Apparently you missed the Three hours, portion of the statement on how long the trip currently takes:).
Words mixed with numbers are always confusing:)
Probably not exactly what you were asking for, but my all time favorite was back when I worked for an ISP, and we had a core router go down in the middle of the night. I get out to the POP and find that in order to get into the console of the router, I need to be able to plug a female 9 pin connector to a female 9 pin connector for the cables that I actually have with me....
I promptly found a couple of paperclips lying around and used my side cutters to cut off several lengths to short between the two connectors and make a gender-changer and Null Modem adapter in one, since it turned out I needed the null modem adapter too...
I see nothing in here about how they plan to address shared web hosting. To me that's always been more of an issue than the cost of the certificate.... Current implementations of SSL requires one certificate to be bound per IP address, and there is no "hostname" request from the browser like there is with HTTP. When I can pick up a certificate for less than $20 per year, the cost of the certificate is not going to hold me back... The fact that I can't install the certificate on my "Shared hosting" website, would however.
it's actually fairly common for any fairly new generation firewall that does Deep Packet Inspection for Intrusion Prevention, Content Filtering, etc. The firewall has to be able to view the data unencrypted to scan it for the "normal" stuff. Nothing overtly hostile in the intent there, just the way it works.
It goes beyond that though... AT&T already charges a higher prices for the "unlimited data" plans for their smart phones than almost any other carrier in the US... Plus they shouldn't brand it as an unlimited plan if they don't mean unlimited.
I actually got called out to a client this afternoon specifically to deal with this issue. It actually is more difficult than you think to recognize.
From what I saw on his PC it actually wasn't picking up any of the files. It was registry keys. Unless you are specifically aware of the fact that Symantec Corporate Edition uses the Intel LanDesk registry keys you wouldn't have recognized it. Additionally once you ran it once, it automatically removed a few of the registry keys without even prompting. My client had stopped at the screen where it was showing that it had detected it and was asking what to do with it. Symantec was already broken. The registry keys that were removed were involved with the licensing. I had to perform the manual uninstall-Reinstall proceedure in order to get Symnantec back up and working.
Apparently this was only the Feb 10th, definitions. He only had the problem on one PC, it had Feb 10th definitions. He had another that had already updated to February 11th, and it didn't have this problem. Additionally after I had fixed the issue on the PC that was effected I forced the update to the Feb 11th defs, and reran the scan. It no longer detected the Registry keys as the virus.
The ISP where I work is currently participating in AOL's
"Feedback Loop" It actually works out pretty well for us.
I've got a script that downloads all of the "complaints" on
a nightly basis and parses them for the IP address in our
block that they come from. Then I total up the number of
complaints per IP. From this I can look at IP's with more
than 2 or 3 complaints and look at the actual emails sent.
This has been a great tool for us to help find those users
whose PC's have become infected with one of the many
viruses that turns their computer into a spam relay.
You haven't been paying as close attention as you though then.. The newer worms don't actually turn your local PC into an SMTP relay at all. A lot of them actually are designed to contact various sites on the internet, download a list of email addresses and a message to send, and then start pumping them out, using the users default smtp server.
The other issue here is that with 15,000 customers, we actually have many of them who use SMTP servers other than ours. A lot of our customers are business people who use our service at home and use an authenticated SMTP server at their business to send email and don't have their software set to use our SMTP servers at all. The other obvious case that comes to mind is mail clients like Mutt in linux, where they actually look up the mx record for the mail address you are sending to and connect directly there without having to specify any default smtp server.
I work in the Network Operations Center for an ISP in the midwest. Trying to police these types of things isn't near as easy as you would think. We are considered a "mid-sized" ISP with around 15,000 customers. Unless we happen to notice an increase in traffic from one of the customers, it's not easy to catch when a user's PC is infected with one of these worms. With the increasing amount of Spam out there, and the fact that the average internet user can't figure out how to dig through the headers to find out for sure where an email originated, we just don't get hear about our users "spamming". When a case is brought to our attention, either through a complaint or by us noticing the increased mail traffic from a user, we immediately take action to get the problem resolved. However even with a properly documented abuse address, we just don't get feedback. There have been at least three different occasions when the first feedback we had that one of our users was "spamming" was when another ISP blocked mail coming from our IP's.
We can't track the infected users down if we don't know about them...
You know the one thing that bothers me about this name change?..
Why is it that two name changes later the profile directory is still created as ~/.phoenix. I mean I can understand the whole "backwards compatability" thing, but AFAIK it's always been recommended to wipe your profile and start over with a new milestone of phoenix/firebird/firefox anyway, and even barring that how hard would be to
if ( dir_exists( ~/.firefox ) )
{// Use ~/.firefox
}
elseif ( dir_exists( ~/.phoenix) )
{// Migrate ~/.phoenix to ~/.firefox
}
else
{// Create a new profile directory in ~/.firefox
}
A few mirrors that aren't (yet) saturated...
http://ftp.iasi.roedu.net/mirrors/ftp.mozilla.org/ pub/firefox/
ftp://mozilla.mirror.pacific.net.au/mozilla/firefo x/
ftp://sunsite.informatik.rwth-aachen.de/pub/mirror/ftp.mozilla.org/pub/firefox
ndiswrapper is actually working quite well for me, though not with the centrino, but rather with a Dell Truemobile 1300. The broadcom chipset in this mini-pci card works great loading the windows xp driver through ndiswrapper. I've been using it for two weeks now without so much as a hiccup.
Man, this would have been great back a few years ago when I was working at a plant that packaged natural cheese.
The most automated process we had was using pnuematic cylindars to push a 40# block of Cheddar through a frame with criss-crossed stainless steel wires. I can just imagine how much closer we could have hit the weight tolerances using lasers...
Plus you don't have to stop and clean a laser beam every once in a while..
With the life expectancy of the current plasma screen technology, I'm sure that you'll be able to buy one of the screens manufactured today for a little bit of nothing in 3-5 years. Of course it'll be dead by then, but hey you'll have a great 61" diagonal paperweight.
This reminds me of something my Electronics teacher back in High School used to tell us. (Keep in mind this was back in the late 80's) He had been in the consumer electronics business practically for quite some time and the way he put it was this. Back in the early to mid 80's consumers started demanding a product that was cheap enough that if it broke, they could simply throw it away and buy a new one. Consumers began demanding "disposable electronics". Now they are getting it cramed down their throats. He told us the story of an unnamed consumer electronics firm that he had worked for where they designed a product that in theoretically would last 15-20 years without any component failures. Then they changed the specifications of two or three components so that they same product would have an average life expectancy of around 5 years. He ran an electronics repair business while he was teaching high school and he said that it was amazing to see now that people would bring some of these same products in to have him work on, and he could pinpoint the problem in 90% of the cases to one of those three parts.
What ever happened with the Utah judge that ordered SCO to come up with the portion of the linux kernel that supposedly contained their copywrited code? I thought he gave them 30 days about 35 days ago?
That is almost exactly the my reaction a couple of weeks ago after reading the print version of this article. In fact I included pretty much this same info in an email to the author, along with some recommendations of how to close his "partially ajar" mail relay.
Two weeks out now, and no response to it yet... Or maybe he did respond and my spam checker bounced it for him being on an open relay:grin:
Slashdot Mirror
Apparently you missed the Three hours, portion of the statement on how long the trip currently takes :).
Words mixed with numbers are always confusing :)
Probably not exactly what you were asking for, but my all time favorite was back when I worked for an ISP, and we had a core router go down in the middle of the night. I get out to the POP and find that in order to get into the console of the router, I need to be able to plug a female 9 pin connector to a female 9 pin connector for the cables that I actually have with me.... I promptly found a couple of paperclips lying around and used my side cutters to cut off several lengths to short between the two connectors and make a gender-changer and Null Modem adapter in one, since it turned out I needed the null modem adapter too...
I see nothing in here about how they plan to address shared web hosting. To me that's always been more of an issue than the cost of the certificate.... Current implementations of SSL requires one certificate to be bound per IP address, and there is no "hostname" request from the browser like there is with HTTP. When I can pick up a certificate for less than $20 per year, the cost of the certificate is not going to hold me back... The fact that I can't install the certificate on my "Shared hosting" website, would however.
And in other news.. Water is still wet... Duh! i think by now we're all pretty aware the NSA was and is spying on pretty much everyone.
it's actually fairly common for any fairly new generation firewall that does Deep Packet Inspection for Intrusion Prevention, Content Filtering, etc. The firewall has to be able to view the data unencrypted to scan it for the "normal" stuff. Nothing overtly hostile in the intent there, just the way it works.
It goes beyond that though... AT&T already charges a higher prices for the "unlimited data" plans for their smart phones than almost any other carrier in the US... Plus they shouldn't brand it as an unlimited plan if they don't mean unlimited.
I actually got called out to a client this afternoon specifically to deal with this issue. It actually is more difficult than you think to recognize. From what I saw on his PC it actually wasn't picking up any of the files. It was registry keys. Unless you are specifically aware of the fact that Symantec Corporate Edition uses the Intel LanDesk registry keys you wouldn't have recognized it. Additionally once you ran it once, it automatically removed a few of the registry keys without even prompting. My client had stopped at the screen where it was showing that it had detected it and was asking what to do with it. Symantec was already broken. The registry keys that were removed were involved with the licensing. I had to perform the manual uninstall-Reinstall proceedure in order to get Symnantec back up and working. Apparently this was only the Feb 10th, definitions. He only had the problem on one PC, it had Feb 10th definitions. He had another that had already updated to February 11th, and it didn't have this problem. Additionally after I had fixed the issue on the PC that was effected I forced the update to the Feb 11th defs, and reran the scan. It no longer detected the Registry keys as the virus.
The ISP where I work is currently participating in AOL's "Feedback Loop" It actually works out pretty well for us. I've got a script that downloads all of the "complaints" on a nightly basis and parses them for the IP address in our block that they come from. Then I total up the number of complaints per IP. From this I can look at IP's with more than 2 or 3 complaints and look at the actual emails sent. This has been a great tool for us to help find those users whose PC's have become infected with one of the many viruses that turns their computer into a spam relay.
You haven't been paying as close attention as you though then.. The newer worms don't actually turn your local PC into an SMTP relay at all. A lot of them actually are designed to contact various sites on the internet, download a list of email addresses and a message to send, and then start pumping them out, using the users default smtp server. The other issue here is that with 15,000 customers, we actually have many of them who use SMTP servers other than ours. A lot of our customers are business people who use our service at home and use an authenticated SMTP server at their business to send email and don't have their software set to use our SMTP servers at all. The other obvious case that comes to mind is mail clients like Mutt in linux, where they actually look up the mx record for the mail address you are sending to and connect directly there without having to specify any default smtp server.
I work in the Network Operations Center for an ISP in the midwest. Trying to police these types of things isn't near as easy as you would think. We are considered a "mid-sized" ISP with around 15,000 customers. Unless we happen to notice an increase in traffic from one of the customers, it's not easy to catch when a user's PC is infected with one of these worms. With the increasing amount of Spam out there, and the fact that the average internet user can't figure out how to dig through the headers to find out for sure where an email originated, we just don't get hear about our users "spamming". When a case is brought to our attention, either through a complaint or by us noticing the increased mail traffic from a user, we immediately take action to get the problem resolved. However even with a properly documented abuse address, we just don't get feedback. There have been at least three different occasions when the first feedback we had that one of our users was "spamming" was when another ISP blocked mail coming from our IP's. We can't track the infected users down if we don't know about them...
You know the one thing that bothers me about this name change?.. Why is it that two name changes later the profile directory is still created as ~/.phoenix. I mean I can understand the whole "backwards compatability" thing, but AFAIK it's always been recommended to wipe your profile and start over with a new milestone of phoenix/firebird/firefox anyway, and even barring that how hard would be to if ( dir_exists( ~/.firefox ) ) { // Use ~/.firefox
}
elseif ( dir_exists( ~/.phoenix) )
{ // Migrate ~/.phoenix to ~/.firefox
}
else
{ // Create a new profile directory in ~/.firefox
}
A few mirrors that aren't (yet) saturated... http://ftp.iasi.roedu.net/mirrors/ftp.mozilla.org/ pub/firefox/
ftp://mozilla.mirror.pacific.net.au/mozilla/firefo x/
ftp://sunsite.informatik.rwth-aachen.de/pub/mirror /ftp.mozilla.org/pub/firefox
ndiswrapper is actually working quite well for me, though not with the centrino, but rather with a Dell Truemobile 1300. The broadcom chipset in this mini-pci card works great loading the windows xp driver through ndiswrapper. I've been using it for two weeks now without so much as a hiccup.
Man, this would have been great back a few years ago when I was working at a plant that packaged natural cheese. The most automated process we had was using pnuematic cylindars to push a 40# block of Cheddar through a frame with criss-crossed stainless steel wires. I can just imagine how much closer we could have hit the weight tolerances using lasers... Plus you don't have to stop and clean a laser beam every once in a while..
With the life expectancy of the current plasma screen technology, I'm sure that you'll be able to buy one of the screens manufactured today for a little bit of nothing in 3-5 years. Of course it'll be dead by then, but hey you'll have a great 61" diagonal paperweight.
This reminds me of something my Electronics teacher back in High School used to tell us. (Keep in mind this was back in the late 80's) He had been in the consumer electronics business practically for quite some time and the way he put it was this. Back in the early to mid 80's consumers started demanding a product that was cheap enough that if it broke, they could simply throw it away and buy a new one. Consumers began demanding "disposable electronics". Now they are getting it cramed down their throats. He told us the story of an unnamed consumer electronics firm that he had worked for where they designed a product that in theoretically would last 15-20 years without any component failures. Then they changed the specifications of two or three components so that they same product would have an average life expectancy of around 5 years. He ran an electronics repair business while he was teaching high school and he said that it was amazing to see now that people would bring some of these same products in to have him work on, and he could pinpoint the problem in 90% of the cases to one of those three parts.
So SCO Sells cat food now? That's makes a lot more sense than what they have been doing!
What ever happened with the Utah judge that ordered SCO to come up with the portion of the linux kernel that supposedly contained their copywrited code? I thought he gave them 30 days about 35 days ago?
Yeah, but did anybody get Al Gore's approval to make these changes?
That is almost exactly the my reaction a couple of weeks ago after reading the print version of this article. In fact I included pretty much this same info in an email to the author, along with some recommendations of how to close his "partially ajar" mail relay. Two weeks out now, and no response to it yet... Or maybe he did respond and my spam checker bounced it for him being on an open relay :grin:
Bah, It was hard to write, it should be hard to read...
Yeah I got this mail too, but the best part was that it was delivered to my Yahoo! Bulk Mail folder... So even they classify their own mail as Spam :)