I know this discussion is a day old, but I wanted
to post in case anyone read your comments and accidentally thought you knew what the fcuk you were talking about.
Just to clear the air - I am in no way affiliated with SANS, I just attended one of their classes recently.
$ans is all about cash.
Now, clever use of the dollar sign I agree - sure to lend much needed credibility to your ideas, but listen:
Where does it say on their site that SANS is a charitable organization dedicated to bringing practically free training to all??
Nowhere, you retard. SANS courses are mildly expensive, but you get what you pay for. I attended 6 days of training for about £2000. Gee Bob, that's a lot of money! Sure it is, but when you do a little math [can you?] you see that per day - it's no more expensive and actually a deal cheaper than other technical training. 'Other technical training' companies also don't offer an enormous wealth of information, reports & step-by-step guides in their reading rooms. They don't partner with the FBI & Scotland Yard to help advertise the biggest risks. They don't give out software to benchmark the security of your workstations.
That is why their classes are packed to the brim...
Two frickin guesses why their classes are always packed to the brim. *smacks head*.
... so people can watch powerpoint presentations...
Shit! Hold the front page! Training Company Uses Presentation Package To Present Materials To Attendees. Those bastards. Oh, oh - wait. It's ba$tards, isn't it?
(Incidentally, my class had a two hour hands on workthrough of the day's material after the full day class.) The money grabbing scum.
If you've got beef with them, tell it straight - just don't go spreading fud.
I've used one of the earlier models - a 10 GB Pokey drive that attached via USB1 & had a credit card cd-rom with the drivers on.
Good:
It's lovely & slim
This was a couple of years ago, & 10 gig in something smaller than a fag (homosexual) packet was a marvel.
Bad:
USB1 - v.slow
Driver installation. Somebody has already pointed out that this later model also *needs* drivers installed. This doesn't sound like too much hassle, but it really does suck. And blow.
Unpluggability. It was the most fragile device I've seen concerning unplanned unplugs. If you don't tell Windows to deactivate the device, then power off the drive, and then unplug the damn thing, it's likely to corrupt the p.o.s. HD that's in there. I know - of course you should always unplug nicely, but my laptop's quite elevated, & gravity is often a harsh mistress...
>Crackers understand that it's all a part of the game. Move and counter move.
in all politeness, that's the point of my suggestion. Do you want to get in a cat & mouse game with someone(s) who has the potential to take down your site/services, or do you want to ignore them & get on with your day?
From SANS http://www.sans.org/resources/idfaq/honeypot3.php
Some caveats exist that should be considered when implementing a Honey pot system. Some of the more important are:
The first caveat is the consideration that if the information gathered from a Honey Pot system is used for prosecution purposes, it may or may not be deemed admissible in court. While information regarding this issue is difficult to come by, having been hired as an expert witness for forensic data recovery purposes, I have serious reservations regarding whether or not all courts will accept this as evidence or if non-technical juries are able to understand the legitimacy of it as evidence.
The second main caveat for consideration is whether hacking organizations will rally against an organization that has set "traps" and make them a public target for other hackers. Examples of this sort of activity can be found easily on any of the popular hacker's sites or their publications.
IMHO - If you're not completely sure your network is 101% secure, or you don't have several free hours a day it would be a bad idea to drop a honeypot anywhere near your network.
Think about it - it's a slap in the face to the would-be hacker.. It's like you're leading him on, then saying "Ner Ner!" when he breaks into the pot. If your hacker is serious, he's gonna be really pissed about this.
Secure your network & keep it secure - no need to stir 'em up.
This change of mindshare is never going to happen overnight though.. Things are still changing apace at Novell - changing all their desktops to Linux, making the next generation of Netware (and *alllll* their other software available on Linux.)
You count three servers? DNS, FTP and proxy services for a large company over a country the size of Germany? Methinks a little more than three boxes.. And you think the McDonalds' in other countries might be watching to see how much money they save?
..1100lbs of computer that takes up several rooms and needs the valves 'debugged' every day? I don't think we'll see that kind of sophistication from a consumer level device.
This is in relation to the story "Linux cyber-battle turns nasty."
The is telling people who read the Business section that:
"run-of-the-mill geeks" are "wreak[ing] damage on the unsuspecting computer user."
There is no evidence that this has been coded by 'geeks', Linux or otherwise. Most reputable IT news sources are agreed that the main aim of the virus is to install a 'backdoor' to allow spam to be sent through the PC. This means the virus is *much* more likely to have been written by (or partly sponsered by) organized crime.
It's not mentioned once in the article that the virus opens a back door to allow the PC to be remotely controlled. Is this perhaps because it doesn't fit in with the way the article was crafted..?
"in the case of the MyDoom computer worm, the motivation seems clearer.
It has attacked a company based in Utah called SCO, bringing down its website with a barrage of emails sent from countless computers"
Good lord - if you're going to do a tech story, get a techie to read over the damn thing before you hit 'send'. The attack was *not* carried out using emails. How would you address an email to a website? It was a DDOS attack. Two words - Goo gle.
Is is a silly point? Perhaps but when the BBC is writing about computer viruses I tend to expect them to do the tiniest bit of research.
I use Linux, and I think it's aims are noble. I am insulted that this lazy article tars Linux users with these baseless insinuations I ask that you withdraw the article and/or print a retraction.
heh.. he wants kids to go there: "If your children play video games, and even if they don't for that matter, I encourage you to know about Penny-arcade.com"
First paragraph on their site:
"Legally, what we need is something mad stringent - something to make those motherfuckers hoof it door to door if they want to talk to me about my dick so bad."
Bill France, a father of three, is a child advocate
*sigh*
Slashdot Mirror
Just to clear the air - I am in no way affiliated with SANS, I just attended one of their classes recently.
$ans is all about cash.
Now, clever use of the dollar sign I agree - sure to lend much needed credibility to your ideas, but listen:
Where does it say on their site that SANS is a charitable organization dedicated to bringing practically free training to all??
Nowhere, you retard. SANS courses are mildly expensive, but you get what you pay for. I attended 6 days of training for about £2000.
Gee Bob, that's a lot of money! Sure it is, but when you do a little math [can you?] you see that per day - it's no more expensive and actually a deal cheaper than other technical training.
'Other technical training' companies also don't offer an enormous wealth of information, reports & step-by-step guides in their reading rooms. They don't partner with the FBI & Scotland Yard to help advertise the biggest risks. They don't give out software to benchmark the security of your workstations.
That is why their classes are packed to the brim...
Two frickin guesses why their classes are always packed to the brim. *smacks head*.
Shit! Hold the front page! Training Company Uses Presentation Package To Present Materials To Attendees.
Those bastards.
Oh, oh - wait. It's ba$tards, isn't it?
(Incidentally, my class had a two hour hands on workthrough of the day's material after the full day class.) The money grabbing scum.
If you've got beef with them, tell it straight - just don't go spreading fud.
Oh.. wait..
Good:
It's lovely & slim
This was a couple of years ago, & 10 gig in something smaller than a fag (homosexual) packet was a marvel.
Bad:
USB1 - v.slow
Driver installation. Somebody has already pointed out that this later model also *needs* drivers installed. This doesn't sound like too much hassle, but it really does suck. And blow.
Unpluggability. It was the most fragile device I've seen concerning unplanned unplugs. If you don't tell Windows to deactivate the device, then power off the drive, and then unplug the damn thing, it's likely to corrupt the p.o.s. HD that's in there. I know - of course you should always unplug nicely, but my laptop's quite elevated, & gravity is often a harsh mistress...
Possibly a trifle off-topic - but have you (or anyone else) found a decent ssh device? It's not something that's mentioned much in phone reviews...
Yes, but does it run System 22..?
in all politeness, that's the point of my suggestion. Do you want to get in a cat & mouse game with someone(s) who has the potential to take down your site/services, or do you want to ignore them & get on with your day?
From SANS http://www.sans.org/resources/idfaq/honeypot3.php
Some caveats exist that should be considered when implementing a Honey pot system. Some of the more important are:
The first caveat is the consideration that if the information gathered from a Honey Pot system is used for prosecution purposes, it may or may not be deemed admissible in court. While information regarding this issue is difficult to come by, having been hired as an expert witness for forensic data recovery purposes, I have serious reservations regarding whether or not all courts will accept this as evidence or if non-technical juries are able to understand the legitimacy of it as evidence.
The second main caveat for consideration is whether hacking organizations will rally against an organization that has set "traps" and make them a public target for other hackers. Examples of this sort of activity can be found easily on any of the popular hacker's sites or their publications.
IMHO - If you're not completely sure your network is 101% secure, or you don't have several free hours a day it would be a bad idea to drop a honeypot anywhere near your network.
Think about it - it's a slap in the face to the would-be hacker.. It's like you're leading him on, then saying "Ner Ner!" when he breaks into the pot.
If your hacker is serious, he's gonna be really pissed about this.
Secure your network & keep it secure - no need to stir 'em up.
Yeah - he took frequent day trips to Wales.
I wish them all the best.
You count three servers? DNS, FTP and proxy services for a large company over a country the size of Germany? Methinks a little more than three boxes..
And you think the McDonalds' in other countries might be watching to see how much money they save?
Do they have some kindov deal?
Yes, yes they do. McDonalds is going to use SUSE servers. Now, who bought SUSE recently?
Maybe as well - who needs more than 640k of RAM?
tsk.. I think we all know what kind of movies every ./er is thinking of right now..
Yup.. Hot Linus action... In 3D!!
Not trolling, just think the point was missed there.
then:
Project Lutenburg
then:
Project Luten--
Oh, the humanity...
nuh-uh. I think Plato already patented that area..
I know that, numpty.
Am talking about the word spam, as to define junk (e)mail.
I think you'll find it was invented in the good old U of K
What is spam?
Exactly!
And I think there's direct comparisons between Romeo & Juliet and Lula The Sexy Empire..
Hi
This is in relation to the story "Linux cyber-battle turns nasty."
The is telling people who read the Business section that:
"run-of-the-mill geeks" are "wreak[ing] damage on the unsuspecting computer user."
There is no evidence that this has been coded by 'geeks', Linux or otherwise. Most reputable IT news sources are agreed that the main aim of the virus is to install a 'backdoor' to allow spam to be sent through the PC. This means the virus is *much* more likely to have been written by (or partly sponsered by) organized crime.
It's not mentioned once in the article that the virus opens a back door to allow the PC to be remotely controlled. Is this perhaps because it doesn't fit in with the way the article was crafted..?
"in the case of the MyDoom computer worm, the motivation seems clearer. It has attacked a company based in Utah called SCO, bringing down its website with a barrage of emails sent from countless computers" Good lord - if you're going to do a tech story, get a techie to read over the damn thing before you hit 'send'. The attack was *not* carried out using emails. How would you address an email to a website? It was a DDOS attack. Two words - Goo gle. Is is a silly point? Perhaps but when the BBC is writing about computer viruses I tend to expect them to do the tiniest bit of research.
I use Linux, and I think it's aims are noble. I am insulted that this lazy article tars Linux users with these baseless insinuations I ask that you withdraw the article and/or print a retraction.
ack! you could have someone's eye out with one of those..!
woohoo! Let's have a big cheer for our friend the unecessary apostrophe!
meh.. I don't trust any of this cybernetics lark unless it involves Kevin Warwick..
heh.. he wants kids to go there: "If your children play video games, and even if they don't for that matter, I encourage you to know about Penny-arcade.com" First paragraph on their site: "Legally, what we need is something mad stringent - something to make those motherfuckers hoof it door to door if they want to talk to me about my dick so bad." Bill France, a father of three, is a child advocate *sigh*