As someone who is English I understand that Slashdot is US centric at times....however this is an article in a UK publication by a UK author from a UK perceptive. I know no one RTFA to still.
DNS hack, some ok some down still,
on
The Register Hacked
·
· Score: 3, Informative
Using Just-Ping to check from 50+ locations around the world only 5% have what is traditionally the correct IP (212.100.234.54 according to Netcraft) or so have the current IP most say the DNS is down. http://just-ping.com/index.php?vh=www.theregister.co.uk&c=&s=ping!
I forced an update with Netcraft it now has a record of the another IP 68.68.20.116 with different server headers which I presume is the broken site.
Obviously you say April Fools however the best jokes are based on some fact and the fact is I know of at least 2 senior and talented devs that worked on MS Kinect project and around release time jumped ship to Google.
According to netcraft in the last year there has been about 40% increase in fully qualified domain names out there (includes subdomains not just top level so not a perfect stat but a good indication)
June 2008 172,338,726 FQDNs (http://news.netcraft.com/archives/2008/06/index.html) June 2009 238,027,855 FQDNs (http://news.netcraft.com/archives/2009/06/17/june_2009_web_server_survey.html)
So really you could say that cyber squatting is decreasing relative to the increase in domain names........
I agree, many corps have a similar attitude and therefore the stats are become more meaningless. There area a lot of corp workers that use older browsers and cannot/will not upgrade. What use is a message on Google for those people.
I atm work for Vodafone running their intranet. The browser policy is IE6.
Also how are they a browser can be out of date and unpatched and there is no way for the website to know this. They can only look at the user agent string to find this out and that will only tell you what browser version they are using not the patch level of it in say IE. It will just say 5.5, 6 or 7 or 8, etc.
I am a member of that forum (micrsoft's official IIS portal not merely "one of the many IIS forums on the 'net.") and have posted in that thread a few times. Initially it was very confusing as to what was happening - hence why I suggested it may be a asp vulnerability as it only seems to effect asp pages. It has not happened to any of my servers. Now it has become clearer that it is an SQL injection attack but I think in conjunction with asp pages probably via forms.
Many of the posters in that thread are first timers that have little idea what is happening and not experienced hosting admin. True it is funny to see them suffer from you slashdotters.
Speaking as an IIS admin there is little we can do directly. SQL injection is something that I blame slack devs for and will continue to. That and companies having little to no budget for decent IIS admin/devs.
It is difficult to get accurate stats on this. Most will be stealing passwords, XSS, SQL injections, etc. So it does seem unfair and/or pointless to list via web server software or OS platform when that has little to do with it actually software you run it on.
This is dodgy admin and slack devs are to blame not the technologies.
For reference there have been no exploits at all in IIS 6.0, which comes with Windows 2003, whereas they have been a few with Apache.
Also to add to all the comments of speculative nature of this article.
One more.
It is translation for the words "new version" "Pig Latin" http://en.wikipedia.org/wiki/Pig_Latin
I mean Pig Latin ffs.
Now if it is meant to top secret I am sure there are not hundreds of thousands of English to Pig Latin translators for Google...........
Although the article linked is old (come on it would not be slashdot if not, would it) here is a link to the new article from less than month ago (that I suppose should have been linked to originally - maybe update the summary)
http://www.pinktentacle.com/2007/07/aist-improves- 3d-projector/
Just to put this in perspective.
In general the BBFC do a needed job. Checking to see if film, video, games are fit for the public.
I would hope most would agree that a game/film/video glorifying child rape or pro racist views, etc should not be available for the public. It is not a freedom of speech issue.
All that has happened so far is that they have looked at the game and thought that some changes may have to be made for a release. That is all. They do this all the time with horror films, etc. No doubt they will suggest xyz needs to be changed for an 18 release.
I imagine none of you here have seen a finished copy of the game that they have had for review so commenting on the level of violence somewhat strange.
Look I am a gamer too and yes politics *may* have come into play and too am offended by the misrepresentation of the boys murder relating to the last manhunt game but I see this no different for any other classification review they have to do.
RTFA
================
All versions of Windows can be manually updated using the tzedit.exe utility or other techniques documented in Knowledge Base article 914387 and similar articles for other countries, which is the preferred method of remediation for any product outside of Mainstream Support.
================
It really isn't a problem it the util is very easy to use. You can even put their own home town in for them.
"There is no good reason for Vista. Windows server 2003 and XP could serve for another 20 years under a nice incremental improvement process. But no, MS is going to once again pull the rug out from under us. A whole new class of security holes, new libraries, new incompatibilies and if you were dumb enough to pay for certs, a whole new set of certs. SQL Server 2000 was around for about 7 years, that gives you a reasonsable ROI. Changing every 2-3 years leaves you no ROI as by the time things stabilise, you have to change again."
Where on earth do you get 2-3 years from when talking about XP? XP came out over 5 years ago - October 25, 2001. And Vista isn't even out yet.
You imply that XP will not work when Vista comes out obviously this is not the case. Microsoft will probably end up supporting XP well over the 7 years (well it is over 5 so far) you think is a reasonable ROI.
"I come to my judgement based on the premise that those most DIRECTLY responsible are to blame.
First, the child.
Then, the parents that allowed him to play a violent game 'obsessively'.
"
Yeah they should be punished. What would be suitable? Gunshot to the back of the head maybe...
"played the game ''obsessively'' for several months before he shot his father, stepmother and stepsister in July 2004... "
Maybe the makers could counter sue saying that playing the game ''obsessively'' for several months extended the lives off the family members by that long instead of killing them before.
Bad taste I know but the whole thing is really.
Slashdot Mirror
"But fair play to The Register, I frankly thought it was dead already, they've done well to keep such a useless publication going even this long."
Oh the irony posting this on Slashdot!
As someone who is English I understand that Slashdot is US centric at times....however this is an article in a UK publication by a UK author from a UK perceptive. I know no one RTFA to still.
Using Just-Ping to check from 50+ locations around the world only 5% have what is traditionally the correct IP (212.100.234.54 according to Netcraft) or so have the current IP most say the DNS is down.
http://just-ping.com/index.php?vh=www.theregister.co.uk&c=&s=ping!
I forced an update with Netcraft it now has a record of the another IP 68.68.20.116 with different server headers which I presume is the broken site.
http://uptime.netcraft.com/up/graph?site=www.theregister.co.uk
The hackers could have done more damage if they also increased the TTL of the domains they poisoned. 24 hours seems to be the time atm.
Obviously you say April Fools however the best jokes are based on some fact and the fact is I know of at least 2 senior and talented devs that worked on MS Kinect project and around release time jumped ship to Google.
eg My old friend Ryan Geiss is one who co-wrote the skeletal tracking for Kinect is now at google.
http://www.geisswerks.com/about_natal.html
So they are apps designed for a browser platform specfic implementation of a dev version of HTML5. Hardly standards like what was implied........
"let them access sites and Web applications that rely on standards that IE doesn't support, primarily HTML5."
What does this mean? HTML5 is still in dev. Are there really sites or app that *rely* on it?
The only things that browsers can support is the latest betas of this of HTML5.
MS basing is one thing about standards but is it is another to quote standards that do not exist yet.........
According to netcraft in the last year there has been about 40% increase in fully qualified domain names out there (includes subdomains not just top level so not a perfect stat but a good indication)
June 2008 172,338,726 FQDNs (http://news.netcraft.com/archives/2008/06/index.html)
June 2009 238,027,855 FQDNs (http://news.netcraft.com/archives/2009/06/17/june_2009_web_server_survey.html)
So really you could say that cyber squatting is decreasing relative to the increase in domain names........
Not really increasing compared to domain names
I agree, many corps have a similar attitude and therefore the stats are become more meaningless. There area a lot of corp workers that use older browsers and cannot/will not upgrade. What use is a message on Google for those people.
I atm work for Vodafone running their intranet. The browser policy is IE6.
Also how are they a browser can be out of date and unpatched and there is no way for the website to know this. They can only look at the user agent string to find this out and that will only tell you what browser version they are using not the patch level of it in say IE. It will just say 5.5, 6 or 7 or 8, etc.
I am a member of that forum (micrsoft's official IIS portal not merely "one of the many IIS forums on the 'net.") and have posted in that thread a few times. Initially it was very confusing as to what was happening - hence why I suggested it may be a asp vulnerability as it only seems to effect asp pages. It has not happened to any of my servers. Now it has become clearer that it is an SQL injection attack but I think in conjunction with asp pages probably via forms. Many of the posters in that thread are first timers that have little idea what is happening and not experienced hosting admin. True it is funny to see them suffer from you slashdotters. Speaking as an IIS admin there is little we can do directly. SQL injection is something that I blame slack devs for and will continue to. That and companies having little to no budget for decent IIS admin/devs.
It is difficult to get accurate stats on this. Most will be stealing passwords, XSS, SQL injections, etc. So it does seem unfair and/or pointless to list via web server software or OS platform when that has little to do with it actually software you run it on. This is dodgy admin and slack devs are to blame not the technologies. For reference there have been no exploits at all in IIS 6.0, which comes with Windows 2003, whereas they have been a few with Apache.
Even for slashdot that is terrible........
Also to add to all the comments of speculative nature of this article. One more. It is translation for the words "new version" "Pig Latin" http://en.wikipedia.org/wiki/Pig_Latin I mean Pig Latin ffs. Now if it is meant to top secret I am sure there are not hundreds of thousands of English to Pig Latin translators for Google...........
Although the article linked is old (come on it would not be slashdot if not, would it) here is a link to the new article from less than month ago (that I suppose should have been linked to originally - maybe update the summary) http://www.pinktentacle.com/2007/07/aist-improves- 3d-projector/
Just to put this in perspective. In general the BBFC do a needed job. Checking to see if film, video, games are fit for the public. I would hope most would agree that a game/film/video glorifying child rape or pro racist views, etc should not be available for the public. It is not a freedom of speech issue. All that has happened so far is that they have looked at the game and thought that some changes may have to be made for a release. That is all. They do this all the time with horror films, etc. No doubt they will suggest xyz needs to be changed for an 18 release. I imagine none of you here have seen a finished copy of the game that they have had for review so commenting on the level of violence somewhat strange. Look I am a gamer too and yes politics *may* have come into play and too am offended by the misrepresentation of the boys murder relating to the last manhunt game but I see this no different for any other classification review they have to do.
I, for one, welcome our new OS overlords. ... ...
Oh its Microsoft.
Often boredom leads to half finsihed blog entries, projects and p
RTFA ================ All versions of Windows can be manually updated using the tzedit.exe utility or other techniques documented in Knowledge Base article 914387 and similar articles for other countries, which is the preferred method of remediation for any product outside of Mainstream Support. ================ It really isn't a problem it the util is very easy to use. You can even put their own home town in for them.
"There is no good reason for Vista. Windows server 2003 and XP could serve for another 20 years under a nice incremental improvement process. But no, MS is going to once again pull the rug out from under us. A whole new class of security holes, new libraries, new incompatibilies and if you were dumb enough to pay for certs, a whole new set of certs. SQL Server 2000 was around for about 7 years, that gives you a reasonsable ROI. Changing every 2-3 years leaves you no ROI as by the time things stabilise, you have to change again."
Where on earth do you get 2-3 years from when talking about XP? XP came out over 5 years ago - October 25, 2001. And Vista isn't even out yet.
You imply that XP will not work when Vista comes out obviously this is not the case. Microsoft will probably end up supporting XP well over the 7 years (well it is over 5 so far) you think is a reasonable ROI.
"I come to my judgement based on the premise that those most DIRECTLY responsible are to blame. First, the child. Then, the parents that allowed him to play a violent game 'obsessively'. " Yeah they should be punished. What would be suitable? Gunshot to the back of the head maybe...
"played the game ''obsessively'' for several months before he shot his father, stepmother and stepsister in July 2004 ... "
Maybe the makers could counter sue saying that playing the game ''obsessively'' for several months extended the lives off the family members by that long instead of killing them before.
Bad taste I know but the whole thing is really.
What he will inherit a broken keyboard where E's appear on the screen as 3's, etc...
Rumours that Microsoft would rather the Antitrust ruling be done by Slashdot.com than the EU are unconfirmed.