Likewise, you'd have to do a lot more detective work than just redirecting traffic to a honeypot server to actually tie an IP address (possibly a dialup IP address) to a name to prosecute. If your time is so unvaluable that suing people for such a minor infraction is profitable use of your time, then you should be far more worried about developers in Bangalore than some student doing a port scan who is never seen again.
Who said anything about prosecution? I just want to waste their time, while keeping them from wasting mine.
Done properly, all the port scanner programs I've seen have a setting to defeat automatic log readers from detecting the scan: random period wait between ports. The best ones also do random access port scaning instead of sequential.
So run a tripwire on a handful of random ports, well away from normal traffic. Trip one or two and your IP gets banned or, if you're feeling vicious, redirected to a honeypot server.
What they meant, in this case is "We hijacked an address from the DHCP range because we are too lazy to ask for a static address." They seemed to think there was nothing wrong with this and couldn't understand why we were angry.
Ahh. The appropriate response is to stick their MAC address in a blackhole list, assuming you have such things where you are.
The last two are available due to the fact that most sysadmins aren't being paid to look at logs all day; and that home users don't have the extra cash to pay a sysadmin at all.
Why read logs when you have computers that do it for you?
We have a lab in our building that is devoted to studying networking, and literally most of the people in there couldn't point out the switch in their room, people that have, with a stright face, used the phrase "statically configured dynamic address".
What's the big deal? I've done statically configured DHCP - it's quite useful for configuring servers, for instance.
Assuming a free and unfettered internet, if you block an entire ISP from your network for what amounts to zero illegal activity, I would put it out there that a lawsuit would result in a court order to unblock said ISP.
Why is that? There's no reciprocal agreement in force, and blocking an ISP because their users are portscanning you is perfectly legal. Maybe a bit rude, but oh well.
My point is that all of the information requested in the assignment is public information that ALL computers running webservers broadcast. Most browsers hide it, but the operating system of the host server is sent every time you browse a site, for example.
No, a string is sent each time. I can make the string be anything I like. You aren't a developer, are you?
Rensselaer Polytechnic Institute has required laptops since 1999
Funny, I graduated in 1998. Does this mean they no longer have the computer labs in the white cube building that always smell like feet and old sweat? Is the student union now lousy with people banging on their laptops? Inquiring minds are mildly interested.
Well, duh! The very existence of a recommended configuration/laptop reduces the number of configurations to support, as a large number of people will just use that. How well do you think it'd fly if some college demanded that students buy a laptop and then banned Warcraft?
Of course, it also makes sense to ban laptops that are the computer equivalent of an Ebola baby - no sense in letting a million contagions bloom.
I completed my undergraduate studies 17 years ago, and let me tell you, that Calculus 101 Textbook is STILL providing me with many nights of riveting thrills and spills. I re-read it at least as often as I re-read Lord of the Rings....
If there wasn't a hard cutoff, then the courts would have to determine each case seperately.
God forbid judges have to judge. The problem with most of these laws is that they don't consider deception on the part of the minor - meet a girl in a bar with a fake ID and you might be looking at jailbait. There's no way to be sure, and you really can't do anything about it if you mess up.
Yeah, the kid posting a picture like that is disturbing, but I find the school admin talking about disciplining a kid for something that is unrelated to school even worse. How in the hell can they expell someone for posing with rifles? Also, as you pointed out, they haven't really given enough info to justify arrest - it isn't illegal for a minor to be around guns, it's only illegal if they don't have the parents' permission.
Bills such as this one rarely "die" in the conventional sense. They just get banished for a couple of years then someone summons them again, often in a slightly different form.
Was "Garden of Eden" a fable of sorts for early Isrealites since they wouldn't get "Well, God started the universe from the vacuum using a 20 dimensional algorithm that would solidify into 3 stable dimensions of space, 1 of time, and gravity with values X" - or was there a "snap of the fingers"? Some church authorities have given their opinions on it, but I've never seen an official "it was this and no other".
Or is it (as recounted in Snow Crash) a historical retelling of the fall of Sumeria?
Either way, it's still an appeal to faith- a cop out.
No, it's an observed phenomenon. The factors are somewhat quantified - environmental poisons, radiation, copy errors - we just don't know the whole pictures.
The problem goes deeper than reserved keywords. They apparently didn't understand the concept of "in-band signaling--the sending of metadata and control information in the same channel used for data," instead of using separate channels.
This isn't about in-band signalling. It's about the results of a common error case, which ends up as (null)@foo.net. Null isn't metadata.
I'm all for taking violence out of video games. There's no reason games can't be modified to have non-violent outcomes.
Well you're free to start a company and produce non-violent video games. Nintendo seems to do alright with they're selection.
Consider the fate of a person who thinks he is using a BSD licenced app as a base for his own stuff only to reliaze it is GPL.
That person is a tool - if you're going to use an app as basis for your own work, the first thing you do is verify the license.
My girlfriend lives on a dairy farm, and this isn't entirely true.
So what about the cows that end up in my butcher's shop?
is that something like a brazilian wax?
If you have enough hair back there for a landing strip, umm, I don't want to know.
Take...some..damn....tactlessons.
It's just a TV show... get a life.
Likewise, you'd have to do a lot more detective work than just redirecting traffic to a honeypot server to actually tie an IP address (possibly a dialup IP address) to a name to prosecute. If your time is so unvaluable that suing people for such a minor infraction is profitable use of your time, then you should be far more worried about developers in Bangalore than some student doing a port scan who is never seen again.
Who said anything about prosecution? I just want to waste their time, while keeping them from wasting mine.
Done properly, all the port scanner programs I've seen have a setting to defeat automatic log readers from detecting the scan: random period wait between ports. The best ones also do random access port scaning instead of sequential.
So run a tripwire on a handful of random ports, well away from normal traffic. Trip one or two and your IP gets banned or, if you're feeling vicious, redirected to a honeypot server.
What they meant, in this case is "We hijacked an address from the DHCP range because we are too lazy to ask for a static address." They seemed to think there was nothing wrong with this and couldn't understand why we were angry.
Ahh. The appropriate response is to stick their MAC address in a blackhole list, assuming you have such things where you are.
if the cops saw you doing that to a stranger's, they'd probably have a good reason to ask what the hell you were doing.
And they could probably charge you for trespass if nothing else. Dunno if there are any actual laws on this subject.
The last two are available due to the fact that most sysadmins aren't being paid to look at logs all day; and that home users don't have the extra cash to pay a sysadmin at all.
Why read logs when you have computers that do it for you?
We have a lab in our building that is devoted to studying networking, and literally most of the people in there couldn't point out the switch in their room, people that have, with a stright face, used the phrase "statically configured dynamic address".
What's the big deal? I've done statically configured DHCP - it's quite useful for configuring servers, for instance.
Assuming a free and unfettered internet, if you block an entire ISP from your network for what amounts to zero illegal activity, I would put it out there that a lawsuit would result in a court order to unblock said ISP.
Why is that? There's no reciprocal agreement in force, and blocking an ISP because their users are portscanning you is perfectly legal. Maybe a bit rude, but oh well.
My point is that all of the information requested in the assignment is public information that ALL computers running webservers broadcast. Most browsers hide it, but the operating system of the host server is sent every time you browse a site, for example.
No, a string is sent each time. I can make the string be anything I like. You aren't a developer, are you?
Rensselaer Polytechnic Institute has required laptops since 1999
Funny, I graduated in 1998. Does this mean they no longer have the computer labs in the white cube building that always smell like feet and old sweat? Is the student union now lousy with people banging on their laptops? Inquiring minds are mildly interested.
Are students allowed to use unsupported software?
Well, duh! The very existence of a recommended configuration/laptop reduces the number of configurations to support, as a large number of people will just use that. How well do you think it'd fly if some college demanded that students buy a laptop and then banned Warcraft?
Of course, it also makes sense to ban laptops that are the computer equivalent of an Ebola baby - no sense in letting a million contagions bloom.
I completed my undergraduate studies 17 years ago, and let me tell you, that Calculus 101 Textbook is STILL providing me with many nights of riveting thrills and spills. I re-read it at least as often as I re-read Lord of the Rings....
Every time a movie adaptation gets made?
If there wasn't a hard cutoff, then the courts would have to determine each case seperately.
God forbid judges have to judge. The problem with most of these laws is that they don't consider deception on the part of the minor - meet a girl in a bar with a fake ID and you might be looking at jailbait. There's no way to be sure, and you really can't do anything about it if you mess up.
Yeah, the kid posting a picture like that is disturbing, but I find the school admin talking about disciplining a kid for something that is unrelated to school even worse. How in the hell can they expell someone for posing with rifles? Also, as you pointed out, they haven't really given enough info to justify arrest - it isn't illegal for a minor to be around guns, it's only illegal if they don't have the parents' permission.
I am not sure what an Episcopalean would do.
I dunno, giggle?
Bills such as this one rarely "die" in the conventional sense. They just get banished for a couple of years then someone summons them again, often in a slightly different form.
Zombie bills want to eat your brains! YAARGHH!
Was "Garden of Eden" a fable of sorts for early Isrealites since they wouldn't get "Well, God started the universe from the vacuum using a 20 dimensional algorithm that would solidify into 3 stable dimensions of space, 1 of time, and gravity with values X" - or was there a "snap of the fingers"? Some church authorities have given their opinions on it, but I've never seen an official "it was this and no other".
Or is it (as recounted in Snow Crash) a historical retelling of the fall of Sumeria?
Either way, it's still an appeal to faith- a cop out.
No, it's an observed phenomenon. The factors are somewhat quantified - environmental poisons, radiation, copy errors - we just don't know the whole pictures.
The problem goes deeper than reserved keywords. They apparently didn't understand the concept of "in-band signaling--the sending of metadata and control information in the same channel used for data," instead of using separate channels.
This isn't about in-band signalling. It's about the results of a common error case, which ends up as (null)@foo.net. Null isn't metadata.
"How do you feel about having your child instructed in what's 'true' by a [Mormon/Muslim/Catholic/Protestant/Jew/Satanist] teacher?"
Sure, as long as he's not Episcopalean.
Being "careful" about email addresses doesn't work. It'll ward off the spammers for a while, but eventually you'll have to change your address.
So use email addresses with an expiration date that forward to the address you actually read.