The implication that Johannesburg is anything like Iraq is insulting. I live in Johannesburg and find it quite safe thank you. We managed to hold the world summit on sustainable resources and hosted the world's leaders fine. We will also be hosting the Soccer Wolrd Cup (albeit not in Johannesburg) thank you very much!
This whole thread on automated patching is making one fatal assumtion. Testing must be part of the process and works very well in conjunction with an automated solution. If you have automated the patch deployment proccess then automate the deployment to a test lab (or VMware box), if things don't break then mark the patch as ok and let it be automatically distributed to the rest of the organisation. In the meantime some IDS signatures coupled with the firewall can help prevent exploitation during testing.
Read more here. Warning I am currently writing a paper on automated patching, this is an academic advert.
Hear, hear. Patching is where the benefits of vulnerability discovery are reaped. I don't think you can view the two in isolation. Vulnerability disclosure without a patch just benefits the Black Hats by providing an attack vector. Given that patching is a nightmare at the moment with hundreds of patches being announced each week and no guarantee that they won't break things, testing has to be performed. This still gives black hats the time benefit.
Patching is proving both a volume and a process problem, we need to fix this. In a blatant attempt to whore my thesis I have come to two conclusions. First the patching needs to be better: better reporting and automated. Second there needs to be stop-gap measures, IDS signatures distributed with a patch could provide a way for firewalls to block the exploit in the short term while the patch is being tested.
I am in the beginning stages of research and will be presenting a paper on this at a conference next month. I also hope to do some development work on an automated solution.
Rubberhose transparently and deniably encrypts disk data, minimising the effectiveness of warrants, coersive interrogations and other compulsive mechanims, such as U.K RIP legislation. Rubberhose differs from conventional disk encryption systems in that it has an advanced modular architecture, self-test suite, is more secure, portable, utilises information hiding (steganography / deniable cryptography), works with any file system and has source freely available. Currently supported ciphers are DES, 3DES, IDEA, RC5, RC6, Blowfish, Twofish and CAST.
Ooh, AND "[at] least quadruple surfing speeds" and "they found it boosted surfing speeds by between 100 and 500". Even the article isn't making any sense . ..
Actually that makes perfect sense. A quadruple speed increase corresponds to a 400% increase. The article for its part is internally consistent. Like Star Trek and it's omega radiation.
In our University we stream mp3's to each other using netcat. There is an implementation of it for windows which can be found at Pintday.org.
Just set the computer connected to the stereo to listen on some port and then pipe the output of that to your favourite mp3 player. A command like :
nc -l -p 5000 | mpg123
would make it listen on port 5000.
Then on the windows box just set netcat up to stream the mp3 file to the listening box's port 5000.
If some of this dosen't make sense drop me a message I will be happy to elaborate.
Slashdot Mirror
The implication that Johannesburg is anything like Iraq is insulting. I live in Johannesburg and find it quite safe thank you. We managed to hold the world summit on sustainable resources and hosted the world's leaders fine. We will also be hosting the Soccer Wolrd Cup (albeit not in Johannesburg) thank you very much!
Read more here. Warning I am currently writing a paper on automated patching, this is an academic advert.
Patching is proving both a volume and a process problem, we need to fix this. In a blatant attempt to whore my thesis I have come to two conclusions. First the patching needs to be better: better reporting and automated. Second there needs to be stop-gap measures, IDS signatures distributed with a patch could provide a way for firewalls to block the exploit in the short term while the patch is being tested. I am in the beginning stages of research and will be presenting a paper on this at a conference next month. I also hope to do some development work on an automated solution.
Rubberhose transparently and deniably encrypts disk data, minimising the effectiveness of warrants, coersive interrogations and other compulsive mechanims, such as U.K RIP legislation. Rubberhose differs from conventional disk encryption systems in that it has an advanced modular architecture, self-test suite, is more secure, portable, utilises information hiding (steganography / deniable cryptography), works with any file system and has source freely available. Currently supported ciphers are DES, 3DES, IDEA, RC5, RC6, Blowfish, Twofish and CAST.
Actually that makes perfect sense. A quadruple speed increase corresponds to a 400% increase. The article for its part is internally consistent. Like Star Trek and it's omega radiation.
In our University we stream mp3's to each other using netcat. There is an implementation of it for windows which can be found at Pintday.org. Just set the computer connected to the stereo to listen on some port and then pipe the output of that to your favourite mp3 player. A command like : nc -l -p 5000 | mpg123 would make it listen on port 5000. Then on the windows box just set netcat up to stream the mp3 file to the listening box's port 5000. If some of this dosen't make sense drop me a message I will be happy to elaborate.