But not until it's convenient. The fact that it's now been made an issue is even more of an excuse to use it should somebody find reason.
Got that techie whom you promised a raise 3 months ago and is now getting a little upset... can him for using "racially bias" terms... the government has now paved your way.
Luckily mice have gone IR nowadays, otherwise politicians may have taken offence to the many ways to misconstrue the fact that the mice had "balls"
That it's cheaper and more convenient to buy a video camera and film a movie playing in your local retail/video store for a few hours than it is to rent a video and copy it at home (either by bypassing Macrovision - easy - or by using said videocamera on your display device).
The only thing it adds is criminal penalties for copying movies in a theatre. From many of the rips I've seen floating around, many of these are coming from the east anyhow.
Got one, works fine, until you have several hundred cables to sort out, then you STILL have to go through the rack checking individual ones.
Another trick is just to get an ammeter, slap a small battery on one end of the cable attached to the terminals, and check for current (best done when your cables aren't hooked to any hardware that might be damaged by battery current).
But according to this article, the company indicated was not spamming, but mistaken due to spam from a rival firm. Perhaps a joe-job, or just creative butt-covering?
You may have this problem at work, and really, it's not a problem to you, since everything is working as it should. It becomes a problem when, suddenly, critical PC #962 loses networking capability, and you have to find out which cable is dead and where between it and #961 other cables.
I think this is the point between where people do one of several things:
a) Run a whole new cable if the distance isn't huge, then you have #962 cables, and this does add up over time.
b) Split an existing cable with a hub or whatever, then you have a dead cable in the ceiling.
c) Try to trace the dead cable and replace it. When you have a heart-attack going through crawlspaces they may have a dead technician in the ceiling (from experience, the places where these cables reside are often not fun to visit)
Really, this situation isn't too uncommon. I think that some network techs become like black widow spiders when it comes to cabling... laying it like a web to trap unwary visitors. Look closely... anyone see a maintenance person trapped in there somewhere?
Seriously though, as far as cable volume this is nothing. Right now one of the sites I'm working at has over 200 cables, and when all your networking hardware is in one room running it to a connection becomes slightly messy no matter how you do it. Granted it's not as bad as in the picture shown, but still enough that trying to trace individual cables can become a long and arduous task.
I'd hate to imagine what this could be like in larger companies, making 500+ cables run nicely has got to be a not-so-fun task in any situation...
Wow! I wonder if they told the owner (s?) of the Internet connection he was using?
I wonder if they told the ISP of the owner(s) of the connection(s). Might they not be alerted by blatant illegal porn access on their network (why else wardrive, if nobody is watching you in the first place), and go after the owner of the connection that the WiFi is sourced from.
Seriously though... a power-line is fairly noisy and/or is accessible to the general masses, more so than a phone-line. How does one tag an ID on individual customers (a meter is generally read manually?).
If it were integrated into meters the meter-reader could be out of the job, but could people bypass the meter and pull a little fancy hackery in order to get onto the power co's network? I could see spammers and other illegal users try to take advantage of this...
responding to political pressures with the easiest solution.
One would think so, except that they've been unduely slow in responding to the bad press they're getting about defects in these machines, which is one of the reasons for the rise of conspiracy theories.
You must be joking. While some of the more "mature" projects are definately solidly coded, some of the others are nightmares. Try mixing several different coding styles, nights coding on only caffeine, starting, stopping, and losing your place...leaving debug to-fix-later code in by accident...
Open source suffers the same problems as closed. In some projects moreso, as the variance of different coding styles/standards-adherance can lead to very interesting things happening. Even some mature projects have this problem, I've heard of some common ones where a rewrite was considered, because as the code evolved and was added to, the author(s) learned much better coding as it progressed but left the core a bit flaky.
Good boss: One who guides you in company policy and overall communication, but knows that you understand the technical stuff best and leaves you to it.
Bad boss: Likes buzzwords, uses company vehicles/resources for personal use, hires his son-in-law as your overseer, and think he knows how you should be doing your job.
The majority of my experience has luckily been with good bosses. Some even had coding experience, and could assist when I did a dumb mistake (tm) like missing a semicolon or something like that, but generally didn't interfere with heavy work stuff unless asked (or they noticed an impression on the workdesk from repeated head-banging).
Makes it a crime, subject to five years in prison, to send fraudulent SPAM
While of course, fraud is already fraud... this covers in particular spam fraud - which does account for a goodly percentage of total spam.
I personally don't think that somebody needs to go to jail for spamming, there are cases where spamming is accidental or at very least due to extreme ignorance (see those who hire spammers). Not to mention the spambots hijacking computers... wouldn't want to face jailtime for that either.
No, I think I'll stick with large monentary damages to spammers and jail-time for fraud. Public stonings aren't a bad idea though.
Oh, and opt-in would have to be very well worded or otherwise useless. The first time you sign up for a service on the network with spamming "partners" you'd have opted in...
Education helps protect people against your average dummy-attack (email trojan, open share, etc). Doesn't do much against the latest RPC vulnerability etc, or perhaps a DDOS.
Law enforcement does need to deal with this situation. It also needs a body that understands it clearly and doesn't view anyone proficient with a computer as a "mysterious hacker/cracker capable of being a threat."
br
Even with education, you'll only reduce dumb slip-ups, not totally remove them. For the rest, we need an easier way of dealing with crackers. When it gets to the point of threats such as "pay us $50000 or we'll see your servers DDOS'ed into hell," I'd say that technical crime is just as bad as physical, and it does need to be dealt with.
You know what... encrypt your SSH connection at 1024-bit... lock your webserver in a vault, 2km underground, with triple combinations... post armed guards... lock down all ports except port 80 and SSH/whatever.
Then, have your password stolen, and oh shit, you're compromised. It's not about the OS being insecure, it's about a lost password. NOTHING can protect against this, short of one instance I heard where updates required 3 user passwords (from 3 users), but what a pain that would be.
How open about it are they. I noticed yesterday that apt was choking, then www.debian.org was inaccessible so I assumed an upgrade or some other issue.
www.debian.org is up now, but the last news I see on there is from Nov 10:
Debian wins several Readers' Choice Awards
Not to be too picky, but a little more info on the main page *would* have been great. Thankfully I have slashdot and some others to back me up.
At minimum the charges seem to be near the millions, forcing people to settle. It's not about the legal action, it's about how they're going about it (scare tactics) rather than letting it be settled fairly in court. You might also want to remember that the RIAA was already caught for price-fixing etc in the not-so-distant past... hey RIAA, I'll take my reparations in P2P, please.
I don't know everyone at company "Y", but why would company "Y" sell a piece of hardware unless it is branded to them. I wouldn't exactly believe somebody who says "hey, I work for Verizon, want this [company X] USB-pen?" (not that I'd trust anyfrom from Verizon anyhow)
In that case, is it pulling battery power? Why not just wire a toggle switch between the receiver and battery. I do the same thing for my subwoofer amps... that way if it's late and I don't want to rock the neighbourhood (but still want music) I can turn 'em off.
So if SCADA was downed by a DDOS, was it intentional or just part of general internet traffic. Even with heavy internet loads, none of my internal network was affected either at work or home. If these machines needed to be connected to the internet (why), wouldn't a seperation from the outside be pertinent, and perhaps a redundant internal system.
I mean, were these machines on live IP's, or were they just dependant on the 'net for communication instead of a local infrastructure?
I was considering disconnecting the unit after my year was up, but then my wife's cousin who consults for onstar was telling me that they will perform 'public safety' services even if you don't have an active account
Why not just unplug until you need it? It only needs a continuous feed for the paid services...
All in all, what I get doesn't matter too much. I mean, I probably have one of the bigger budgets in the family, so without Xmas my money would have probably just gone to getting stuff I wanted anyways.
However, Christmas is one of the few times my family (distributed around the province) generally all get together, and thus the only time we have to give everyone gifts. There's also a challenge in finding things that will be a geniunely nice surprise for those I'm shopping for.
Yes, for the stores I'm sure it's about money money money, but that doesn't mean it has to be like that for me. The other thing to consider is Xmas employment, while for some businesses it's about major profits, for others it's about breaking even, or at least making the business worthwhile. The shopping season keeps a lot of people employed, as it is often the making/breaking point for many smaller businesses.
In this case, my counter would be that you know the vendor... or at least, you should know the vendor and at least trust them somewhat. If "unknown company X" gives me something with a burned disc or whatever I'm going to be a bit suspicious. If well-known/respected company Y gives it to me, I'm a bit more trusting.
The main differential is that virus writers are in many ways untracable and anonymous. Most of the people presenting at a conference should be traceable in some form, and thus accountable.
Wouldn't the "man" and "hole" parts cancel each other out gender-specific wise?
But not until it's convenient. The fact that it's now been made an issue is even more of an excuse to use it should somebody find reason.
Got that techie whom you promised a raise 3 months ago and is now getting a little upset... can him for using "racially bias" terms... the government has now paved your way.
Luckily mice have gone IR nowadays, otherwise politicians may have taken offence to the many ways to misconstrue the fact that the mice had "balls"
That it's cheaper and more convenient to buy a video camera and film a movie playing in your local retail/video store for a few hours than it is to rent a video and copy it at home (either by bypassing Macrovision - easy - or by using said videocamera on your display device).
The only thing it adds is criminal penalties for copying movies in a theatre. From many of the rips I've seen floating around, many of these are coming from the east anyhow.
Got one, works fine, until you have several hundred cables to sort out, then you STILL have to go through the rack checking individual ones.
Another trick is just to get an ammeter, slap a small battery on one end of the cable attached to the terminals, and check for current (best done when your cables aren't hooked to any hardware that might be damaged by battery current).
But according to this article, the company indicated was not spamming, but mistaken due to spam from a rival firm. Perhaps a joe-job, or just creative butt-covering?
You may have this problem at work, and really, it's not a problem to you, since everything is working as it should. It becomes a problem when, suddenly, critical PC #962 loses networking capability, and you have to find out which cable is dead and where between it and #961 other cables.
I think this is the point between where people do one of several things:
a) Run a whole new cable if the distance isn't huge, then you have #962 cables, and this does add up over time.
b) Split an existing cable with a hub or whatever, then you have a dead cable in the ceiling.
c) Try to trace the dead cable and replace it. When you have a heart-attack going through crawlspaces they may have a dead technician in the ceiling (from experience, the places where these cables reside are often not fun to visit)
Really, this situation isn't too uncommon. I think that some network techs become like black widow spiders when it comes to cabling... laying it like a web to trap unwary visitors. Look closely... anyone see a maintenance person trapped in there somewhere?
Seriously though, as far as cable volume this is nothing. Right now one of the sites I'm working at has over 200 cables, and when all your networking hardware is in one room running it to a connection becomes slightly messy no matter how you do it. Granted it's not as bad as in the picture shown, but still enough that trying to trace individual cables can become a long and arduous task.
I'd hate to imagine what this could be like in larger companies, making 500+ cables run nicely has got to be a not-so-fun task in any situation...
Wow! I wonder if they told the owner (s?) of the Internet connection he was using?
I wonder if they told the ISP of the owner(s) of the connection(s). Might they not be alerted by blatant illegal porn access on their network (why else wardrive, if nobody is watching you in the first place), and go after the owner of the connection that the WiFi is sourced from.
Well, then perhaps soon we'll see people tapping into power lines instead of wardriving for illegal pr0n.
Seriously though... a power-line is fairly noisy and/or is accessible to the general masses, more so than a phone-line. How does one tag an ID on individual customers (a meter is generally read manually?).
If it were integrated into meters the meter-reader could be out of the job, but could people bypass the meter and pull a little fancy hackery in order to get onto the power co's network? I could see spammers and other illegal users try to take advantage of this...
responding to political pressures with the easiest solution.
One would think so, except that they've been unduely slow in responding to the bad press they're getting about defects in these machines, which is one of the reasons for the rise of conspiracy theories.
You must be joking. While some of the more "mature" projects are definately solidly coded, some of the others are nightmares. Try mixing several different coding styles, nights coding on only caffeine, starting, stopping, and losing your place...leaving debug to-fix-later code in by accident...
Open source suffers the same problems as closed. In some projects moreso, as the variance of different coding styles/standards-adherance can lead to very interesting things happening. Even some mature projects have this problem, I've heard of some common ones where a rewrite was considered, because as the code evolved and was added to, the author(s) learned much better coding as it progressed but left the core a bit flaky.
In my experience:
Good boss: One who guides you in company policy and overall communication, but knows that you understand the technical stuff best and leaves you to it.
Bad boss: Likes buzzwords, uses company vehicles/resources for personal use, hires his son-in-law as your overseer, and think he knows how you should be doing your job.
The majority of my experience has luckily been with good bosses. Some even had coding experience, and could assist when I did a dumb mistake (tm) like missing a semicolon or something like that, but generally didn't interfere with heavy work stuff unless asked (or they noticed an impression on the workdesk from repeated head-banging).
Either the article or the summary:
Makes it a crime, subject to five years in prison, to send fraudulent SPAM
While of course, fraud is already fraud... this covers in particular spam fraud - which does account for a goodly percentage of total spam.
I personally don't think that somebody needs to go to jail for spamming, there are cases where spamming is accidental or at very least due to extreme ignorance (see those who hire spammers). Not to mention the spambots hijacking computers... wouldn't want to face jailtime for that either.
No, I think I'll stick with large monentary damages to spammers and jail-time for fraud. Public stonings aren't a bad idea though.
Oh, and opt-in would have to be very well worded or otherwise useless. The first time you sign up for a service on the network with spamming "partners" you'd have opted in...
Education helps protect people against your average dummy-attack (email trojan, open share, etc). Doesn't do much against the latest RPC vulnerability etc, or perhaps a DDOS.
Law enforcement does need to deal with this situation. It also needs a body that understands it clearly and doesn't view anyone proficient with a computer as a "mysterious hacker/cracker capable of being a threat."
br Even with education, you'll only reduce dumb slip-ups, not totally remove them. For the rest, we need an easier way of dealing with crackers. When it gets to the point of threats such as "pay us $50000 or we'll see your servers DDOS'ed into hell," I'd say that technical crime is just as bad as physical, and it does need to be dealt with.
Are our elected officials really that stupid, or has Diebold really swindled them?
I'd say that if anybody is being swindled, it's you. The politicians who allowed Diebold access in the first place are probably a little richer.
Nice to see Los Alamos is going with caution, amazing how many areas jumped on a bandwagon even when this wagon seemed to only have 3 wheels.
You know what... encrypt your SSH connection at 1024-bit... lock your webserver in a vault, 2km underground, with triple combinations... post armed guards... lock down all ports except port 80 and SSH/whatever.
Then, have your password stolen, and oh shit, you're compromised. It's not about the OS being insecure, it's about a lost password. NOTHING can protect against this, short of one instance I heard where updates required 3 user passwords (from 3 users), but what a pain that would be.
How open about it are they. I noticed yesterday that apt was choking, then www.debian.org was inaccessible so I assumed an upgrade or some other issue.
www.debian.org is up now, but the last news I see on there is from Nov 10:
Debian wins several Readers' Choice Awards
Not to be too picky, but a little more info on the main page *would* have been great. Thankfully I have slashdot and some others to back me up.
Stop by casino, quarters in, dollars out. They dump them in by weight, and then it figures out what they owe you in larger denominations.
At least that's the way it works around here...
At minimum the charges seem to be near the millions, forcing people to settle. It's not about the legal action, it's about how they're going about it (scare tactics) rather than letting it be settled fairly in court. You might also want to remember that the RIAA was already caught for price-fixing etc in the not-so-distant past... hey RIAA, I'll take my reparations in P2P, please.
I don't know everyone at company "Y", but why would company "Y" sell a piece of hardware unless it is branded to them. I wouldn't exactly believe somebody who says "hey, I work for Verizon, want this [company X] USB-pen?" (not that I'd trust anyfrom from Verizon anyhow)
In that case, is it pulling battery power? Why not just wire a toggle switch between the receiver and battery. I do the same thing for my subwoofer amps... that way if it's late and I don't want to rock the neighbourhood (but still want music) I can turn 'em off.
So if SCADA was downed by a DDOS, was it intentional or just part of general internet traffic. Even with heavy internet loads, none of my internal network was affected either at work or home. If these machines needed to be connected to the internet (why), wouldn't a seperation from the outside be pertinent, and perhaps a redundant internal system.
I mean, were these machines on live IP's, or were they just dependant on the 'net for communication instead of a local infrastructure?
I was considering disconnecting the unit after my year was up, but then my wife's cousin who consults for onstar was telling me that they will perform 'public safety' services even if you don't have an active account
Why not just unplug until you need it? It only needs a continuous feed for the paid services...
All in all, what I get doesn't matter too much. I mean, I probably have one of the bigger budgets in the family, so without Xmas my money would have probably just gone to getting stuff I wanted anyways.
However, Christmas is one of the few times my family (distributed around the province) generally all get together, and thus the only time we have to give everyone gifts. There's also a challenge in finding things that will be a geniunely nice surprise for those I'm shopping for.
Yes, for the stores I'm sure it's about money money money, but that doesn't mean it has to be like that for me. The other thing to consider is Xmas employment, while for some businesses it's about major profits, for others it's about breaking even, or at least making the business worthwhile. The shopping season keeps a lot of people employed, as it is often the making/breaking point for many smaller businesses.
In this case, my counter would be that you know the vendor... or at least, you should know the vendor and at least trust them somewhat. If "unknown company X" gives me something with a burned disc or whatever I'm going to be a bit suspicious. If well-known/respected company Y gives it to me, I'm a bit more trusting.
The main differential is that virus writers are in many ways untracable and anonymous. Most of the people presenting at a conference should be traceable in some form, and thus accountable.