If some attacker is so busy attacking your network (with usually loads of other networks around it with default settings) even when you disable the easiest method of attack, are you sure leeching (accessing the Internet via your connection) is the target of the attack? Isn't it possible the attacker thinks your network has something special?
Remember how there were big articles in the news that Skype was a problem for law enforcement and criminals were avoiding police investigations by using it. The complaints by law enforcement have stopped, which says enough to me.
I guess SkyTech is reporting all those attempted attacks from outside Canada to the RCMP on a daily basis and having complete investigations started.
I have done research after a reported SQL injection vulnerability (yes, by a student who decided to report the error and got a nice thankyou for reporting it) and noted other attacks from abroad in the logs at regular rates.
What I miss in your story and in the comments is the option "people calling who don't understand free software". I can imagine some users at companies 'thinking': We use this software in our business -> someone at our company has officially installed this -> we don't install software without a support contract -> there must be a support contract but I'm not going through the trouble of finding it.
Remember the claimed 'damages' from hacker attacks in the 80s and 90s.. Like the E911 document worth over 80000 USD or the alleged 300 million dollar damage by Kevin Mitnick.
Usually those 'costs' were caused by companies trying to make the hacker pay for all the work surrounding the case and all the backlog in securing systems done as part of the clean-up operation in the aftermath of the break-ins.
I wonder if companies will overstate costs under these rules too or whether they will understate them because the numbers aren't used to make someone else pay.
On a budget: remember whatever you do now gadget-wise will be old in 5 years time. But other investments can help for any future plans: enough cabling (CAT6 or CAT7) to rooms so you can wire whatever in those rooms in the future. Not just network and computers, but also phones or temperature/motion sensors. And enough outlets.
There is also the good side that this will bring serious bandwidth to places where dialup over satellite is currently the way to get a bit of Internet. Scarcely populated places in northern Canada and Alaska will appreciate the chances of a bit more bandwidth!
Overall I think the new design is an improvement and in line with a larger web trend to have sites easier on the eyes. Looks good here (firefox 3.6.13 ubuntu) and makes good use of the width of the browser.
I too wondered "why hasn't anybody asked Mr. Murdoch about web standards for blocking bots like google", and asked such a question to the BBC who wrote the original article. The answer is simple: only news organizations like sky and fox news get the chance to interview him, and for some reason they never get around to asking questions like these that would not fit the views that Mr. Murdoch wants published as news.
Securely wipe them even if you intend to store them for a while until you get better use for them or will throw them away. It's boring work, but you're making sure no private data gets out. Even a simple operating system installation has a store of encrypted passwords which can be abused.
but would you even notice it if you were connected to a different, wide open, WiFi hub?
Probably not. Read the bit from comp.risks issue 23.11. His "brother D." wasn't aware of him being connected to the Internet and how until he noticed that new mail was coming in to his mail application.
Once wardriving in a train (or is that 'wartraining' ? wartraindriving? I was just the passenger) I found one with a domain name in the SSID. I made a remark about it on my homepage, with a link to the overview of access points found and to the found webserver of that domain.
He linked back to my site a few days later, finding it funny. (I won't link directly to his webserver now, to avoid a slashdotting to a site most of you can't read since it's in Dutch)
I'll gladly assume most of those future broadband connections will have users behind it willing to use it for all kinds of legal uses and enjoy broadvand access but names like "VSNL" ring a bell with me for not having a working abuse-department and being a big source of spam.
Hopefully OpenBGPD is not as flawed as OpenNTP is.
I think interoperability flaws will have a more direct effect than those in openntp, so acceptance will be affected by any interopability flaws. With openntp (see the excellent stuff written by Brad) it basically boils down to 'your clock looks right, but there are flaws'. If you take an openbgpd router to talk on an internet exchange and it disagrees with other routers on exact bgp details, the effect can easily be 'all traffic' or 'no traffic'. Both of which will not make friends (well, other exchange members may like your offer of free transit, but your beancounters may disagree).
I browsed Internet Book List a bit and it looks familiar to me.. I run The Virtual Bookcase which also collects information about books but focusses on the reviews people write about those books.
In my opinion (but I am biased ofcourse;)) reviews or short remarks tell a lot about what people liked or disliked about a book.
As pointed out to me by someone this could be part of a plea-bargain. But it's at least interesting from a privacy-view since all visits to the new isonews site will now probably be logged very thoroughly.
XS4ALL in the Netherlands offers IPv6 to all their customers. On one type of DSL connection they even offer native IPv6. On other connections you can get a 6in4 tunnel including DNS delegation. You get a/48 routed through this tunnel.
You can even get this tunnel when you only have dialup/shell with them but a fixed IP on for instance a cable modem.
The best thing they did is making their binary newsserver newszilla available (read-only) for IPv6 users worldwide. This is the way to get people to try to get IPv6 working.
If John Doe is a little bit educated, he might use tools like GetRight. GetRight supports partial transfer from both FTP and HTTP.
GetRight also supports opening way too many connections to a webserver. This does not help speed-up the download one bit (it still has to travel the limited pipe at the receiving end and you get more tcp setup/teardown overhead) and it is anti-social to the rest of the visitors of the webserver. Our webserver at work serves some popular.zip files and connections from 'download managers' were over half of the apache pool with only about 10 real users behind that. When I installed mod_limitipconn.c for Apache and limited each IP to max 3 connections, responsiveness went up, usage (in
server processes) went down and outgoing traffic
(in bytes) tripled.
From what I have read about the way SMS is implemented in the networks, I am not completely surprised. It is 'best effort' delivery and delays are to be expected. It's like the UDP of mobile phone networks.
With the amount of SMS messages going around and the quality I wonder why phone companies dare to ask the high price they do ask for sending an SMS.
Slashdot Mirror
If some attacker is so busy attacking your network (with usually loads of other networks around it with default settings) even when you disable the easiest method of attack, are you sure leeching (accessing the Internet via your connection) is the target of the attack? Isn't it possible the attacker thinks your network has something special?
Remember how there were big articles in the news that Skype was a problem for law enforcement and criminals were avoiding police investigations by using it. The complaints by law enforcement have stopped, which says enough to me.
I guess SkyTech is reporting all those attempted attacks from outside Canada to the RCMP on a daily basis and having complete investigations started.
I have done research after a reported SQL injection vulnerability (yes, by a student who decided to report the error and got a nice thankyou for reporting it) and noted other attacks from abroad in the logs at regular rates.
What I miss in your story and in the comments is the option "people calling who don't understand free software". I can imagine some users at companies 'thinking': We use this software in our business -> someone at our company has officially installed this -> we don't install software without a support contract -> there must be a support contract but I'm not going through the trouble of finding it.
Usually those 'costs' were caused by companies trying to make the hacker pay for all the work surrounding the case and all the backlog in securing systems done as part of the clean-up operation in the aftermath of the break-ins.
I wonder if companies will overstate costs under these rules too or whether they will understate them because the numbers aren't used to make someone else pay.
On a budget: remember whatever you do now gadget-wise will be old in 5 years time. But other investments can help for any future plans: enough cabling (CAT6 or CAT7) to rooms so you can wire whatever in those rooms in the future. Not just network and computers, but also phones or temperature/motion sensors. And enough outlets.
There is also the good side that this will bring serious bandwidth to places where dialup over satellite is currently the way to get a bit of Internet. Scarcely populated places in northern Canada and Alaska will appreciate the chances of a bit more bandwidth!
Next up, IPv6!
According to Savvis invested in a new ipv6-capable network in 2006, to be finished in 2008. Savvis hosts sourceforge / slashdot (from the whois record). Yet, according to the nanog grapevine in 2010, Savvis is not yet able to offer IPv6 to customers. Time to put 'working ipv6' on the checklist for your new hosting?
I too wondered "why hasn't anybody asked Mr. Murdoch about web standards for blocking bots like google", and asked such a question to the BBC who wrote the original article. The answer is simple: only news organizations like sky and fox news get the chance to interview him, and for some reason they never get around to asking questions like these that would not fit the views that Mr. Murdoch wants published as news.
Securely wipe them even if you intend to store them for a while until you get better use for them or will throw them away. It's boring work, but you're making sure no private data gets out. Even a simple operating system installation has a store of encrypted passwords which can be abused.
That is false advertising (as you note). The correct wording of advertising for DVD sales would be:
Any other claim would be false.
Ok, the real reason is probably a bit more boring, with Keyhole a satellite imaging company being bought by google some months ago.
He linked back to my site a few days later, finding it funny. (I won't link directly to his webserver now, to avoid a slashdotting to a site most of you can't read since it's in Dutch)
Just type VSNL into google groups and you'll see a strong relationship with newsgroups with abuse in their name (in the old google groups interface, you got this nice hint that 'news.admin.net-abuse.blocklisting' was a relevant group for your query).
I hope the 'new' network gets a better network operations center with a good abuse-department.
Never forget rule #1: spammers lie.
Time for a title different from web designer that implies "Someone who can put accessible information on a website".
In my opinion (but I am biased ofcourse ;)) reviews or short remarks tell a lot about what people liked or disliked about a book.
Registrant:
The iSO News (ISONEWS-DOM)
Jacobus van 't Hoffstraat 69
Nijmegen, MR 6533
NL
Domain Name: ISONEWS.COM
Administrative Contact, Technical Contact:
The iSO News (20726749O) mraskolnikov@hotmail.com
The iSO News
Jacobus van 't Hoffstraat 69
Nijmegen, MR 6533
NL
555 555 1212 fax: 555 555 1212
Record expires on 01-Mar-2004.
Record created on 01-Mar-1999.
Database last updated on 27-Feb-2003 07:39:05 EST.
Domain servers in listed order:
NS1.ISONEWS.COM 149.101.1.3
NS2.ISONEWS.COM 149.101.1.6
But.. check the owner of IP's 149.101.1.3..
OrgName: US Dept of Justice
OrgID: UDJ
Address: 1151D Seven Locks Rd
City: Rockville
StateProv: MD
PostalCode: 20854
Country: US
NetRange: 149.101.0.0 - 149.101.255.255
CIDR: 149.101.0.0/16
This looks a lot like the same tactics used in the drug enforcement cases noted by 2600 magazine.
As pointed out to me by someone this could be part of a plea-bargain. But it's at least interesting from a privacy-view since all visits to the new isonews site will now probably be logged very thoroughly.
You can even get this tunnel when you only have dialup/shell with them but a fixed IP on for instance a cable modem.
The best thing they did is making their binary newsserver newszilla available (read-only) for IPv6 users worldwide. This is the way to get people to try to get IPv6 working.
With the amount of SMS messages going around and the quality I wonder why phone companies dare to ask the high price they do ask for sending an SMS.