friend: "I really wish I had a system in my car where I could talk and it could turn it into text and send the text message, and then when they text me it would read the message outloud"
Judge Trager was not the trier of fact, since this was a jury case. So the judge -- without even observing the demeanor of witnesses -- made a decision which it was beyond his authority to make.
If that is the case, can you appeal Trager's decision to still try to collect lawyer fees? or is that a final decision
They did "Man up", as it were. Yes, we are all pleasantly surprised. Inspired, I just halted my download of Windows 7, vowing then and there to pay full price.
Here is your subpoena to show up in court for sharing an illegal copy of Windows 7. You now owe us $200,000 for lost revenue, and thank you for also purchasing a legal copy of Windows 7.
- Microsoft
I think cox has the best policy for this so far. Where I live they sell plans of 9mbps/1mbps, 5mbps/512kbps, and several smaller ones that I don't use. Those limits are hard limits, sometimes you can get a burst a little bit above them, but it comes down to normal really fast, but any time you're online you can get those speeds.
To compensate for providing those speeds like that, they have a soft limit of how much bandwidth you can use throughout the day/month. I don't know what the 9/1 config limits are, but for 5/512 they allow 2GB down per day and 60GB/month, and 1.5/day and 7.5/month up. If you go over these limits, they don't kill you, but they will send you a notice saying upgrade, stop using so much bandwidth each month, or we can kill your service.
Out of all the business plans I've seen, I find this idea better then the shaping other ISPs use as you're not pissing off the customers but you're still able to keep control of how much bandwidth you use each month. I believe 99% of all NSPs do it this way too, cox learns from the best;)
no. the problem is more that many LEAs are quite dumb when it comes to handling this stuff. Luckily, shadowserver has just recently come into contact with a few good guys that are learning quite fast about what is going on. The other problem is how can they trust the data in court? somebody could argue falsification of logs. Now, when it comes to what Albright is talking about, I'm not quite sure what he means about that in relation to the 4th amendment.
The other problem is the jurry. when they're dumb and you're trying to explain a bunch of techincal stuff to them which they could care less about, then what are you supposed to do?
I've been working with the shadowserver group for a while now and can say that it has been very interesting. to give some facts on the project
SS == shadowserver
* SS rarely shuts down botnets asap, but rather waits to see if they can figure out who the owner is, and several arrests have been made because of this.
* there has been talk on what is going to happen when the botnets switch to a different method other than irc. for more information, search for the botnet mailing list hosted by whitestar
* most of the trojans are found by running nepenthes
* SS has a HUGE repository of botnet scripts and C&C information.
* SS could always use more contacts with ISPs, domain registrars, and foreign LEAs. (we're in #shadowserver on freenode)
* botnets aren't the only thing we've been tracking (you'll see what I'm talking about in the news later)
please think about what you're saying there! keeping all of the script kiddies on AOL is a _good_ idea! then we only need to update our iptables scripts with about a list of 50 subnets. now, you push all the kiddies to other networks, what are we going to do o_O! you're talking mass chaos, it's like the unleashing of terrorists on the US, and we all know what happens then....
I agree. You know what would be really cool? taking the/. effect to the next level, if everybody follows through, how long until the wave of the/. effect will take out Sony's customer support center? and/or cause waits of over two days:P
(Bob is a analyst at a security operations center for an ISP. He sent me this email and I decided I'd pass it on to you guys for review. Is this even possible? I'm not sure, but it sure did freak Bob out. He can't bring himself to go back to the SOC anymore, and he's looking for telecommuting jobs on Monster. --Alice)
Alice, I know you're gonna think I'm crazy but you're the only one I can think who would possibly listen to what I'm about to say without immediately dismissing it. Please, read my whole account of what happened to me tonight before writing me off.
I went into work last night for the graveyard shift. Yeah, graveyard shift on Halloween, haha. We'd just ramped up to 24/7 ops the previous week so this was going to be my first night alone in the SOC. I was pretty excited at first, since I wouldn't have any of these other knuckleheads in my hair while I was doing some hard core analysis, you know? I logged into my station, started some queries for deltas in the previous 24, and went to get some coffee, since it was going to be a long night.
Little did I know...
After returning to the SOC with my joe, Carol gave me the briefing on the days events (in a nutshell, nothing - apparently all the s'kiddies were gearing up for Trick or Treating and not harassing us). She did mention something that didn't show up in any of the reports though - a general "weirdness" to the traffic in the DMZ. She couldn't really qualify it, but she said she though something kind of odd was going on. Okay Carol, I'll keep my eyes open (as I roll them back into my head). She punched out and I was all alone.
Or was I?
I threw some tunes on WinAmp and started to rock out while pouring over the output of my earlier queries. My attempts at scripting up some rudimentary anomaly detection in our aggregation console appeared to be woefully inadequate or simply functioning properly with a dearth of anomalies when I saw it.
A new host in the DMZ.
A host which had apparently come up at midnight local, October 31st. Who the hell stands up a box in the DMZ at *midnight* on a Saturday night? It had to be the mouth-breathers in development relying on the assumption that no one would be monitoring the network over the weekend. Heh, nice try chumps, but you've just tweaked the wrong BOFH. To cover my bases, I looked up the latest network diagrams for the DMZ. Just as I thought, nothing authorized or even submitted regarding a new box in the DMZ. Finally, after months of slaving away over reports I was going to get to demand someone take a box down. I could feel the power coursing through my fingertips as I began to compose the flame to end all flames.
"Dear clownboats,"
I hesitated. What would they come back with? I needed more ammunition to stave off a possible counteroffensive. I decide to scan the box, to see how much risk these "developers" were actually exposing my DMZ to. A quick nmap returned results the likes of which I had not seen since my days at that dot bomb in Sunnyvale.
"Remote operating system guess: Linux 2.0.35-37"
W
T
F
Two-oh? Was this some sort of prank? These guys are dullards to be sure, but no one is this stupid. It's gotta be some sort of security through ob-fu or something. I had to know. Telnetting quickly confirmed my worst fears.
Trying 10.31.10.31... Connected to 10.31.10.31. Escape character is '^]'.
Red Hat Linux release 5.2 (Apollo) Kernel 2.0.36 on an i486 login:
I stared, dumfounded, at the prompt's ever-blinking cursor. I tried to wrap my head around what I was seeing. Red Hat FIVE DOT FSKING TWO? Even if this was a honeypot, this was ridiculous. What were they trying to do, find out which kiddie has the oldest sploits?
I did what any sane security professional would do in my situation.
I typed "root".
The box retorted with "Password:"
I reiterated, "root".
[root@zion root]#
A chill crept out of my keyboard and up my spine as I realized that
first, as to bittorent, STOP POSTING IT ALREADY! dead subject, it can't happen. Maybe after it is all said and done copies can be passed around, but most people want to watch it live!
I believe having the uni's use internet2 would cut down considerably on the internet's bandwidth, and I also think users like us can help handle their bandwidth problems and make this event enjoyable for all.
my suggestion is getting everybody together to create an advanced relay setup using icecast with theora support. This could easily help many people connect, as I'm guessing (according to calculations of people who use linux/unix/bsd based system) at least 50% will be able to view that stream. (Remember, most windows users won't be able to figure out how to connect or care to do so anyway). We just have to find a way for the rest to be able to view it.
I am part of a project called http://freematrix.us/. Currently, we only stream audio, but all of our servers have theora/streaming video support and can be the source for the stream while having one of our servers act as a relay for others to connect and share the links. I'm talking with our director about doing this right now, and will probably email NASA about it soon. If you would like to help out, I'm on irc.freenode.net in #freematrix or under the nickname Apple.
now, to address the three OC192's (iirc) it would take to do this, this is simple but hard at the same time. Let's take a look at what, my guestimate, 70% of bandwidth usage is. 1. p2p 2. porn the second one is a tad bit easier to bring down, because if people are watching the NASA sucker live, it's somewhat impracticle to be watching some streaming porn flick on the side, especially if somebody came walking in, that would get weird...
as for p2p, I'm sure that if people passed the word, and everybody was nice for a couple of hours, you could cut down on say 25% of all p2p bandwidth, which adds up.
Now, with my cluster idea, the saving in bandwidth right there, and using internet2, I think there is a shot that this can be pulled off. At this point, instead of debates on pop-ups and ads, rants about taxes, 20+ posts on bittorrent, etc. I would like to see you guys for once help come up with other ideas like mine to hopefully find a solution that would work. I'm not saying this is the best, I'm just saying its a start.
I believe the problem with spam relies in the stupid lusers that actually click on the links and purchase stuff from them. Lets take a look at some of the latest spam...
Porn: anybody that wants good porn knows to look at p2p solutions (just look in the right spots, it's all there for free) viagra, etc: if you don't know that it doesn't work, you're an idiot free stuff: nothing in life is free special service: there are always string's attached correct your account information: if you get your identity "stolen" in a scam, you don't even belong using a computer in the first place. perhaps also get rid of your credit cards because they might be "stolen" when you write down your card number and pin and leave it at an internet cafe for a bunch of geeks, basically the same outcome.
Now that we've classified 75% of all spam, lets move on.
There are several ways to solve the problem in weblogs, the main ones include using a combination of the AHBL from sosdg (list of proxies iirc) and the logging of ips from comments. this way anybody who uses a known proxy won't be able to post, and then you can ban ips that post annoying comments anyway. This can help a lot - The next step is to reformat all links to include the noref thing like mentioned above. - Use apache2 and linux for hosting your site, (a tad offtopic) this will just keep you more secure in general (NO TROLLING WARS PLEASE!) - go after the source: help the sosdg(http://www.sosdg.org) by giving them some computer resources or whatever else they could use to track down open proxies, known spammers, etc. and help take them down! the sosdg took some of the biggest spammers in Spain down by blocking them until their isp's folded and got rid of the spammers. Suprisingly enough, the sosdg and their black lists have spoiled the riches of many spammers, both by emails, comment stoppers, etc. - use one of those python scripts so each time a comment is to be left the person has to put the numbers and letters in the image in.
Probably the best method is to use a combination of all of these. I hope this helps
Slashdot Mirror
if you have nothing to hide then you have nothing to fear
this reminds me of a conversation with a friend
friend: "I really wish I had a system in my car where I could talk and it could turn it into text and send the text message, and then when they text me it would read the message outloud"
me: "you mean like talking to them on the phone?"
friend: "exactly!"
me: "then why don't you try calling them?"
I, for one, welcome our new EU Overlords!
Judge Trager was not the trier of fact, since this was a jury case. So the judge -- without even observing the demeanor of witnesses -- made a decision which it was beyond his authority to make.
If that is the case, can you appeal Trager's decision to still try to collect lawyer fees? or is that a final decision
but my ISP keeps injecting TCP RE[NO CARRIER]
http://xkcd.com/651/
Granted, the weapon of choice is a bit different...
so they took this and made it touchscreen instead of a hard wheel?
he already uses a robots.txt file,
User-agent: * /printer_friendly_story /projects/livestream
Disallow:
Disallow:
#
Sitemap: http://www.foxnews.com/google_news_news.xml
Sitemap: http://www.foxnews.com/google_news_entertainment.xml
Sitemap: http://www.foxnews.com/google_news_opinion.xml
Sitemap: http://www.foxnews.com/google_news_politics.xml
Sitemap: http://www.foxnews.com/google_search_news.xml
Sitemap: http://www.foxnews.com/google_search_entertainment.xml
Sitemap: http://www.foxnews.com/google_search_opinion.xml
Sitemap: http://www.foxnews.com/google_search_politics.xml
Sitemap: http://www.foxnews.com/google_search_sections.xml
They did "Man up", as it were. Yes, we are all pleasantly surprised. Inspired, I just halted my download of Windows 7, vowing then and there to pay full price.
Here is your subpoena to show up in court for sharing an illegal copy of Windows 7. You now owe us $200,000 for lost revenue, and thank you for also purchasing a legal copy of Windows 7. - Microsoft
Duke Nukem Forever
1. Create a multi billion dollar company really fast
2. Add extra hype
3. Become the worst CEO ever
4. ???
5. Profit!!!
need a better Guide? think about all the stock spam in your inbox, then grow that idea by a factor of 10000
I think cox has the best policy for this so far. Where I live they sell plans of 9mbps/1mbps, 5mbps/512kbps, and several smaller ones that I don't use.
;)
Those limits are hard limits, sometimes you can get a burst a little bit above them, but it comes down to normal really fast, but any time you're online you can get those speeds.
To compensate for providing those speeds like that, they have a soft limit of how much bandwidth you can use throughout the day/month. I don't know what the 9/1 config limits are, but for 5/512 they allow 2GB down per day and 60GB/month, and 1.5/day and 7.5/month up. If you go over these limits, they don't kill you, but they will send you a notice saying upgrade, stop using so much bandwidth each month, or we can kill your service.
Out of all the business plans I've seen, I find this idea better then the shaping other ISPs use as you're not pissing off the customers but you're still able to keep control of how much bandwidth you use each month. I believe 99% of all NSPs do it this way too, cox learns from the best
Dear hackstraw,
/. member, we have to ask.
/. user
since you are a
have you ever been laid?
are you even straight?
oh wait, you already gave us the answer, you're a gay virgin.
what a stereotypical
thanks for sharing some of your most intimate secrets,
Microsoft
no. the problem is more that many LEAs are quite dumb when it comes to handling this stuff. Luckily, shadowserver has just recently come into contact with a few good guys that are learning quite fast about what is going on. The other problem is how can they trust the data in court? somebody could argue falsification of logs. Now, when it comes to what Albright is talking about, I'm not quite sure what he means about that in relation to the 4th amendment.
The other problem is the jurry. when they're dumb and you're trying to explain a bunch of techincal stuff to them which they could care less about, then what are you supposed to do?
I've been working with the shadowserver group for a while now and can say that it has been very interesting. to give some facts on the project
SS == shadowserver
* SS rarely shuts down botnets asap, but rather waits to see if they can figure out who the owner is, and several arrests have been made because of this.
* there has been talk on what is going to happen when the botnets switch to a different method other than irc. for more information, search for the botnet mailing list hosted by whitestar
* most of the trojans are found by running nepenthes
* SS has a HUGE repository of botnet scripts and C&C information.
* SS could always use more contacts with ISPs, domain registrars, and foreign LEAs. (we're in #shadowserver on freenode)
* botnets aren't the only thing we've been tracking (you'll see what I'm talking about in the news later)
please think about what you're saying there! keeping all of the script kiddies on AOL is a _good_ idea! then we only need to update our iptables scripts with about a list of 50 subnets. now, you push all the kiddies to other networks, what are we going to do o_O! you're talking mass chaos, it's like the unleashing of terrorists on the US, and we all know what happens then....
I agree. /. effect to the next level, if everybody follows through, how long until the wave of the /. effect will take out Sony's customer support center? and/or cause waits of over two days :P
You know what would be really cool? taking the
(Bob is a analyst at a security operations center for an ISP. He sent me this email and I decided I'd pass it on to you guys for review. Is this even possible? I'm not sure, but it sure did freak Bob out. He can't bring himself to go back to the SOC anymore, and he's looking for telecommuting jobs on Monster. --Alice)
Alice,
I know you're gonna think I'm crazy but you're the only one I can think who would possibly listen to what I'm about to say without immediately dismissing it. Please, read my whole account of what happened to me tonight before writing me off.
I went into work last night for the graveyard shift. Yeah, graveyard shift on Halloween, haha. We'd just ramped up to 24/7 ops the previous week so this was going to be my first night alone in the SOC. I was pretty excited at first, since I wouldn't have any of these other knuckleheads in my hair while I was doing some hard core analysis, you know? I logged into my station, started some queries for deltas in the previous 24, and went to get some coffee, since it was going to be a long night.
Little did I know...
After returning to the SOC with my joe, Carol gave me the briefing on the days events (in a nutshell, nothing - apparently all the s'kiddies were gearing up for Trick or Treating and not harassing us). She did mention something that didn't show up in any of the reports though - a general "weirdness" to the traffic in the DMZ. She couldn't really qualify it, but she said she though something kind of odd was going on. Okay Carol, I'll keep my eyes open (as I roll them back into my head). She punched out and I was all alone.
Or was I?
I threw some tunes on WinAmp and started to rock out while pouring over the output of my earlier queries. My attempts at scripting up some rudimentary anomaly detection in our aggregation console appeared to be woefully inadequate or simply functioning properly with a dearth of anomalies when I saw it.
A new host in the DMZ.
A host which had apparently come up at midnight local, October 31st. Who the hell stands up a box in the DMZ at *midnight* on a Saturday night? It had to be the mouth-breathers in development relying on the assumption that no one would be monitoring the network over the weekend. Heh, nice try chumps, but you've just tweaked the wrong BOFH. To cover my bases, I looked up the latest network diagrams for the DMZ. Just as I thought, nothing authorized or even submitted regarding a new box in the DMZ. Finally, after months of slaving away over reports I was going to get to demand someone take a box down. I could feel the power coursing through my fingertips as I began to compose the flame to end all flames.
"Dear clownboats,"
I hesitated. What would they come back with? I needed more ammunition to stave off a possible counteroffensive. I decide to scan the box, to see how much risk these "developers" were actually exposing my DMZ to. A quick nmap returned results the likes of which I had not seen since my days at that dot bomb in Sunnyvale.
"Remote operating system guess: Linux 2.0.35-37"
W
T
F
Two-oh? Was this some sort of prank? These guys are dullards to be sure, but no one is this stupid. It's gotta be some sort of security through ob-fu or something. I had to know. Telnetting quickly confirmed my worst fears.
Trying 10.31.10.31...
Connected to 10.31.10.31.
Escape character is '^]'.
Red Hat Linux release 5.2 (Apollo)
Kernel 2.0.36 on an i486
login:
I stared, dumfounded, at the prompt's ever-blinking cursor. I tried to wrap my head around what I was seeing. Red Hat FIVE DOT FSKING TWO? Even if this was a honeypot, this was ridiculous. What were they trying to do, find out which kiddie has the oldest sploits?
I did what any sane security professional would do in my situation.
I typed "root".
The box retorted with "Password:"
I reiterated, "root".
[root@zion root]#
A chill crept out of my keyboard and up my spine as I realized that
first, as to bittorent, STOP POSTING IT ALREADY! dead subject, it can't happen. Maybe after it is all said and done copies can be passed around, but most people want to watch it live!
I believe having the uni's use internet2 would cut down considerably on the internet's bandwidth, and I also think users like us can help handle their bandwidth problems and make this event enjoyable for all.
my suggestion is getting everybody together to create an advanced relay setup using icecast with theora support. This could easily help many people connect, as I'm guessing (according to calculations of people who use linux/unix/bsd based system) at least 50% will be able to view that stream. (Remember, most windows users won't be able to figure out how to connect or care to do so anyway). We just have to find a way for the rest to be able to view it.
I am part of a project called http://freematrix.us/. Currently, we only stream audio, but all of our servers have theora/streaming video support and can be the source for the stream while having one of our servers act as a relay for others to connect and share the links.
I'm talking with our director about doing this right now, and will probably email NASA about it soon. If you would like to help out, I'm on irc.freenode.net in #freematrix or under the nickname Apple.
now, to address the three OC192's (iirc) it would take to do this, this is simple but hard at the same time. Let's take a look at what, my guestimate, 70% of bandwidth usage is.
1. p2p
2. porn
the second one is a tad bit easier to bring down, because if people are watching the NASA sucker live, it's somewhat impracticle to be watching some streaming porn flick on the side, especially if somebody came walking in, that would get weird...
as for p2p, I'm sure that if people passed the word, and everybody was nice for a couple of hours, you could cut down on say 25% of all p2p bandwidth, which adds up.
Now, with my cluster idea, the saving in bandwidth right there, and using internet2, I think there is a shot that this can be pulled off. At this point, instead of debates on pop-ups and ads, rants about taxes, 20+ posts on bittorrent, etc. I would like to see you guys for once help come up with other ideas like mine to hopefully find a solution that would work. I'm not saying this is the best, I'm just saying its a start.
I believe the problem with spam relies in the stupid lusers that actually click on the links and purchase stuff from them. Lets take a look at some of the latest spam...
Porn: anybody that wants good porn knows to look at p2p solutions (just look in the right spots, it's all there for free)
viagra, etc: if you don't know that it doesn't work, you're an idiot
free stuff: nothing in life is free
special service: there are always string's attached
correct your account information: if you get your identity "stolen" in a scam, you don't even belong using a computer in the first place. perhaps also get rid of your credit cards because they might be "stolen" when you write down your card number and pin and leave it at an internet cafe for a bunch of geeks, basically the same outcome.
Now that we've classified 75% of all spam, lets move on.
There are several ways to solve the problem in weblogs, the main ones include using a combination of the AHBL from sosdg (list of proxies iirc) and the logging of ips from comments. this way anybody who uses a known proxy won't be able to post, and then you can ban ips that post annoying comments anyway. This can help a lot
- The next step is to reformat all links to include the noref thing like mentioned above.
- Use apache2 and linux for hosting your site, (a tad offtopic) this will just keep you more secure in general (NO TROLLING WARS PLEASE!)
- go after the source: help the sosdg(http://www.sosdg.org) by giving them some computer resources or whatever else they could use to track down open proxies, known spammers, etc. and help take them down!
the sosdg took some of the biggest spammers in Spain down by blocking them until their isp's folded and got rid of the spammers. Suprisingly enough, the sosdg and their black lists have spoiled the riches of many spammers, both by emails, comment stoppers, etc.
- use one of those python scripts so each time a comment is to be left the person has to put the numbers and letters in the image in.
Probably the best method is to use a combination of all of these. I hope this helps