also, if your server is not available from the outside, why would @home care? they only have reason to care about servers that are accessible from the outside, and would rather go after commercial/illegal/high bandwidth usage servers than the mail server you use to send mail out.
wingate, a popular proxy that runs on windows, runs on ports 23 (telnet) and 1080 (socks?). i'm pretty sure it doesn't open 8000 or 8080. in the default configuration, it allows connection from the outside, and many users on the @home network assume the software comes with a secure configuration.
open wingate exploitation has been a big problem on the DALnet irc network, and i wouldn't be surprised if this usenet problem involved wingate proxies.
Why not just block inbound NNTP connections going to customer systems? If what they want to say is "Our users have no business running their own news servers", then why let them?
if you just block nntp, that won't prevent people from exploiting open wingates and other full proxies. i'm not sure that this exploit applies to news, but it probably does. i know it applies to IRC - DALnet had a problem with people scanning the @home network (and some other isps, including one in mexico) for open proxies and then flooding the irc network by sending a few clients through each of the proxies they found.
DALnet responded to this by banning @home completely for a while. this ban has since been reduced to ~*@*.home.com (clients get a ~ if they connect form a computer not running an identd, and most real users run identd wheras most wingate computers do not).
Personally, I think this is the ideal candidate for a screen saver - since none of the Guiness or other beers have Linux versions of their screensavers. I could sit and watch the bubbles fall for hours..
How is this software distributed? You have two options...
If you make it Free, then you have created free beer, which RMS wouldn't like.
If you make it non-Free, your software gets marked down as flamebait.
Therefore, the screensaver cannot be successfully written and distributed.
At issue right now is whether schools and public libraries should provide Internet access. If a library offers a public terminal to the web, then little Johnny can go download porn, and Mommy doesn't like that. Since there is no way to provide porn-free Internet access, the solution is to remove Internet terminals from libraries.
Ack! I'm glad I don't live in South Carolina. Or Kansas for that matter. Why are some states so backwards?
I'd also like to bring up a self-serving argument about why porn isn't intrinically bad for minors, but I'll save that for a more relavent thread.
Yeah, it would have been nice to get away with a nice bonus, however morally questionable--but when you get headed off before you can take advantage, there is no right to complain.
But what about people who (like me) purchased a computer at Office Depot last night, signed up for MSN last night, and read the paper/slashdot this morning to find out we probably wouldn't get the $400 rebate. If MSN charges me for 3 years or even 1 month, that's bait and switch. I wonder if I should return the computer, too...
i hope they at least let us cancel msn without paying for the first month..
anyone know what office depot, staples, and officemax are saying about returning purchased items? (from what i've read it sounds like best buy was an instant rebate, and the others were mailin. does that mean bestbuy got screwed?)
I remember seeing something to the effect of "MSN may retract this offer at any time" on the MSN "loan" form. I wonder if this means I can return that computer I bought last night? (if it matters, I did sign up for MSN last night also)
Since they decided to use small/blurry screenshots, why didn't they include some soft porn in a mozilla window? Oh wait... then I might not have been able to argue that I had been reading an article based on the page I had it open to.
Linux is based on an open source policy. By its definition, "open source" means that anyone can have free access to the source code of a software program and thus the opportunity to modify and improve it, as long as their changes are then published to the community at large.
I thought you didn't have to distribute anything after making modifications, but you were not allowed to distribute binaries without at least an offer of source code. Since I see this kind of statement a lot, am I wrong or are journalists confused?
/. automatically inserts spaces in long things with no spaces to stop people screwing up the formatting on purpose; unfortunately this can break URLs. Take out that space and it'll work...
i don't get it.. how does letting people put long things without spaces allow users to "screw up formatting"?
i noticed that this post wasn't counted in the dropdown.. the "number of posts with a score of at least 5" was 2, but two posts had a score of exactly 5.
despite the fact that cease and desist letters were sent to their web sites
GET ~drw/css-auth/legal-info/ HTTP/1.1 User-Agent: Mozilla/4.0 (compatible; MSIE 5.0; Windows 98) Cease-And-Desist: Please remove the CSS crack from your site.
windows 95 had at least one buffer overflow exploit.. one had to do with putting fragmented things together. was this hole exploitable for running arbitrary code or only for crashing the box? if the former, why wasn't there a worm?
also.. as an idea for a worm.. how about a worm that opens up port 80 with enough code to exploit known security holes in various versions of msie and netscape plus some silly stuff to make it look innocent, and then IMs everyone (msnim, aim, icq, yahoo, etc) who's online and tells them to "look at your website"? it could also affect frontpage uploads...
Hmm.. searching Google, I found something interesting about how Ralph Nader is still behind car safety.
Is that the same Ralph Nader who's running for president with the Green Party? I was surprised when he was ranked as agreeing with me more than any of the other major candidates in the US 2000 election, since he is not running with either of the two major parties.
Btw, people on Amazon can't spell Nader's name correctly either:P
Slashdot Mirror
btw, icq is a server (it lets people connect to your computer on various ports), but they couldn't go after icq users.
--
--
open wingate exploitation has been a big problem on the DALnet irc network, and i wouldn't be surprised if this usenet problem involved wingate proxies.
--
if you just block nntp, that won't prevent people from exploiting open wingates and other full proxies. i'm not sure that this exploit applies to news, but it probably does. i know it applies to IRC - DALnet had a problem with people scanning the @home network (and some other isps, including one in mexico) for open proxies and then flooding the irc network by sending a few clients through each of the proxies they found.
DALnet responded to this by banning @home completely for a while. this ban has since been reduced to ~*@*.home.com (clients get a ~ if they connect form a computer not running an identd, and most real users run identd wheras most wingate computers do not).
--
How is this software distributed? You have two options...
If you make it Free, then you have created free beer, which RMS wouldn't like.
If you make it non-Free, your software gets marked down as flamebait.
Therefore, the screensaver cannot be successfully written and distributed.
--
--
--
Ack! I'm glad I don't live in South Carolina. Or Kansas for that matter. Why are some states so backwards?
I'd also like to bring up a self-serving argument about why porn isn't intrinically bad for minors, but I'll save that for a more relavent thread.
--
But what about people who (like me) purchased a computer at Office Depot last night, signed up for MSN last night, and read the paper/slashdot this morning to find out we probably wouldn't get the $400 rebate. If MSN charges me for 3 years or even 1 month, that's bait and switch. I wonder if I should return the computer, too...
--
anyone know what office depot, staples, and officemax are saying about returning purchased items? (from what i've read it sounds like best buy was an instant rebate, and the others were mailin. does that mean bestbuy got screwed?)
--
--
--
--
Linux is based on an open source policy. By its definition, "open source" means that anyone can have free access to the source code of a software program and thus the opportunity to modify and improve it, as long as their changes are then published to the community at large.
I thought you didn't have to distribute anything after making modifications, but you were not allowed to distribute binaries without at least an offer of source code. Since I see this kind of statement a lot, am I wrong or are journalists confused?
--
--
--
i don't get it.. how does letting people put long things without spaces allow users to "screw up formatting"?
--
i'm in light mode if it matters
--
i wish it were that easy to go to sleep and stay asleep for eight hours
--
--
--
despite the fact that cease and desist letters were sent to their web sites
GET ~drw/css-auth/legal-info/ HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 5.0; Windows 98)
Cease-And-Desist: Please remove the CSS crack from your site.
--
also.. as an idea for a worm.. how about a worm that opens up port 80 with enough code to exploit known security holes in various versions of msie and netscape plus some silly stuff to make it look innocent, and then IMs everyone (msnim, aim, icq, yahoo, etc) who's online and tells them to "look at your website"? it could also affect frontpage uploads...
--
Hmm.. searching Google, I found something interesting about how Ralph Nader is still behind car safety.
Is that the same Ralph Nader who's running for president with the Green Party? I was surprised when he was ranked as agreeing with me more than any of the other major candidates in the US 2000 election, since he is not running with either of the two major parties.
Btw, people on Amazon can't spell Nader's name correctly either
--
--