The answer to this is a line that the receiving SMTP server adds to the headers that indicates the origin. If the SMTP server does a lookup on this, and finds it is being hostname or IP spoofed, it should dump the connection.
1. install patches regularly Better make that critical updates only, so the user's MP3s don't suddenly stop working because of some DRM control embedded in an update.
2. virus scan Picking the best scanner is really important. The two most commercially successful products just happen to be the worst. Virus scanners also miss most of the malware/spyware out there.
3. don't open attachments If the user has Outlook or OE, he can still be infected without actually viewing the attachment, but by simply opening the body of the attachment.
4. don't install spyware. The only way to completely prevent this is by no longer using IE.
Incompetent users will have to pay money to keep their PC running smoothly. That is a constant, no matter which area of computing we discuss.
Both McAfee and NAV have gone way downhill, and don't pick up or clean as many viruses as AVG. Apparently the user will receive a warning, plenty of time to grap the latest AVG update.
Well, because one corporation can't police its own defective products, I guess this is the better alternative. And I wish they would start throwing the switch on accounts that are sending out dozens of virus-infected e-mail messages. I'm sick of deleting them from my inbox, and so are my users.
Some of the new certificate authorities don't actually ask to see documents before issuing the certificate, instead, they merely make sure that you have control of the domain by sending an email to the listed contacts.
That doesn't make me feel any wiser or safer. Asking for all of that information isn't the litmus test for the legitimacy of a CA. Heck, that'd be a great front for an identity thief. I'm no more trusting of big tech companies offering certificates. Just because they charge a wad of dough doesn't make them competent or trustworthy. There needs to be ethics standards in place for these CAs. SSL encrypted web sites are the preferred way to do business transactions with mail-order companies. If there isn't some kind of trusted organization in place to enforce some ethical standards, it'll end up being like the stock market in the 1980s.
Is that the preferred we-do-what-MS-says OEM price? When I worked for an OEM, we paid $169 for an OEM copy of Windows, and we were required to buy them in 10-packs.
Exactly, not to mention weird proprietary formats for the data, terrible search functions, and no thought given to multi-user environments. Encarta and company may not be that great, but some of the dead-tree volumes of recent print were pretty dumbed-down, so maybe it is also a question of value. If there was something decent on DVDs, or perhaps something that I could plug into Apache and serve to the students at my job, I would be jumping to get that in the building, even if it had a four digit price tag.
Fred's obligatory anecdote: I used to own a set of science encyclopedias printed in the 1950s. I think back and I have to laugh, because there was this chapter about explosives. It was so detailed that it was practically a recipe for making TNT. Any publisher producing that today would probably be shut down by the Homeland Security Dept. Not that I'm asking for instructions on how to make explosives, but it's just an example of the quality of information that you won't find in printed or electronic encyclopedias any longer.
How accurate is this information? This is an important consideration. I could see a use for this in gunshops, for example. It'd probably be a lot faster than making a call to NICS, and cut down on government expenses for staffing NICS. But what if the information is wrong or incomplete? Likewise with employment.
I've had my property burgled before. Luckily she got a confession out of the guy, and coupled with EB's breaking of the law, Michelle definitely has the upper hand. I don't think she's persuing this correctly though. Assuming that she has a homeowner's insurance policy, she should total the value of all the stolen items and see if it is worth more than the deductible. She should persue her insurance company for financial restitution, and just ask for justice regarding EB's blatant violation of the law.
I hope her house was locked, so that the thief would have to break and enter to steal the property.
The sad part is people SHOULD care. Everyone from Joe Average to Bob Businessman should take notice of this.
Joe and Bob should get advice from a competent computer tech. Script kiddies do what they do because there are so many unsecured boxes out there. You don't need a real pro to at least get some basic security. The one problem that's hardest to deal with is a ping flood. It's a problem because it's super easy to nail users on the Internet with ports wide open, users that click on malware e-mail attachments without even considering the source or the content.
If I chose to be a kiddie, I could go out and spread malware through via e-mail tomorrow, and rack up thousands of ping zombies over a couple of weeks. Jeez, I wouldn't have to lift a finger, I could just google some code and tweak a few things. I couldn't care less about script kiddie culture; It's the same as latchkey kid "culture" has been for the last 20 years (the slang may change, but behavior is the same). The real issue is the fact that technology allows an unattended latchkey kid drenched by material wealth (equipment and network service) act out his unchecked, hormone-influeced frustration and seriously disrupt any endpoint on the Internet.
Okay, fair enough, but still, don't we have more lawyers per capita than any other country? Ten per cent of the lawyers in a population of 290 million out of 6 billion.
it's more a classic children's story, with a story structure well made for film. No odd endings either.
Yes, it's much lighter on its feet. That's exactly why I don't want Jackson doing it. He doesn't do light and humorous. You can bet that the entire second half of the movie will be the battle at the lonely mountain, and that the entire first half of the movie will be put under the ax by the editors to make room for a big CG battle.
No thanks. Jackson did the best he possibly could to adapt the FotR. Although I hate most of the changes and feel they were unnecessary since all the elements he was looking for appeared in the texts, he completed a monumental task. He earns my respect for this. The franchise should end here.
God what I wouldn't give to still have a copy of that paper.
Get in touch with your 9th grade English teacher. Chances are he/she will still have the paper as a memento, as it sounds like a really unique choice. I now work alongside a lot of my old teachers. I was surprised by what they remember.
I certainly hate being forced to pay $32+ USD for a stupid ink cartridge, but haven't we gone over the reasons why this is so? The printers are sold either at a loss, or at a very low margin. The cost is made up through the sale of the cartridges. This seriously screws users that expect to use a printer for a long time (my DJ870c is seven years old), but I see many folks getting a printer every 2-3 years.
Folks look at the prices and say, "wow, this printer has a higher resolution and it's under $200!" So, if most of us are buying on that schedule, this business model will be sustained. I hate it, but I have to admit that the printer manufacturers came up with a good plan. Consumers are generally penny-wise and pound foolish, so it works. Hey, WalMart makes a ton of money off people by selling them less for more.
If consumers wise up, things will change. I remember the desktop scanner price war a number of years back. It seems like every company was selling junky parallel or USB scanners for under $100 USD. I told my father to sink the big bucks into a SCSI HP model, because it would be built better, and SCSI would be faster than a parallel port. At first he didn't listen, and he bought some cheap model at an unbelievably low price. Well, this scanner had a carriage for the reader that was driven on one side, and it bound up and got broken within two days. He returned it and bought the SCSI model. He hasn't had a problem since. Apparently a lot of consumers bought junk and complained, because it is very difficult to find an ultra-cheap scanner now.
So, my typical long-winded anecdote aside, why is this fellow surprised that the cartridges are priced differently for two different printers? That tells me that it costs Xerox more to manufacture its printer.
Please, we have more lawyers that the rest of the world combined. Plus our trial lawyers use broad definitions of things like "pain and suffering" to make just about anything punishable in a civil court. We certainly know how to make meaningless legislation. Also remember that our legislators have to work around our constitution, so just because the meaningless laws haven't been passed yet, doesn't mean they aren't in the pipeline.
I mean seriously, why would registering the change even be an issue? I deal with these types of things every year when staff comes and goes, or people have their names changed. I use this really neat feature called an "alias". See, with an "alias", I can have more than one address point to the same inbox. That way, during the transition, the e-mail user has plenty of time to inform senders of the change, all without losing any important messages.
Hmmm, it appears to be on by default. When you open up a document with change tracking, or save one, the user doesn't receive any warning. Add to that macro capability that cannot be permanently disabled, and you have the risk of malicious scripts spreading through out your collection of documents.
If that wasn't enough, you've got some bizarre binary format that keeps changing every release, and some really weird behavior with temporary files and saving changes (no overlap, so there are times when the whole thing is in memory and not on disk). All this for a $250+ pricetag.
The source code tree example is a poor choice. I can't imagine why developers sharing a project would want to keep parts of the source code hidden from eachother.
I've seen a bunch that were very well-written (have one hanging on my wall, in fact--as a reminder), purporting to come from noreply@[ourdomain].com, management@[ourdomain].com, support@[ourdomain].com, etc.
Sounds similar to what we've been getting. It's funny that you mention this, because at this very moment I'm putting in a little unpaid OT to patch our webmail system so that it gives the users some helpful advice. Now, if a message comes in from the outside claiming it originated from our domain, a big warning in red letters is displayed telling the user the address is forged, and to be suspicious of any attachments.
Are these really viruses? Only two are actually mass-mailing worms that don't rely on Outlook's address book to send themselves. All of them rely on the user to open and run the malware program. Some of the MyDoom variants I'm seeing don't even make a feeble attempt at social engeering. Apparently most users are just downloading and executing attachments without even thinking. This despite all the warnings and hype surrounding e-mail containing "viruses".
Imagine if e-mail was just plain old ASCII text with no attachment support. *sigh*
Slashdot Mirror
The answer to this is a line that the receiving SMTP server adds to the headers that indicates the origin. If the SMTP server does a lookup on this, and finds it is being hostname or IP spoofed, it should dump the connection.
Sorry, these don't universally apply.
1. install patches regularly
Better make that critical updates only, so the user's MP3s don't suddenly stop working because of some DRM control embedded in an update.
2. virus scan
Picking the best scanner is really important. The two most commercially successful products just happen to be the worst. Virus scanners also miss most of the malware/spyware out there.
3. don't open attachments
If the user has Outlook or OE, he can still be infected without actually viewing the attachment, but by simply opening the body of the attachment.
4. don't install spyware.
The only way to completely prevent this is by no longer using IE.
Incompetent users will have to pay money to keep their PC running smoothly. That is a constant, no matter which area of computing we discuss.
Both McAfee and NAV have gone way downhill, and don't pick up or clean as many viruses as AVG. Apparently the user will receive a warning, plenty of time to grap the latest AVG update.
Well, because one corporation can't police its own defective products, I guess this is the better alternative. And I wish they would start throwing the switch on accounts that are sending out dozens of virus-infected e-mail messages. I'm sick of deleting them from my inbox, and so are my users.
Some of the new certificate authorities don't actually ask to see documents before issuing the certificate, instead, they merely make sure that you have control of the domain by sending an email to the listed contacts.
That doesn't make me feel any wiser or safer. Asking for all of that information isn't the litmus test for the legitimacy of a CA. Heck, that'd be a great front for an identity thief. I'm no more trusting of big tech companies offering certificates. Just because they charge a wad of dough doesn't make them competent or trustworthy. There needs to be ethics standards in place for these CAs. SSL encrypted web sites are the preferred way to do business transactions with mail-order companies. If there isn't some kind of trusted organization in place to enforce some ethical standards, it'll end up being like the stock market in the 1980s.
How obvious were these ideas in 1987?
Word has it that the gov't was disappointed with the results of comparative benchmarks against more mainstream pigeon-based searching technologies.
Is that the preferred we-do-what-MS-says OEM price? When I worked for an OEM, we paid $169 for an OEM copy of Windows, and we were required to buy them in 10-packs.
Exactly, not to mention weird proprietary formats for the data, terrible search functions, and no thought given to multi-user environments. Encarta and company may not be that great, but some of the dead-tree volumes of recent print were pretty dumbed-down, so maybe it is also a question of value. If there was something decent on DVDs, or perhaps something that I could plug into Apache and serve to the students at my job, I would be jumping to get that in the building, even if it had a four digit price tag.
Fred's obligatory anecdote:
I used to own a set of science encyclopedias printed in the 1950s. I think back and I have to laugh, because there was this chapter about explosives. It was so detailed that it was practically a recipe for making TNT. Any publisher producing that today would probably be shut down by the Homeland Security Dept. Not that I'm asking for instructions on how to make explosives, but it's just an example of the quality of information that you won't find in printed or electronic encyclopedias any longer.
What'd they do? Replace the Windows GUI with Gnome?
Look more like a lightweight version of KDE to me.
How accurate is this information? This is an important consideration. I could see a use for this in gunshops, for example. It'd probably be a lot faster than making a call to NICS, and cut down on government expenses for staffing NICS. But what if the information is wrong or incomplete? Likewise with employment.
I've had my property burgled before. Luckily she got a confession out of the guy, and coupled with EB's breaking of the law, Michelle definitely has the upper hand. I don't think she's persuing this correctly though. Assuming that she has a homeowner's insurance policy, she should total the value of all the stolen items and see if it is worth more than the deductible. She should persue her insurance company for financial restitution, and just ask for justice regarding EB's blatant violation of the law.
I hope her house was locked, so that the thief would have to break and enter to steal the property.
The sad part is people SHOULD care. Everyone from Joe Average to Bob Businessman should take notice of this.
Joe and Bob should get advice from a competent computer tech. Script kiddies do what they do because there are so many unsecured boxes out there. You don't need a real pro to at least get some basic security. The one problem that's hardest to deal with is a ping flood. It's a problem because it's super easy to nail users on the Internet with ports wide open, users that click on malware e-mail attachments without even considering the source or the content.
If I chose to be a kiddie, I could go out and spread malware through via e-mail tomorrow, and rack up thousands of ping zombies over a couple of weeks. Jeez, I wouldn't have to lift a finger, I could just google some code and tweak a few things. I couldn't care less about script kiddie culture; It's the same as latchkey kid "culture" has been for the last 20 years (the slang may change, but behavior is the same). The real issue is the fact that technology allows an unattended latchkey kid drenched by material wealth (equipment and network service) act out his unchecked, hormone-influeced frustration and seriously disrupt any endpoint on the Internet.
Okay, fair enough, but still, don't we have more lawyers per capita than any other country? Ten per cent of the lawyers in a population of 290 million out of 6 billion.
!!
it's more a classic children's story, with a story structure well made for film. No odd endings either.
Yes, it's much lighter on its feet. That's exactly why I don't want Jackson doing it. He doesn't do light and humorous. You can bet that the entire second half of the movie will be the battle at the lonely mountain, and that the entire first half of the movie will be put under the ax by the editors to make room for a big CG battle.
No thanks. Jackson did the best he possibly could to adapt the FotR. Although I hate most of the changes and feel they were unnecessary since all the elements he was looking for appeared in the texts, he completed a monumental task. He earns my respect for this. The franchise should end here.
God what I wouldn't give to still have a copy of that paper.
Get in touch with your 9th grade English teacher. Chances are he/she will still have the paper as a memento, as it sounds like a really unique choice. I now work alongside a lot of my old teachers. I was surprised by what they remember.
I certainly hate being forced to pay $32+ USD for a stupid ink cartridge, but haven't we gone over the reasons why this is so? The printers are sold either at a loss, or at a very low margin. The cost is made up through the sale of the cartridges. This seriously screws users that expect to use a printer for a long time (my DJ870c is seven years old), but I see many folks getting a printer every 2-3 years.
Folks look at the prices and say, "wow, this printer has a higher resolution and it's under $200!" So, if most of us are buying on that schedule, this business model will be sustained. I hate it, but I have to admit that the printer manufacturers came up with a good plan. Consumers are generally penny-wise and pound foolish, so it works. Hey, WalMart makes a ton of money off people by selling them less for more.
If consumers wise up, things will change. I remember the desktop scanner price war a number of years back. It seems like every company was selling junky parallel or USB scanners for under $100 USD. I told my father to sink the big bucks into a SCSI HP model, because it would be built better, and SCSI would be faster than a parallel port. At first he didn't listen, and he bought some cheap model at an unbelievably low price. Well, this scanner had a carriage for the reader that was driven on one side, and it bound up and got broken within two days. He returned it and bought the SCSI model. He hasn't had a problem since. Apparently a lot of consumers bought junk and complained, because it is very difficult to find an ultra-cheap scanner now.
So, my typical long-winded anecdote aside, why is this fellow surprised that the cartridges are priced differently for two different printers? That tells me that it costs Xerox more to manufacture its printer.
Please, we have more lawyers that the rest of the world combined. Plus our trial lawyers use broad definitions of things like "pain and suffering" to make just about anything punishable in a civil court. We certainly know how to make meaningless legislation. Also remember that our legislators have to work around our constitution, so just because the meaningless laws haven't been passed yet, doesn't mean they aren't in the pipeline.
I mean seriously, why would registering the change even be an issue? I deal with these types of things every year when staff comes and goes, or people have their names changed. I use this really neat feature called an "alias". See, with an "alias", I can have more than one address point to the same inbox. That way, during the transition, the e-mail user has plenty of time to inform senders of the change, all without losing any important messages.
Surreal is definity an accurate description. The pictures and text describe a scene that seems like a cross between Mad Max and 12 Monkeys.
Whoa, come on. Dell isn't quite that bad yet. At least their machines are more reliable than Gateway's. But still, they're no IBM.
Hmmm, it appears to be on by default. When you open up a document with change tracking, or save one, the user doesn't receive any warning. Add to that macro capability that cannot be permanently disabled, and you have the risk of malicious scripts spreading through out your collection of documents.
If that wasn't enough, you've got some bizarre binary format that keeps changing every release, and some really weird behavior with temporary files and saving changes (no overlap, so there are times when the whole thing is in memory and not on disk). All this for a $250+ pricetag.
The source code tree example is a poor choice. I can't imagine why developers sharing a project would want to keep parts of the source code hidden from eachother.
I've seen a bunch that were very well-written (have one hanging on my wall, in fact--as a reminder), purporting to come from noreply@[ourdomain].com, management@[ourdomain].com, support@[ourdomain].com, etc.
:D
Sounds similar to what we've been getting. It's funny that you mention this, because at this very moment I'm putting in a little unpaid OT to patch our webmail system so that it gives the users some helpful advice. Now, if a message comes in from the outside claiming it originated from our domain, a big warning in red letters is displayed telling the user the address is forged, and to be suspicious of any attachments.
Should I use the blink tag too?
Are these really viruses? Only two are actually mass-mailing worms that don't rely on Outlook's address book to send themselves. All of them rely on the user to open and run the malware program. Some of the MyDoom variants I'm seeing don't even make a feeble attempt at social engeering. Apparently most users are just downloading and executing attachments without even thinking. This despite all the warnings and hype surrounding e-mail containing "viruses".
Imagine if e-mail was just plain old ASCII text with no attachment support. *sigh*
And we know microsoft bought a SCO license, which was a good bit of that.
What would they do with that? Doesn't put them in the Unix market? I'm assuming the license is for the IP, not for using the software.