I am not a fan of this enforcement, but I have a feeling this is inevitable. Sf is quickly putting sensors in all of the parking meters that report back when the parking meter expires. This will make sf a LOT of money. ($55 per violation). Now another $115 for automating the bus zone violations. They are also putting up the traffic light cams that snap pics and issue tickets if a vehicle passing through a red light. (which at times, cannot be avoided)
I live in an RV that I park in San Francisco, and it can be challenging at times... As long as I move it a couple blocks every 3 days, it works out well:D
The computer went bonkers over a year ago. All the warning lights came on, etc... I bought it in South Florida, moved several times, put 140k miles on it, and live in the San Francisco Bay Area now. I took it to the Toyota dealership here and wanted an explanation!
They kept it a few months, brought in an expert, and told me it was a faulty sensor. The on-board computer thinks the hybrid battery is dead, yet it is continuously sending out a full charge! The dealership told me the faulty sensor was embedded in the transmission housing, would require a complete replacement of the transmission (which involves removing the engine), at a cost of $7,000. To fix... a sensor.
Ugh... so I opted not to fix it, as the car works great otherwise. Kinda annoying though - as every warning indicator is always lit so I never know if anything else needs service.
I gotta admit, other than that - its never accelerated on its own - thank goodness!
I have a similar setup with a 16gb SD in my EEE, a 16gb in my Dell Mini 9, 16gb in my Exlim camera, 8gb in my Palm Centro, 8gb in my Blackberry, 8gb in my GP2X, 8gb in my PSP, and 2 8gb SD in my DS (one in the top slot, one in the bottom)
i have a feeling i will have a lot more gadgets after seeing what is coming at CES this weekend:)
someone said it earlier in the thread - backup early and often! i learned the hard way in the 80s that regular backups are a necessity
I have not tried out Pointsec yet, but its a solution my company sells so I should learn it:) I certified myself in PGP, which unfortunately does not support full disk encryption on Linux, just Windows and soon OSX... It also does not support dual boot on Windows. (its a shim into ntloader - but after the actual boot loader the 'pgp' os which asks for the decryption key during boot is linux, so I KNOW they have linux expertise...)
I kind of like the roll your own approach to the Linux full disk encryption scenario, but most large organizations balk at anything thats not a commercial solution
I second this - Juniper's Secure Access SSL VPN is one kick ass device. The web GUI takes a bit of getting used to (not as intuitive as I would have liked it to be). As far as feature sets are concerned it really is a market leader. (I work for a VAR and I deal with about 80 vendor's products)
The Java processes create VPN tunnels that work. Active-X 'W-SAM and Java 'J-SAM' for TCP only applications and 'Network Connect' for true IPSEC like emulation (emulates a point to point tunnel and gives the client an internal ip address).
I deploy, teach, and troubleshoot firewalls for a living. It seems most of the responses point to various open source technologies. If it were my company, I would use a custom built Linux box with a sick NetFilter rulebase. If you just need something that works with a slick interface, however, I would recommend a commercial solution.
It seems all of the security vendors are moving to the appliance model. I like this model and recommend it. It gives the vendor the ability to properly support the device as the environment is controlled. Over the past 10 years, I cannot count how many times I have had to deal with various hardware / software issues with Check Point firewalls (they used to be a software only solution, as in you picked the OS and installed Check Point on top of it - fingers get pointed everywhere... sigh...) Here are the ones I would recommend:
Secure Computing SG565 - This device is actually a Linux box with a slick web interface to iptables. Has tons of features and is in the under $1000 price range. Onboard snort and web filtering. Support is decent as well.
Juniper NetScreen SSG-5 - This firewall is quite nice as well. Supports stateful inspection, advanced routing (with a license upgrade), all kinds of crazy NAT scenarios, etc... Price range is around $1000 with a bit more for yearly support. I have been teaching a LOT of Juniper classes lately, so I know a lot of these are in production now. OS is Juniper proprietary ScreenOS, with the firewall built into the OS.
Check Point UTM appliance - This one is the more expensive of the options. The new Check Point appliance is OEM'ed from Crossbeam, and if rock solid hardware. It runs a Check Point sponsored Linux distribution, but if you do everything 'the Check Point way' you never need to play with the OS directly. Pretty management GUI. Will set ya back a few thousand with support...
If you want more information feel free to email me at ralph@ralph.cx . I can reply between breaks all week. (going to the embedded systems conference in san jose, and I cant wait! - gonna be fun)
I would love to know why other peoples Treos lock up so much. I have been a Treo user since the 600 (i have a 680 now and love it) and have never had stability problems unless I installed a buggy app. It is usually obvious, and I would uninstall the app and get my stable Treo back:)
Anyone seriously into wireless security / hacking probably has 20+ wireless cards. It is common knowledge that a wireless card can be identified by its traffic, so why not just buy one of each vendor's cards and use the relevent one during each hack?
I expect to see a high-end wireless card come out soon that will 'emulate' the hardware differences quite nicely:)
No one (at the conference) knows the reason yet. Lots of people here at the show were quite confused and suprised at the whole situation. I am sure we will know something by Monday...
I had this happen about 10 years ago. Still remember it today. I worked at an IT shop and a lady brought her computer in to get repaired. Kept getting a blue screen several times a day. I did EVERYTHING I could think of to fix this back in the day. Everything seemed to be fine.
Lady came back a week later and said it still happened. Several times a day. I did the same checks and everything looked fine.
This went on for a year. (really) Then I finally said ok, im going to your house, free of charge. Call it professional interest. I wanted to know what made this damn thing crash so often.
When I arrived she let me into the house. I almost fell over at what I saw. The computer case was COVERED in magnets of various flowers. I collected myself and asked her why there were magnets all over her case.
She said 'isnt it pretty? i take them off when I take it to the shop so I done lose any of them!'
They want a few powerpoint slides worth of information in a doc/pdf really... Lots of pictures and graphs. Highlight the risks and list the tasks needed to mitigate them.
Try to cover your own analysis of the products you have in place to protect your company.
Network-based Firewalls
Network-based Anti-Virus
Network-based IPS/IDS
Network-based Anti-SPAM
Host-based Firewalls
Host-based Anti-Virus
Host-based IPS/IDS
Host-based Anti-SPAM
Patch Management
Vulnerability and Application Assesment
VPN (IPSEC and/or SSL-based)
Authentication (LDAP, Radius, 2-Factor, etc...)
Anti-SPAM
Event Management
Logging Servers
Content Filtering
Wireless Security
I hope you have at least some idea of a plan for each of these areas...
Am I the only one that pictured someone listening to their shoe immediately after reading the headline? (ala Get Smart http://www.wouldyoubelieve.com/ )
Having worked in most Fortune 500's, unfortunatly, most of them actually just use Microsoft DHCP/DNS and Excel... I think your list pretty much covers every solution I have seen:)
From what I have seen, the best ones were appliance based.
Slashdot Mirror
They made a point. It's a valid one. Wikipedia is global and this response represents a large amount of people. Respond appropriately.
I am not a fan of this enforcement, but I have a feeling this is inevitable. Sf is quickly putting sensors in all of the parking meters that report back when the parking meter expires. This will make sf a LOT of money. ($55 per violation). Now another $115 for automating the bus zone violations. They are also putting up the traffic light cams that snap pics and issue tickets if a vehicle passing through a red light. (which at times, cannot be avoided)
I live in an RV that I park in San Francisco, and it can be challenging at times... As long as I move it a couple blocks every 3 days, it works out well :D
I agree that you might need to look at a proprietary solution for OSX.
PGP (now owned by Symantec) and Guardian Edge (also owned by Symantec) would work.
Pointsec (now owned by Check Point) also supports OSX.
The computer went bonkers over a year ago. All the warning lights came on, etc... I bought it in South Florida, moved several times, put 140k miles on it, and live in the San Francisco Bay Area now. I took it to the Toyota dealership here and wanted an explanation!
They kept it a few months, brought in an expert, and told me it was a faulty sensor. The on-board computer thinks the hybrid battery is dead, yet it is continuously sending out a full charge! The dealership told me the faulty sensor was embedded in the transmission housing, would require a complete replacement of the transmission (which involves removing the engine), at a cost of $7,000. To fix... a sensor.
Ugh... so I opted not to fix it, as the car works great otherwise. Kinda annoying though - as every warning indicator is always lit so I never know if anything else needs service.
I gotta admit, other than that - its never accelerated on its own - thank goodness!
ahhh i remember using Geocities with Mosaic on my various Amiga systems... if I ever want to re-live that experience, I just visit MySpace
this thread makes me feel ooooooold
Or, get an eye-fi SD card, which had Wi-Fi built into it. http://www.eye.fi/
I have never used one of these however... sure sounds like a cool idea... i expect to see wifi built into the next gen cameras
I have a similar setup with a 16gb SD in my EEE, a 16gb in my Dell Mini 9, 16gb in my Exlim camera, 8gb in my Palm Centro, 8gb in my Blackberry, 8gb in my GP2X, 8gb in my PSP, and 2 8gb SD in my DS (one in the top slot, one in the bottom)
i have a feeling i will have a lot more gadgets after seeing what is coming at CES this weekend :)
someone said it earlier in the thread - backup early and often! i learned the hard way in the 80s that regular backups are a necessity
This is a great reference! Thanks...
I have not tried out Pointsec yet, but its a solution my company sells so I should learn it :) I certified myself in PGP, which unfortunately does not support full disk encryption on Linux, just Windows and soon OSX... It also does not support dual boot on Windows. (its a shim into ntloader - but after the actual boot loader the 'pgp' os which asks for the decryption key during boot is linux, so I KNOW they have linux expertise...)
I kind of like the roll your own approach to the Linux full disk encryption scenario, but most large organizations balk at anything thats not a commercial solution
I second this - Juniper's Secure Access SSL VPN is one kick ass device. The web GUI takes a bit of getting used to (not as intuitive as I would have liked it to be). As far as feature sets are concerned it really is a market leader. (I work for a VAR and I deal with about 80 vendor's products)
The Java processes create VPN tunnels that work. Active-X 'W-SAM and Java 'J-SAM' for TCP only applications and 'Network Connect' for true IPSEC like emulation (emulates a point to point tunnel and gives the client an internal ip address).
It is not cheap, but worth the price.
I deploy, teach, and troubleshoot firewalls for a living. It seems most of the responses point to various open source technologies. If it were my company, I would use a custom built Linux box with a sick NetFilter rulebase. If you just need something that works with a slick interface, however, I would recommend a commercial solution.
It seems all of the security vendors are moving to the appliance model. I like this model and recommend it. It gives the vendor the ability to properly support the device as the environment is controlled. Over the past 10 years, I cannot count how many times I have had to deal with various hardware / software issues with Check Point firewalls (they used to be a software only solution, as in you picked the OS and installed Check Point on top of it - fingers get pointed everywhere... sigh...) Here are the ones I would recommend:
Secure Computing SG565 - This device is actually a Linux box with a slick web interface to iptables. Has tons of features and is in the under $1000 price range. Onboard snort and web filtering. Support is decent as well.
Juniper NetScreen SSG-5 - This firewall is quite nice as well. Supports stateful inspection, advanced routing (with a license upgrade), all kinds of crazy NAT scenarios, etc... Price range is around $1000 with a bit more for yearly support. I have been teaching a LOT of Juniper classes lately, so I know a lot of these are in production now. OS is Juniper proprietary ScreenOS, with the firewall built into the OS.
Check Point UTM appliance - This one is the more expensive of the options. The new Check Point appliance is OEM'ed from Crossbeam, and if rock solid hardware. It runs a Check Point sponsored Linux distribution, but if you do everything 'the Check Point way' you never need to play with the OS directly. Pretty management GUI. Will set ya back a few thousand with support...
If you want more information feel free to email me at ralph@ralph.cx . I can reply between breaks all week. (going to the embedded systems conference in san jose, and I cant wait! - gonna be fun)
I would love to know why other peoples Treos lock up so much. I have been a Treo user since the 600 (i have a 680 now and love it) and have never had stability problems unless I installed a buggy app. It is usually obvious, and I would uninstall the app and get my stable Treo back :)
Use the Video Downloader firefox plugin: https://addons.mozilla.org/firefox/2390/
Then use VLC http://www.videolan.org/vlc/ to play the resulting file.
Anyone seriously into wireless security / hacking probably has 20+ wireless cards. It is common knowledge that a wireless card can be identified by its traffic, so why not just buy one of each vendor's cards and use the relevent one during each hack?
:)
I expect to see a high-end wireless card come out soon that will 'emulate' the hardware differences quite nicely
And if the privacy thing is no big deal - free is quite compelling...
No one (at the conference) knows the reason yet. Lots of people here at the show were quite confused and suprised at the whole situation. I am sure we will know something by Monday...
heh heh there is actually a market for low slashdot UIDs?! =)
I had this happen about 10 years ago. Still remember it today. I worked at an IT shop and a lady brought her computer in to get repaired. Kept getting a blue screen several times a day. I did EVERYTHING I could think of to fix this back in the day. Everything seemed to be fine.
Lady came back a week later and said it still happened. Several times a day. I did the same checks and everything looked fine.
This went on for a year. (really) Then I finally said ok, im going to your house, free of charge. Call it professional interest. I wanted to know what made this damn thing crash so often.
When I arrived she let me into the house. I almost fell over at what I saw. The computer case was COVERED in magnets of various flowers. I collected myself and asked her why there were magnets all over her case.
She said 'isnt it pretty? i take them off when I take it to the shop so I done lose any of them!'
google has an office in washington...
I have to admit, this had me laughing out loud! :) I do security audits often, and I know this 'attack' would work almost anywhere.
Add this to your weekly 'security' email/meeting as I have a feeling this may happen a bit more often now...
Go here and read: sans.org/rr
They want a few powerpoint slides worth of information in a doc/pdf really... Lots of pictures and graphs. Highlight the risks and list the tasks needed to mitigate them.
Try to cover your own analysis of the products you have in place to protect your company.
I hope you have at least some idea of a plan for each of these areas...
Am I the only one that pictured someone listening to their shoe immediately after reading the headline? (ala Get Smart http://www.wouldyoubelieve.com/ )
you know he wrote the Red Hat FireStarter iptables GUI and various parts of the linux tcp/ip stack right?
Having worked in most Fortune 500's, unfortunatly, most of them actually just use Microsoft DHCP/DNS and Excel... I think your list pretty much covers every solution I have seen :)
From what I have seen, the best ones were appliance based.