There are only 2^16 ports available. So, basically this knocking technique boils down to choosing a 5/6/7/8 letter password over a 2^16 alphabet. (To be more precise, you can ignore the port numbers 0 to 1023 as part of the alphabet as they are 'reserved'). So, effectively, it boils down to 2^16 - 1024.
Somebody do the math, but it doesn't look to be that secure. Brute-forcing this would not take long.
You are missing a key point. When MSFT products have a problem (not the social engineering problems like MyDoom), its largely due to defects within their own.
This is similar to credit card scam that Bruce Schneier pointed out in his latest cryptogram. Fooling people into eating poison wrapped up as a remedy. Bastards.
New Credit Card Scam
This one is clever.
You receive a telephone call from someone purporting to be from your
credit card company. They claim to be from something like the security
and fraud department, and question you about a fake purchase for some
amount close to $500.
When you say that the purchase wasn't yours, they tell you that they're
tracking the fraudsters and that you will receive a credit. They tell
you that the fraudsters are making fake purchases on cards for amounts
just under $500, and that they're on the case.
They know your account number. They know your name and address. They
continue to spin the story, and eventually get you to reveal the three
extra numbers on the back of your card.
That's all they need. They then start charging your card for amounts
just under $500. When you get your bill, you're unlikely to call the
credit card company because you already know that they're on the case
and that you'll receive a credit.
It's a really clever social engineering attack. They have to hit a lot
of cards fast and then disappear, because otherwise they can be
tracked, but I bet they've made a lot of money so far.
I would imagine Google would generated way more traffic 'coz its used by *average* people. My mom sort of knows Google and that's as good a indicator as anything else.
However, even if Google hyperlinks the logo, it usually does it for a day. So, the traffic is going to die down after a day. But on/. the stories are archived and the traffic doesn't really die for a few days but keeps going gradually down.
To sum it up, IMO, Google would generate a spike for a whole day but/. would have a longer traffic pattern.
And while reporting incapacitated australian univ servers on slashdot, Searchenginelowdown.com is being hosted on a new site called Searchenginedown.com
Don't forget that it was 97 and 98. *Everything* here in US was working then. Every startup was touted to be the next biggest thing. The 'hope bloat' if you will.
Times are different now. The bubble has burst and the companies (in a true capitalist way) are looking to strengthen the bottomline. If you cannot make money, well then atleast cut the costs (and yeah, I am aware of the cultural,social et al differences that are not factored but add up) and effectively, you've *made* money.
I do not want to rob you of your 'fad' but I have a feeling that this one is for real.
The article makes it sound like analog watch is a bad thing. However, when I look at my watch (analog, of course) I am not really putting any effort to read time. I sort of know that its like 4:20 as I am writing this. It makes it easier too for e.g when I am driving as it doesn't really take my concentration away from the most important thing at that time which is driving.
However, I've owned a digital watch and it takes *some* effort to *read* the actual time. And even after doing that, I form a mental image of what time it is in terms of analog look.
Digital watch? No, thanks. I'ma keep my analog. IMHO
So, now we would finally know where our Nigerian Spammer friend actually is.
I am going to forward MetaCarta guys a copy of my 419 Nigerian email right away. Brilliant!
From the article here:
"lawsuits charge Richter and his accomplices with responsibility for sending illegal spam through 514 compromised Internet Protocol (IP) addresses in 35 countries spanning six continents."
Don't complain about the add-ons because they're not costing you any extra.
Yes they are. Instead of the companies putting in more time to do some quality testing, it is spending time to add options. The phones today are more prone to breaking/malfunctioning/crapping out pretty much at the drop of a hat. I have an older phone with a small B&W screen, no games, no speaker phone, no camera and it still works great for me. I have dropped it umpteen times and Lo and Behold! It still works.
Absolutely. Its not about the intentions but the fact that what he did was not right. We even punish juveniles with the idea of making them realize the difference between right/wrong and this guy is 19.
Not that I support RIAA but the idea of them going after people sharing/downloading copyrighted material is the right thing. Their tactics might be questionable but that is a different point.
I switched to satellite (dishnetwork) after getting fed up and giving up on my local cable company.
It took them more than 6 weeks to get the cable installation the first time. I moved out of my apt after the lease was over and decided to go with satellite. I've never had weather affect any quality.
Also, the interactive TV guide turned out to be a blessing. Watching TV is so different when you can read about the show and also know what is coming up instead of just flipping through. (I know IO cable has the guide feature too.)
My biggest plus was the instant PPV. I watch sports (not just regional) and you can order sitting there using your remote.
The only problem I had with the satellite was that it lost the sound (you can see the picture on TV though). Turned out that all I needed to do was to switch off the damn thing and switch it on back again. (Talk about reboots!!)
Its not just about getting manufacturers back to reality. Its also about myriad (and confusing) standards/jargon/terms whatever. Too many standards. Too many buzzwords. Too much chaos.
I know its wrong but its asking too much if you expect your average consumer to RTFM. Also, if he/she does RTFM, its too much asking for them to be able to figure everything out. How many of us were not confused atleast once while assembling a simple bookshelf and looking at the instructions?
Which reminds me of the "How many people can even program their VCR?"
Slashdot Mirror
There are only 2^16 ports available. So, basically this knocking technique boils down to choosing a 5/6/7/8 letter password over a 2^16 alphabet. (To be more precise, you can ignore the port numbers 0 to 1023 as part of the alphabet as they are 'reserved'). So, effectively, it boils down to 2^16 - 1024.
Somebody do the math, but it doesn't look to be that secure. Brute-forcing this would not take long.
You are missing a key point. When MSFT products have a problem (not the social engineering problems like MyDoom), its largely due to defects within their own.
The problem with Google searches comes up because of people intentionally taking a crack at them. Litigious Bastards anyone?.
Even miserable failure still works.
I opt for a sliding scale payment plan, usually dinner
Thats very modest of you. I also know a family that I'm usually generous with. I opt for dinner when I tell them to flick the power switch to ON.
The other rates are:
Dinner + Lunch: When I tell them its a blackout and you cannot switch it ON yet
Ride to Work for a week: When I have to tell them that their Admin password is blank
Pay monthly rent: When I have to tell them that the CD drive is not for hot coffee cup holder
Adopt me: When I have to tell them that 'Any' key really means what it means
I am working on getting into the Will soon!
So, instead of watching TV in candle light, I can surf in candle light. Awesome!
Oh... wait a sec
This is similar to credit card scam that Bruce Schneier pointed out in his latest cryptogram. Fooling people into eating poison wrapped up as a remedy. Bastards.
New Credit Card Scam
This one is clever.
You receive a telephone call from someone purporting to be from your credit card company. They claim to be from something like the security and fraud department, and question you about a fake purchase for some amount close to $500.
When you say that the purchase wasn't yours, they tell you that they're tracking the fraudsters and that you will receive a credit. They tell you that the fraudsters are making fake purchases on cards for amounts just under $500, and that they're on the case.
They know your account number. They know your name and address. They continue to spin the story, and eventually get you to reveal the three extra numbers on the back of your card.
That's all they need. They then start charging your card for amounts just under $500. When you get your bill, you're unlikely to call the credit card company because you already know that they're on the case and that you'll receive a credit.
It's a really clever social engineering attack. They have to hit a lot of cards fast and then disappear, because otherwise they can be tracked, but I bet they've made a lot of money so far.
I would imagine Google would generated way more traffic 'coz its used by *average* people. My mom sort of knows Google and that's as good a indicator as anything else.
/. the stories are archived and the traffic doesn't really die for a few days but keeps going gradually down.
/. would have a longer traffic pattern.
However, even if Google hyperlinks the logo, it usually does it for a day. So, the traffic is going to die down after a day. But on
To sum it up, IMO, Google would generate a spike for a whole day but
My $0.02
And while reporting incapacitated australian univ servers on slashdot, Searchenginelowdown.com is being hosted on a new site called Searchenginedown.com
There are 6 double-room apartments on each side, and we only have four floors. I'll hopefully have access to the elevator shaft
Do you, ummmm... or someone in the building, maybe, needs a roomie?
I dont' even need the elevator. I will take the staris. Promise.
As many times as there are grains of sand in the Ganges?
:D
More like, as many times someone takes a holy dip in the Ganges?
Don't forget that it was 97 and 98. *Everything* here in US was working then. Every startup was touted to be the next biggest thing. The 'hope bloat' if you will.
Times are different now. The bubble has burst and the companies (in a true capitalist way) are looking to strengthen the bottomline. If you cannot make money, well then atleast cut the costs (and yeah, I am aware of the cultural,social et al differences that are not factored but add up) and effectively, you've *made* money.
I do not want to rob you of your 'fad' but I have a feeling that this one is for real.
The article makes it sound like analog watch is a bad thing. However, when I look at my watch (analog, of course) I am not really putting any effort to read time. I sort of know that its like 4:20 as I am writing this. It makes it easier too for e.g when I am driving as it doesn't really take my concentration away from the most important thing at that time which is driving.
However, I've owned a digital watch and it takes *some* effort to *read* the actual time. And even after doing that, I form a mental image of what time it is in terms of analog look.
Digital watch? No, thanks. I'ma keep my analog. IMHO
Take this novel and pass it from inbox to inbox, through your IM clients, over P2P networks
;)
I will suggest the next big worm writer to include it as a payload
*ducks*
So, now we would finally know where our Nigerian Spammer friend actually is.
I am going to forward MetaCarta guys a copy of my 419 Nigerian email right away. Brilliant!
They already do that.
From the article here:
"lawsuits charge Richter and his accomplices with responsibility for sending illegal spam through 514 compromised Internet Protocol (IP) addresses in 35 countries spanning six continents."
Fortunately, they still don't have the ability to track what your other hand is doing, at any time.
The other hand is fiddling with the Tivo remote
The exercise revealed a 180 percent spike
I am sure that it doesn't account for my Dad's Tivo or else it would say 180 percent and counting...
I am not sure if that statistic includes me 'coz I haven't un-paused my Tivo yet :)
Darl Goes to Harvard
:)
Did anybody else shudder at the thought!
Don't complain about the add-ons because they're not costing you any extra.
Yes they are. Instead of the companies putting in more time to do some quality testing, it is spending time to add options. The phones today are more prone to breaking/malfunctioning/crapping out pretty much at the drop of a hat. I have an older phone with a small B&W screen, no games, no speaker phone, no camera and it still works great for me. I have dropped it umpteen times and Lo and Behold! It still works.
with a view to making our written work easier to read
Any stud{y,ies}/research to indicate that 'Times New Roman 14' is easier to read than 'Courier New 12'?
Absolutely. Its not about the intentions but the fact that what he did was not right. We even punish juveniles with the idea of making them realize the difference between right/wrong and this guy is 19.
Not that I support RIAA but the idea of them going after people sharing/downloading copyrighted material is the right thing. Their tactics might be questionable but that is a different point.
I switched to satellite (dishnetwork) after getting fed up and giving up on my local cable company.
It took them more than 6 weeks to get the cable installation the first time. I moved out of my apt after the lease was over and decided to go with satellite. I've never had weather affect any quality.
Also, the interactive TV guide turned out to be a blessing. Watching TV is so different when you can read about the show and also know what is coming up instead of just flipping through. (I know IO cable has the guide feature too.)
My biggest plus was the instant PPV. I watch sports (not just regional) and you can order sitting there using your remote.
The only problem I had with the satellite was that it lost the sound (you can see the picture on TV though). Turned out that all I needed to do was to switch off the damn thing and switch it on back again. (Talk about reboots!!)
Some Iraqis even ignore the porn and actually try to figure out what the 'net is all about
Oh you ignoramus!
Its not just about getting manufacturers back to reality. Its also about myriad (and confusing) standards/jargon/terms whatever. Too many standards. Too many buzzwords. Too much chaos.
I know its wrong but its asking too much if you expect your average consumer to RTFM. Also, if he/she does RTFM, its too much asking for them to be able to figure everything out. How many of us were not confused atleast once while assembling a simple bookshelf and looking at the instructions?
Which reminds me of the "How many people can even program their VCR?"
You might want to look at what the geek chick did ;)