They will try and extort $1-2K from you. Usually, if you wait a year, they will release it, which is what happened to me a few years ago. If you don't want to pour money into it, it's pretty hard to get it back w/out laywers IMO.
I'm a system/network admin at a small (1000 user) global company. I basically make most of the recommendations, don't have a real problem getting money for the projects I need it for, report directly to the CTO and CEO, and on a shallow level, have great support from management about keeping/getting software/hardware out of the stone age. My employer gives me 5-10K a year for training, will pay me to go to conferences, and reimburses me for 50% of grad school at a private university. I also get to leave work early for school, but work random hours sometimes when the shit goes down in China or the UK.
Am I happy? Hell yea, I get to experiment with new things, am instrumental in the budget, get lots of face time with upper mgmt, and get many perks.
But, I got lucky, but there are those companies that will take care of their employees, I'm not sure if they are few and far between or not... and the best thing, is I'm learning the skills to jump into management.
I have a relationship, a bad snowboarding problem:), a bad wakeboarding problem, go to grad school, and still find time to go to the gym, church, hang w/my friends, and keep everything in check. I should probably sleep more, but it's doable, You just might have to really look around.
My suggestion is to work for a consulting agency, then you can find a company that NEEDS and APPRECIATES you, you can get an inside look, and when one comes that may be hiring, you can get your foot in the door.
Also, I can't emphasize getting out there and networking. Some towns may be better or worse at the above things, and corporate culture in Boston is different than in Buffalo. So your local market really defines the answer to your question. If you worked in England, you'd get laughed at if you worked more than 40 hours, (ask our plant in England)
Keep a fresh perspective, figure out what you want to do, make sure your qualifies, or have the skills to learn quickly, and go for the job that fits your lifestyle!!!
Yea, no shit, we wouldn't wanna have to play WOW for only 22 hours a day. Why spend money porting it to Mac, when you can use all your money making bigger crazier instances (then you need better hardware), more levels, more guaranteed revenue, and more spyware to take over your already pretty bogged down smokin computer. (then you just HAVE to buy a new one so the gaming experience doesn't suffer)
Thanks to everyone who had some great things to say and some insight for my research that is only possible with views from "many" as opposed to one.
Much appreciated.
JP
If you could somehow help me get an interview with one of the guys that implemented this in MS, I would love to pick their brain, and after reading this thread, and the MS Press PKI book, I have some interesting questions. If that's possible send me an email please.
I like you comment about putting it on my network, my security policy, etc....
I am (un)lucky (whatever) to have consistency in my network (all XP and 2000 clients, and mostly windows servers, not that I'm all for it, but at least I can keep it simple, so I'm looking at the ease of scaling it in my existing AD, and I'm not such a big company that it'll be much of a problem.
But in my research paper, I want to be able to say:
Yes you can implement this in an academic or large corporate environment, and with the right resources you can make it work. (but no FBI $20 billion failure or whatever, just a reasonable budget)
Or No, you can't.
Well the answer is probably in between, I can never hurt to ask, and other than reading through RFC's and a few useful books and newsgroups, other than MS casestudy's I haven't heard much 3rd party opinion, which I'm getting some great feedback here!!
I am doing this research for a few reasons, and the only reason I say MS is because:
that's what's on 90 % of corporate desktops(95% of ours, and yes, red hat and mac osX "can" work with MS cert services);
it is integrated with my company's current environment, and while the PKI itself may be complex to configure, plan and install;
it allows me to automate quite a bit and I can just manage certs and CRL's (which 2003 has delta CRL's, significantly reducing network load);
do so many useful things from one solution (smart cards for remote admin credentials, 8 of us; 802.1x, secure email, file encryption, ssl on extranet that just works, and sign code and documents), and IPsec;
learn more about PKI and x.509;
get credit for learning about something not normally in a security curriculm at this time (I'm MS in info security and assurance, RIT);
All that being said, from an academic perspective, I have the time and resources to look past MS, and onto even better solutions, but I understand that PKI has a few fundamental flaws, such as securing the Root key, CRL's in a large environment, and the fact that the users are the weakest link.
A few additions to my ask slashdot:
I am considering creating the root certificate with OpenSSL
I don't have the financial resources for a solution with a high administrative overhead, although, my company will allow me to spend some time doing it right the first time
I am not opposed to a third party solution, but once again, I want to change as little as possible and keep it simple, as to not create a help desk nightmare, (cuz half the time, I am the helpdesk)
After reading the posts up until now, I haven't found a PKI solution that encompasses all the functionality of MS's
MS does allow you to change and create pretty much anything of a certificate template you can think of
Even though they don't follow X.509 to a tee, I'm willing to trade that if it gives me an extra layer of security at a reasonable cost (free + research (school credit) + implementation time)(and this is only "one layer" in my security plan;)
If you know what is running in your corporate infrastructure and you are able to quantify this with tools to make you life easier, you will be fine.
If you let your users go out and do whatever they want on the web, (free ipod, download music) then it's your own fault.
There are so many layers to the network and so many ways to update and prevent 90% of spyware, anti-virus and exploits from happening it's sickening to just hear people just bitch about the state of things instead of taking that time and using it to make thier current systems better secure, virus resistant, etc.
Why is this so hard? If you are a network admin and you are intimate with your network like you should be, then all the discussion about patch management is moot because it's just another tool to help you do your job. If you whine about the tools out there, instead of using the best stuff you can get your hands on, then you'll lose. Take what you have and use it.
I'm not really sure what the "most secure" OS that's out there is, but I do know, faced with my currect infrastructure, that I know what's going on within my network, and have put the neccessary tools in place to make sure that my patching is done, my AV is up to date, and have reports of suspicious activities. Now that I automated most of this for free.... I can spend my time on other problems that haven't been solved yet.
What frustrates me is that just because windows isn't 100% secure, people complain, instead of using their knowledge and skills to make it better with what's available now.
Why doesn't google just stop using the.fr url.
If someone in France just goes to google.com will they still have the ads blocked?
Isn't google providing a service that nobody is forced to use?
Although google could be biased and return search results that aren't fair to the rest of the world, they don't. For the most part they do what is right, at least when it comes their search function.
Google should just redirect their google.fr url to google.com, then france has no recourse.. right?
you are obviously pissed off. Although you tried to resolve this, it didn't happen the way you wanted to. Instantly. I understand your feelings, I would be just as pissed. But IMHO this is a classic example of the growing pains of the net.
Sorry you were the victim.
From all these threads, (I don't use godaddy.com) it looks like they are one of the hosting companies doing something right, you just chose to flip out right away instead of using common sense to solve the problem. Call the Pres, then complain!!!!!
Slashdot Mirror
Originally posted here: http://www.ethicalhacker.net/content/view/210/2/
I second that
They will try and extort $1-2K from you. Usually, if you wait a year, they will release it, which is what happened to me a few years ago. If you don't want to pour money into it, it's pretty hard to get it back w/out laywers IMO.
I think Network Solutions has improved tremdously in the past few years, but what drives me nuts, is you have to query thier whois database.
Works great, even syncs with multiple mail gateways, and you have no client because it uses public folders. http://www.gfi.com/
I'm a system/network admin at a small (1000 user) global company. I basically make most of the recommendations, don't have a real problem getting money for the projects I need it for, report directly to the CTO and CEO, and on a shallow level, have great support from management about keeping/getting software/hardware out of the stone age. My employer gives me 5-10K a year for training, will pay me to go to conferences, and reimburses me for 50% of grad school at a private university. I also get to leave work early for school, but work random hours sometimes when the shit goes down in China or the UK.
:), a bad wakeboarding problem, go to grad school, and still find time to go to the gym, church, hang w/my friends, and keep everything in check. I should probably sleep more, but it's doable, You just might have to really look around.
Am I happy? Hell yea, I get to experiment with new things, am instrumental in the budget, get lots of face time with upper mgmt, and get many perks.
But, I got lucky, but there are those companies that will take care of their employees, I'm not sure if they are few and far between or not... and the best thing, is I'm learning the skills to jump into management.
I have a relationship, a bad snowboarding problem
My suggestion is to work for a consulting agency, then you can find a company that NEEDS and APPRECIATES you, you can get an inside look, and when one comes that may be hiring, you can get your foot in the door.
Also, I can't emphasize getting out there and networking. Some towns may be better or worse at the above things, and corporate culture in Boston is different than in Buffalo. So your local market really defines the answer to your question. If you worked in England, you'd get laughed at if you worked more than 40 hours, (ask our plant in England)
Keep a fresh perspective, figure out what you want to do, make sure your qualifies, or have the skills to learn quickly, and go for the job that fits your lifestyle!!!
Good Luck
Yea, no shit, we wouldn't wanna have to play WOW for only 22 hours a day. Why spend money porting it to Mac, when you can use all your money making bigger crazier instances (then you need better hardware), more levels, more guaranteed revenue, and more spyware to take over your already pretty bogged down smokin computer. (then you just HAVE to buy a new one so the gaming experience doesn't suffer)
Thanks to everyone who had some great things to say and some insight for my research that is only possible with views from "many" as opposed to one. Much appreciated. JP
Kinda like you kid putting pop tarts in the VCR!!
If you could somehow help me get an interview with one of the guys that implemented this in MS, I would love to pick their brain, and after reading this thread, and the MS Press PKI book, I have some interesting questions. If that's possible send me an email please.
Hey,
:)
I like you comment about putting it on my network, my security policy, etc....
I am (un)lucky (whatever) to have consistency in my network (all XP and 2000 clients, and mostly windows servers, not that I'm all for it, but at least I can keep it simple, so I'm looking at the ease of scaling it in my existing AD, and I'm not such a big company that it'll be much of a problem.
But in my research paper, I want to be able to say:
Yes you can implement this in an academic or large corporate environment, and with the right resources you can make it work. (but no FBI $20 billion failure or whatever, just a reasonable budget)
Or No, you can't.
Well the answer is probably in between, I can never hurt to ask, and other than reading through RFC's and a few useful books and newsgroups, other than MS casestudy's I haven't heard much 3rd party opinion, which I'm getting some great feedback here!!
Thanks guys
Some more insight into what I'm doing: :)
;)
I am doing this research for a few reasons, and the only reason I say MS is because:
that's what's on 90 % of corporate desktops(95% of ours, and yes, red hat and mac osX "can" work with MS cert services);
it is integrated with my company's current environment, and while the PKI itself may be complex to configure, plan and install;
it allows me to automate quite a bit and I can just manage certs and CRL's (which 2003 has delta CRL's, significantly reducing network load);
do so many useful things from one solution (smart cards for remote admin credentials, 8 of us; 802.1x, secure email, file encryption, ssl on extranet that just works, and sign code and documents), and IPsec;
learn more about PKI and x.509;
get credit for learning about something not normally in a security curriculm at this time (I'm MS in info security and assurance, RIT);
All that being said, from an academic perspective, I have the time and resources to look past MS, and onto even better solutions, but I understand that PKI has a few fundamental flaws, such as securing the Root key, CRL's in a large environment, and the fact that the users are the weakest link.
A few additions to my ask slashdot:
I am considering creating the root certificate with OpenSSL
I don't have the financial resources for a solution with a high administrative overhead, although, my company will allow me to spend some time doing it right the first time
I am not opposed to a third party solution, but once again, I want to change as little as possible and keep it simple, as to not create a help desk nightmare, (cuz half the time, I am the helpdesk)
After reading the posts up until now, I haven't found a PKI solution that encompasses all the functionality of MS's
MS does allow you to change and create pretty much anything of a certificate template you can think of
Even though they don't follow X.509 to a tee, I'm willing to trade that if it gives me an extra layer of security at a reasonable cost (free + research (school credit) + implementation time)(and this is only "one layer" in my security plan
Yea but can't you just look for the $sys$drm file etc.. and if that's found, then you have to remove the rootkit before logging onto WOW?
If you know what is running in your corporate infrastructure and you are able to quantify this with tools to make you life easier, you will be fine. If you let your users go out and do whatever they want on the web, (free ipod, download music) then it's your own fault. There are so many layers to the network and so many ways to update and prevent 90% of spyware, anti-virus and exploits from happening it's sickening to just hear people just bitch about the state of things instead of taking that time and using it to make thier current systems better secure, virus resistant, etc. Why is this so hard? If you are a network admin and you are intimate with your network like you should be, then all the discussion about patch management is moot because it's just another tool to help you do your job. If you whine about the tools out there, instead of using the best stuff you can get your hands on, then you'll lose. Take what you have and use it. I'm not really sure what the "most secure" OS that's out there is, but I do know, faced with my currect infrastructure, that I know what's going on within my network, and have put the neccessary tools in place to make sure that my patching is done, my AV is up to date, and have reports of suspicious activities. Now that I automated most of this for free.... I can spend my time on other problems that haven't been solved yet. What frustrates me is that just because windows isn't 100% secure, people complain, instead of using their knowledge and skills to make it better with what's available now.
Why doesn't google just stop using the .fr url.
If someone in France just goes to google.com will they still have the ads blocked?
Isn't google providing a service that nobody is forced to use?
Although google could be biased and return search results that aren't fair to the rest of the world, they don't. For the most part they do what is right, at least when it comes their search function.
Google should just redirect their google.fr url to google.com, then france has no recourse.. right?
you are obviously pissed off. Although you tried to resolve this, it didn't happen the way you wanted to. Instantly. I understand your feelings, I would be just as pissed. But IMHO this is a classic example of the growing pains of the net. Sorry you were the victim. From all these threads, (I don't use godaddy.com) it looks like they are one of the hosting companies doing something right, you just chose to flip out right away instead of using common sense to solve the problem. Call the Pres, then complain!!!!!
I probably saved $40K going to MCC then Rochester Institute of Technology. Pretty good school, but some growing pains.
Will this be step one in net regulation like cable and phone? Will the FCC be assigning IP's?