Of course they would. There's ranges for many states. It's not just one number.
There's even some 10 digit SSN's out there. It has to do with the 1950 military personnel or something (Im still unclear about this one) and their distinctions therof.
Most systems that have SSN coding do not account for this, nor do they account for a few 8 digit SSN's used during the thirties (when SS was enacted). Most of the 8 digit ones were renewed to the now 9 standard, but it was not a requirement to have the 9 vs the 8.
Ive seen something similar to that.... well.. unintentionally.
A certain brand of switches in my High School I went to would fail-over into hub-mode if the onboard computer crashed.
Turns out, it couldnt handle the broadcast traffic from all the machines, so it created a 400-800 port HUB. Yes, 400-800 machines all sharing 1 100Mb stream of data.
The sad thing about this is the office was using a appletalk network (with the early Macs with the brick-mice) with no internet connection. Amazingly, its been running for the last 14 years with little to no problems.
---Personally, I didn't have a SSN until I was 23 (and only then because I couldn't avoid it anymore without causing myself hassles with otherwise-decent employers that I didn't feel like hassling with), so my prefix is the same as the office I applied through when I got mine at age 23, nothing to do with my birth location.
I should have clarified myself. The SSN state code is based off of the location of the mail collection where you requested it. So, if you lived in the sticks near a border of a state, and went to the other states Post office, you'd get a SSN associated to that state you requested it from.
Usually, it is requested automatically when you're born these days. For example, my parents were living in Indiana when I was born, but I was born in Ohio (neaest hospital). As a resulty, the request was sent from an Ohio Post office. Hence, I have a Ohio SSN.
Still, mate, dont keep talking about terrorism. We ALL*(Err, umm, All 3 of us K5ers) know YOUR bias:P Yeah, me, you, and that half-deranged-testicle-website-whore.
If there were faults YOU knew about that bus, and let others ride on it knowing that injury might result, you would be at fault morally, and perhaps legally and crminally.
How is this different than the shock-journallists on the local news finding "naughty no-no subjects" and then prodding them until they're fixed? Our local (Indiana) problem is the channel 8 news WISH was going over the VX gas stockpiles and how the military was letting the barrels corrode and stuff. Investigator-8 pretty much drew maps on how to get to the VX stockpile.
And yes, because the big media attention, they're just now starting to incenerate the stockpile.
Copying the openly readable, unencrypted database (say in MySQL) and parsing for XXX-YY-ZZZZ found to be hacking?
Well, for one, it is public knowledge that the SSN X's (in my representation) are in fact, state codes. I have some reason to believe that the Y might be county or some sort of district code, but I cant be soo sure unless I'd gather enough SSN's and location of birth
Yes, the mail center in which you were born is what the state code is attributed to, not the actual locale you live in. Say your parents lived in Phoenix, Arizona but went on a trip to New York City. The baby's SSN would start with 050 to 134, NOT the Arizona 526 prefix.
Well, hope this sparks up some replys (and mod points! yay mod points!)
Yeah, ok. But show me somewhere the documentation on all the software natively on a Windows machine, and common placement of 'stuff' on those machines.
Linux is pretty easy in that regard. anything beginning with a dot in home is PROBABLY a config.
Still, the smartest way is to disable roaming profiles, map the home to your desktop (as a link, mind you) on login. Seriously, wouldnt you complain if Linux mapped your home on another computer then proceeded to copy every file over. COurse, this is where consistency errors happen if the netlink is broken or server dies (yeah, winnt server or 2k server....)
---As Microsoft betters its fortunes, it gives us, oh, DRM,
You can thank the "Big Studios" for that, thank you. People dont want DRM, the content distributors (not creators as much).
---viruses
What virus has Microsoft made? Guess you've never seen a naughty shell script or C code with bad calls that do things like... encrypt your ~ and then demand X amount of dollars for the decryption key.
---BSOD
Yeah, like I'd rather have Windows (or ANY OS for that matter) try to attempt to recover from a kernel error. Lets see, since the oplocks controlling the DB were mangled, lets open them again and do stuff, never the fact that we just fucked up the whole DB. Whoops.
Id rather have stop screens and BSODs if that meant better data integrity. Then again, how about real quality testing for those crap windows drivers. That craphardwarefrombiglots.com and its associated driver are probably more at fault than Windows will EVER be.
---ever increasing fees
We're now free not to use Windows and accopanied software any more. Oh yea, teh cost for MS software sure beats 120$ per YEAR upgrades from Apple. Yeah. bleh.
---endless FUD and BS from Gates, etc. ad nauseum.
Every company talks up themselves and down their competitors. Too bad YOU cant see past it.
If they benefit, and we do too, wheres the badness?
When treading into software, its not a zero-sum game. In fact, its the companies and people who mooch off of free stuff without giving back. The recent anti-GPL companies recently 'featured' are an exemplary demonstration of that.
Though I guess having the first quantum-spelled name (IBM in xenon atoms with nickel base) is pretty cool.
Gotta hand it to IBM. At first they were the ones to bring the computer industry down, but now they're bringing it up, up and up. I think they really understand what our computer and tech culture is becoming.
Almost one million net addresses owned by UK cable firm Telewest have been blacklisted by an anti-spam group.
The Spam Prevention Early Warning System blacklisted the addresses because many of the machines using them have been hijacked by spammers.
The army of remotely-controllable machines have probably been recruited by viruses and worms.
Telewest said it knew about the problem and was working with customers to regain control of their home computers.
Home invasion
The blacklists produced by the Spam Prevention Early Warning System (Spews) are used by many organisations as a way to filter e-mail.
When an e-mail message arrives, the net address it is sent from is checked against the list. The message is blocked and deleted if it has been sent from a known spam address.
This blocking by net address has become more important as malicious hackers and cyber criminals have started recruiting home PCs to act as proxies and send out spam on their behalf.
We are currently contacting affected customers to help them clean their PCs which, as you can imagine, is a time-consuming task Telewest statement Some of the so-called zombie armies can include thousands of machines.
PCs on cockband connections are coveted by spammers as they tend to stay online longer and have more bandwidth to use for sending mail.
In late April, Spews announced that it had started blocking more than 900,000 net addresses used by Telewest's Blueyonder broadband service. Many were suspected of being used by spammers.
In a statement Telewest said: ""We are aware of the increase in e-mail volumes due to customers' PCs which have been infected by worms and viruses."
Telewest blamed recent virus outbreaks for the sudden rise in the number of hijacked home PCs.
"We are currently contacting affected customers to help them clean their PCs which, as you can imagine, is a time-consuming task," it said.
Telewest also said it was working on a more permanent solution to problem by installing security systems within its network.
It added that later this year it will also make a package of PC protection measures available to Blueyonder customers.
Big problem
Blacklists were a very blunt tool to tackle the problem of zombie computers, said Matt Peachey, European director of Ironport software which monitors net addresses to spot which ones have been hijacked by spammers.
Mr Peachey said Spews tended to block big chunks of net addresses rather than the few within that range that are actually spamming.
"I would challenge the idea that all the net addresses they are blocking are spamming," he said.
Spammers tended to frequently change the PCs they use to send junk mail, said Mr Peachey, which can mean lists go out of date quickly.
Ironport's own statistics, gathered on its Senderbase website, show that currently more than 16,000 computers on the Telewest network had an e-mail engine installed.
Most of those were likely to be hijacked home PCs, said Mr Peachey, because officially Telewest only runs nine servers that route e-mail for its customers.
One hijacked PC on the Telewest network was sending out more than 100,000 e-mail messages per day, he said.
Many other net service firms were struggling to control the armies of hijacked PCs on their networks, according to Mr Peachey.
Yeah. I remember when here in Indiana was a 2'nd degree penalty fro seatbelt violations. In other words, they only could get you with something more serious. O'Bannon needed the money, so it was made mandatory.
At least the speed limit raising law passed;) Legal 70 MPH on I65 (means I go 80 hehehe).
---That why you don't see lots of code forks (the likes of which nearly killed Unix back in the 80's and 90's) or things like web servers being compiled into the kernel -- all the companies act as checks on each other.
Erm, isnt our current knowledge of encryption technology based much on secret numbers? Well, it is 1 in 2^128 or 2^256 or some huge number, but is this teh similar analogy you use?
Well, first off security CAN be improved, but it uses the same techniques I use for software protections.
There should be no meta-data telling what encrypted the data, what encryption schemes, or whatever to even start off. You should consider these to be the first 'shared secrets'. This has a side benefit as when a 3'rd party attempts to decrypt it, it just gives garbage in which SOMETHING has to interpet. It should not be as simple as "GPG v3.2 Diffie-Helman 4096 bit key" does not match.
Next off, all decrption attempts should go through. What would you rather do: scan the encrypted files for headers in which to try dictionaries OR be forced to try all types of encryption to try to guess which one does what (if you can).
The next, for network security, is 'knock knock' scripts. Whats safer: login/passwd prompt on ssh OR 10 timed packets aimed at different ports (that change on time of day) that then proceeds to open ssh until disconnect?
I know what I'd choose if it was my security depended on hiding, firewalling THEN login/passwords.
The whole point is OBFUSCATION is a valid security mechanism, not that is the end-all be-all or anything, but it does have its places.
Slashdot Mirror
Of course they would. There's ranges for many states. It's not just one number.
There's even some 10 digit SSN's out there. It has to do with the 1950 military personnel or something (Im still unclear about this one) and their distinctions therof.
Most systems that have SSN coding do not account for this, nor do they account for a few 8 digit SSN's used during the thirties (when SS was enacted). Most of the 8 digit ones were renewed to the now 9 standard, but it was not a requirement to have the 9 vs the 8.
Hopefully, this site will help you understand.http://www.ssa.gov/foia/stateweb.html
Fine. When you have MY intellectual property in YOUR house, Ill come in and confiscate it.
And I WILL have police accompanyment.
Ive seen something similar to that.... well.. unintentionally.
A certain brand of switches in my High School I went to would fail-over into hub-mode if the onboard computer crashed.
Turns out, it couldnt handle the broadcast traffic from all the machines, so it created a 400-800 port HUB. Yes, 400-800 machines all sharing 1 100Mb stream of data.
The sad thing about this is the office was using a appletalk network (with the early Macs with the brick-mice) with no internet connection. Amazingly, its been running for the last 14 years with little to no problems.
which K5 miscreant are you? ;P
I dont care. Im a mod-whore and a troll. I say what I think would fly at the right time. Usually, it does.
---Personally, I didn't have a SSN until I was 23 (and only then because I couldn't avoid it anymore without causing myself hassles with otherwise-decent employers that I didn't feel like hassling with), so my prefix is the same as the office I applied through when I got mine at age 23, nothing to do with my birth location.
I should have clarified myself. The SSN state code is based off of the location of the mail collection where you requested it. So, if you lived in the sticks near a border of a state, and went to the other states Post office, you'd get a SSN associated to that state you requested it from.
Usually, it is requested automatically when you're born these days. For example, my parents were living in Indiana when I was born, but I was born in Ohio (neaest hospital). As a resulty, the request was sent from an Ohio Post office. Hence, I have a Ohio SSN.
You DO know, that since Novell petitioned to be C5 Mil spec, you can permnently disable the master account (forget what they call it in novellesque).
Yeah, it could have been bad as in call-Novell-engineers-for-emergency-reset.
Hi CTS ;)
:P Yeah, me, you, and that half-deranged-testicle-website-whore.
Its The Amazing Idiot.
Still, mate, dont keep talking about terrorism. We ALL*(Err, umm, All 3 of us K5ers) know YOUR bias
Now get back to K5, STAT!
But that "car" is a publically-owned bus.
If there were faults YOU knew about that bus, and let others ride on it knowing that injury might result, you would be at fault morally, and perhaps legally and crminally.
How is this different than the shock-journallists on the local news finding "naughty no-no subjects" and then prodding them until they're fixed? Our local (Indiana) problem is the channel 8 news WISH was going over the VX gas stockpiles and how the military was letting the barrels corrode and stuff. Investigator-8 pretty much drew maps on how to get to the VX stockpile.
And yes, because the big media attention, they're just now starting to incenerate the stockpile.
Copying the openly readable, unencrypted database (say in MySQL) and parsing for XXX-YY-ZZZZ found to be hacking?
Well, for one, it is public knowledge that the SSN X's (in my representation) are in fact, state codes. I have some reason to believe that the Y might be county or some sort of district code, but I cant be soo sure unless I'd gather enough SSN's and location of birth
Yes, the mail center in which you were born is what the state code is attributed to, not the actual locale you live in. Say your parents lived in Phoenix, Arizona but went on a trip to New York City. The baby's SSN would start with 050 to 134, NOT the Arizona 526 prefix.
Well, hope this sparks up some replys (and mod points! yay mod points!)
Yeah, ok. But show me somewhere the documentation on all the software natively on a Windows machine, and common placement of 'stuff' on those machines.
Linux is pretty easy in that regard. anything beginning with a dot in home is PROBABLY a config.
Still, the smartest way is to disable roaming profiles, map the home to your desktop (as a link, mind you) on login. Seriously, wouldnt you complain if Linux mapped your home on another computer then proceeded to copy every file over. COurse, this is where consistency errors happen if the netlink is broken or server dies (yeah, winnt server or 2k server....)
Yep, just crank a debugger and run 0xfoofc7c8
Ouch.
Yeah, Oracle sucks, dont it?
Just move Wine servers offshore somewhere like Hungary and set up (virtual) shop there.
It worked for MPlayer.
---As Microsoft betters its fortunes, it gives us, oh, DRM,
You can thank the "Big Studios" for that, thank you. People dont want DRM, the content distributors (not creators as much).
---viruses
What virus has Microsoft made? Guess you've never seen a naughty shell script or C code with bad calls that do things like... encrypt your ~ and then demand X amount of dollars for the decryption key.
---BSOD
Yeah, like I'd rather have Windows (or ANY OS for that matter) try to attempt to recover from a kernel error. Lets see, since the oplocks controlling the DB were mangled, lets open them again and do stuff, never the fact that we just fucked up the whole DB. Whoops.
Id rather have stop screens and BSODs if that meant better data integrity. Then again, how about real quality testing for those crap windows drivers. That craphardwarefrombiglots.com and its associated driver are probably more at fault than Windows will EVER be.
---ever increasing fees
We're now free not to use Windows and accopanied software any more. Oh yea, teh cost for MS software sure beats 120$ per YEAR upgrades from Apple. Yeah. bleh.
---endless FUD and BS from Gates, etc. ad nauseum.
Every company talks up themselves and down their competitors. Too bad YOU cant see past it.
If they benefit, and we do too, wheres the badness?
When treading into software, its not a zero-sum game. In fact, its the companies and people who mooch off of free stuff without giving back. The recent anti-GPL companies recently 'featured' are an exemplary demonstration of that.
Sorry, the name "Boson" was already named... ;P
And there are no computrons.
Though I guess having the first quantum-spelled name (IBM in xenon atoms with nickel base) is pretty cool.
Gotta hand it to IBM. At first they were the ones to bring the computer industry down, but now they're bringing it up, up and up. I think they really understand what our computer and tech culture is becoming.
My SB live has that "feature" he heh heh heh..
Almost one million net addresses owned by UK cable firm Telewest have been blacklisted by an anti-spam group.
The Spam Prevention Early Warning System blacklisted the addresses because many of the machines using them have been hijacked by spammers.
The army of remotely-controllable machines have probably been recruited by viruses and worms.
Telewest said it knew about the problem and was working with customers to regain control of their home computers.
Home invasion
The blacklists produced by the Spam Prevention Early Warning System (Spews) are used by many organisations as a way to filter e-mail.
When an e-mail message arrives, the net address it is sent from is checked against the list. The message is blocked and deleted if it has been sent from a known spam address.
This blocking by net address has become more important as malicious hackers and cyber criminals have started recruiting home PCs to act as proxies and send out spam on their behalf.
We are currently contacting affected customers to help them clean their PCs which, as you can imagine, is a time-consuming task
Telewest statement
Some of the so-called zombie armies can include thousands of machines.
PCs on cockband connections are coveted by spammers as they tend to stay online longer and have more bandwidth to use for sending mail.
In late April, Spews announced that it had started blocking more than 900,000 net addresses used by Telewest's Blueyonder broadband service. Many were suspected of being used by spammers.
In a statement Telewest said: ""We are aware of the increase in e-mail volumes due to customers' PCs which have been infected by worms and viruses."
Telewest blamed recent virus outbreaks for the sudden rise in the number of hijacked home PCs.
"We are currently contacting affected customers to help them clean their PCs which, as you can imagine, is a time-consuming task," it said.
Telewest also said it was working on a more permanent solution to problem by installing security systems within its network.
It added that later this year it will also make a package of PC protection measures available to Blueyonder customers.
Big problem
Blacklists were a very blunt tool to tackle the problem of zombie computers, said Matt Peachey, European director of Ironport software which monitors net addresses to spot which ones have been hijacked by spammers.
Mr Peachey said Spews tended to block big chunks of net addresses rather than the few within that range that are actually spamming.
"I would challenge the idea that all the net addresses they are blocking are spamming," he said.
Spammers tended to frequently change the PCs they use to send junk mail, said Mr Peachey, which can mean lists go out of date quickly.
Ironport's own statistics, gathered on its Senderbase website, show that currently more than 16,000 computers on the Telewest network had an e-mail engine installed.
Most of those were likely to be hijacked home PCs, said Mr Peachey, because officially Telewest only runs nine servers that route e-mail for its customers.
One hijacked PC on the Telewest network was sending out more than 100,000 e-mail messages per day, he said.
Many other net service firms were struggling to control the armies of hijacked PCs on their networks, according to Mr Peachey.
Naw shit.
Many banks use ActiveX IE browser 'programs'. Only very few places have I seen use some sort of Flash. The flash sites work OK with Linux.
THen of course, you have idiots saying "ActiveX is not flash". Really?
Oh yeah, let met whip out my linux binary of ActiveX. Oh yeah, THERE ISNT ONE.
You know if there was an IQ test to post to slashdot, you wouldnt pass?
Shout outs from Columbus matey ;)
;) Legal 70 MPH on I65 (means I go 80 hehehe).
Yeah. I remember when here in Indiana was a 2'nd degree penalty fro seatbelt violations. In other words, they only could get you with something more serious. O'Bannon needed the money, so it was made mandatory.
At least the speed limit raising law passed
Interesting death trap.
Disable the vacuum pump, open the door and put a small 1 inch cube of metal on the top of the person-chute.
Person cant get out, and suffocates. Ouch.
---That why you don't see lots of code forks (the likes of which nearly killed Unix back in the 80's and 90's) or things like web servers being compiled into the kernel -- all the companies act as checks on each other.
Yeah, like kHTTPd.
The truth burns.
Ok, we have "security by obscurity".
.
Erm, isnt our current knowledge of encryption technology based much on secret numbers? Well, it is 1 in 2^128 or 2^256 or some huge number, but is this teh similar analogy you use?
Well, first off security CAN be improved, but it uses the same techniques I use for software protections.
There should be no meta-data telling what encrypted the data, what encryption schemes, or whatever to even start off. You should consider these to be the first 'shared secrets'. This has a side benefit as when a 3'rd party attempts to decrypt it, it just gives garbage in which SOMETHING has to interpet. It should not be as simple as "GPG v3.2 Diffie-Helman 4096 bit key" does not match
Next off, all decrption attempts should go through. What would you rather do: scan the encrypted files for headers in which to try dictionaries OR be forced to try all types of encryption to try to guess which one does what (if you can).
The next, for network security, is 'knock knock' scripts. Whats safer: login/passwd prompt on ssh OR 10 timed packets aimed at different ports (that change on time of day) that then proceeds to open ssh until disconnect?
I know what I'd choose if it was my security depended on hiding, firewalling THEN login/passwords.
The whole point is OBFUSCATION is a valid security mechanism, not that is the end-all be-all or anything, but it does have its places.