Well, what can I say about the sorry state spammers and scammers have left todays digital and manual communication systems. The phishing emails are getting better but IT savvy techs are not fooled, but I cannot say the same for the average Joe or Jane Bloggs. It's all a complete mess:(
Adding to this, the ad companies might as well ask us to turn off the anti-virus as well, which is basically what we are doing when we turn off our ad-blockers. Total bellends! I will never turn my ad-blocker off. If you try to force me, I'll take my business elsewhere, (you lose).
This is why I run an ad-blocker, simple. The HTTP protocol has been abused so badily, what started as an amazing step for computer science decades ago, has been ruined by ad companies who themselves dish out malware / crapware.
Someone asked me a while back how to browse online safely... I told them to not go online.
I run uBlock Origin and I cannot fault how well it works. As stated above and I quote, "Adblock alone has reduced my need for family-based PEBKAC support by nearly 95% in the last five years". This is true for me also. Ads are a plague on the internet and are the root cause of nearly all the issues in my view from personal experience. If a site asked me to disable my ad-blocker, I'll take my business elsewhere and I don't give a flying s**t what else anyone else has to say, (any negative comments suggest user is in the ad industry).
You're an idiot you Anonymous Coward. It's almost like you are saying it's fine what they are doing. Ads are a plague upon the internet... they have gone out-of-control completely.
And I'm well within my rights to change my email provder and close my Yahoo account, (I don't have one but I would if I did).
They need to understand that users do not like being told what to do, and I certainly don't in particular. If all email providers go the same way, I'll setup my own mail server again like I used to many years ago. Easy to do.
That's just insane! Microsoft have bended them over a table and in a gimp suit and stuck the gobstopper up their arse. We are a medium sized company and we are seriously looking at moving, as much as possible, away from Microsoft and on to open-source.
I think my company should pay me half of what it would have cost us in MS licenses;)
April fools i know but, The Speed of Light is simply that, a recognised speed. If I was travelling 10 light seconds at twice the SOL, I would get there in around 5 secs depending on massive magnetic interference. Something could not arrive b4 it's sent, a tiny fraction over 0 yes. I don't believe travelling at the SOL slows time, mearly presents a huge issue where hitting a tiny particle would be a disaster xD the forces involved would be insane. I could also be wrong but prove it!
How 2 piss your users off, do something stupid. This better be back 2 normal tmoz. I read slashdot daily as an awesome news feed. April fools or not, I'm not amused. Will go somewhere else if not sorted.
I disable cookies and ONLY allow the sites I want. I use Firefox and ABP (Ad Block Plus). They can have my IP but that's all they will get. I hate the advertising companies as on some sites, especially when downloading, they swamp the whole page with "Download" buttons which look like the download buttons from the actual website they are advertising on. Total nightmare!
I'm no expert with regards to symmetric encryption granted, but I do know a lot about it. It makes RC4 look like plain-text in comparison. I disagree with regards to using a larger key as it means there is a lot more overlap when rotating the key, why have key(x) when you can have key(x, y)? It's technically as easy hence the speed is only just slightly slower, a fraction. The problem with keys that are 256 is the rotation. I came to the conclusion that there wasn't enough scope to randomize it enough hence the 64K key. I did numerous custom tests with a 256 key and I wasn't satisfied. It doesn't waste any computation and also I found it very good at securing large files. I still can't believe that RC4 is still used with the likes of WEP, SSL. In the end, it'll never get used and just be my own personal symmetric encryption algo:)
I run tests on RC4 years ago, run it thru a plain text file full of the same char repeated and then run through RC4, guess what? Oh the password is showing every 256 chars, hence the "weak" key.
I developed a newer version of RC4 called RC64, uses a 64K (65536 or 256 ^ 2) key. The randomisation process is very complex and the algo was only just slightly slower than RC4, which is very fast anyway. A graphical representation of the 64K key visualized pure white-noise when the key was viewed in grey-scale. They need to start using mine me thinks:) Oh, and in a 50MB file full of the same repeated char, the password was not even hinted at and no 4 bytes were the same.
It wont make any difference, the 2 main ways viruses etc get into a machine is: 1). Browser 2). Email. The router acts as a natural firewall so it's all down to the browser, anti-virus and the user being a bit savv and looking out for anything that's not right. Security nightmare my arse! We already have a security nightmare and it's the users fault mainly for not watching out.
Funny you should be in this situation as I starting working from home 2 years ago and I've been ok. I travel to our main office 270 miles away every 4-6 weeks but travel expenses are paid for. I have a room with an office setup in my house and do try and keep the door closed. I do miss the office atmosphere but in all, I have no problems and work like I would from the office, (OK sometimes I get distracted!).
I've read numerous forums ages ago on ppl agreeing how sh!t Adobe Reader is. Use another one like PDFXChange or something. An why is the Adobe Reader install so large? PDFXChange is tiny in comparison.
The reason Hotmail, Gmail, Yahoo and Facebook accounts get hacked is because of the shitty third party websites like those little small "gameing" sites, they get hacked and guess what? Oh! the user has used the SAME password for for their main email accounts. If people used just 2 passwords, this would stop their primary email accounts getting compromised. 1 main password for main account, and another for the shitty freebee websites which will probably get hacked. Simple!
http://hashcat.net/oclhashcat/ runs numerous tools for this and with some users GPU rigs going totally insane: 4 x ATI Radeon 6990 throwing MD5 hashes out @ 45.7 Billion/sec, that's mixalpha-numeric password of length 8 in 1 hr 20 mins and then we can start on the dictionaries / hybrib-dictionaries / case-mutations / etc. The way passwords are used / stored is becoming broken by design.
I have multiple mail servers from different companies from which I check the SPF lookups via the logs but, if I was having problems, I would use the soft fail. As yet, I've not had to. I Agree with you, the time for excuses are past.
Clearly I do not suffer from "Asperger's Syndrome" lol, and I do actually ask the question as to why it's needed, which the comment below happy provides:)
I also use SPF records for all my domains, most are simply: "v=spf1 a mx -all".
"-all" as in hard fail. I don't know why there is a soft fail "~all" option, if it's not from a known host / IP, it should fail. What's the point in returning an unknown response? Like as if there was no SPF record in the first place? It's amazing how many domains actually use soft fail. Anyone know why?
They only help stop backscatter and other IPs from sending emails from @youdomain.com as long as the other mail server does a SPF lookup. We have become dependant on the email protocol and the way it works, pitty it's in such a mess:( Damn you SPAMBOTS!!!
Totally agree, it's a pitty out of the 132,000 hacked sites that are written in Classic ASP that the coders havent done this:) It totally depends on the methods used in the code and, unfortuntly, there is A LOT of bad ass coding about:(
Example:
http://www.w3schools.com/ADO/ado_update.asp
Checkout the second window, "UPDATE customers SET...", oh dear!! BAD coding and w3schools is well recognized! I bet a lot of coders have fallin into this HUGE hole.
Exactly!! It's depends on the methods used. You'll be amazed how many people just shove the code in and don't check. I've seen lots of code from companies that would execute the above like:
Dim sSQL, sLastName, cmd
sLastName = Request.Form("txtLastName")
sSQL = "SELECT * FROM Customer WHERE LastName = " + sLastName + ";"
Set cmd = Server.CreateObject("ADODB.Command")
cmd.ActiveConnection = cn
Set rs = cmd.Execute(sSQL)
cmd.Close
Set cmd = Nothing
---------
Lets say sLastName = '; DELETE FROM [Customer]
Oops!! There goes the [Customer] table. To find the table name in the first place you can inject sql queries like this as much as you like.
Slashdot Mirror
Well, what can I say about the sorry state spammers and scammers have left todays digital and manual communication systems. The phishing emails are getting better but IT savvy techs are not fooled, but I cannot say the same for the average Joe or Jane Bloggs. It's all a complete mess :(
Adding to this, the ad companies might as well ask us to turn off the anti-virus as well, which is basically what we are doing when we turn off our ad-blockers. Total bellends! I will never turn my ad-blocker off. If you try to force me, I'll take my business elsewhere, (you lose).
This is why I run an ad-blocker, simple. The HTTP protocol has been abused so badily, what started as an amazing step for computer science decades ago, has been ruined by ad companies who themselves dish out malware / crapware. Someone asked me a while back how to browse online safely... I told them to not go online.
I run uBlock Origin and I cannot fault how well it works. As stated above and I quote, "Adblock alone has reduced my need for family-based PEBKAC support by nearly 95% in the last five years". This is true for me also. Ads are a plague on the internet and are the root cause of nearly all the issues in my view from personal experience. If a site asked me to disable my ad-blocker, I'll take my business elsewhere and I don't give a flying s**t what else anyone else has to say, (any negative comments suggest user is in the ad industry).
You're an idiot you Anonymous Coward. It's almost like you are saying it's fine what they are doing. Ads are a plague upon the internet... they have gone out-of-control completely.
And I'm well within my rights to change my email provder and close my Yahoo account, (I don't have one but I would if I did). They need to understand that users do not like being told what to do, and I certainly don't in particular. If all email providers go the same way, I'll setup my own mail server again like I used to many years ago. Easy to do.
That's just insane! Microsoft have bended them over a table and in a gimp suit and stuck the gobstopper up their arse. We are a medium sized company and we are seriously looking at moving, as much as possible, away from Microsoft and on to open-source. I think my company should pay me half of what it would have cost us in MS licenses ;)
For 130,000€, I'll go over there right now and clean them all myself. Only 170 boxes so even if it takes a month, not really a problem eh.
April fools i know but, The Speed of Light is simply that, a recognised speed. If I was travelling 10 light seconds at twice the SOL, I would get there in around 5 secs depending on massive magnetic interference. Something could not arrive b4 it's sent, a tiny fraction over 0 yes. I don't believe travelling at the SOL slows time, mearly presents a huge issue where hitting a tiny particle would be a disaster xD the forces involved would be insane. I could also be wrong but prove it!
How 2 piss your users off, do something stupid. This better be back 2 normal tmoz. I read slashdot daily as an awesome news feed. April fools or not, I'm not amused. Will go somewhere else if not sorted.
I disable cookies and ONLY allow the sites I want. I use Firefox and ABP (Ad Block Plus). They can have my IP but that's all they will get. I hate the advertising companies as on some sites, especially when downloading, they swamp the whole page with "Download" buttons which look like the download buttons from the actual website they are advertising on. Total nightmare!
I'm no expert with regards to symmetric encryption granted, but I do know a lot about it. It makes RC4 look like plain-text in comparison. I disagree with regards to using a larger key as it means there is a lot more overlap when rotating the key, why have key(x) when you can have key(x, y)? It's technically as easy hence the speed is only just slightly slower, a fraction. The problem with keys that are 256 is the rotation. I came to the conclusion that there wasn't enough scope to randomize it enough hence the 64K key. I did numerous custom tests with a 256 key and I wasn't satisfied. It doesn't waste any computation and also I found it very good at securing large files. I still can't believe that RC4 is still used with the likes of WEP, SSL. In the end, it'll never get used and just be my own personal symmetric encryption algo :)
I run tests on RC4 years ago, run it thru a plain text file full of the same char repeated and then run through RC4, guess what? Oh the password is showing every 256 chars, hence the "weak" key. I developed a newer version of RC4 called RC64, uses a 64K (65536 or 256 ^ 2) key. The randomisation process is very complex and the algo was only just slightly slower than RC4, which is very fast anyway. A graphical representation of the 64K key visualized pure white-noise when the key was viewed in grey-scale. They need to start using mine me thinks :) Oh, and in a 50MB file full of the same repeated char, the password was not even hinted at and no 4 bytes were the same.
It wont make any difference, the 2 main ways viruses etc get into a machine is: 1). Browser 2). Email. The router acts as a natural firewall so it's all down to the browser, anti-virus and the user being a bit savv and looking out for anything that's not right. Security nightmare my arse! We already have a security nightmare and it's the users fault mainly for not watching out.
Funny you should be in this situation as I starting working from home 2 years ago and I've been ok. I travel to our main office 270 miles away every 4-6 weeks but travel expenses are paid for. I have a room with an office setup in my house and do try and keep the door closed. I do miss the office atmosphere but in all, I have no problems and work like I would from the office, (OK sometimes I get distracted!).
I've read numerous forums ages ago on ppl agreeing how sh!t Adobe Reader is. Use another one like PDFXChange or something. An why is the Adobe Reader install so large? PDFXChange is tiny in comparison.
Hotmail Mobile Exchange Server: m.hotmail.com Enable SSL User Pass Done.
The reason Hotmail, Gmail, Yahoo and Facebook accounts get hacked is because of the shitty third party websites like those little small "gameing" sites, they get hacked and guess what? Oh! the user has used the SAME password for for their main email accounts. If people used just 2 passwords, this would stop their primary email accounts getting compromised. 1 main password for main account, and another for the shitty freebee websites which will probably get hacked. Simple!
http://hashcat.net/oclhashcat/ runs numerous tools for this and with some users GPU rigs going totally insane: 4 x ATI Radeon 6990 throwing MD5 hashes out @ 45.7 Billion/sec, that's mixalpha-numeric password of length 8 in 1 hr 20 mins and then we can start on the dictionaries / hybrib-dictionaries / case-mutations / etc. The way passwords are used / stored is becoming broken by design.
OK, so I turn javascript off, turn cookies off and hide my user-agent, try and get all my browser details then.
I have multiple mail servers from different companies from which I check the SPF lookups via the logs but, if I was having problems, I would use the soft fail. As yet, I've not had to. I Agree with you, the time for excuses are past.
Clearly I do not suffer from "Asperger's Syndrome" lol, and I do actually ask the question as to why it's needed, which the comment below happy provides :)
I also use SPF records for all my domains, most are simply: "v=spf1 a mx -all". "-all" as in hard fail. I don't know why there is a soft fail "~all" option, if it's not from a known host / IP, it should fail. What's the point in returning an unknown response? Like as if there was no SPF record in the first place? It's amazing how many domains actually use soft fail. Anyone know why? They only help stop backscatter and other IPs from sending emails from @youdomain.com as long as the other mail server does a SPF lookup. We have become dependant on the email protocol and the way it works, pitty it's in such a mess :( Damn you SPAMBOTS!!!
Totally agree, it's a pitty out of the 132,000 hacked sites that are written in Classic ASP that the coders havent done this :) It totally depends on the methods used in the code and, unfortuntly, there is A LOT of bad ass coding about :(
Example:
http://www.w3schools.com/ADO/ado_update.asp
Checkout the second window, "UPDATE customers SET...", oh dear!! BAD coding and w3schools is well recognized! I bet a lot of coders have fallin into this HUGE hole.
Exactly!! It's depends on the methods used. You'll be amazed how many people just shove the code in and don't check. I've seen lots of code from companies that would execute the above like: Dim sSQL, sLastName, cmd sLastName = Request.Form("txtLastName") sSQL = "SELECT * FROM Customer WHERE LastName = " + sLastName + ";" Set cmd = Server.CreateObject("ADODB.Command") cmd.ActiveConnection = cn Set rs = cmd.Execute(sSQL) cmd.Close Set cmd = Nothing --------- Lets say sLastName = '; DELETE FROM [Customer] Oops!! There goes the [Customer] table. To find the table name in the first place you can inject sql queries like this as much as you like.