Damn.. if this is true (I'm doing my research on gotr00t's statement as I type), then I have to side with the people who say the new system will have this drive in it.
The timing and the spec's make it a prime suspect to be the internals.
Mabey I'm just being paranoid, but to me this seems like it's a probing attack. Now that the attack is done, they know exactly what they need to do to kill the servers:
There has been alot of talk and show these days about all those new computerized profiling technologies. (Face recoginition, et al.)
Finally, here is one that I think is right on the money.
Here is one that makes the computer just another tool in the policeman's tool box. This is in sharp contrast to present trends. For now the computer is helping solve the crimes and prevent future crimes, but it's not laying the blame on people who have yet to commit a crime.
I know this is mostly due to how the creator uses his experience, but (IMHO) that's what makes this soo nice.
On these _extremely_ large networks, it's next to impossible to cut port 80 on just the infected computers.
Just how are the admins going to know which machine is compromised? Look at their firewall logs? Wait....they don't have firewalls between users on their network. Then what?
If they do ID everybody who has it, how are they then to shut down only those Port 80's. Again you are talking about alot of people _and_ alot of different hardware that will need the rules implemented.
Then you run into hardware problems if you you can do that. For example, a Cisco 6500 switch can firewall, but the firewall rule should not grow too large. If it gets too big it hars to run in software instead of hardware (smaller sets fit into hardware). Software will just kill performance on the switch which would efect all customers on that one.
How about thinking once before bashing big companies?
All that said....the whole problem could have been avoided if people didn't use M$ to begin with.
Ok.. I have an even better Idea. It won't work, but it's still a good idea.
Make it a law that every company must release source code under the GPL or similar.
I.E.: You can only get the source if you paid for the program.
If _all_ programs had the source available, you could eaisly see if somebody had stolen code or that you stole code (diff your_code their_code).
Sadly, this won't work because of that whole countries wanting to be different thing. (I.E.: the U.S.A. being reluctant on issues like Land Mines, etc.)
As the former Mgr. of Web Resources of the CLC (Center for Law and Computers) there, I'm dismayed about this. I don't know much about IITRI, but I do know that CK has only 2 (maybe 3) Law Profs. who are semi computer literate. The rest, well at best they know little to none. At worst they think that the latest article they read makes them an Uber Computer Genius.
I can think of a few names, who if involved with this, are totally in it for name recognition and for future job opportunities.
Me thinks the enforcement should be delegated off to local police. Balance of power and all that.
But the problem here is that local police only have jurisdiction in their local area. Computer crimes almost always involve many polices depts and areas, hence the need for a police agency that has right to a broader area. This gives rise to the FBI, which then needs the CALEA to get proper information.
But the same also hold true fir the Judge and the Justice Dept.
Since the Judge has solicted another round of responses, he is trying his best to get everybody to arrive at a common ground. (IMHO) By his actions so far, he is trying _very_ hard to stay the middle ground and not favor either side (like a good judge should).
On a different note, don't you think that Judge Jackson now knows more about MS and their operation systems than he every wanted to?
Really, it's been about 2 weeks since the "Love Bug" (Herbie come back please!!!) and M$ "fixes" the problem by disabling certain attachments? Now, Outlook is less usefull than before and how long before people figure out the holes in this security patch?
Now there is no way for some M$ dedicated shops to get a simple HTML fix for their web page, Access data base for their customers lists, or even a Security Certificate (!?!) for their web server.
Why not fix the root of the problem instead of triming the tree down?
# whois -h whois.networksolutions.com slashdot.org The Data in Network Solutions' WHOIS database is provided by Network Solutions for information purposes, and to assist persons in obtaining information about or related to a domain name registration record. Network Solutions does not guarantee its accuracy. By submitting a WHOIS query, you agree that you will use this Data only for lawful purposes and that, under no circumstances will you use this Data to: (1) allow, enable, or otherwise support the transmission of mass unsolicited, commercial advertising or solicitations via e-mail (spam); or (2) enable high volume, automated, electronic processes that apply to Network Solutions (or its systems). Network Solutions reserves the right to modify these terms at any time. By submitting this query, you agree to abide by this policy.
Registrant: Rob Malda (SLASHDOT2-DOM) 116 E 18th St Holland, MI 49423
Domain Name: SLASHDOT.ORG
Administrative Contact: Malda, Rob (RM7054) malda@SLASHDOT.ORG 616-994-0441 Technical Contact, Zone Contact: DNS Administrator (DA15693-OR) dnsadmin@ANDOVER.NET 978-635-5300 Fax- 978-635-5326 Billing Contact: Malda, Rob (RM7054) malda@SLASHDOT.ORG 616-994-0441
Record last updated on 31-Aug-1999. Record created on 05-Oct-1997. Database last updated on 30-Nov-1999 13:00:46 EST.
Can somebody in NJ call the local US Attorney's office and see if there really is a Lisa Korologos who talked to the ISP? How about also calling the NJ FBI office and seeing if agents Dan Calemina and Joe Metzinger really exist? One of those places would at least be able to verify if the story is true.
BTW: The names are pulled from the Village Voice article.
Slashdot Mirror
To me, this sounds like (in the simplest form) that this is a variant on the Tit for Tat strategy that is usually applied to the Prisoner's Dilemma.
Last I looked at the date, april fools was still a way off.
Damn.. if this is true (I'm doing my research on gotr00t's statement as I type), then I have to side with the people who say the new system will have this drive in it.
The timing and the spec's make it a prime suspect to be the internals.
Mabey I'm just being paranoid, but to me this seems like it's a probing attack. Now that the attack is done, they know exactly what they need to do to kill the servers:
Go a little bigger and have it last 12+ hours.
Now that would start some serious problems.
opps.
I guess I should read the text on that link. It runs Wind River VxWorks OS.
Here at work we use a 3Com NBX 100 system .
I've FTP'd into it and it seems to be running some sort of a BSD variant.
I guess it could also run linux.. but I don't quite feel like pokeing around in our production telephone system.
so I wonder just how many people out there know what the difference between Symbian and Sybian are.
:)
Talk about instesting choice for a company names..
I know I'm not going to forgot them
There has been alot of talk and show these days about all those new computerized profiling technologies. (Face recoginition, et al.)
Finally, here is one that I think is right on the money.
Here is one that makes the computer just another tool in the policeman's tool box. This is in sharp contrast to present trends. For now the computer is helping solve the crimes and prevent future crimes, but it's not laying the blame on people who have yet to commit a crime.
I know this is mostly due to how the creator uses his experience, but (IMHO) that's what makes this soo nice.
Been done here in Chicago. Alot of the L cars are fully painted ads for various landmarks (Zoo, etc).
I bought it and I'm real sorry I did.
To me it sounds like an alpha version of Play. Even the B-sides of play were all better than his latest CD.
Techie fans != poor sales, Bad music = poor sales
Doc Brown
Am I the only one or does this sound the the first step to something like was told in Enders Game?
On these _extremely_ large networks, it's next to impossible to cut port 80 on just the infected computers.
Just how are the admins going to know which machine is compromised? Look at their firewall logs? Wait....they don't have firewalls between users on their network. Then what?
If they do ID everybody who has it, how are they then to shut down only those Port 80's. Again you are talking about alot of people _and_ alot of different hardware that will need the rules implemented.
Then you run into hardware problems if you you can do that. For example, a Cisco 6500 switch can firewall, but the firewall rule should not grow too large. If it gets too big it hars to run in software instead of hardware (smaller sets fit into hardware). Software will just kill performance on the switch which would efect all customers on that one.
How about thinking once before bashing big companies?
All that said....the whole problem could have been avoided if people didn't use M$ to begin with.
Ok.. I have an even better Idea. It won't work, but it's still a good idea.
Make it a law that every company must release source code under the GPL or similar.
I.E.: You can only get the source if you paid for the program.
If _all_ programs had the source available, you could eaisly see if somebody had stolen code or that you stole code (diff your_code their_code).
Sadly, this won't work because of that whole countries wanting to be different thing. (I.E.: the U.S.A. being reluctant on issues like Land Mines, etc.)
Who would pay 70k?
Why a large company that might want a person on the board.
An once a large corp. has somebody on the board they could (in theory) slow the releases of certain warnings.
Did any of you catch the part about the Dean of the Law school and his active security clearence?
To quote:
[p. 30]
ACTIVE SECURITY CLEARANCES:
Interim Secret, DOD, May 2000
INACTIVE SECURITY CLEARANCES:
Top Secret/Special Intelligence, DOD, 1987 - 1992
As a former employee of Chicago-Kent (I left on good terms), this has been rumored around the school for a while.
Seriously, what good can come considering even the lawyers have DOD ties?
As the former Mgr. of Web Resources of the CLC (Center for Law and Computers) there, I'm dismayed about this. I don't know much about IITRI, but I do know that CK has only 2 (maybe 3) Law Profs. who are semi computer literate. The rest, well at best they know little to none. At worst they think that the latest article they read makes them an Uber Computer Genius.
I can think of a few names, who if involved with this, are totally in it for name recognition and for future job opportunities.
I'll say it know.. no good will come out of this.
Me thinks the enforcement
should be delegated off to local police. Balance of power and all that.
But the problem here is that local police only have jurisdiction in their local area. Computer crimes almost always involve many polices depts and areas, hence the need for a police agency that has right to a broader area. This gives rise to the FBI, which then needs the CALEA to get proper information.
After reading this all I can think of is that one scene in the Matrix with the AI's harvesting the field of humans.
But the same also hold true fir the Judge and the Justice Dept.
Since the Judge has solicted another round of responses, he is trying his best to get everybody to arrive at a common ground. (IMHO) By his actions so far, he is trying _very_ hard to stay the middle ground and not favor either side (like a good judge should).
On a different note, don't you think that Judge Jackson now knows more about MS and their operation systems than he every wanted to?
Jim
Really, it's been about 2 weeks since the "Love Bug" (Herbie come back please!!!) and M$ "fixes" the problem by disabling certain attachments? Now, Outlook is less usefull than before and how long before people figure out the holes in this security patch?
Now there is no way for some M$ dedicated shops to get a simple HTML fix for their web page, Access data base for their customers lists, or even a Security Certificate (!?!) for their web server.
Why not fix the root of the problem instead of triming the tree down?
I'm not a biologist, but aren't everybody genes different?
To insure that the map is correct wont they need to look at more that 4 other people?
It's not his fault, it's mine. I forgot to check that url as it's addition was an after thought.
No hacking needed:
# whois -h whois.networksolutions.com slashdot.org
The Data in Network Solutions' WHOIS database is provided by Network
Solutions for information purposes, and to assist persons in obtaining
information about or related to a domain name registration record.
Network Solutions does not guarantee its accuracy. By submitting a
WHOIS query, you agree that you will use this Data only for lawful
purposes and that, under no circumstances will you use this Data to:
(1) allow, enable, or otherwise support the transmission of mass
unsolicited, commercial advertising or solicitations via e-mail
(spam); or (2) enable high volume, automated, electronic processes
that apply to Network Solutions (or its systems). Network Solutions
reserves the right to modify these terms at any time. By submitting
this query, you agree to abide by this policy.
Registrant:
Rob Malda (SLASHDOT2-DOM)
116 E 18th St
Holland, MI 49423
Domain Name: SLASHDOT.ORG
Administrative Contact:
Malda, Rob (RM7054) malda@SLASHDOT.ORG
616-994-0441
Technical Contact, Zone Contact:
DNS Administrator (DA15693-OR) dnsadmin@ANDOVER.NET
978-635-5300
Fax- 978-635-5326
Billing Contact:
Malda, Rob (RM7054) malda@SLASHDOT.ORG
616-994-0441
Record last updated on 31-Aug-1999.
Record created on 05-Oct-1997.
Database last updated on 30-Nov-1999 13:00:46 EST.
Domain servers in listed order:
NS1.ANDOVER.NET 209.207.224.196
NS2.ANDOVER.NET 209.207.224.197
NS3.ANDOVER.NET 209.192.217.104
Can somebody in NJ call the local US Attorney's office and see if there really is a Lisa Korologos who talked to the ISP? How about also calling the NJ FBI office and seeing if agents Dan Calemina and Joe Metzinger really exist? One of those places would at least be able to verify if the story is true.
BTW: The names are pulled from the Village Voice article.
Jim
Yup. 33 of the top 500 are classified. (That's 6.6%). That's a lot when probally only 25% of the
classified that could make the top 500 are reported.