then use security screws to the case. if that wont foil the attacker, then you have much bigger problems them someone going to unauthorized websites.
I can just see some secretary wanting to cheack her hotmail account - trying to reset the bios and when she finds the password, pulling the case off and removing the batery or jumper.
I am aware of both, and no I didnt get them mixed up. (I will qualify that I currently only have IE7 Beta 3 on this machine, but this feature exists in other versions, and the instructions might be different.)
Security zones allow you to define different browser settings based on your trust of the site. Restricted sites allows you to still go to the site, but applies the most restrictive policy to the site. -such as disableing active content. Go the http://www.theweathernetwork.com/ and see how it looks. Then add it to the restricted sites list and go back. The page still loads -but looks quite different.
The Content filter is meant to control what webpages users can access - exactly what this person wants. If you add * to the never allow list in Content filters restricted list it will disallow all websites, and then you allow the specific website you want to go to. I tried this before I posted and it did work. Content filter has many issues when you attempt to use it to filter based on violence, nudity and language. Content filter relies on RASCi ratings to be embeded as META tags on the website. Many sites dont have META tags with RASCi Information, and RASCi itself has folded into a different organization and has changed the way rateings are detected by browsers (which IE7 suprisingly hasen't incorperated) and require the user to install a plugin iirc.
What about Firefox/Ubuntu live cd etc? Why are users allowed to install software? are they running as administrators? I also mentioned Microsofts toolkit for locking down public worksations, and defining what software can run on a system. this would take care of that. as for live cd's, bootable floppy's and usb keys; why is the bios allowing anything but the C: drive to boot, and why isint the bios passworded? if the machine has sensitive research data there is no reason anyone should be able to boot off any other device - if the admin has too, he knows the password.
My original solution takes 5 minutes to implement, and uses tools that already exist on the system. It doesnt muck with a network, or make you buy or find a firewal - and spend time writing or finding rules to do what the user wants. And most importantly it just works.
IE has a built in content filter that accepts wildcards. Turn it on, Click on tools, go to options. click on the restricted sites tab. and add a wildcard * and click never. Then add the one site you want to have people go to click Allways. Under general youll probably also want to disable Supervisors can enter a password to see site (it makes users less cranky thinking someone else is allowed, but not them.
when you close the dialouge box - it will ask for a password, and your done.
Microsoft has released a shared computer toolkit for places like labs and librarys that has some neat tools - including a good one to restrict access to only certain applictaion. you may wish to look into that as well
yes, i think its important that media (any media - print, blogs, tv, radio) disclose clearly any self-referential material. i hate watching the news and seeing stories about some event, and then jump to coverage of that media outlet participating in the event. If slashdot refers to an article that is produced by another site that is run by OSTG- it is the same media outlet and should be announced.
i agree though that in this case the disclaimer was ackwardly placed.
I am not a union member, and i do not like unions. for the most part, the original reasons for labour organizing have been addressed, and unions are now looking for new frontiers to conquor.
unions should not engage in national or international politics - they should obviously argue for good and against bad legislation effecting workers, but union leaders should not be in the leadership of political parties, nor should the union contribue donations to specific parties. as well unions should not make recomendations on who to vote for, nor suggest boycotting a country because they disagree with policy decisions. In Ontario, if my employment group is unionized , i am required to pay dues and hold membership. if i am required to pay dues to an organization that purports to represents me, then they should represent my employment intrests only.
As well it has been my experiance that unions encourage lazyness,and breed incompodince. unions will fight and get bad employees reinstated. The union supports low standards for employment, and encourages members not to work to hard to artificially keep the standard low. in the case of Broader public sector unions - strikes only hurt the taxpayer who looses services, and not the employer. as well the demands made in these strikes by the union are unreasonable and only justified (to them) because the person paying the bill is a taxpayer, and the unreasonable demands have no ompact on a bottom line.
Also, a after every major union stike that resulted in a pay increase, a union due increase also followed.
fips certification is essentailly a design review, where your finsihed product is evaluated against the manuufactureeres design documentation, and vairious standards for ensuring Confidentiality, and Integrity of the data and the device. Fips certification is a long process because of the evaluation, and when documentation is not up to snuff, it has to be updated and then the process continues.
Not to knock OSS development, but i think it lacks the design documentation required for FIPS certification. The OSS montra of find a problem, write,and submit a patch really doesent leave any formal pre code, paper based design to fall back on. I also recall FIPS certification being in the $250,000us range.(though i may be way off)
How do you decide fips or open source? well you have to first look at what you want to protect, and why you want to protect it - evaluate what the system is supposed to do and do a threat and risk assessment (TRA). this will help you to understand what you need to protect aginst, and help you design safe guards (crypto is not allways the answer! dont forget policy or other non technical solutions) next look at the regulatory frame work that surrounds your project? what do various laws, industry standards and corporate policy have to say about your choice? then you have to evaluate your platforms, and existing technology, review your budgets, and based on that narrow your selection of choices.
Dont fall into the trap of we need to protect data - Lets use crypto!
crypto is not the magic bullet that solves all our problems. we also have to concern ourself with policy (user accounts/passwords/Acceptable use etc)
The SSHRC is a government agency that funds research. there are several other government agencies that do the same in differnet fields - nserc comes to mind.
The funds are alloted to proposals and the proposals are evaluated by other scientists, not Politions or bureaucrats. if it was rejected, it was because to proposal was lacking or a study unworthy of the funds.
obviously the researcher who proposed the study needs to stay employed, and is just grumpy that he now has nothing to research.
In Canada, Wiretap requires a warrent. You have to convince a judge that one is needed, and theri has to be a high level of confidence that one is required, and will provide needed information.
CSIS - essentally the Canadian version of the CIA can listen to what it wants - no warents or oversight needed. the catch is that information CSIS collects through its methods is not admisable in court, though they have in the past provieded information to the RCMP.
Your employer however can monitor your communications on their network at their pleasure, provided you do not have a reasonable expectation of privacy. If you are presented with a logon banner, stating that you are subject to monitoring, and have a signed usage agreement, then you can be monitored. These logs can be turned over to law enforcement without a warrent - they a the companies propery and they can concent to search.
UTC or coordinated universal time (UTC is the acronym that was agreed on because the british and the french had a disagremment about the word order)is the standard time for the world. a time zone is 15 degress of longitude, and is equal to 1 hour. thus if you know the local time, and have a 0 point (Grenwich meridian) and can do some math, you know where on the planet you are.
UTC was agreed upon by an international body, many many years ago. it is now frowned upon to call it gmt (though pretty much everyone does)Not everyone follows it, and their are many variations (Newfoundland time - 30 minutes off) some countries still have their own meridians.
Choicepoint existed to collect information government needed access to but was not legally able to collect for themsleves. Gov't couldn't collect it but they could buy it.
This led to many departments haveing the small bits of information they needed about you being aggrigated into a large clearing house.
In the case of collecting information, i think the government may be better equiped to do it. at least there are independent auditors who keep tabs on the collectors. what did choicepoint have?
Bush and stem cells is probably a good example of religion and science interacting properly. Regligous beliefs were used to make a decision that limits what science can do for the sake of preserving something society values.
We know Bush's religious persuations, and we know he uses religion in his decision making. when evaluateing bush as a leader, we can use that to predict how he will act on certain issues. I belive this is a good thing.
Most of the advances in technology we hera about are not new knowelge. They are improvements on existing technologies. While important, they do not inspire people.
The world needs to return to the 60's, where the prevailing attitude was we can do anything. We can fly faster then sound (concorde), Put a man on the moon, or even build a subway, and use the dirt to build an island an hold a worlds fair (Montreal)
The moon missions ended because the media and America got bored with space travel, projects get anounced and quietly disapear when leaders are told how much they will cost. Science and Engineering will improve when people are inspired to build things, and to learn, and not care what the pricetag is first.
Please do not take this the wrong way. I admire anyone who goes out of their way to lend their skills and talents to people in need, but.,.
Do you know any of the recent history of Rewanda? 10 years ago a large portion of the population was brutally hacked to death with macheties. "computer science" projects are, in my opininon, right at the bottom of the list fo things Rawanda needs. I undersatnd that there is a legitamate need for IT people to support aid agencies, and their work, but I doubt there are any projects that will benifit the people directly.
My 2 pieces fo advice are:
1. learn french. it is one of the most commonly spoken langauges in Rawanda. 2.Read the book "Shake Hands with teh Devil" by Romeo Dallaire This book provides a brief history of the genocide in Rawanda, as well as valuable insights into how the people live.
Radio is highly influential and accessable in Rawanda. Computers are not. modern technology will likely do little to help the average Rawanden's conditon to improve. Linux will not change their situation. Use your talents and skills to solve problems. Dont use fancy solutions - keep it simple and make it work.
Most of all, good luck in your journey, and stay safe.
we have a small paper card, the candidates name is listed, with a circle next to it. (the name and circle are plane paper and surounded by black ink. each option is divided by a white line) you vote by writeing a large x in the circle of the candidate you choose and place it in the ballet box. a ballet with any other marks on it except an x (yes it has to be an X)is considered spoiled. it is idiot proof to vote, and intenions are very clear.
btw, municipal elections had electronic voteing. the balet worked the same way, but was fed through a reader, face down, and into the ballet box. paper trail, and instant count.
ive used one of these machines. if memory serves, it takes 2 people ~ 2hours to blow 11" of fiber into an atic. thats about 16 hours to get to the first floor roof line, and unless you live way up north, you will run out of darkness. also the machine was quite loud. neighbors will notice the noise.
i think the best method is to pop your quantity of popcorn, and then rent a helicopter to air drop it on the house.
Re:Always liked the Tangerine iMac
on
Top 10 Apple Flops
·
· Score: 4, Funny
I was once an admin for a mac only company. they ran Eudora mail sever on a tangerine imac. they ran it on a tangerine imac beacuse nobody in the office wanted that color on their desk.
I also once worked for a Mac retailer. 2 guys walked off with a tangerine ibook. the one question i had for my co-workers working at the time was how did you not notice them stealing a bright orange laptop. anyway, i doubt they were able to resell it:)
they likely arnt digging tranches, they are drilling holes.. there is equipment that will drill a horizontal hole in the ground, and pull a pvc pipe along behind the dril head. the only holes you have to dig, are once every block or so to start the machine, and connect the pipe segments. see http://wgrue.tracto-technik.de/uuid/1129A3A11BD111 D7B8C40030050CE994/ for more info
Re:Makes for an interesting discussion.
on
Sims 2 Goes Gold
·
· Score: 1
Im curious though.. could it not be that these games a serve as a safe fantisy reality for people who would never in real life be prostiutes or drug lords.
i think reality, where real people are involed, and virtual charachters in a game make for a bad comparison
If You ever visit halifax, and see a building with a date prior to 1917, odds are it was a mouge after the explosion. The same likely applies in the aftermath of the Titanic.
Many of these buildings are now excelent pubs and resturaunts.
Halifax doesnt have small disasters. they save up for big ones.
native 2k3 mode or mixed mode is why to take advantage of all 2k3's new features require only 2k3 controlers. if you hace a 2k DC then you cant use those features.
note that you can have 2k member servers (not DCs) and both AD modes support nt4 BDC's for any older clients you may have
Slashdot Mirror
then use security screws to the case.
if that wont foil the attacker, then you have much bigger problems them someone going to unauthorized websites.
I can just see some secretary wanting to cheack her hotmail account - trying to reset the bios and when she finds the password, pulling the case off and removing the batery or jumper.
I am aware of both, and no I didnt get them mixed up. (I will qualify that I currently only have IE7 Beta 3 on this machine, but this feature exists in other versions, and the instructions might be different.)
Security zones allow you to define different browser settings based on your trust of the site. Restricted sites allows you to still go to the site, but applies the most restrictive policy to the site. -such as disableing active content. Go the http://www.theweathernetwork.com/ and see how it looks. Then add it to the restricted sites list and go back. The page still loads -but looks quite different.
The Content filter is meant to control what webpages users can access - exactly what this person wants. If you add * to the never allow list in Content filters restricted list it will disallow all websites, and then you allow the specific website you want to go to. I tried this before I posted and it did work. Content filter has many issues when you attempt to use it to filter based on violence, nudity and language. Content filter relies on RASCi ratings to be embeded as META tags on the website. Many sites dont have META tags with RASCi Information, and RASCi itself has folded into a different organization and has changed the way rateings are detected by browsers (which IE7 suprisingly hasen't incorperated) and require the user to install a plugin iirc.
What about Firefox/Ubuntu live cd etc?
Why are users allowed to install software? are they running as administrators? I also mentioned Microsofts toolkit for locking down public worksations, and defining what software can run on a system. this would take care of that. as for live cd's, bootable floppy's and usb keys; why is the bios allowing anything but the C: drive to boot, and why isint the bios passworded? if the machine has sensitive research data there is no reason anyone should be able to boot off any other device - if the admin has too, he knows the password.
My original solution takes 5 minutes to implement, and uses tools that already exist on the system. It doesnt muck with a network, or make you buy or find a firewal - and spend time writing or finding rules to do what the user wants. And most importantly it just works.
IE has a built in content filter that accepts wildcards. Turn it on, Click on tools, go to options. click on the restricted sites tab. and add a wildcard * and click never. Then add the one site you want to have people go to click Allways. Under general youll probably also want to disable Supervisors can enter a password to see site (it makes users less cranky thinking someone else is allowed, but not them.
when you close the dialouge box - it will ask for a password, and your done.
Microsoft has released a shared computer toolkit for places like labs and librarys that has some neat tools - including a good one to restrict access to only certain applictaion. you may wish to look into that as well
yes, i think its important that media (any media - print, blogs, tv, radio) disclose clearly any self-referential material. i hate watching the news and seeing stories about some event, and then jump to coverage of that media outlet participating in the event. If slashdot refers to an article that is produced by another site that is run by OSTG- it is the same media outlet and should be announced.
i agree though that in this case the disclaimer was ackwardly placed.
I am not a union member, and i do not like unions.
for the most part, the original reasons for labour organizing have been addressed, and unions are now looking for new frontiers to conquor.
unions should not engage in national or international politics - they should obviously argue for good and against bad legislation effecting workers, but union leaders should not be in the leadership of political parties, nor should the union contribue donations to specific parties. as well unions should not make recomendations on who to vote for, nor suggest boycotting a country because they disagree with policy decisions. In Ontario, if my employment group is unionized , i am required to pay dues and hold membership. if i am required to pay dues to an organization that purports to represents me, then they should represent my employment intrests only.
As well it has been my experiance that unions encourage lazyness,and breed incompodince. unions will fight and get bad employees reinstated. The union supports low standards for employment, and encourages members not to work to hard to artificially keep the standard low. in the case of Broader public sector unions - strikes only hurt the taxpayer who looses services, and not the employer. as well the demands made in these strikes by the union are unreasonable and only justified (to them) because the person paying the bill is a taxpayer, and the unreasonable demands have no ompact on a bottom line.
Also, a after every major union stike that resulted in a pay increase, a union due increase also followed.
so that is why i stay away from unions.
fips certification is essentailly a design review, where your finsihed product is evaluated against the manuufactureeres design documentation, and vairious standards for ensuring Confidentiality, and Integrity of the data and the device. Fips certification is a long process because of the evaluation, and when documentation is not up to snuff, it has to be updated and then the process continues.
Not to knock OSS development, but i think it lacks the design documentation required for FIPS certification. The OSS montra of find a problem, write,and submit a patch really doesent leave any formal pre code, paper based design to fall back on. I also recall FIPS certification being in the $250,000us range.(though i may be way off)
How do you decide fips or open source? well you have to first look at what you want to protect, and why you want to protect it - evaluate what the system is supposed to do and do a threat and risk assessment (TRA). this will help you to understand what you need to protect aginst, and help you design safe guards (crypto is not allways the answer! dont forget policy or other non technical solutions) next look at the regulatory frame work that surrounds your project? what do various laws, industry standards and corporate policy have to say about your choice? then you have to evaluate your platforms, and existing technology, review your budgets, and based on that narrow your selection of choices.
Dont fall into the trap of we need to protect data - Lets use crypto!
crypto is not the magic bullet that solves all our problems. we also have to concern ourself with policy (user accounts/passwords/Acceptable use etc)
The SSHRC is a government agency that funds research. there are several other government agencies that do the same in differnet fields - nserc comes to mind.
The funds are alloted to proposals and the proposals are evaluated by other scientists, not Politions or bureaucrats. if it was rejected, it was because to proposal was lacking or a study unworthy of the funds.
obviously the researcher who proposed the study needs to stay employed, and is just grumpy that he now has nothing to research.
cue british accent:
all right then, Mind the gap
Funny, thats that riaa/mpaa say about P2P
In Canada, Wiretap requires a warrent. You have to convince a judge that one is needed, and theri has to be a high level of confidence that one is required, and will provide needed information.
CSIS - essentally the Canadian version of the CIA can listen to what it wants - no warents or oversight needed. the catch is that information CSIS collects through its methods is not admisable in court, though they have in the past provieded information to the RCMP.
Your employer however can monitor your communications on their network at their pleasure, provided you do not have a reasonable expectation of privacy. If you are presented with a logon banner, stating that you are subject to monitoring, and have a signed usage agreement, then you can be monitored. These logs can be turned over to law enforcement without a warrent - they a the companies propery and they can concent to search.
IANAL - i just had a lecture on this.
UTC or coordinated universal time (UTC is the acronym that was agreed on because the british and the french had a disagremment about the word order)is the standard time for the world. a time zone is 15 degress of longitude, and is equal to 1 hour. thus if you know the local time, and have a 0 point (Grenwich meridian) and can do some math, you know where on the planet you are.
UTC was agreed upon by an international body, many many years ago. it is now frowned upon to call it gmt (though pretty much everyone does)Not everyone follows it, and their are many variations (Newfoundland time - 30 minutes off)
some countries still have their own meridians.
time is tied to geography.
Choicepoint existed to collect information government needed access to but was not legally able to collect for themsleves. Gov't couldn't collect it but they could buy it.
This led to many departments haveing the small bits of information they needed about you being aggrigated into a large clearing house.
In the case of collecting information, i think the government may be better equiped to do it. at least there are independent auditors who keep tabs on the collectors. what did choicepoint have?
-Peter
Ontario is Eastern. New Brunswick is one hour ahead - in the Atlantic Time zone.
Bush and stem cells is probably a good example of religion and science interacting properly. Regligous beliefs were used to make a decision that limits what science can do for the sake of preserving something society values.
We know Bush's religious persuations, and we know he uses religion in his decision making. when evaluateing bush as a leader, we can use that to predict how he will act on certain issues. I belive this is a good thing.
Most of the advances in technology we hera about are not new knowelge. They are improvements on existing technologies. While important, they do not inspire people.
The world needs to return to the 60's, where the prevailing attitude was we can do anything. We can fly faster then sound (concorde), Put a man on the moon, or even build a subway, and use the dirt to build an island an hold a worlds fair (Montreal)
The moon missions ended because the media and America got bored with space travel, projects get anounced and quietly disapear when leaders are told how much they will cost. Science and Engineering will improve when people are inspired to build things, and to learn, and not care what the pricetag is first.
Please do not take this the wrong way. I admire anyone who goes out of their way to lend their skills and talents to people in need, but.,.
Do you know any of the recent history of Rewanda? 10 years ago a large portion of the population was brutally hacked to death with macheties. "computer science" projects are, in my opininon, right at the bottom of the list fo things Rawanda needs. I undersatnd that there is a legitamate need for IT people to support aid agencies, and their work, but I doubt there are any projects that will benifit the people directly.
My 2 pieces fo advice are:
1. learn french. it is one of the most commonly spoken langauges in Rawanda.
2.Read the book "Shake Hands with teh Devil" by Romeo Dallaire
This book provides a brief history of the genocide in Rawanda, as well as valuable insights into how the people live.
Radio is highly influential and accessable in Rawanda. Computers are not. modern technology will likely do little to help the average Rawanden's conditon to improve. Linux will not change their situation. Use your talents and skills to solve problems. Dont use fancy solutions - keep it simple and make it work.
Most of all, good luck in your journey, and stay safe.
we have a small paper card, the candidates name is listed, with a circle next to it. (the name and circle are plane paper and surounded by black ink. each option is divided by a white line)
you vote by writeing a large x in the circle of the candidate you choose and place it in the ballet box. a ballet with any other marks on it except an x (yes it has to be an X)is considered spoiled. it is idiot proof to vote, and intenions are very clear.
btw, municipal elections had electronic voteing. the balet worked the same way, but was fed through a reader, face down, and into the ballet box. paper trail, and instant count.
You preform a TRA - Threat and risk Assesment. and you are quite right, it is a profession all of its own.
/ itsg/itsg04.html Grab the Pdf, and it will guide you through the process.
for the do it yourselfers : http://www.cse-cst.gc.ca/en/publications/gov_pubs
OS X comes with an x-code cd. it is all the developer tools you could ever want.
see http://www.apple.com/macosx/developertools/
I have a blueberry ibook 300 as well and i use it every day. I tell people i'll give it up when its pried from my cold dead hands.
i love my mac
ive used one of these machines.
if memory serves, it takes 2 people ~ 2hours to blow 11" of fiber into an atic. thats about 16 hours to get to the first floor roof line, and unless you live way up north, you will run out of darkness. also the machine was quite loud. neighbors will notice the noise.
i think the best method is to pop your quantity of popcorn, and then rent a helicopter to air drop it on the house.
I was once an admin for a mac only company. they ran Eudora mail sever on a tangerine imac. they ran it on a tangerine imac beacuse nobody in the office wanted that color on their desk.
:)
I also once worked for a Mac retailer. 2 guys walked off with a tangerine ibook. the one question i had for my co-workers working at the time was how did you not notice them stealing a bright orange laptop. anyway, i doubt they were able to resell it
they likely arnt digging tranches, they are drilling holes.. there is equipment that will drill a horizontal hole in the ground, and pull a pvc pipe along behind the dril head. the only holes you have to dig, are once every block or so to start the machine, and connect the pipe segments.1 D7B8C40030050CE994/
see http://wgrue.tracto-technik.de/uuid/1129A3A11BD11
for more info
Im curious though..
could it not be that these games a serve as a safe fantisy reality for people who would never in real life be prostiutes or drug lords.
i think reality, where real people are involed, and virtual charachters in a game make for a bad comparison
If You ever visit halifax, and see a building with a date prior to 1917, odds are it was a mouge after the explosion. The same likely applies in the aftermath of the Titanic.
Many of these buildings are now excelent pubs and resturaunts.
Halifax doesnt have small disasters. they save up for big ones.
native 2k3 mode or mixed mode is why
to take advantage of all 2k3's new features require only 2k3 controlers. if you hace a 2k DC then you cant use those features.
note that you can have 2k member servers (not DCs) and both AD modes support nt4 BDC's for any older clients you may have