e/ileeaQID0plWGItKdwIsDCYsE8cIMlmLs8iVT1qGPF essq1P/okhuY7UlctJvCcnA/7aynAxefbcyr05OeeECLKseAE8umXc/5R03zu/2J 8HLaIFXCojT1bOstIzkCgkmycmNRvCqWMNXHK0Cykgf/WlJH1bElWw7M9QprYTJX I4214fR87XSKqA6e+0CiZS/QWXeLKzjJBsrovpBDcvnDdOOZtCJhrEB2s1DQ/Yep dckg40nOTx6pmjNejYrl2HhvxgYeCpanjKCLSDe9mb3gb8xVq34mzcH0yy2hCBmz jwa2KJiabN2FBjljTcJbp3SHHCaurI/lnuYMXoapHLnzHa5HOLGhVQE9t2KllFEN fQ7c+m2Eb7LOrWc+CgcEfrXOE6takduXElHhkh2Aw3FzRQPnzftvUFDUKf3dOEAG g6TA1t5lGP28RhhY8RAnXGSBvYlLn8egO/3bLIC7UlgbY5zdjPBvtS0ORpjexPn6 JtJRAaYl4AWnKp67HP/hJqTC+eqcutg8+aLuW19GglOzCZc7WlAC+X7JVYEBMRIO KJziihu6z1P+gdF0gyO9bJNaW6BrE13ESE8L5wOPaqHVBNTX =00md -----END PGP MESSAGE-----
Professor Sir Calum, MP, PhD, MsC, Esq.
So did Smallpox.
:)
No, I don't know what my point was.
Mr 4928 4116 5106 9912 04/11 763
to
as mentioned in http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=712a30e63c8066ed84385b12edbfb804f49cbc44
Then make and install the new kernel, reboot, and try the exploit. It should fail.
Lameness filter encountered. Post aborted! Reason: Please use fewer 'junk' characters.
Lameness filter encountered. Post aborted! Reason: Please use fewer 'junk' characters.
I have tested the exploit on a Linux VPS box within a VPS as a standard user, and it didn't work. Not sure if this is luck, kernel config, or good VPS design (Hello Bertl!), but either way I am happy.
/me will start using GRSec again. It might not stop/have stopped this (I have no idea), but it's just an extra layer of difficulty.
Do as I do, and run Firefox as another user.. Then all it can read is stuff I've saved from the web, and cache, cookies, etc. Not great, but not as bad as being able to read my normal user's data.
Oh, absolutely. I was about 18, and I didn't think about privacy, or indeed the change from carrot to stick. However, if I'd patented it, and made a few million, I'd have probably thought about it for a few minutes from the comfort of my luxury villa, while my supermodel g/f got me a nice drink.