I got one for ya. SPEWS. They blocked an entire network of 8 class C's because some spammer with 32 IP addresses was in there somewhere.
Now I'm all for the reduction of spam, but groups with the SPEWS policy of "block the entire hosting provider until that one client is kicked and then we'll think about unblocking you" have really gone off the deep end.
However, for those who want to save some money, you can also just buy the sticker and place it on the outside of your box. Since we all know this basically provides the same performance increase as the actual modifications, why would anyone want to actually buy the product.
HeeHee. I have to agree with you. Do you know that in Oregon and Washington, they have guys with the title "Petroleum Transfer Engineer". No, really, it says that on their shirt. They pump your gas for you at a full service station.
What don't you agree with? the question? All I did was ask what someone who obviously has a lot of experience in the field of bug finding thought. I don't see how you can disagree with the question.
Or were you saying that you disagree with the title Security through Obscurity, thereby meaning that you think it doesn't work.
Based on the link, I'm going to assume that you mean you think it does work, which really disagrees with absolutely nothing in my original post. However, the article is interesting, if a bit short on actual facts. I'd love to see a link to the data that they are referring to. Perhaps the actual CERT press release. I've learned never to trust anything that doesn't come from the horse's mouth.
--Jason
Where, in your opinion, do most products fail when it comes to attaining quality in software?:
Planning (specifications)
Development
Post-development testing
Or anything else? (or a mixture, etc)
I don't know what Scott's opinion is on this, but I know I've found the specifications to be the biggest point of failure. I can't tell you how many times I, or someone I know, have written the perfect program that nobody wants because it didn't follow what the customer actually wanted.
--Jason
I'm guessing the battery itself doesn't have enough fuel to really cause any need for concern. What will cause the airlines to worry is the refill bottle that you'll need to carry (assuming the batteries are refillable. They'd be kinda useless otherwise.) A Few ounces in a battery isn't gonna do much damage even if it did leak. On the other hand, a full bottle of it exploding could cause some seriuos problems.
I'd really like to know how an account that has not existed for at least 2 years could opt in to a marketing list. Isn't this false advertising? I should problaby complain to the NYS attorney general or maybe the FBI.
I'm just gonna play the devil's advocate for a second here, but maybe the former owner of that email address was filling out a registration form on a webpage and didn't want to use his real address, so he just stuck his old one in there.
The problem is, what do you want to do with them once they're caught? There are no federal laws reguarding spam. And the only state that outlaws the sending of UCE is Deleware, and that only applies if you have reason to believe that the person is actually living in Deleware. And once there are anti-spam laws passed (and I'm sure there will be eventually), the larger spam operations will just move offshore. Most countries have no spam laws, so unfortunately, there isn't much that can be done. As you said, spam-filters usually catch more than they are supposed to, but that's really the only option right now.
I've worked for a mass mailing company before, and I can tell you a little something about the people who still buy this stuff. 80% of them belong to AOL. I'm not going to offer explanations as to why they are so suceptible to those type of advirtisements, but its probably the same reason they're paying $24.95 a month for dial-up Internet access.:)
This second paragraph makes a very good point. In fact, at many of the retailers near me, you don't even have to hand them the credit card, you can just swipe it yourself.
My boss often gives me his credit card to make purchases. The only time I've ever been asked was when I was trying to write his name on the slip. I usually just sign my own name and they hand the card right back. I've even used several ladies cards and never been asked. And I know I don't look like a Kimberly!!
Oh well, at least most cards have a zero-liability guarantee for unauthorized charges.
--Jason "If at first you don't succeed, erase all evidence that you tried!"
I was amazed when my friend showed me all of the places that have unsecured networks. For example, the FedEx building next door to where he works has such a powerful broadcast that if you stand by a window in his office, you can pick up their network.
A simple drive around town, and you can pick up 15 to 20 unencrypted and unsecured networks. Not to mention all of the ones that use cheesy WEP encryption that is really not that hard to break. When are people gonna learn...?
--Jason "I used to have a sig, but it took up too much space so I got rid of it!"
Slashdot Mirror
I got one for ya. SPEWS. They blocked an entire network of 8 class C's because some spammer with 32 IP addresses was in there somewhere.
Now I'm all for the reduction of spam, but groups with the SPEWS policy of "block the entire hosting provider until that one client is kicked and then we'll think about unblocking you" have really gone off the deep end.
Anyone know of a bittorrent download anywhere?
However, for those who want to save some money, you can also just buy the sticker and place it on the outside of your box. Since we all know this basically provides the same performance increase as the actual modifications, why would anyone want to actually buy the product.
Proof is here
HeeHee. I have to agree with you. Do you know that in Oregon and Washington, they have guys with the title "Petroleum Transfer Engineer". No, really, it says that on their shirt. They pump your gas for you at a full service station.
Gimme a break.
--Jason
Ahhh. Now it makes sense. Yes, I totally agree that the article was completely lacking in facts.
What don't you agree with? the question? All I did was ask what someone who obviously has a lot of experience in the field of bug finding thought. I don't see how you can disagree with the question. Or were you saying that you disagree with the title Security through Obscurity, thereby meaning that you think it doesn't work. Based on the link, I'm going to assume that you mean you think it does work, which really disagrees with absolutely nothing in my original post. However, the article is interesting, if a bit short on actual facts. I'd love to see a link to the data that they are referring to. Perhaps the actual CERT press release. I've learned never to trust anything that doesn't come from the horse's mouth. --Jason
I don't know what Scott's opinion is on this, but I know I've found the specifications to be the biggest point of failure. I can't tell you how many times I, or someone I know, have written the perfect program that nobody wants because it didn't follow what the customer actually wanted. --Jason
What is your opinion on this topic? In your experience, does having the source closed make it any harder to find bugs and security flaws?
I'm guessing the battery itself doesn't have enough fuel to really cause any need for concern. What will cause the airlines to worry is the refill bottle that you'll need to carry (assuming the batteries are refillable. They'd be kinda useless otherwise.) A Few ounces in a battery isn't gonna do much damage even if it did leak. On the other hand, a full bottle of it exploding could cause some seriuos problems.
But what happens when all that oil builds up and blocks my keypress???
I'd really like to know how an account that has not existed for at least 2 years could opt in to a marketing list. Isn't this false advertising? I should problaby complain to the NYS attorney general or maybe the FBI.
:)
I'm just gonna play the devil's advocate for a second here, but maybe the former owner of that email address was filling out a registration form on a webpage and didn't want to use his real address, so he just stuck his old one in there.
Hey, it could happen.
those who spam should be tracked down and caught
The problem is, what do you want to do with them once they're caught? There are no federal laws reguarding spam. And the only state that outlaws the sending of UCE is Deleware, and that only applies if you have reason to believe that the person is actually living in Deleware. And once there are anti-spam laws passed (and I'm sure there will be eventually), the larger spam operations will just move offshore. Most countries have no spam laws, so unfortunately, there isn't much that can be done. As you said, spam-filters usually catch more than they are supposed to, but that's really the only option right now.
I've worked for a mass mailing company before, and I can tell you a little something about the people who still buy this stuff. 80% of them belong to AOL. I'm not going to offer explanations as to why they are so suceptible to those type of advirtisements, but its probably the same reason they're paying $24.95 a month for dial-up Internet access. :)
heehee, sorry about the confusion. My boss is a man, as am I. But Kimberly is just another person that I borrow a card from occasionaly and use.
This second paragraph makes a very good point. In fact, at many of the retailers near me, you don't even have to hand them the credit card, you can just swipe it yourself.
My boss often gives me his credit card to make purchases. The only time I've ever been asked was when I was trying to write his name on the slip. I usually just sign my own name and they hand the card right back. I've even used several ladies cards and never been asked. And I know I don't look like a Kimberly!!
Oh well, at least most cards have a zero-liability guarantee for unauthorized charges.
--Jason
"If at first you don't succeed, erase all evidence that you tried!"
I was amazed when my friend showed me all of the places that have unsecured networks. For example, the FedEx building next door to where he works has such a powerful broadcast that if you stand by a window in his office, you can pick up their network.
A simple drive around town, and you can pick up 15 to 20 unencrypted and unsecured networks. Not to mention all of the ones that use cheesy WEP encryption that is really not that hard to break. When are people gonna learn...?
--Jason
"I used to have a sig, but it took up too much space so I got rid of it!"