Hospital IT responded by cracking down on outside devices but NOT really tightening up security on individual machines.
It's easier to shift the blame than to fix your own problems. It's amazing what people get away with in IT because of managers who don't know to crack down on it.
Det. James 'Jimmy' McNulty: How long you been in the pawn shop unit?
Det. Lester Freamon: Thirteen years and four months.
Det. James 'Jimmy' McNulty: Thirteen years?
Det. Lester Freamon: And four months.
Det. James 'Jimmy' McNulty: I gotta ask you, what exactly does a police officer assigned to the pawn shop unit do?
Det. Lester Freamon: You intake reports from registered pawn shops on all items valued over $50. Then you make an index card for that item. Then you file that index card. If someone wants to find out if something stolen has been pawned, we look to see if we have an index card. If we do, we do. If we don't, we don't.
Det. James 'Jimmy' McNulty: You did that for thirteen years?
Det. Lester Freamon: And four months.
Det. James 'Jimmy' McNulty: Why'd you ask out of homicide?
Det. Lester Freamon: Wasn't no "ask" about it.
Det. James 'Jimmy' McNulty: You got the boot?
Det. Lester Freamon: Uh-huh.
Det. James 'Jimmy' McNulty: What'd you do to piss 'em off?
Det. Lester Freamon: Police work.
Det. James 'Jimmy' McNulty: I think I need to buy you a drink.
Det. Lester Freamon: Just one?
He tried to reproduce it and had problems? The summary of the problem made it seem like all svchost.exe's would get deleted no matter what.
I wonder what sort of specific conditions had to be met? Not that I like coming to the defense of McAfee... But has this been overblown?
We were hit by this but I called the guy who manages the AV server and told him to halt any updates and roll back to 5957. Only about 15 systems were hit with it, but none of them had SVCHOST deleted. I was able to isolate one and it was fine since we didn't have the "scan process" enabled. Here is an e-mail I sent to my department:
1. It was on 5958, but everything was running fine.
2. Since I knew there was a fix, I ran an on-demand scan.
3. McAfee picked up SVCHOST.EXE as a virus, and it tried to delete it but the clean failed.
4. Since the clean failed, all I had to do was manually run SVCHOST.EXE from the command line, force an update by right-clicking on the McAfee icon in the systray, and reboot. I ran another memory scan and there were no red flags.
And for this:
I wonder what sort of specific conditions had to be met? Not that I like coming to the defense of McAfee... But has this been overblown?
Specific conditions had to be met, but they were broad. The following were necessary:
- Windows XP SP3
- Real-time Scanning Enabled
- Definitions version 5958
The real time scanning pretty much does nothing but crawl the drive and inspect the processes regularly, so it would have eventually caught SVCHOST.EXE, killed it, and bricked your machine until you had a chance to apply the manual fix.
Overblown? No. Clusterfuck? Yes. It could have been a LOT worse.
I was in Panajachel, Guatemala for a week in March and I only had my passport on me when I was going to and from Panajachel to the capital, which was one trip each way. Each of those times I only brought it because I was going to be leaving or had just arrived. I walked around town, went on the boats on Lake Atitlan to visit neighboring towns, and I didn't have my passport on me at all.
I'm trying to avoid having this happen.
I just called our guy who manages the AV server (among other things) and sent him this. He was skeptical, but wasn't opposed to rolling back the server to using 5957 for now until more builds on this story. My system hasn't updated to 5958 yet, even though the AV server was set to deploy that. Let's hope for the best...
1) Did they owe the claimant a duty of care?
Yes. By getting direct access to their bank accounts, they had to take care not to overcharge.
The real WTF is right here. Why on Earth did you give a third party the ability to withdraw funds from your bank account? What did you think would happen?
Frankly, if you are doing online purchasing or paying for a game subscription, you should only use a credit card. You can get one with a low limit ($200~) with even the worst credit rating, or buy a prepaid card and pay as you go. PayPal can kiss my ass if they expect me to give them my bank and routing details. If I ever did that, it would be tied to a savings account which I deposit money into on an as-needed basis. My brother had a bad experience with them overdrafting his account because someone disputed a charge 59 days before the 60 day period was up.
I have three total cards, and here is what I use them for.
- Debit Card: Kept in a safe in my house, I use an ATM card to get cash.
- Credit Card with a $800 limit: Used for online subscriptions (WoW account, VPS, etc.) I also use it for gas, morning coffee, and it has a points system so I benefit. I also can view it online to see any charges made to it at any time on either my Crackberry or my home computer. Usually charges show up within 8 hours or less, 24 hours depending on where you use it.
- Credit Card with a much larger limit: Kept in my wallet for emergencies only. If I make an online purchase with it, I call my bank and have them give me a one time use CC number.
Also, all my cards say "CHECK ID" in big bold lettering on the back.
Remember, it was less than a decade ago that they finally convinced the last Japanese soldier to come out of the jungle.
I don't know if you are referring to a different event, but Hiroo Onoda didn't surrender until 1974. He refused to surrender until his original commanding officer came out to the Philippines to accept it. That is the kind of stranglehold that Hirohito had on the Japanese people during that time. Every able bodied person would have fought until the end because of how brainwashed they were.
Is there an addon that warns of cert changes? I don't know how to program, but it seems that would be a really good addon to develop. I'd donate to it.
However, in this case the *stepfather* left a gun around that killed a child that wasn't his. He may or may not be suffering, and it should be investigated.
Read the article. Normally the gun was kept in a locked place away from reach by the children. He took the gun out because he thought he heard an intruder. After investigating, he let the gun on the table and didn't put it away immediately.
The weapon should have never left his possession, and he should have at least disengaged the hammer/unloaded it. Owning a weapon is a huge responsibility and just a small amount of negligence can lead to situations like this.
Not to mention the fact that if guns are in the household (even if locked up) the kids need to be educated about them.
That requires parenting, and that's far too much work for most people it seems. They would rather use a scapegoat like the Wii, violent videogames, and music instead of taking responsibility for their actions.
It's a horrible situation where someone innocent lost their life, but it's even worse when justice isn't made.
The law should have gray areas, but there's nothing that should keep this man from facing some charge, even if it is to remove his second amendment rights.
Whether he feels bad about it or not there should be a severe punishment for this level of recklessness, negligence and stupidity.
Exactly. Using that judgment, every person who recklessly drives and kills someone should be let off the hook because "they feel horrible about it." The same analogy can be used for any other situation where someone feels remorse for their actions.
I'm just glad it was their child. The real tragedy is when someone leaves out a gun, and their child shoots someone else's child.
That's pretty fucked up, it's still an innocent child with the whole world ahead of her. Don't devalue a life because of poor decision on the parent's part.
The Chinese people need Google. Here's why: 1. Go to Baidu.com 2. Search for "falun gong" 3. Enjoy your temporary IP ban.
The internet is a great danger to any dictatorship. It allows people who are secluded to see what the outside world is really like instead of the portrait that their overlords paint for them.
It would be nice if Google could find some third solution. I don't see it yet, but I'm not there.
1. Set up servers to be run remotely -- probably already done. 2. Configure equipment to failover to other sites in the even of outage/bombing. Probably already done. 3. Get employees out of China for a "meeting" at Google HQ. 4. Turn off filtering. 5. ??????? 6. Watch the mayhem ensue. And profit.
All of our servers are running Intel Xeon processors, battery-backed hardware RAID, and are connected to our upstream providers via a gigabit network. We offer five world-class, geographically diverse data center facilities for you to choose from:
* London, GB, UK
* Newark, NJ, USA
* Atlanta, GA, USA
* Dallas, TX, USA
* Fremont, CA, USA
You can view each data center's availability here.
Slashdot Mirror
I say fuck religion, especially Christianity. ESPECIALLY when it's French Christians.
Welp, just the response I expected...
I live in my mom's basement, but I'm 16.
Hospital IT responded by cracking down on outside devices but NOT really tightening up security on individual machines.
It's easier to shift the blame than to fix your own problems. It's amazing what people get away with in IT because of managers who don't know to crack down on it.
Some of their content isn't even that spectacular. They went around CES turning off TVs and were promptly banned from future ones.
To rephrase, "a LOT worse for us." A buddy of mine had to get their entire IT department to go around by hand and fix every computer by hand.
He tried to reproduce it and had problems? The summary of the problem made it seem like all svchost.exe's would get deleted no matter what.
I wonder what sort of specific conditions had to be met? Not that I like coming to the defense of McAfee... But has this been overblown?
We were hit by this but I called the guy who manages the AV server and told him to halt any updates and roll back to 5957. Only about 15 systems were hit with it, but none of them had SVCHOST deleted. I was able to isolate one and it was fine since we didn't have the "scan process" enabled. Here is an e-mail I sent to my department:
1. It was on 5958, but everything was running fine.
2. Since I knew there was a fix, I ran an on-demand scan.
3. McAfee picked up SVCHOST.EXE as a virus, and it tried to delete it but the clean failed.
4. Since the clean failed, all I had to do was manually run SVCHOST.EXE from the command line, force an update by right-clicking on the McAfee icon in the systray, and reboot. I ran another memory scan and there were no red flags.
And for this:
I wonder what sort of specific conditions had to be met? Not that I like coming to the defense of McAfee... But has this been overblown?
Specific conditions had to be met, but they were broad. The following were necessary:
- Windows XP SP3
- Real-time Scanning Enabled
- Definitions version 5958
The real time scanning pretty much does nothing but crawl the drive and inspect the processes regularly, so it would have eventually caught SVCHOST.EXE, killed it, and bricked your machine until you had a chance to apply the manual fix.
Overblown? No. Clusterfuck? Yes. It could have been a LOT worse.
We're talking about McAfee running on Windows. Way to be off-topic and ignorant yourself.
Not only that, but open source platforms aren't immune to their own fuckups. From just a little while ago: Clam AV screwup.
I was in Panajachel, Guatemala for a week in March and I only had my passport on me when I was going to and from Panajachel to the capital, which was one trip each way. Each of those times I only brought it because I was going to be leaving or had just arrived. I walked around town, went on the boats on Lake Atitlan to visit neighboring towns, and I didn't have my passport on me at all.
Seriously, though, we got hit hard with this.
I'm trying to avoid having this happen. I just called our guy who manages the AV server (among other things) and sent him this. He was skeptical, but wasn't opposed to rolling back the server to using 5957 for now until more builds on this story. My system hasn't updated to 5958 yet, even though the AV server was set to deploy that. Let's hope for the best...
The real WTF is right here. Why on Earth did you give a third party the ability to withdraw funds from your bank account? What did you think would happen?
Frankly, if you are doing online purchasing or paying for a game subscription, you should only use a credit card. You can get one with a low limit ($200~) with even the worst credit rating, or buy a prepaid card and pay as you go. PayPal can kiss my ass if they expect me to give them my bank and routing details. If I ever did that, it would be tied to a savings account which I deposit money into on an as-needed basis. My brother had a bad experience with them overdrafting his account because someone disputed a charge 59 days before the 60 day period was up.
I have three total cards, and here is what I use them for.
- Debit Card: Kept in a safe in my house, I use an ATM card to get cash.
- Credit Card with a $800 limit: Used for online subscriptions (WoW account, VPS, etc.) I also use it for gas, morning coffee, and it has a points system so I benefit. I also can view it online to see any charges made to it at any time on either my Crackberry or my home computer. Usually charges show up within 8 hours or less, 24 hours depending on where you use it.
- Credit Card with a much larger limit: Kept in my wallet for emergencies only. If I make an online purchase with it, I call my bank and have them give me a one time use CC number.
Also, all my cards say "CHECK ID" in big bold lettering on the back.
Remember, it was less than a decade ago that they finally convinced the last Japanese soldier to come out of the jungle.
I don't know if you are referring to a different event, but Hiroo Onoda didn't surrender until 1974. He refused to surrender until his original commanding officer came out to the Philippines to accept it. That is the kind of stranglehold that Hirohito had on the Japanese people during that time. Every able bodied person would have fought until the end because of how brainwashed they were.
Is there an addon that warns of cert changes? I don't know how to program, but it seems that would be a really good addon to develop. I'd donate to it.
Holy crap, after 12 years you're still an admin and you feel proud about this?
Not everybody wants to be a manager.
Or just look at the status bar before clicking a link, and it will tell you what you're opening.
Anybody who's been goatsed before should be doing that anyway on any site.
However, in this case the *stepfather* left a gun around that killed a child that wasn't his. He may or may not be suffering, and it should be investigated.
Read the article. Normally the gun was kept in a locked place away from reach by the children. He took the gun out because he thought he heard an intruder. After investigating, he let the gun on the table and didn't put it away immediately.
The weapon should have never left his possession, and he should have at least disengaged the hammer/unloaded it. Owning a weapon is a huge responsibility and just a small amount of negligence can lead to situations like this.
Not to mention the fact that if guns are in the household (even if locked up) the kids need to be educated about them.
That requires parenting, and that's far too much work for most people it seems. They would rather use a scapegoat like the Wii, violent videogames, and music instead of taking responsibility for their actions.
It's a horrible situation where someone innocent lost their life, but it's even worse when justice isn't made.
The law should have gray areas, but there's nothing that should keep this man from facing some charge, even if it is to remove his second amendment rights.
Cue Jack Thompson.
"See! See! I told you these video games turn kids into killers!"
Oh god, don't give him any ideas, please... I'm begging you...
Whether he feels bad about it or not there should be a severe punishment for this level of recklessness, negligence and stupidity.
Exactly. Using that judgment, every person who recklessly drives and kills someone should be let off the hook because "they feel horrible about it." The same analogy can be used for any other situation where someone feels remorse for their actions.
I'm just glad it was their child. The real tragedy is when someone leaves out a gun, and their child shoots someone else's child.
That's pretty fucked up, it's still an innocent child with the whole world ahead of her. Don't devalue a life because of poor decision on the parent's part.
$Political_Pundit_I_Disagree_With, is that you!?
Fixed that for you
No, I think I got it right this time.
if you get a pond.
Mosquitoes do too.
The Chinese people need Google. Here's why:
1. Go to Baidu.com
2. Search for "falun gong"
3. Enjoy your temporary IP ban.
The internet is a great danger to any dictatorship. It allows people who are secluded to see what the outside world is really like instead of the portrait that their overlords paint for them.
It would be nice if Google could find some third solution. I don't see it yet, but I'm not there.
1. Set up servers to be run remotely -- probably already done.
2. Configure equipment to failover to other sites in the even of outage/bombing. Probably already done.
3. Get employees out of China for a "meeting" at Google HQ.
4. Turn off filtering.
5. ???????
6. Watch the mayhem ensue. And profit.
I've now got two Linodes, one in the UK and one in Atlanta
.. UK?
I was pretty sure they didn't have servers outside the USA.. which is why my second virtual server is with Bytemark in the UK.
From their page.
Our Facilities and Hardware
All of our servers are running Intel Xeon processors, battery-backed hardware RAID, and are connected to our upstream providers via a gigabit network. We offer five world-class, geographically diverse data center facilities for you to choose from:
* London, GB, UK
* Newark, NJ, USA
* Atlanta, GA, USA
* Dallas, TX, USA
* Fremont, CA, USA
You can view each data center's availability here.
Alternative Registrars to GoDaddy?
Namecheap.com.
I use them exclusively.