I don't think the browser would ever need to transmit the private key in this scenario. However, yes: if the user or browser was some how tricked into uploading it -- you are compromised. This is still better than passwords, which are easy to attack with dictionaries and rainbow tables.
I have to agree -- dirigibles seem like a much more elegant solution -- not requiring a lift power source.
I mean, everyone talks about the power to send up to the copter -- but after that power is spent on lifting the damn thing, what power is left to do any useful work? communication towers, especially transmission towers require a fair amount of power all by themselves.
Exactly -- I always wondered why this was not done -- is it a limitation of the form factor? Why not have two arms? We already use multiple heads, multiple platters. Seems like you could double the performance or at least allow a minimal cost error checking (single disk-level mirroring?) with such a solution.
These are not solutions. USB devices come in more than just Storage flavors. What if I design my usb "key" to instruct the host machine that I am a "sound card" and I abuse a sound card driver bug?
Sounds crazy right? Except that exact behavior has been done on none other than: Linux. See: CVE-2011-0712
If only the security/automation could be programmed to talk -- a portal/portal 2 sound pack would be awesome. "Target lost.. Are you still there?" from the sentry bots.. 30 seconds before the lights power off due to inactivity.
tl;dr: ICANN grew up, and recognized just because they don't have unanimous support on a TLD being suitable, doesn't me they should block it. Oh, and the fees collected for the domains are better than a sharp stick in the eye.
Just to further Karhgath's point: just because some sensors detect radiation, does not mean the employees are directly exposed to it. You forget this is still a nuclear facility, with many layer of protection (even if some have been impaired). They aren't walking around in jeans and t-shirts. You can assume they are taking as many precautions as they are required given the circumstances.
I agree, they won't ERADICATE piracy with lower prices.
I actually think the sales numbers/experiment from Steam/L4D speak more about charging first adopters a premium, then tapering off your pricing as the new hotness factor rolls off, promoting sales later on for basically free. Using that model alone, you can charge less up front, and still taper the prices off and come away with the same net income, just over a longer period.
Sounds like you have poor unix admins that are exactly the reason this mindset is prevalent. I can tell you from 15+ years as a Unix admin, the only times I have "needed" to reboot were: upgrades (OS or hardware), hardware failure, and testing of init scripts. Real, stable, properly administered systems don't need rebooting. I even think this is fair to say of Windows. The problem is, as already described: there are not many good Windows Admins.
To be fair, we have always been combating these things.. It's just in the last 20 years, media has begun to slop catchy nick names to them to sell more eyeballs.
This is a common problem when you operate infrastructure that interfaces with multiple vendors. Sometimes you just have to forge ahead and fix the problems as they come up. I tend to agree with your assumption: lazy vendors not getting on the ball and doing their share of the legwork to stay compatible with the upgrade, who then spun stories about how the LSE's new system is "broken".
Gasoline is not the only thing derived from petroleum resources.. You will still depend heavily on OPEC for all of your plastics, fertilizers, pesticides, and thousands of other uses. So OPEC will still continue to be pretty difficult to ignore.
Though I think you are being sarcastic, talk to the majority of the people practicing medicine and they will agree that when speaking to most level-headed mothers, their intuition is often better than the doctors opinion after seeing the patient for 5-30 minutes.
Medical science is absolutely a wonderful thing, but keep in mind it's not perfect, especially when it comes to children.
Bingo. If they already have a sniffer on your local network, you were compromised long before they decrypted your routers login. Most people send way more information over regular HTTP during the course of the day that you can imagine (people still using non SSL/TLS pop3/imap or SMTP is a great one).
For a server with say, 16x4GB dimms, that can add up real quick. Consider a farm of 40 such machines. Every watt counts.. when dealing in extreme scales (both small and large) Not to mention, heat generated is just as significant as power drawn.
I think this is best demonstrated by BEA/Oracle JRockit. Nobody every bought JRockit as a stand alone replacement for HotSpot. It pretty much only used when packaged with BEA/Oracle Weblogic. Doesn't matter that it had some really cool hooks into Mission Control, and JMX extensions (which java eventually caught up to).
Judging by plenty of the comments in threads similar to this, I think most of us are tired of seeing Ask Slashdot posts on how to do his or her job. Had this been really cutting edge, or new grounds, I could understand. However.. Enterprise PKI? Seriously? If this is to be the continuing trend of Ask Slashdot, I need to adjust my filters.. because that is just sad.
I'm finding more and more IT folks are standing around waiting to be spoon-fed solutions, instead of trying to research and educate themselves on what is already out there. It worries me that this is not just the trend in IT, but across all occupations. Am I just getting old and crotchety, or is this a new trend?
Slashdot Mirror
I don't think the browser would ever need to transmit the private key in this scenario. However, yes: if the user or browser was some how tricked into uploading it -- you are compromised. This is still better than passwords, which are easy to attack with dictionaries and rainbow tables.
I have to agree -- dirigibles seem like a much more elegant solution -- not requiring a lift power source.
I mean, everyone talks about the power to send up to the copter -- but after that power is spent on lifting the damn thing, what power is left to do any useful work? communication towers, especially transmission towers require a fair amount of power all by themselves.
Exactly -- I always wondered why this was not done -- is it a limitation of the form factor? Why not have two arms? We already use multiple heads, multiple platters. Seems like you could double the performance or at least allow a minimal cost error checking (single disk-level mirroring?) with such a solution.
DNS traffic from the client may still be used to identify infected hosts -- but it is certainly less simple than it used to be.
These are not solutions. USB devices come in more than just Storage flavors. What if I design my usb "key" to instruct the host machine that I am a "sound card" and I abuse a sound card driver bug?
Sounds crazy right? Except that exact behavior has been done on none other than: Linux.
See: CVE-2011-0712
TCS no doubt.
And how exactly do you "lock-down" the internet? That isn't as simple as flipping a switch. Even the great firewall of china has it's limitations.
There is a large crater left over from nuclear testing out there -- Sedan crater:
http://deputy-dog.com/2009/06/worlds-largest-man-made-explosion.html
I would assume all the others are smaller craters from various other experiments.
If only the security/automation could be programmed to talk -- a portal/portal 2 sound pack would be awesome.
"Target lost.. Are you still there?" from the sentry bots.. 30 seconds before the lights power off due to inactivity.
tl;dr: ICANN grew up, and recognized just because they don't have unanimous support on a TLD being suitable, doesn't me they should block it. Oh, and the fees collected for the domains are better than a sharp stick in the eye.
Just to further Karhgath's point: just because some sensors detect radiation, does not mean the employees are directly exposed to it. You forget this is still a nuclear facility, with many layer of protection (even if some have been impaired). They aren't walking around in jeans and t-shirts. You can assume they are taking as many precautions as they are required given the circumstances.
I agree, they won't ERADICATE piracy with lower prices.
I actually think the sales numbers/experiment from Steam/L4D speak more about charging first adopters a premium, then tapering off your pricing as the new hotness factor rolls off, promoting sales later on for basically free. Using that model alone, you can charge less up front, and still taper the prices off and come away with the same net income, just over a longer period.
Sounds like you have poor unix admins that are exactly the reason this mindset is prevalent. I can tell you from 15+ years as a Unix admin, the only times I have "needed" to reboot were: upgrades (OS or hardware), hardware failure, and testing of init scripts. Real, stable, properly administered systems don't need rebooting. I even think this is fair to say of Windows. The problem is, as already described: there are not many good Windows Admins.
To be fair, we have always been combating these things.. It's just in the last 20 years, media has begun to slop catchy nick names to them to sell more eyeballs.
This is a common problem when you operate infrastructure that interfaces with multiple vendors. Sometimes you just have to forge ahead and fix the problems as they come up. I tend to agree with your assumption: lazy vendors not getting on the ball and doing their share of the legwork to stay compatible with the upgrade, who then spun stories about how the LSE's new system is "broken".
Gasoline is not the only thing derived from petroleum resources.. You will still depend heavily on OPEC for all of your plastics, fertilizers, pesticides, and thousands of other uses. So OPEC will still continue to be pretty difficult to ignore.
I don't know, the guy does pretty good house remodels down in Florida these days.
Pretty sure you can still mine vespene gas after it's depleted, just has lower yields.
Come on man, don't you know that was a parable? He doesn't work with actual women, nor would they come over to play video games.
Totally agree -- the overall design is much cleaner, but the excessive white space around everything gives the impression of bloated pages..
Though I think you are being sarcastic, talk to the majority of the people practicing medicine and they will agree that when speaking to most level-headed mothers, their intuition is often better than the doctors opinion after seeing the patient for 5-30 minutes.
Medical science is absolutely a wonderful thing, but keep in mind it's not perfect, especially when it comes to children.
Bingo. If they already have a sniffer on your local network, you were compromised long before they decrypted your routers login.
Most people send way more information over regular HTTP during the course of the day that you can imagine (people still using non SSL/TLS pop3/imap or SMTP is a great one).
For a server with say, 16x4GB dimms, that can add up real quick. Consider a farm of 40 such machines. Every watt counts.. when dealing in extreme scales (both small and large)
Not to mention, heat generated is just as significant as power drawn.
I think this is best demonstrated by BEA/Oracle JRockit. Nobody every bought JRockit as a stand alone replacement for HotSpot. It pretty much only used when packaged with BEA/Oracle Weblogic. Doesn't matter that it had some really cool hooks into Mission Control, and JMX extensions (which java eventually caught up to).
Judging by plenty of the comments in threads similar to this, I think most of us are tired of seeing Ask Slashdot posts on how to do his or her job. Had this been really cutting edge, or new grounds, I could understand. However.. Enterprise PKI? Seriously? If this is to be the continuing trend of Ask Slashdot, I need to adjust my filters.. because that is just sad.
I'm finding more and more IT folks are standing around waiting to be spoon-fed solutions, instead of trying to research and educate themselves on what is already out there. It worries me that this is not just the trend in IT, but across all occupations. Am I just getting old and crotchety, or is this a new trend?