Why just think... Instead of just filling Professor Hathaway's house with popcorn - Knight and crew could have also sued him for millions! This calls for Real Genius 2!
You would trace it down to the Wireless Access Point in fairly short order based on the address scope you had given that segment of your network. From there if its obviously a rogue (drive by) you simply turn off the Access Point until you can come up with a workable solution for your network.
As is typical its $cost (time/material) vs. requirement (level of data security required).
I think you'll find more and more of these "Free Networks" drop out due to people using them for nefarious actions on the internet from the safety of their car... no wait... their bike... no wait... the guy sitting on the bench over there... Nooooooo please... don't cut my line... it wasn't me!!!
That or they will start heavily filtering on the allowable outbound traffic the people offering these networks will allow... out.
Once there was - but its already been given an EOL
on
Linux Office Suites
·
· Score: 2
There was one by HP (I actually ran it in a corporate lab for a while) - but HP killed it.
You can still get support for it, but I'm sure MS will kill the ability to use it with XP or a future revision of Outlook.
not quite sure how you are going to get your certificate validated to a nasa.gov domain via any certificate authorities - but yes... it is wide open to a man-in-the-middle attack.
The problem as I see it for NASA in particular is that they probably support MANY client OSes. Thus making VPN difficult at best as many have suggested. I would not be suprised to hear that there were 95/98/NT/2000/MacOS 8/MacOS 9/MacOS X/Solaris/Linux clients that would all want to make use of the wireless network. It would be possible to support them all under multiple VPN products - but it wouldn't be cheap nor would it be management friendly.
The real "news" here is that NASA would find it appropriate to issue a press release on a project I would expect anyone half rational and competent to be able to figure out and implement in their sleep.
"This just in from NAS NASA - We have succesfully patched IIS against Code Red thus developing the glue to keep our servers up and operational [editorial: for now]. More on this exciting development can be read at slashdot.org"
Please... Spend my tax dollars telling me how close you are at getting me and countless others some time in space. Not on how your (notably horrible in security) NAS team has defeated the WEP weaknesses that everyone and their brother already knew how to get around.
"Sklyarov is due to be arraigned Thursday, but both sides will ask a federal judge to postpone the hearing by a week, lead defense attorney Joseph Burton said Wednesday."
Now I'm not saying that the ENTIRE delay was agreed to by his lawyers - but we are talking about a landmark case here.
I'm possitively stunned at the near sighted responses to the minimal effect, if any, that could be attributed to giving the "at home user" access to raw sockets.
MacOS (about as "home user" as you can get) has had access to raw sockets for years - where is the war cry there? Should Steve Gibson want to rally a war cry (or rant) about WindowsXP's security, or lack thereof, let him... assuming he's found some bugs to bitch about. But here sits a man spouting FEAR, UNCERTAINTY and DOUBT - about an un-released OS that gives the casual programmer more access to his networking stack.
Plain and simple... Gibson is fighting the wrong battle and he does it in a journalistic style that leaves me wishing for better material to read... hmm where is the Weekly World News?
The answer isn't taking access to core parts of the OS away from the user (or the developers that can make legitimate use of it). The answer is fixing the core problem.
Your DHCP server detects a buffer-overflow Uhh... okay... thats a real bright design.
then passes the appropriate counter-measure information to your mail server. The mail server hacks the machine, shuts down the offending process, and patches the TCP/IP stack with one that DOESN'T have raw socket access.
Hmm more bright design. Why not just turn my web server into a honeypot while I'm at it.
SOMEONE has been reading too-fucking-much Steve Gibson. WindowsXP has 0 to do with this. So not only is this post off subject its complete FUD. Take a look here for a more enlightened view of XP and a realistic view of Gibson's worthless RANTs on XP and its access to raw sockets.
If the 5 this comment rated was for FUD I wouldn't even need to be posting this. Pfft.
For speaking kindly toward Verizon may thou be struck repeatedly and often with one million strands of unlaid fiber. When Verizon can actually get around to doing it that is.
Slashdot Mirror
See my thumbs up? See the hard protein fiberous growth at the end of each thumb? Its called a thumbnail!
Still... kick-butt coaster... but when it kills you soon... can I have your computer?
SunScreen has been doing this for quite some time.
Read about it here
Chuck buddy... you are in dire need of a woman.
Specs are on the web site...
http://www.cybikoxtreme.com/support/specs.asp
On hyping yet another product that only supports Windows out of the box. Thus reinforcing the developer mind set of "why bother?"
And what better place to reinforce that mindset in the consumer than in products built for kids?
Kudos!
People will KNOW why... but very few will understand.
Why just think... Instead of just filling Professor Hathaway's house with popcorn - Knight and crew could have also sued him for millions! This calls for Real Genius 2!
God forbid the light catch this thing just right. Probably burn a hole through your wall... or your cat.
Not that I am a huge fan of meetings or anything, but the last thing I want is more annoying handheld technology showing up in meetings.
*pager*
*cellfone*
*palm*
And now a frigging TALKING PALM? Then again...
Eliza + Talking Palm + Male Real Doll = no more meetings ever. Hmm....
And in related news...
Apple is dead.
Java is dead.
USB is dead.
IBM is dead.
Motorola is dead.
and of course...
Linux is dead.
Pft...
23:59:00 (587.68 KB/s) - `WolfMPTEST0915.exe' saved [66548011/66548011]
And it didn't slow my home DSL download down a bit. Very nice.
You would trace it down to the Wireless Access Point in fairly short order based on the address scope you had given that segment of your network. From there if its obviously a rogue (drive by) you simply turn off the Access Point until you can come up with a workable solution for your network.
As is typical its $cost (time/material) vs. requirement (level of data security required).
I think you'll find more and more of these "Free Networks" drop out due to people using them for nefarious actions on the internet from the safety of their car... no wait... their bike... no wait... the guy sitting on the bench over there... Nooooooo please... don't cut my line... it wasn't me!!!
That or they will start heavily filtering on the allowable outbound traffic the people offering these networks will allow... out.
There was one by HP (I actually ran it in a corporate lab for a while) - but HP killed it.
You can still get support for it, but I'm sure MS will kill the ability to use it with XP or a future revision of Outlook.
http://www.openmail.com/cyc/om/00/100-1624.pdf
not quite sure how you are going to get your certificate validated to a nasa.gov domain via any certificate authorities - but yes... it is wide open to a man-in-the-middle attack.
The problem as I see it for NASA in particular is that they probably support MANY client OSes. Thus making VPN difficult at best as many have suggested. I would not be suprised to hear that there were 95/98/NT/2000/MacOS 8/MacOS 9/MacOS X/Solaris/Linux clients that would all want to make use of the wireless network. It would be possible to support them all under multiple VPN products - but it wouldn't be cheap nor would it be management friendly.
How is this news?
The real "news" here is that NASA would find it appropriate to issue a press release on a project I would expect anyone half rational and competent to be able to figure out and implement in their sleep.
"This just in from NAS NASA - We have succesfully patched IIS against Code Red thus developing the glue to keep our servers up and operational [editorial: for now]. More on this exciting development can be read at slashdot.org"
Please... Spend my tax dollars telling me how close you are at getting me and countless others some time in space. Not on how your (notably horrible in security) NAS team has defeated the WEP weaknesses that everyone and their brother already knew how to get around.
CNN...
"Sklyarov is due to be arraigned Thursday, but both sides will ask a federal judge to postpone the hearing by a week, lead defense attorney Joseph Burton said Wednesday."
Now I'm not saying that the ENTIRE delay was agreed to by his lawyers - but we are talking about a landmark case here.
Hear that? Thats the sound of a giant toilet flushing your privacy down the drain (counter-clockwise).
Is there a mail fraud case in this?
I'm possitively stunned at the near sighted responses to the minimal effect, if any, that could be attributed to giving the "at home user" access to raw sockets.
MacOS (about as "home user" as you can get) has had access to raw sockets for years - where is the war cry there? Should Steve Gibson want to rally a war cry (or rant) about WindowsXP's security, or lack thereof, let him... assuming he's found some bugs to bitch about. But here sits a man spouting FEAR, UNCERTAINTY and DOUBT - about an un-released OS that gives the casual programmer more access to his networking stack.
Plain and simple... Gibson is fighting the wrong battle and he does it in a journalistic style that leaves me wishing for better material to read... hmm where is the Weekly World News?
The answer isn't taking access to core parts of the OS away from the user (or the developers that can make legitimate use of it). The answer is fixing the core problem.
ftp://ftp.isi.edu/in-notes/rfc2460.txt
Your DHCP server detects a buffer-overflow
Uhh... okay... thats a real bright design.
then passes the appropriate counter-measure information to your mail server. The mail server hacks the machine, shuts down the offending process, and patches the TCP/IP stack with one that DOESN'T have raw socket access.
Hmm more bright design. Why not just turn my web server into a honeypot while I'm at it.
SOMEONE has been reading too-fucking-much Steve Gibson. WindowsXP has 0 to do with this. So not only is this post off subject its complete FUD. Take a look here for a more enlightened view of XP and a realistic view of Gibson's worthless RANTs on XP and its access to raw sockets.
If the 5 this comment rated was for FUD I wouldn't even need to be posting this. Pfft.
Well I guess we've come full circle. Slashdot has just slashdotted Slashdot.
"Do the voice again! Do the voice again!" - Drunken bar patron badgering El
So expect less than open hardware to be installed on Dell Laptops and Desktops.
For speaking kindly toward Verizon may thou be struck repeatedly and often with one million strands of unlaid fiber. When Verizon can actually get around to doing it that is.
I'm out of order. Your out of order. This whole Internet is out of order!
Sue them under the DMCA for reverse engineering - and republishing your content.
nyuk nyuk nyuk