Please explain hos this means treating employees like kids? There is no reason for an employee to be using a P2P app at work. I don't care if you own the CD you're downloading, rip your own at home and bring it in.
P2P apps should be banned just for the security problems alone...not even considering legal liability of the company.
Uh...what? The fact you can't physically secure your system is your problem. No one elses. Put it in a locked room. A locked closed. A locked safe with a hole in the back for power.:)
Any system, ANY system, can be hacked with physical access. If you want more protection encrypt the filesystem. That's about the best defense. If I have physical access I can pick up the computer and walk out with it. Then I can spend all the time I want cracking it.
This gives you LOCAL administrator access. Meaning, you can do what you want on THAT system. It doesn't give you the keys to the whole network. Just like rooting a Linux workstation doesn't mean you just rooted everything on the network.
Why is this on Slashdot now? That game has been out a while. I messed with it on XBox. It's the only title that does 1080i HD. The game itself was terrible...though my Dragon's Lair fan friend liked it.
If you're a company and want a good spam solution check out BrightMail, or someone that resells their service. It's not the cheapest, but it REALLY works. No false positives and no overhead.
BrightMail monitors many, many, email addresses for customers and others that they seed. When an email hits a number of those addresses quickly it is forwarded to their NOC. A person looks at it and decides if it is spam. If it is the message is blocked from all other customers. It works very well.
I think web monitoring is a good idea, but I don't like blocking. We monitor with WebSense but do not block anything. I prepare reports for managers that show the most common categories of sites people visit, but not with individual info. If surfing to "bad" sites becomes an issue a VP will send out a reminder email that we do monitor and CAN crack down if needed. The next day the "bad" sites stop showing up.
Treat your employees like professionals and you'll usually get the result you want. We allow "reasonable" personal use of the systems. But, if someone spends too much time online that's just like spending too much time on the phone or smoking.
What about someone with bad credit that they couldn't really control? It's easy for credit to go very bad during a divorce. What about long term unemployment, especially in today's job market? That's what concerns me. It would be hard to turn bad credit around if you needed good credit to get a job.
People on Slashdot choose Linux due to its merits. People up high see dollar figures, and that is it. It's MY job to make things work right, no matter which system we choose to go with.
Most users don't give a damn about the philosophy behind the software. When my managers hear "Linux" and "Open Source" they really hear "free". They like it because it doesn't cost them anything.
I got my RHCE two years ago. I got a 98% overall, so I'm very familiar with the exam. But honestly, the troubleshooting was the easiest part. All of the fixes were straight out of the normal "how to repair a Linux box" chapters in the study guides. They were almost covered word for word from the class manual that someone gave me.
The application setup also wasn't difficulet. You never really had to think up a new way to do things... It was all spelled out in the class manuals or the basic "how to set things up" chapters. Several of the app setups were the defaults when the RPM was installed!
Some of the people in my exam were taking it their 2nd and 3rd time. I think they finally passed, but in my eyes they are already paper RHCEs. I wouldn't let them touch my systems. They finally learned the test, not the material.
But, I could send 5 or 6 people through that test and get about every lab situation. I can then write up "similar" situations in my Exam Stuffer book. Bingo, paper RHCE.
That's EXACTLY what happened to the MCSE in the late NT4 days. The Transcender practice exams were very close to the same exact questions as the real exam. Microsoft started coming down hard on those companies and now the tests aren't that similar...but it can happen to any exam.
I bet I could get anyone with some IT experience to pass the RHCE exam in 2 weeks. An Exam Cram was released (they went under) that covered pretty much every piece of the exam. Any test can be reduced down and a "cheat sheet" created.
There will be plenty of paper RHCEs as soon as the cert becomes popular. The real creators of paper certs are the companies themselves pushing quick courses that always seem to stress the sticky spots on the exam.
I take it you aren't a MCSE and haven't looked at the re-certification policy. I've been a MCSE for close to 7 years. This year will be the first time I've been forced to upgrade. No big deal.
Cisco requires you to recertify every 3 years, no matter what. I've been an RHCE for about 2 years and so far no recert needed in site.
I'm a RHCE (2 years ago), MCSE (6 or 7 years ago), and a CCNP. The new MCSE exams are a good bit deeper than the earlier tests that were very easy. The RHCE is a good lab exam, but mainly focuses on supporting small Linux servers in a pretty rigid setup. It doesn't really cover managing a large Linux network, like some of the MCSE tests cover.
Is the RHCE worth it? It's a good cert and until it gets washed out, it has value. But don't worry, when it gets popular you'll see cheat sheets and answer books just like you do with the MCSE. The exam will always be based on the RedHat classes, which can be reduced down to only the facts needed.
I did not take any Red Hat classes when I took my exam...in fact, I was the only one out of 8 that didn't. I got a 98% on the exam while some of the people who took the training were taking it their 2nd time. I think those guys passed when I was there, but I wouldn't want them on my servers....
I don't want my ISP blocking traffic. My security is my problem. I pay them for bandwidth and a connection.
IDS produces lots of alerts if you don't filter it properly. There is no reason to have every signature loaded if your systems wouldn't be affected. If you are being targeted by a DDoS then call your ISP and have them filter up stream, but don't do me any favors and do it without me asking.
First, why do notebooks have SQL server running? Why weren't the "real" servers patched and protected in the first place?
OK, off my rant. They do make appliances that detect and log attacks. They are called Intrusion Detection systems. That's the whole idea of network IDS. Cisco makes them... You can make one on any linux box with Snort. ISS makes software that runs on NT/2K.... The list goes on.
A virus scanning appliance is harder. What if the virus is in a zip file or other archive? Lots of problems with that. It's best just to get good AV out on the network with central management to make SURE they are updated and functioning.
For anyone wanting good Exchange Server AV I can't recommend Antigen by Sybari enough. It makes everything else look really bad. For the desktops/servers we've used Norton w/ their central manager and it is performing great. Much better than any of the McAfee installations I've ever seen.
Companies don't want "aggressive" upgrade policy. We want to stay where things work. This is exactly why MS just had to push back the EOL of NT4. For many people it's working just fine. Windows 2000 didn't offer them enough to move their servers.
For example, I have a RH 7.2 box at the office running some network tools (MRTG, BB, etc). We use Compaq Insight Manager for hardware monitoring. The new monitoring agents released by Compaq only want RH 8.0. The installer won't run on 7.2. If I don't upgrade the agents that box is flagged as running old software in the management tool.
So, I'll either end up going to RH 8.0 to get them on, or forcing them on to a 7.2 box, which means Compaq won't support them (should I need it).
For those that think football is a boring or stupid sport, go check out Joe Theisman's Idiot's Guide to Football. It's a great book that covers the game and will show you how deep the game is. It'll turn it from two teams running in to each other in to an offensive strategy going against a defensive strategy. More like a good fight.
Well worth checking out. It'll also help your Madden 2K3 or NFL2K3 game against your friends.:)
ABC's high definition feed rates about a 7. It's not as good as CBS, probably because they are using 720p and not 1080i. It's just not as crisp and clear.
The good news is that the movie previews are in HD with 5.1 sound. That's a nice addition.
The patch came out in July. If they weren't accessable via the Internet this wouldn't be an issue. Who is at fault? Admins. I'm a network admin and my SQL2K boxes are patched and NOT available to the outside world.
Slashdot Mirror
Please explain hos this means treating employees like kids? There is no reason for an employee to be using a P2P app at work. I don't care if you own the CD you're downloading, rip your own at home and bring it in.
P2P apps should be banned just for the security problems alone...not even considering legal liability of the company.
Grow up. Get a real job.
Uh...what? The fact you can't physically secure your system is your problem. No one elses. Put it in a locked room. A locked closed. A locked safe with a hole in the back for power. :)
Any system, ANY system, can be hacked with physical access. If you want more protection encrypt the filesystem. That's about the best defense. If I have physical access I can pick up the computer and walk out with it. Then I can spend all the time I want cracking it.
This gives you LOCAL administrator access. Meaning, you can do what you want on THAT system. It doesn't give you the keys to the whole network. Just like rooting a Linux workstation doesn't mean you just rooted everything on the network.
I assume you mean the C2 cert. This assumes physical security. It's hard for an OS to know it's behind a locked door.
Why wasn't this important system in a locked room?
You can do this with any system... Even Slashdot's precious Linux.
It is widescreen 480p. Not 1080i.
Why is this on Slashdot now? That game has been out a while. I messed with it on XBox. It's the only title that does 1080i HD. The game itself was terrible...though my Dragon's Lair fan friend liked it.
Not even worth an article.....
Do you have an IDS system? I know our Real Secure network sensor will pick up almost all P2P apps. I just shut down a user running one.
If you're a company and want a good spam solution check out BrightMail, or someone that resells their service. It's not the cheapest, but it REALLY works. No false positives and no overhead.
BrightMail monitors many, many, email addresses for customers and others that they seed. When an email hits a number of those addresses quickly it is forwarded to their NOC. A person looks at it and decides if it is spam. If it is the message is blocked from all other customers. It works very well.
Not 1024 CPUs in one box. Each CPU sits on a "blade" card and acts like a seperate system. It's a bug cluster.
I think web monitoring is a good idea, but I don't like blocking. We monitor with WebSense but do not block anything. I prepare reports for managers that show the most common categories of sites people visit, but not with individual info. If surfing to "bad" sites becomes an issue a VP will send out a reminder email that we do monitor and CAN crack down if needed. The next day the "bad" sites stop showing up.
Treat your employees like professionals and you'll usually get the result you want. We allow "reasonable" personal use of the systems. But, if someone spends too much time online that's just like spending too much time on the phone or smoking.
What about someone with bad credit that they couldn't really control? It's easy for credit to go very bad during a divorce. What about long term unemployment, especially in today's job market? That's what concerns me. It would be hard to turn bad credit around if you needed good credit to get a job.
People on Slashdot choose Linux due to its merits. People up high see dollar figures, and that is it. It's MY job to make things work right, no matter which system we choose to go with.
Most users don't give a damn about the philosophy behind the software. When my managers hear "Linux" and "Open Source" they really hear "free". They like it because it doesn't cost them anything.
I got my RHCE two years ago. I got a 98% overall, so I'm very familiar with the exam. But honestly, the troubleshooting was the easiest part. All of the fixes were straight out of the normal "how to repair a Linux box" chapters in the study guides. They were almost covered word for word from the class manual that someone gave me.
The application setup also wasn't difficulet. You never really had to think up a new way to do things... It was all spelled out in the class manuals or the basic "how to set things up" chapters. Several of the app setups were the defaults when the RPM was installed!
Some of the people in my exam were taking it their 2nd and 3rd time. I think they finally passed, but in my eyes they are already paper RHCEs. I wouldn't let them touch my systems. They finally learned the test, not the material.
But, I could send 5 or 6 people through that test and get about every lab situation. I can then write up "similar" situations in my Exam Stuffer book. Bingo, paper RHCE.
That's EXACTLY what happened to the MCSE in the late NT4 days. The Transcender practice exams were very close to the same exact questions as the real exam. Microsoft started coming down hard on those companies and now the tests aren't that similar...but it can happen to any exam.
I bet I could get anyone with some IT experience to pass the RHCE exam in 2 weeks. An Exam Cram was released (they went under) that covered pretty much every piece of the exam. Any test can be reduced down and a "cheat sheet" created.
There will be plenty of paper RHCEs as soon as the cert becomes popular. The real creators of paper certs are the companies themselves pushing quick courses that always seem to stress the sticky spots on the exam.
I take it you aren't a MCSE and haven't looked at the re-certification policy. I've been a MCSE for close to 7 years. This year will be the first time I've been forced to upgrade. No big deal.
Cisco requires you to recertify every 3 years, no matter what. I've been an RHCE for about 2 years and so far no recert needed in site.
I'm a RHCE (2 years ago), MCSE (6 or 7 years ago), and a CCNP. The new MCSE exams are a good bit deeper than the earlier tests that were very easy. The RHCE is a good lab exam, but mainly focuses on supporting small Linux servers in a pretty rigid setup. It doesn't really cover managing a large Linux network, like some of the MCSE tests cover.
Is the RHCE worth it? It's a good cert and until it gets washed out, it has value. But don't worry, when it gets popular you'll see cheat sheets and answer books just like you do with the MCSE. The exam will always be based on the RedHat classes, which can be reduced down to only the facts needed.
I did not take any Red Hat classes when I took my exam...in fact, I was the only one out of 8 that didn't. I got a 98% on the exam while some of the people who took the training were taking it their 2nd time. I think those guys passed when I was there, but I wouldn't want them on my servers....
I don't want my ISP blocking traffic. My security is my problem. I pay them for bandwidth and a connection.
IDS produces lots of alerts if you don't filter it properly. There is no reason to have every signature loaded if your systems wouldn't be affected. If you are being targeted by a DDoS then call your ISP and have them filter up stream, but don't do me any favors and do it without me asking.
First, why do notebooks have SQL server running? Why weren't the "real" servers patched and protected in the first place?
OK, off my rant. They do make appliances that detect and log attacks. They are called Intrusion Detection systems. That's the whole idea of network IDS. Cisco makes them... You can make one on any linux box with Snort. ISS makes software that runs on NT/2K.... The list goes on.
A virus scanning appliance is harder. What if the virus is in a zip file or other archive? Lots of problems with that. It's best just to get good AV out on the network with central management to make SURE they are updated and functioning.
For anyone wanting good Exchange Server AV I can't recommend Antigen by Sybari enough. It makes everything else look really bad. For the desktops/servers we've used Norton w/ their central manager and it is performing great. Much better than any of the McAfee installations I've ever seen.
Companies don't want "aggressive" upgrade policy. We want to stay where things work. This is exactly why MS just had to push back the EOL of NT4. For many people it's working just fine. Windows 2000 didn't offer them enough to move their servers.
For example, I have a RH 7.2 box at the office running some network tools (MRTG, BB, etc). We use Compaq Insight Manager for hardware monitoring. The new monitoring agents released by Compaq only want RH 8.0. The installer won't run on 7.2. If I don't upgrade the agents that box is flagged as running old software in the management tool.
So, I'll either end up going to RH 8.0 to get them on, or forcing them on to a 7.2 box, which means Compaq won't support them (should I need it).
For those that think football is a boring or stupid sport, go check out Joe Theisman's Idiot's Guide to Football. It's a great book that covers the game and will show you how deep the game is. It'll turn it from two teams running in to each other in to an offensive strategy going against a defensive strategy. More like a good fight.
:)
Well worth checking out. It'll also help your Madden 2K3 or NFL2K3 game against your friends.
ABC's high definition feed rates about a 7. It's not as good as CBS, probably because they are using 720p and not 1080i. It's just not as crisp and clear.
The good news is that the movie previews are in HD with 5.1 sound. That's a nice addition.
The patch came out in July. If they weren't accessable via the Internet this wouldn't be an issue. Who is at fault? Admins. I'm a network admin and my SQL2K boxes are patched and NOT available to the outside world.
It's not hard.