I've begun using the voice of the comic book guy from the simpsons as my internal narrative voice for reading all of your posts, drinkypoo. It really rounds out the reading experience! I suggest everyone try it.
You are mistaken. I set up my XP SP2 build to "download, but ask before installing" updates way back when I first installed the OS. A while back I was wondering why my computer apeared to have been rebooted while it was SUPPOSED TO BE busy downloading a game patch/update among other things. I logged in, and sure enough, I got a little mesage telling me that my computer was automatically rebooted and an update was instaleld! Well doesn't that just take the cake? I certainly didn't change any of my settings myself, as I was perfectly happy with installing and rebooting whenever _I_ felt like it. I suspect it was some other, previously installed update that was responsible for this new behaviour.. Now to figure out how to prevent this from EVER happening again.
Note to MS: MY COMPUTER - NO TOUCHY!
Indeed, screw Greenpeace, and LONG LIVE THE IPOD!!! LONG LIVE CORPORATIONS!!! LONG LIVE CAPITALISM!!! We can do no wrong so long as we fill our pockets with ipods! Buy more bottled water too! I hope you tell your grandchildren about how capitalism will save them all from the death smog in 2050.
Ask a Polynesian cannibal why they called it long pig.
If there are no Polynesian cannibals in your area, ask a soldier or fireman what burning human flesh smells like.
We smell like pork when we're well-done. The robot got it absolutely right. And I, for one, would like to remind the robot that I'm absolutely delicious when served with some fava beans and a nice chianti.
Chas? is that you? posting to slashdot? wow. I've seen it all now.
I hate it when people try to spin their (often reckless) genetic engineering research as being "to help the poor, 3rd world nations".
If take a minute to get the facts, and ask some questions, you will discover that rarely, if ever, do these developments help the poor, 3rd world nations or their citizens.
First, the facts: -This technology in particular is being developed by a private, US-based CORPORATION. An entity with all the rights of a person but none of the responsiblity. -The purpose of the corporation is to EARN money, to have REVENUE and PROFIT. -Research and Development of complex (or even simple) Bio-engineered crops and products is EXPENSIVE, i.e. it COSTS MONEY. -The results of this R&D WILL be patented and vigorously protected by the patent owner, the corporation that invested all that money in R&D. -The corporation will, eventually, if it ever hopes to earn REVENUE and PROFIT, produce, market and SELL products based on this research, or license this technology to another corporation that is better able to produce, market and SELL said products.
So now, you have to ask some questions:
1. Who benefits from this research? Well, certainly, the corporation that owns the research and the patents derived from this research stands to benefit, but only if they actually get approval to SELL the product or license the related technologies to another corporation that is willing to pay for it. OK. Who else benefits? 3rd world countries? How? Do you really think this corporation will just GIVE away products or the technology itself to 3rd world nations in the name of humanitarian aid? HELL NO!! How do you make money by GIVING the technology away? You can't! I'm not saying that this corporation is evil just because they won't give their hard-earned technology away for free. I'm just pointing out how things work, especially in the capitalist global market.
2. Why is this technology being spun as "for the good of all humanity" or some such? The answer to this one is pretty simple: It is a pre-emptive strike against those who would speak against this technology. How? Well, anyone who argues against the technology will now be seen as a kook or a luddite that is 'rabidly anti-technology' and who 'doesn't understand' the potentially BILLIONS of LIVES that will be SAVED by this benevolent technology!! Sure, that will never happen but hey, it SOUNDS GOOD!! By the time the general population realizes that nobody but the corporation who owns the patent on this technology is benefiting, the genie will be out of the bottle.
And we didn't even touch on the other, more blatantly EVIL tactics that are used by some corporations in this industry. I'm giving Ventria the benfit of the doubt for now, because they're relativley small and new.
Again, I'm not saying that Ventria is intentionally screwing anyone, merely that it is dishonest to state that this technology (or any, similar technology developed by a corporation) is being developed with the best interests of the poor, 3rd world countires in mind.
That all depends...many organizations have positions that are characterized by "all of the responsibility but none of the authority". This means that as a security professional, you may be able to recommend certain practices, but unless one has the authority to see to it that these recommendations are implemented, there really isn't a whole lot more that can be done.
This is one of the reasons I refuse to ever work as anything less thant Chief Information Security Officer - I have seen SO many directors, administrators, etc.. that are "responsible" for information security, but have little or no authority to implement the changes that they feel are required to achieve their security goals. I prefer to work as a consultant - often on the side of those with limited authority but maximum responsiblity, to give credibility and support to their cause. It seems to me that Management is more willing to listen to a highly-paid 3rd party's recommendations, even when their own guys may have been screaming the same thing for years!
Wow. You and blincoln certainly are trying hard to 'explain' how wrong the original poster was. Wonder why that is? You're awfully defensive for someone who's supposed to be so self-confident and hoopy.
In the end, I don't feel that you've done much of anything to disprove the original poster's theories.
If anything, you may have helped prove some of them.
It's OK though, I'm sure you really *ARE* different.
End of the day, it is all about fitting in. If your career of choice does not require much interaction with 'stiffs, suits or golf-buddies, then you can probably go quite far with your body-modifcation "i'm different" agenda. If, on the other hand, you see your career going in the direction where you may have to interact with clients on a regular basis, you might want to adjust your appearance accordingly. Makes sense to me. For some people, they want to let their appearance make their career choices for them. Or maybe they don't want to, but they're naieve about how it *COULD* affect thier opportunities in the future. I feel that I was smart in my younger days, where despite all the stupid shit I did, I was able to avoid permanantly modifying my appearance in any way. Later on in life when I got a job doing consulting, all it took was a simple change of clothes to jump into the career with both feet.
I will stop rambling now. No doubt one of you 'individuals' will attack my post in order to defend your previous position. For your own benefit or ours, I'm not sure which. I suspect the former though.
I didn't relize that Television was a RIGHT and not a priviledge.... I could have used this information back when I was 10 and all I wanted to do was watch some friggin TV and eat raw hotdogs all afternoon..
Sheesh.
I never thought I'd hear someone complain about taking away thier "RIGHT" to watch television until I had children of my own.
Ok I never read the "original" 800 page Stand, but I did read the 1200+ page one in 1994, and I gotta say that I quite enjoyed it.. I can't imagine what was left out of the first one but I really enjoyed all the background stories and such.. good stuff.
I never watched the tv-movie of the Stand because I knew they could never do the fully 1200 pages justice.
While I have nothing against the heros (sic) in comic books - some of them are quite entertaining - the heroes I prefer are those which put their life on the line in pursuit of a goal. Putting your gonads on the line is a distant second.
People such as this KenJen fellow, no doubt. Truly, putting his life on the line for all of us. How noble.
Bump on the Fort Garry Dark. That shit rules!!!! I wish I could get it here in Ontario though. Can't find it anywhere here. Drink it all the time when I'm in Winnipeg though..
Hi, nice to meet you. "Ditched" my methamphetamine addiction 7 years ago, my nicotine addiction 3 years ago, and I'm in the process of ditching my masturbation addiction. Whoops, I've said too much!
I remember when I turned 14, and I found out that the local arcade that I had loved so much from ages 9-11 was also THE place to pick up drugs. Every friday night, every drug imaginable (to a 14yo anyhow) was available at the arcade if you knew who the 'players' were... My fist hash, my first acid, my first scam, my first illegal duty-free cigarettes, all at that arcade. Ah the good old days..
Tren (finaplex) is one form of veteranry steroid implant in the USA. ANother is Synovex, which is Testosterone and Estradiol. Both are bought by "bodybuilders" and chemically mucked with so that the pure Tren and Test can be extracted from the pellets. Tren injections are often done every other day, and can be made to be relatively painless if brewed correctly. ALso, Intramuscular injections are the norm, not Sub-Q. That's insulin you're thinking of.
I only know this based on research, not personal experience. Just an FYI.
Those cows you guys got down there are HYOOOGE though.:)
Similar irritants: irregardless - it's just not a word and has no valid linguistic meaning 'play it by year' - correctly: 'play it by ear', the first makes no sense
Heh.. Another one that really used to piss me off was: "...so it's really a mute point."
Hate that shit. It's the adult equivalent of "Valentimes day" and "Steel-belted radio tires"
Yeah the USA and Uganda should both be allowed the same ammount of pollution, right?
Fuck that. Christ you're naive.
Anybody who dies directly or indirectly from pollution can thank Uncle Sam if the live in North America, since that's where the majority of the poloution comes from. I can see why you'd be so reluctant to put a fucking cap on it already. "But Uzbekistan doesn't have to! Why should we!?!! Surely you cannot be suggesting that GOD's PEOPLE (THE USA) are worse than those filthy Uzbekis!?!?!"
Please God, let it be Jar Jar. Three hours of "Faces of Death"-like gore footage of Jar Jar getting digested by that big sand worm would get *MY* ten bucks.
Hear Hear!
I said to my friends (ok really anyone who's attention I could get for about 20 seconds) that the only way I'd consider these new star wars movies to NOT be complete and utter crap would be if Jar-Jar fucking Binks got his ass sickeningly tortured to death in the first 10 minutes of AOTC. When I read that this wasn't the case, I didn't go see the movie in the theater, and I haven't seen it yet. I feel like I missed out on nothing.
Umm, he didn't rape her, alright? It was a mis-understading, that's all. He thought she was into him.. jeez. Like this has never happened to you before or something? Everyone makes mistakes you know. Sorry, I guess your heros have got to be all-knowing AND perfrect to score in your book. You're the fucking leper.
Dude, you typed all that and you missed one very important thing: He was charged $103 not for an ACUTAL EKG, but for a two minute synopsis of why the doctor THINKS HE NEEDED ONE! Like fucking hell you can justify that.
They're useless! Any competent hacker knows that there are hundreds (thousands?) of ways to get around being caught by an IDS. Some examples...
If an attack normally goes 'a,b,c', but will work as 'b,c,a', going at it out of order will fool the system.. similarly, you can break attacks up across multiple user accounts, or multiple IP addresses.
Create shell scripts to replace normal commands.. the IDS will not assosciate the scripts with the attack being executed.
Use different commands to accomplish things.. for example, 'echo *' is almost the same as 'ls' in most UNIX shells.
Encode the attack in EBCDIC.. the IDS will miss everything.
Use simple cryptography with sed... - that is, replace 'e' with 'z' and such.
Enable full duplex communication with the target.. the extra characters will confuse the IDS.
Start an outbound session from the target with a modem.. if the IDS is network based it will miss everything.
Create lots of false positives along with the real attack.. finding the actual source of the problem will be human time intensive.
You can also attack the system with the IDS, or send it empty traffic guised as attacks until its disk is full.. no more recording your attack.... these are just a few of thousands of ways to defeat IDS systems...
All of these little tricks are O-L-D and I'm sure that by now most if not all commercial and open source IDS and IPS systems have means of dealing with these types of tricks. Most of the stuff you listed is designed to bypass simple signature-based IDS systems, such as SNORT for example. While it is true that many signature-based IDSes are full of poorly written signatures that can be fooled by the simple tricks you outlined above, this is 2003, not 1999. This is not news folks. I'd say, judging by your comments, that your experince with IDSes is at least two or three years old. Shit I'm surprised you didn't list fragmentation as a method of bypassing IDSes, it's at least as old as some of the stuff you're talking about. And I did have a good laugh when you mentioned attacking the IDS itself! As if anyone gives thier IDS an externally-accessible IP address anymore!
You will not be able to obfuscate everything you do. There are alot of steps one has to take before one can cause a remote system to dial back to you using a modem, and I'll bet that even SNORT IDS picks up at least one of them.
I'm posting this mainly for the benefits of the lurkers that might think you know what you are talking about. Welcome to the new millennium folks.
Slashdot Mirror
I've begun using the voice of the comic book guy from the simpsons as my internal narrative voice for reading all of your posts, drinkypoo. It really rounds out the reading experience! I suggest everyone try it.
You are mistaken. I set up my XP SP2 build to "download, but ask before installing" updates way back when I first installed the OS. A while back I was wondering why my computer apeared to have been rebooted while it was SUPPOSED TO BE busy downloading a game patch/update among other things. I logged in, and sure enough, I got a little mesage telling me that my computer was automatically rebooted and an update was instaleld! Well doesn't that just take the cake? I certainly didn't change any of my settings myself, as I was perfectly happy with installing and rebooting whenever _I_ felt like it. I suspect it was some other, previously installed update that was responsible for this new behaviour.. Now to figure out how to prevent this from EVER happening again. Note to MS: MY COMPUTER - NO TOUCHY!
Indeed, screw Greenpeace, and LONG LIVE THE IPOD!!! LONG LIVE CORPORATIONS!!! LONG LIVE CAPITALISM!!! We can do no wrong so long as we fill our pockets with ipods! Buy more bottled water too! I hope you tell your grandchildren about how capitalism will save them all from the death smog in 2050.
I hate it when people try to spin their (often reckless) genetic engineering research as being "to help the poor, 3rd world nations".
If take a minute to get the facts, and ask some questions, you will discover that rarely, if ever, do these developments help the poor, 3rd world nations or their citizens.
First, the facts:
-This technology in particular is being developed by a private, US-based CORPORATION. An entity with all the rights of a person but none of the responsiblity.
-The purpose of the corporation is to EARN money, to have REVENUE and PROFIT.
-Research and Development of complex (or even simple) Bio-engineered crops and products is EXPENSIVE, i.e. it COSTS MONEY.
-The results of this R&D WILL be patented and vigorously protected by the patent owner, the corporation that invested all that money in R&D.
-The corporation will, eventually, if it ever hopes to earn REVENUE and PROFIT, produce, market and SELL products based on this research, or license this technology to another corporation that is better able to produce, market and SELL said products.
So now, you have to ask some questions:
1. Who benefits from this research? Well, certainly, the corporation that owns the research and the patents derived from this research stands to benefit, but only if they actually get approval to SELL the product or license the related technologies to another corporation that is willing to pay for it. OK. Who else benefits? 3rd world countries? How? Do you really think this corporation will just GIVE away products or the technology itself to 3rd world nations in the name of humanitarian aid? HELL NO!! How do you make money by GIVING the technology away? You can't! I'm not saying that this corporation is evil just because they won't give their hard-earned technology away for free. I'm just pointing out how things work, especially in the capitalist global market.
2. Why is this technology being spun as "for the good of all humanity" or some such? The answer to this one is pretty simple: It is a pre-emptive strike against those who would speak against this technology. How? Well, anyone who argues against the technology will now be seen as a kook or a luddite that is 'rabidly anti-technology' and who 'doesn't understand' the potentially BILLIONS of LIVES that will be SAVED by this benevolent technology!! Sure, that will never happen but hey, it SOUNDS GOOD!! By the time the general population realizes that nobody but the corporation who owns the patent on this technology is benefiting, the genie will be out of the bottle.
And we didn't even touch on the other, more blatantly EVIL tactics that are used by some corporations in this industry. I'm giving Ventria the benfit of the doubt for now, because they're relativley small and new.
Again, I'm not saying that Ventria is intentionally screwing anyone, merely that it is dishonest to state that this technology (or any, similar technology developed by a corporation) is being developed with the best interests of the poor, 3rd world countires in mind.
This is one of the reasons I refuse to ever work as anything less thant Chief Information Security Officer - I have seen SO many directors, administrators, etc.. that are "responsible" for information security, but have little or no authority to implement the changes that they feel are required to achieve their security goals. I prefer to work as a consultant - often on the side of those with limited authority but maximum responsiblity, to give credibility and support to their cause. It seems to me that Management is more willing to listen to a highly-paid 3rd party's recommendations, even when their own guys may have been screaming the same thing for years!
Wow. You and blincoln certainly are trying hard to 'explain' how wrong the original poster was. Wonder why that is? You're awfully defensive for someone who's supposed to be so self-confident and hoopy.
In the end, I don't feel that you've done much of anything to disprove the original poster's theories.
If anything, you may have helped prove some of them.
It's OK though, I'm sure you really *ARE* different.
End of the day, it is all about fitting in. If your career of choice does not require much interaction with 'stiffs, suits or golf-buddies, then you can probably go quite far with your body-modifcation "i'm different" agenda. If, on the other hand, you see your career going in the direction where you may have to interact with clients on a regular basis, you might want to adjust your appearance accordingly. Makes sense to me. For some people, they want to let their appearance make their career choices for them. Or maybe they don't want to, but they're naieve about how it *COULD* affect thier opportunities in the future. I feel that I was smart in my younger days, where despite all the stupid shit I did, I was able to avoid permanantly modifying my appearance in any way. Later on in life when I got a job doing consulting, all it took was a simple change of clothes to jump into the career with both feet.
I will stop rambling now. No doubt one of you 'individuals' will attack my post in order to defend your previous position. For your own benefit or ours, I'm not sure which. I suspect the former though.
Best wishes to you all.
I didn't relize that Television was a RIGHT and not a priviledge.... I could have used this information back when I was 10 and all I wanted to do was watch some friggin TV and eat raw hotdogs all afternoon..
/.
Sheesh.
I never thought I'd hear someone complain about taking away thier "RIGHT" to watch television until I had children of my own.
Thanks
Ok I never read the "original" 800 page Stand, but I did read the 1200+ page one in 1994, and I gotta say that I quite enjoyed it.. I can't imagine what was left out of the first one but I really enjoyed all the background stories and such.. good stuff.
I never watched the tv-movie of the Stand because I knew they could never do the fully 1200 pages justice.
People such as this KenJen fellow, no doubt. Truly, putting his life on the line for all of us. How noble.
Bump on the Fort Garry Dark. That shit rules!!!! I wish I could get it here in Ontario though. Can't find it anywhere here. Drink it all the time when I'm in Winnipeg though..
Hi, nice to meet you. "Ditched" my methamphetamine addiction 7 years ago, my nicotine addiction 3 years ago, and I'm in the process of ditching my masturbation addiction. Whoops, I've said too much!
Hi there, Welcome to the wonderful world of marketing. Enjoy your stay!
I remember when I turned 14, and I found out that the local arcade that I had loved so much from ages 9-11 was also THE place to pick up drugs. Every friday night, every drug imaginable (to a 14yo anyhow) was available at the arcade if you knew who the 'players' were... My fist hash, my first acid, my first scam, my first illegal duty-free cigarettes, all at that arcade. Ah the good old days..
Couple of corrections:
:)
Tren (finaplex) is one form of veteranry steroid implant in the USA. ANother is Synovex, which is Testosterone and Estradiol. Both are bought by "bodybuilders" and chemically mucked with so that the pure Tren and Test can be extracted from the pellets. Tren injections are often done every other day, and can be made to be relatively painless if brewed correctly. ALso, Intramuscular injections are the norm, not Sub-Q. That's insulin you're thinking of.
I only know this based on research, not personal experience. Just an FYI.
Those cows you guys got down there are HYOOOGE though.
SHUT UP DAD!!!!
/u /y"
You are such a whiner! Jeez. I am SO glad I moved out!
You wanna know how to open that word document? "format c:
Heh.. Another one that really used to piss me off was: "...so it's really a mute point."
Hate that shit. It's the adult equivalent of "Valentimes day" and "Steel-belted radio tires"
Anyone else care to list some?
"You know I never wear pants around the house! What's so unusual about that?!?"
Yeah the USA and Uganda should both be allowed the same ammount of pollution, right?
Fuck that. Christ you're naive.
Anybody who dies directly or indirectly from pollution can thank Uncle Sam if the live in North America, since that's where the majority of the poloution comes from. I can see why you'd be so reluctant to put a fucking cap on it already. "But Uzbekistan doesn't have to! Why should we!?!! Surely you cannot be suggesting that GOD's PEOPLE (THE USA) are worse than those filthy Uzbekis!?!?!"
I hope you choke on your greenhouse gasses.
Hear Hear!
I said to my friends (ok really anyone who's attention I could get for about 20 seconds) that the only way I'd consider these new star wars movies to NOT be complete and utter crap would be if Jar-Jar fucking Binks got his ass sickeningly tortured to death in the first 10 minutes of AOTC. When I read that this wasn't the case, I didn't go see the movie in the theater, and I haven't seen it yet. I feel like I missed out on nothing.
DEATH TO JAR-JAR "Mesa gonna die!"
Umm, he didn't rape her, alright? It was a mis-understading, that's all. He thought she was into him.. jeez. Like this has never happened to you before or something? Everyone makes mistakes you know. Sorry, I guess your heros have got to be all-knowing AND perfrect to score in your book. You're the fucking leper.
now die.
Best wishes,
me.
HELOOOOOOOOOOOOOOO??
Dude, you typed all that and you missed one very important thing: He was charged $103 not for an ACUTAL EKG, but for a two minute synopsis of why the doctor THINKS HE NEEDED ONE! Like fucking hell you can justify that.
That was fucking hilarious!!!!!!!!
All of these little tricks are O-L-D and I'm sure that by now most if not all commercial and open source IDS and IPS systems have means of dealing with these types of tricks. Most of the stuff you listed is designed to bypass simple signature-based IDS systems, such as SNORT for example. While it is true that many signature-based IDSes are full of poorly written signatures that can be fooled by the simple tricks you outlined above, this is 2003, not 1999. This is not news folks. I'd say, judging by your comments, that your experince with IDSes is at least two or three years old. Shit I'm surprised you didn't list fragmentation as a method of bypassing IDSes, it's at least as old as some of the stuff you're talking about. And I did have a good laugh when you mentioned attacking the IDS itself! As if anyone gives thier IDS an externally-accessible IP address anymore!
You will not be able to obfuscate everything you do. There are alot of steps one has to take before one can cause a remote system to dial back to you using a modem, and I'll bet that even SNORT IDS picks up at least one of them.
I'm posting this mainly for the benefits of the lurkers that might think you know what you are talking about. Welcome to the new millennium folks.
AFAIK, Mudge and Weld Pond are still employed by @stake. One is Director of R&D and the other one is some other fancy title.