Actually we've been linked to by slashdot on at least 2 other occations that I remember. Sadly we dont have the resources of a CNN, or say, youre local burger stand with a website. The system is yet another in a long line of crap we've managed to beg for. This one is considerably better than the previous servers, its a p3-1000. Sadly it has no drive space, so what you're looking at there is a lot of graphics loaded over NFS (which is another piece of crap EOL'd "SAN" we found in the trash).
So basically the gist of this article is that exploits come from patches. Um... therefore if we don't release patches, we wont have exploits?:P
This guys heart is in the right place, but vulnerability research doesn't just come from the good guys. Whether you release the patch or not, the vulnerability is there. Whether its publically known or not, it is and probably will be exploited. The only difference is you just don't know about it.
I worked there too, many years ago, as a network engineer right when whitehouse.gov was moving from JPL to the NEOB. Lotsa fun if you're the shoestring engineer that we all are, as they had next to no budget for anything.
Its good to see that it only took 4 years (*grin*) for them to come around from when we started infesting the EOP network with linux boxes. (The best was shado.whitehouse.gov, a monitoring box for web servers) We told them "shado" stood for Sureptitious Hacking And Detection Operation. Really we got the name from the TV Show from the 60's called U.F.O (Supreme Headquarters for the Alien Defense Organization), at the time, we also contemplated calling it "potatoe".
As I recall, the routers (Cisco 7000's) that handled the eop.gov (sprintlink) and whitehouse.gov (PSInet) links werent on anyones desk.:) They were in the cabinets in the Operations center across from the Vaxen. What I imagine really happened was one of the Synoptics 3030s died again, or the FDDI link to the firewalls went down.
As for large goverment web sites that run linux, go take a look at www.sec.gov. Does over a terabyte in traffic a month.
Slashdot Mirror
Actually we've been linked to by slashdot on at least 2 other occations that I remember. Sadly we dont have the resources of a CNN, or say, youre local burger stand with a website. The system is yet another in a long line of crap we've managed to beg for. This one is considerably better than the previous servers, its a p3-1000. Sadly it has no drive space, so what you're looking at there is a lot of graphics loaded over NFS (which is another piece of crap EOL'd "SAN" we found in the trash).
-iCE Admin
Are mac people truly this out of touch that the shuffle feature is novel?
Wait til we show them the 2nd mouse button!
So basically the gist of this article is that exploits come from patches. Um... therefore if we don't release patches, we wont have exploits? :P
This guys heart is in the right place, but vulnerability research doesn't just come from the good guys. Whether you release the patch or not, the vulnerability is there. Whether its publically known or not, it is and probably will be exploited. The only difference is you just don't know about it.
Woohoo 17th and H! :)
:) They were in the cabinets in the Operations center across from the Vaxen. What I imagine really happened was one of the Synoptics 3030s died again, or the FDDI link to the firewalls went down.
I worked there too, many years ago, as a network engineer right when whitehouse.gov was moving from JPL to the NEOB. Lotsa fun if you're the shoestring engineer that we all are, as they had next to no budget for anything.
Its good to see that it only took 4 years (*grin*) for them to come around from when we started infesting the EOP network with linux boxes. (The best was shado.whitehouse.gov, a monitoring box for web servers) We told them "shado" stood for Sureptitious Hacking And Detection Operation. Really we got the name from the TV Show from the 60's called U.F.O (Supreme Headquarters for the Alien Defense Organization), at the time, we also contemplated calling it "potatoe".
As I recall, the routers (Cisco 7000's) that handled the eop.gov (sprintlink) and whitehouse.gov (PSInet) links werent on anyones desk.
As for large goverment web sites that run linux, go take a look at www.sec.gov. Does over a terabyte in traffic a month.
Farmy
Not to put a damper on your well worded essay, but the Napoleon (and the French) were defeated at Waterloo by Lord Wellington.
Hiya, iCE senior admin here, we actually planned for the /. effect on the server as you can see:
:) Its dropping about 20% of the traffic coming to the box. We're working on fixing that right now.
lemon:~$ uptime
2:15pm up 7 day(s), 22:32, 2 users, load average: 0.37 0.29 0.28
nice distributed model, database server is on its own box, web server is dedicated as well, yadda yadda...
1 minor faux pas, we're on a bad hub.
Farmy [iCE]