I read the post-mortem and I think they completely missed the mark. Power failed to some machines. They only noticed because "...traffic has problems..." They should have been monitoring the power to detect this situation.
They didn't say whether they have the data center power supply on a UPS or not. If it was, it was dying and no one noticed.
If they had been monitoring the power they might have avoided the whole mess.
It won't be a business organization arguing against scientists, or religion vs science as in Scopes, this will be science vs science. Green environmental whacko supporting scientists against rational scientists. The summary tries to make it sound like this is a "settled" matter with scientific "consensus" whereas the opposite is true. All the scientists who support the concept of global warming agree of course, as does the liberal mouth organ media and politicians. There is an equal consensus on the other side which believe there is no global warming phenomenon or immediate danger to humans as the other side has contended. As it is the evidence against global warming is mounting, so much so that the zealots have had to rename their cause as "Climate Change". The whole episode of global warming is laughable.
There was a story quite awhile back comparing two companies who suffered judgments in court. One company had followed all the rules and provided the archived emails/documents the prosecution wanted. They were found guilty and fined $200 million. The other company had no document retention policy, no archived emails and could not produce anything the prosecution wanted. They were scolded and fined $20 million. Which was the best business decision with regard to document retention policies? Not a perfect example nor applicable in all situations but it illustrates the business decision.
This is a similar business issue. Do you spend a lot of money and man power on security? Or since the public memory is so short and the leading edge of the wave is well past it becomes just another page 5 story for most occurences. Just the few biggies make the front page and that is soon forgotten as well.
When the business says the amount of attention and impact a breach would receive is small compared to the cost to protect against it, the game is pretty much over, move along.
If it doesn't contribute to or protect the bottom line in a fairly direct fashion 99% of the time it won't get done. The other 1% of the time it's a law or regulation of some sort that forces action.
Missing a couple steps in there:
- cool web app runs on kids spare pc under his desk
- cool web app uses data mined from big oracle database and processed every night with Access macros
- cool web app is not backed up
- cool web app dies one day and kids boss franitcally calls in IT for help
- IT looks at smoking mess and asks where the backup tapes are
- IT spends a week rebuilding cool web app
- IT spends $$$$ getting cool wep app on supportable hardware
- profits from cool web app up til now.....gone
Then there are some variations:
- cool web app data gathered by Access 97 macros
- cool web app can't be upgraded from Access 97 to Access 2008
- cool web app is running box stock IIS
- cool web app is running on unpatched Windows OS
Certainly is an attempt to encroach. Blur the line and maintain confusion about exactly what "open standard" means by introducing another term, "open format". The PHB will see "open" in both and think they're the same.
hmmm...33....hmmm....3+3...ah HA! It's that bitch number 6! wait a minute.....maybe there are two number three's...could be...but wait...the hot cylon blonde could be a 6 and the boomer cylon could be a 3! So it's a rogue program in cylon space telling us to watch out for 6 and 3 by timing the intercepts every 33 minutes so as to not alert the evil cylons to its presence. Ha, solved that one. back to picking navel lint.
I saw that show and it sounded plausible, logical even. The problem I have is the idea that humans are able to affect the change in ocean salinity that causes the global conveyor to stop. Human production of gases and change in the environment is like an ant farting in a tornado. There are natural event cycles taking place that we can't begin to comprehend. The earths climate went through sudden dramatic shifts before we were a glimmer in mother earths eye. What makes us think *we* caused what we're seeing now? Especially in such a short geological time frame. Pure rumor mongering to achieve a pet goal.
This toolbar isn't going to help. The user still has to know how to evaluate the information the toolbar is presenting. The information on it at Netcraft is going to require explaining to 99% of the users. It adds conplexity for users that already can't handle complexity. If it was a simple green light or red light then it might be useful for the masses, as is, it's more noise users can't handle.
Two simple things users should do that have already been published in nearly every article on scams;
1. Use an email client like mail in OSX that you can configure for text only with the option to load images. That alone will reveal scam emails for what they are instantly.
2. Never ever enter personal information on some web page you got off a link in an email. Never. If it purports to come from your bank, manually type in your banks URL and see if you can verify what the email is saying, or call your bank or credit card company. Banks or credit cards today will never send you an email trying to scare you, saying you'll "lose access" if you don't visit their site. They've already learned not to do that because of the scams.
This toolbar might be interesting to a geek but it will raise more questions from ma and grandma than it answers.
Couldn't be because of the liberal city government in SF now could it?
Nothing BS about it, he's defacing public property, doesn't matter what the message is.
Free Speech doesn't mean you can deface property or otherwise break the law. The subject of the speech is irrelevant, he's breaking the law.
He doesn't have a right to deface public property. He can stand on a street corner and shout or pass out leaflets but writing on the streets enmasse as he was is vandalism. He should be prosecuted, to the full extent of the law.
WEP is easy to crack *if* one or more of the nodes on the WLAN are not filtering weak IV's and is *not* using WPA.
In my test setup using a Netgear wireless AP and a Netgear PCMCIA card in a laptop copying a 65 mb ISO image in an endless loop to a server on the wired network, it took 24 hours to capture enough weak iv's. DWepcrack took about 10 seconds to load the capture file and 3 seconds to break the WEP key (on a PII 333mhz Dell Laptop). Netgear doesn't filter weak IV's and they're cheap enough to buy for testing.
Second test was with the Netgear AP and a Linksys PCMCIA card in the the laptop, Linksys filters weak IV's. This same test, copying the 65mb ISO image in an endless loop took 36 hours to capture enough weak IV's.
To contrast, using an AP and a PCMCIA card that both filter weak iv's (Cisco) I ran the same test for 8 full days and still had not captured enough weak IV's to crack the WEP key.
If you have an environment where one or more nodes are not filtering weak IV's AND they have not implemented WPA or other protections, it's just a matter of time.
In my research, I checked Netgear, Dlink, Cisco, Linksys, Intel, and Dell(branded intel I think). Only Cisco and Linksys filtered weak IV's.
Recent discussions with Dell and Intel reveal that they don't think it's worth their time to filter weak IV's. They think everyone will run WPA and the problem will go away. WPA isn't the default setup either so if they're not filtering weak IV's...
It seems to me that filtering weak IV's is such a simple thing for them to implement that it is simply negligent not to. IMHO it provides a big bang for the security buck.
'99 Corvettte six-speed manual transmission, on the highway at 80 on a 300 mile trip, no mountains, 32 mpg. If I could drive 55 or 60 I could probably get close to 40 on the highway on reasonably flat ground. In town with as little stop and go as possible I can get 20-25mpg. Alot of stop and go it's closer to 15-17. I'm really surprised how good the gas mileage is on this car. Run that 350 horse engine at low rpm and it delivers pretty good mpg. Run it up for fun and the mpg drops faster than the mercury in minnesota in january.
IBM is kinda like a pitbull, nice to have around when the bad guys come-a-callin but you still want to keep an eye on the dog as they don't always bite just the bad guys. The saying "...keep him on a short leash..." comes to mind too.
So we get a template of those twenty-some points of your iris and now have to store that somewhere. If that template is compromised you're screwed for the rest of your life. You can't change them like you can a password. How can we ensure that the template, whether iris or fingerprint or whatever, can't be compromised? Until that gets answered it seems there is a fatal flaw in any bio-x id technology.
FYI, Netgear's 802.11b MA401 card does not do weak IV filtering. Confirmed via testing. D-Link support says they do not do wek IV filtering. Not verified.
Slashdot Mirror
Naw, that just feeds the lawyers, we'll just run you over eventually when you cut it too close.
Great! More jobs!
I read the post-mortem and I think they completely missed the mark. Power failed to some machines. They only noticed because "...traffic has problems..." They should have been monitoring the power to detect this situation. They didn't say whether they have the data center power supply on a UPS or not. If it was, it was dying and no one noticed. If they had been monitoring the power they might have avoided the whole mess.
It won't be a business organization arguing against scientists, or religion vs science as in Scopes, this will be science vs science. Green environmental whacko supporting scientists against rational scientists. The summary tries to make it sound like this is a "settled" matter with scientific "consensus" whereas the opposite is true. All the scientists who support the concept of global warming agree of course, as does the liberal mouth organ media and politicians. There is an equal consensus on the other side which believe there is no global warming phenomenon or immediate danger to humans as the other side has contended. As it is the evidence against global warming is mounting, so much so that the zealots have had to rename their cause as "Climate Change". The whole episode of global warming is laughable.
There was a story quite awhile back comparing two companies who suffered judgments in court. One company had followed all the rules and provided the archived emails/documents the prosecution wanted. They were found guilty and fined $200 million. The other company had no document retention policy, no archived emails and could not produce anything the prosecution wanted. They were scolded and fined $20 million. Which was the best business decision with regard to document retention policies? Not a perfect example nor applicable in all situations but it illustrates the business decision. This is a similar business issue. Do you spend a lot of money and man power on security? Or since the public memory is so short and the leading edge of the wave is well past it becomes just another page 5 story for most occurences. Just the few biggies make the front page and that is soon forgotten as well. When the business says the amount of attention and impact a breach would receive is small compared to the cost to protect against it, the game is pretty much over, move along. If it doesn't contribute to or protect the bottom line in a fairly direct fashion 99% of the time it won't get done. The other 1% of the time it's a law or regulation of some sort that forces action.
Close, Liberal is closer.
Pants?
Missing a couple steps in there: - cool web app runs on kids spare pc under his desk - cool web app uses data mined from big oracle database and processed every night with Access macros - cool web app is not backed up - cool web app dies one day and kids boss franitcally calls in IT for help - IT looks at smoking mess and asks where the backup tapes are - IT spends a week rebuilding cool web app - IT spends $$$$ getting cool wep app on supportable hardware - profits from cool web app up til now.....gone Then there are some variations: - cool web app data gathered by Access 97 macros - cool web app can't be upgraded from Access 97 to Access 2008 - cool web app is running box stock IIS - cool web app is running on unpatched Windows OS
Spiderpigs.....
and OS/2 still multi-tasks better than XP.
Because they're geeks, federal spy geeks but geeks none the less and "carnivore" is way cooler than "fluffy bunny".
Certainly is an attempt to encroach. Blur the line and maintain confusion about exactly what "open standard" means by introducing another term, "open format". The PHB will see "open" in both and think they're the same.
hmmm...33....hmmm....3+3...ah HA! It's that bitch number 6! wait a minute.....maybe there are two number three's...could be...but wait...the hot cylon blonde could be a 6 and the boomer cylon could be a 3! So it's a rogue program in cylon space telling us to watch out for 6 and 3 by timing the intercepts every 33 minutes so as to not alert the evil cylons to its presence. Ha, solved that one. back to picking navel lint.
I saw that show and it sounded plausible, logical even. The problem I have is the idea that humans are able to affect the change in ocean salinity that causes the global conveyor to stop. Human production of gases and change in the environment is like an ant farting in a tornado. There are natural event cycles taking place that we can't begin to comprehend. The earths climate went through sudden dramatic shifts before we were a glimmer in mother earths eye. What makes us think *we* caused what we're seeing now? Especially in such a short geological time frame. Pure rumor mongering to achieve a pet goal.
This toolbar isn't going to help. The user still has to know how to evaluate the information the toolbar is presenting. The information on it at Netcraft is going to require explaining to 99% of the users. It adds conplexity for users that already can't handle complexity. If it was a simple green light or red light then it might be useful for the masses, as is, it's more noise users can't handle.
Two simple things users should do that have already been published in nearly every article on scams;
1. Use an email client like mail in OSX that you can configure for text only with the option to load images. That alone will reveal scam emails for what they are instantly.
2. Never ever enter personal information on some web page you got off a link in an email. Never. If it purports to come from your bank, manually type in your banks URL and see if you can verify what the email is saying, or call your bank or credit card company. Banks or credit cards today will never send you an email trying to scare you, saying you'll "lose access" if you don't visit their site. They've already learned not to do that because of the scams.
This toolbar might be interesting to a geek but it will raise more questions from ma and grandma than it answers.
...this affect is countered by the Red sox win. Bush will win!!!!
Couldn't be because of the liberal city government in SF now could it? Nothing BS about it, he's defacing public property, doesn't matter what the message is. Free Speech doesn't mean you can deface property or otherwise break the law. The subject of the speech is irrelevant, he's breaking the law.
He doesn't have a right to deface public property. He can stand on a street corner and shout or pass out leaflets but writing on the streets enmasse as he was is vandalism. He should be prosecuted, to the full extent of the law.
WEP is easy to crack *if* one or more of the nodes on the WLAN are not filtering weak IV's and is *not* using WPA. In my test setup using a Netgear wireless AP and a Netgear PCMCIA card in a laptop copying a 65 mb ISO image in an endless loop to a server on the wired network, it took 24 hours to capture enough weak iv's. DWepcrack took about 10 seconds to load the capture file and 3 seconds to break the WEP key (on a PII 333mhz Dell Laptop). Netgear doesn't filter weak IV's and they're cheap enough to buy for testing. Second test was with the Netgear AP and a Linksys PCMCIA card in the the laptop, Linksys filters weak IV's. This same test, copying the 65mb ISO image in an endless loop took 36 hours to capture enough weak IV's. To contrast, using an AP and a PCMCIA card that both filter weak iv's (Cisco) I ran the same test for 8 full days and still had not captured enough weak IV's to crack the WEP key. If you have an environment where one or more nodes are not filtering weak IV's AND they have not implemented WPA or other protections, it's just a matter of time. In my research, I checked Netgear, Dlink, Cisco, Linksys, Intel, and Dell(branded intel I think). Only Cisco and Linksys filtered weak IV's. Recent discussions with Dell and Intel reveal that they don't think it's worth their time to filter weak IV's. They think everyone will run WPA and the problem will go away. WPA isn't the default setup either so if they're not filtering weak IV's... It seems to me that filtering weak IV's is such a simple thing for them to implement that it is simply negligent not to. IMHO it provides a big bang for the security buck.
dang! babelfish doesn't have a "genius to english" translation.
'99 Corvettte six-speed manual transmission, on the highway at 80 on a 300 mile trip, no mountains, 32 mpg. If I could drive 55 or 60 I could probably get close to 40 on the highway on reasonably flat ground. In town with as little stop and go as possible I can get 20-25mpg. Alot of stop and go it's closer to 15-17. I'm really surprised how good the gas mileage is on this car. Run that 350 horse engine at low rpm and it delivers pretty good mpg. Run it up for fun and the mpg drops faster than the mercury in minnesota in january.
IBM is kinda like a pitbull, nice to have around when the bad guys come-a-callin but you still want to keep an eye on the dog as they don't always bite just the bad guys. The saying "...keep him on a short leash..." comes to mind too.
So we get a template of those twenty-some points of your iris and now have to store that somewhere. If that template is compromised you're screwed for the rest of your life. You can't change them like you can a password. How can we ensure that the template, whether iris or fingerprint or whatever, can't be compromised? Until that gets answered it seems there is a fatal flaw in any bio-x id technology.
I've seen several 503's over the last few days. Maybe ./ is getting ./ed? The irony.
FYI, Netgear's 802.11b MA401 card does not do weak IV filtering. Confirmed via testing. D-Link support says they do not do wek IV filtering. Not verified.