I hear that....Although, run a Lotus Domino server, at least you get a little more bang for your buck. At my company now...we have like 25 or so Exchange servers....which could all be replaced by a pair of nice IBM servers and Domino.
Come on!!.....I switched to RedHat w/ apt-get for RPM's MONTHS ago...where has everyone else been...jump on the bandwagon already!
I don't want this to start a flamewar over package managment, but what is better than apt? I have a co-worker (who is probably reading this) who rants about urpmi and how its like a billion times better...
Becuase of all the conspiracy theories about AV companies releasing a virus to bring business...I'm curious, if anyone works for any AV companies.....when is the last time your company got infected?
I'm not asking becuase I think this theory hold much water....just curious becuase you never see anything about it in the news (slashdot).
Amazingly enough, we are upgrading our infrastructure to w2k (a thousand or so servers) and not our desktops (nt4) first. Odd. but I guess someone thought it through...right....no....that..would be too....easy.
Does it make a difference? And actually, I don't see him saying it's NOT him. The Jem Report and Valour are two different things. Valour runs the site or whatever...and His SITE just published.....blahblahblah
What my vonage service needs to do is offer a portability type service, where I can get VoiP mobile....having 1 number for both home and cell, while still taking advantage of VoiP and my 25.99 flat rate fee. My cel phone is almost DOUBLE what my vonage at home bill is:(
And here I am thikning about a big screen video projection screen with a virtual wave and a long or short board on hydraulics and possibly a powerglove or a headset!!!
Silly me... Although come on...it's better than the technology in the article!
What kinda springer is that? I Love the triple trees!! I went with Denvers Choppers Springer for pure nostalgia. if you wanna see some more pics, hit up www.robtimko.com and click on gallery...username=guest password=guest click on chopper..and new chopper. the first one is my dads new bike.
Next project is going to be a panhead with whitewalls and a stock harley springer. those are the base requirements....everything else ill make up as I go along!!
A Dell Inspiron 8000 with the max options for a nice apple notebook?
I would trade my PC's in a heartbeat if I could justify the cost of a new apple notebook!!
I have this nervous twitch after playing with the new 17" notebook the other day. After being unsuccessful in trying to weasel a way to expense one for work, I've been dying for a way to get one!
In my company, nothing seems to have an effect on us. We are in the process of migrating from IBM OS/390 to AIX and doing a peoplesoft upgrade with oracle running on AIX.
In my world, If Oracle buys PS, I am screwed. and if SCO wins this AIX thing..I am really screwed.
I'm in the middle of writing a paper on the subject, the start of what I have is below. Also, take a look at www.tenablesecurity.com's whitepaper on using nessus to detect rogues...which of course is not as ammusing as genetically engineering bats (not my idea) You can view this also at www.robtimko.com
Detecting Wireless Threats on your Network
from (802.11)A to B to G
Introduction
In todays IT world, insecure wireless technology has become a serious problem among IT professionals. As The Keeper said in The Invisible Man -- "When you're invisible, the only one really watching you is you." This holds true with wireless techology. Becuase of the intangable communication methods, detection of threats become close to impossible using conventional vulnerability and threat scanning methods. This paper will demonstrate best practices for detecting these threats.
The Threats
In order to effectivly recognize a threat, you first must understand what you are looking for. A threat is any potential event or act that could cause one or more of the following to occur: unauthorized disclosure, destruction, removal, modification or interruption of sensitive information, assets, or services or injury to people. A threat can be deliberate or accidental. An example of threat is a concentrated attack by hackers inside an organization or from outside an organization.
Wireless Detection
The saying "The right tool for the right job" holds true in wireless threat detection. Taken from the website, Kismet is an 802.11 wireless network sniffer - this is different from a normal network sniffer (such as Ethereal or tcpdump) because it separates and identifies different wireless networks in the area. Kismet works with any 802.11b wireless card which is capable of reporting raw packets (rfmon support), which include any prism2 based card (Linksys, D-Link, Rangelan, etc), Cisco Aironet cards, and Orinoco based cards. Kismet also supports the WSP100 802.11b remote sensor by Network Chemistry and is able to monitor 802.11a networks with cards which use the ar5k chipset. Other tools include Netstumbler (www.netstumbler.com) and Wellenweighter. Many people opt to use handhelds to detect,
Passive vs. Active
Kismet is a passive tool. It listens, and reports, whereas Netstumbler is active. It constantly sends out packets of data and reports on devices that respond. These are two major differences.
MAC Signatures
MAC Signature detection is detection based on the MAC or hardware address of the device. Since each is unique and usually easly detectable and matched to a specific vender, it is a good way to see what the device you are actually looking for is. There is however, one pitfall. MAC Spoofing.
Wired Detection
Enterprises who believe they are effective in detecting rogue AP's in their networks are evidently missing more than 50% of the wireless threats to their organizations.Ã Similar in fashion to using vulnerability assessment tools - using nmap to scan your enterprise for AP's will give you known, obvious threats -- not unknown threats. Nessus (www.nessus.org) is a popular security scanner which can used to detect signatures on wireless access points which are connected and configured on your network. It works with http and ftp signatures and is helpful when you are scanning a part of a network which cannot be accessed at the moment.
Locating the Threat
How do you catch an invisible man? Unfortunatly you cannot follow wires to find wireless devices as you would a rogue router or system. Becuase of this, more sophisticated methods need to be used in determining "where" exactly this device is to properly deal with it. Kismet and other wireless detection software have features built-in to facilitate this. These features include the ability to monitor a devices signal strength, and GPS capabilities. Using these features, it is possible to locate a device with minimal work using basic triangulation.
Slashdot Mirror
I hear that....Although, run a Lotus Domino server, at least you get a little more bang for your buck. At my company now...we have like 25 or so Exchange servers....which could all be replaced by a pair of nice IBM servers and Domino.
Rob
And it runs longer than 15 minutes.
It does!? Mine doesn't, the battery life sucks so much I stopped using it a few hours after I got it and went back to my blackberry.....
I hope they made some improvments in the 5600, becuase the 5500 definitly was not practical.
-Rob
Sounds like a really geeky version of the Cuckoos Egg.
-Rob
Come on!!.....I switched to RedHat w/ apt-get for RPM's MONTHS ago...where has everyone else been...jump on the bandwagon already!
I don't want this to start a flamewar over package managment, but what is better than apt? I have a co-worker (who is probably reading this) who rants about urpmi and how its like a billion times better...
Rob
Well, not in a corporate environment I don't see it much.
:(
Usually, if at all linux....its RH.
sad...but true...
-Rob
the obligatory obnoxious ebay post....
I always wonder what the engineers feel like after a shitload of work and money that went into these things....are no more.
I mean...the right answer would be...Built a new one! But, you have to get depressed.
-Rob
If I can decipher what you are trying to say...ask redhat the same question....thats the way the cookie(business world) crumbles....
-Rob
I know many-a-vendor that don't even know the word NT4.
Venders are more "bleeding-edge-to-make-money" oriented therefore they tend to concentrate on the newest technologies.
-Rob
Becuase of all the conspiracy theories about AV companies releasing a virus to bring business...I'm curious, if anyone works for any AV companies.....when is the last time your company got infected?
I'm not asking becuase I think this theory hold much water....just curious becuase you never see anything about it in the news (slashdot).
Amazingly enough, we are upgrading our infrastructure to w2k (a thousand or so servers) and not our desktops (nt4) first. Odd. but I guess someone thought it through...right....no....that..would be too....easy.
-Rob
You mean....I should UPGRADE?
Man just when I though I had patched it to be secure....pffft...
-Rob
Does it make a difference? And actually, I don't see him saying it's NOT him. The Jem Report and Valour are two different things. Valour runs the site or whatever...and His SITE just published.....blahblahblah
/.ed anywho...
big deal...
It's
-Rob
What my vonage service needs to do is offer a portability type service, where I can get VoiP mobile....having 1 number for both home and cell, while still taking advantage of VoiP and my 25.99 flat rate fee. My cel phone is almost DOUBLE what my vonage at home bill is :(
I used Vonage and have not regretted it one bit.
-Rob
And here I am thikning about a big screen video projection screen with a virtual wave and a long or short board on hydraulics and possibly a powerglove or a headset!!!
Silly me...
Although come on...it's better than the technology in the article!
Rob
What kinda springer is that? I Love the triple trees!! I went with Denvers Choppers Springer for pure nostalgia. if you wanna see some more pics, hit up www.robtimko.com and click on gallery...username=guest password=guest click on chopper..and new chopper. the first one is my dads new bike.
Next project is going to be a panhead with whitewalls and a stock harley springer. those are the base requirements....everything else ill make up as I go along!!
A Dell Inspiron 8000 with the max options for a nice apple notebook?
I would trade my PC's in a heartbeat if I could justify the cost of a new apple notebook!!
I have this nervous twitch after playing with the new 17" notebook the other day. After being unsuccessful in trying to weasel a way to expense one for work, I've been dying for a way to get one!
-Rob
I have all three, a palm a blackberry and a ppc and you would have to pry my blackberry out of my dead hands!
I work on my custom chopper, here.
No thats not me in the picure....
-Rob
If I had 100 Mod points. They would all go to you my friend.
Rob
In my company, nothing seems to have an effect on us. We are in the process of migrating from IBM OS/390 to AIX and doing a peoplesoft upgrade with oracle running on AIX.
In my world, If Oracle buys PS, I am screwed. and if SCO wins this AIX thing..I am really screwed.
.....shit......HHEEEEEEEELLLLLPP
..This means I can't use Norton Disk doctor from '95 to "recover" my files anymore!????
Damn.
On a serious note, I'd love to see the development being done on forensic analysis of this new filesystem
Rob
I'm in the middle of writing a paper on the subject, the start of what I have is below. Also, take a look at www.tenablesecurity.com's whitepaper on using nessus to detect rogues...which of course is not as ammusing as genetically engineering bats (not my idea)
You can view this also at www.robtimko.com
Detecting Wireless Threats on your Network from (802.11)A to B to G
Introduction
In todays IT world, insecure wireless technology has become a serious problem among IT professionals. As The Keeper said in The Invisible Man -- "When you're invisible, the only one really watching you is you." This holds true with wireless techology. Becuase of the intangable communication methods, detection of threats become close to impossible using conventional vulnerability and threat scanning methods. This paper will demonstrate best practices for detecting these threats.
The Threats
In order to effectivly recognize a threat, you first must understand what you are looking for. A threat is any potential event or act that could cause one or more of the following to occur: unauthorized disclosure, destruction, removal, modification or interruption of sensitive information, assets, or services or injury to people. A threat can be deliberate or accidental. An example of threat is a concentrated attack by hackers inside an organization or from outside an organization.
Wireless Detection
The saying "The right tool for the right job" holds true in wireless threat detection. Taken from the website, Kismet is an 802.11 wireless network sniffer - this is different from a normal network sniffer (such as Ethereal or tcpdump) because it separates and identifies different wireless networks in the area. Kismet works with any 802.11b wireless card which is capable of reporting raw packets (rfmon support), which include any prism2 based card (Linksys, D-Link, Rangelan, etc), Cisco Aironet cards, and Orinoco based cards. Kismet also supports the WSP100 802.11b remote sensor by Network Chemistry and is able to monitor 802.11a networks with cards which use the ar5k chipset. Other tools include Netstumbler (www.netstumbler.com) and Wellenweighter. Many people opt to use handhelds to detect,
Passive vs. Active
Kismet is a passive tool. It listens, and reports, whereas Netstumbler is active. It constantly sends out packets of data and reports on devices that respond. These are two major differences.
MAC Signatures
MAC Signature detection is detection based on the MAC or hardware address of the device. Since each is unique and usually easly detectable and matched to a specific vender, it is a good way to see what the device you are actually looking for is. There is however, one pitfall. MAC Spoofing.
Wired Detection
Enterprises who believe they are effective in detecting rogue AP's in their networks are evidently missing more than 50% of the wireless threats to their organizations.Ã Similar in fashion to using vulnerability assessment tools - using nmap to scan your enterprise for AP's will give you known, obvious threats -- not unknown threats. Nessus (www.nessus.org) is a popular security scanner which can used to detect signatures on wireless access points which are connected and configured on your network. It works with http and ftp signatures and is helpful when you are scanning a part of a network which cannot be accessed at the moment.
Locating the Threat
How do you catch an invisible man? Unfortunatly you cannot follow wires to find wireless devices as you would a rogue router or system. Becuase of this, more sophisticated methods need to be used in determining "where" exactly this device is to properly deal with it. Kismet and other wireless detection software have features built-in to facilitate this. These features include the ability to monitor a devices signal strength, and GPS capabilities. Using these features, it is possible to locate a device with minimal work using basic triangulation.
Conclusion
Darien Fawkes: The
And remember...If your not moving Forward, your moving Backward.
Mother.....I'm TRYING to build a computer....