Ok, you can live in your fantasy world, and I'll live in the real world, where there are Bad Guys Who Don't Give A Damn.
Humans, by nature, are opportunists who will take advantage of weaknesses, regardless of the consequences.
Isn't this what proactive security is intended to prevent? The cliche an ounce of prevention is worth more than a pound of cure comes to mind.
Any sysadmin worthy of his position will keep on top of security issues. If he doesn't do that and gets cracked, I have no sympathy whatsoever.
kuro5hin's problem was not a break-in; it was someone flooding their story queue. Why do you think scoop is being redesigned?
Here's a snack, now go troll elsewhere:P
...as long as damages exceeding $1,000 occurred.
Not for long:
Under current Michigan law, the unauthorized alteration, damage, destruction or use of a computer system resulting in at least $1,000 in damage is a felony punishable by 5 years in jail and/or a fine of $10,000 or three times the aggregate amount involved, whichever is greater. An amendment to the law, however, which takes effect September 19, will remove the $1,000 damage threshold.
Ok then, remove all the locks from your residence, and leave it for several hours. Perhaps nothing will happen the first time, or the second time, or the third, but you will be robbed eventually. Good security is important, and if whoever has root doesn't take measures to improve his servers' security, then he is an idiot and deserves whatever happens.
Labor expenses? I don't think so - a properly backed-up site takes only seconds to restore; and if it's only a defacement, repairing the defaced page takes a maximum of 5 minutes, depending on what system the site maintainers use to create the html. It takes me about 10 minutes to convert an entire directory structure to a new look and feel by hand, because I code templates; and all I have to do is drop the relevant information into the proper places in the code.
Exactly. A tar ycf site.tar.bz2 html/ is a very simple backup method, and can save your ass if you don't have other backup strategies at your disposal.
MarkKomus brought up a good point in his reply up above; but seriously - how long does it take to restore a webpage/site? Not that long at all; unless your site admin was an idiot and didn't make regular backups. Untar the backup and you're back in business within seconds. When people claim that it took them hours/days/weeks/whatever to restore a website, all I do is laugh at their incompetence.
I'm waiting for the day when some clueless suit brings a suit against/. for "DDoS" attacks when his company's site gets slashdotted - you know it'll happen:)
heh. Don't you just love how the media and guv'mint distort the meaning of "hacking"?
Although, I must admit that it is sometimes fun to tell clueless people that I'm a hacker, and watch their heads fill with images of seedy underground websites and criminal acts:)
How on earth do website defacements (in the Jesse Salens case) constitute monetary damages? I work as a web developer, and while fixing a website is work, it isn't that much work - a few minutes, max.
Umm, because I live in the UK, where bandwidth and server space costs so much, it's not economically feasible. But that's a seperate rant, so I'll leave it be.
Bullshit. There's absolutely nothing (except laziness - which is also evidenced by your refusal to touch perl) stopping you from finding a hosting company off of British shores that's cheaper than what you can find onshore.
Hmm, maybe it's a cultural thing, but extending an invitation to shampoo your smellies isn't exactly the right way to invite informed discussion, but an excellent way to provoke hostility. Tact, remember? Oh yeah, I forgot they bred it out of the USian race long ago...
One, it's a reference to As Good As It Gets, as malahoo already mentioned; not something meant to be taken seriously. As for the "USian race having tact bred out", keep in mind that it was your King's refusal to provide representatives in your legislature that caused the US to exist in the first place - so stop bitching about Americans not having tact.
I love Helix-Gnome; but I absolutely despise having to trick the installer into thinking that my box is a Redhat box, and ending up with *.rpm's in the process (I do not like *.rpm's).
Helixcode claims to support all major distributions; but, Slackware support is not there - and the last time I checked, Slack was most definitely a major distributions.
If I had the bandwidth, I'd go ahead and make the *.tgz's for Slackware support myself; but I'm only on a dial-up connection (*sob*), so I can't.
It will always remain secondary, due to its opressive and cumbersome license.
Hmmm... have you even read the BSD License? I would have to say that the GPL is far more oppressive in terms of what one can do with code than the BSDL is. With the GPL, code must remain open; whereas with the BSDL, it doesn't have to remain open (if for some reason it needed to be closed).
And as far as "cumbersome" goes, that caveat goes to the GPL, and not the BSDL - the BSDL states only 2 things: source must display the copyright, and binaries must display the copyright, license, and disclaimer. The GPL states that all derivative works must be under the GPL, source must be available, code can't link to non-GPL/LGPL code, etc.
It's all how open the original author of the code wants his code to be. Both the GPL and the BSDL in my opinion, are great licences, and I would use either one.
The GPL/BSDL bitchfests are idiotic, and pointless - just use whichever license suits your needs at the time.
Oh and before you accuse me of being a *BSD zealot, I use only Slackware, and love it (although my OpenBSD CD for my firewall should arrive in a couple of days).:-
There are also a number of other packages with security flaws and no updates available yet. Xchat, for example, has a well-known hole. Red Hat and
Mandrake have issued updates; nothing from Debian yet.
Does anyone else remeber how the Chritains Burned Books?
This is not exactly true. The Library at Alexandria was not burned intentionally. The Roman Emporer at the time (can't quite think of his name ATM) had ordered the ships in the Alexandrian harbor burned; and the fire unfortunately spread onto the docks and to the library.
Slashdot Mirror
Humans, by nature, are opportunists who will take advantage of weaknesses, regardless of the consequences.
Any sysadmin worthy of his position will keep on top of security issues. If he doesn't do that and gets cracked, I have no sympathy whatsoever.
Here's a snack, now go troll elsewhere
Not for long:
Under current Michigan law, the unauthorized alteration, damage, destruction or use of a computer system resulting in at least $1,000 in damage is a felony punishable by 5 years in jail and/or a fine of $10,000 or three times the aggregate amount involved, whichever is greater. An amendment to the law, however, which takes effect September 19, will remove the $1,000 damage threshold.
MarkKomus brought up a good point in his reply up above; but seriously - how long does it take to restore a webpage/site? Not that long at all; unless your site admin was an idiot and didn't make regular backups. Untar the backup and you're back in business within seconds. When people claim that it took them hours/days/weeks/whatever to restore a website, all I do is laugh at their incompetence.
Although, I must admit that it is sometimes fun to tell clueless people that I'm a hacker, and watch their heads fill with images of seedy underground websites and criminal acts
Bullshit. There's absolutely nothing (except laziness - which is also evidenced by your refusal to touch perl) stopping you from finding a hosting company off of British shores that's cheaper than what you can find onshore.
Hmm, maybe it's a cultural thing, but extending an invitation to shampoo your smellies isn't exactly the right way to invite informed discussion, but an excellent way to provoke hostility. Tact, remember? Oh yeah, I forgot they bred it out of the USian race long ago...
One, it's a reference to As Good As It Gets, as malahoo already mentioned; not something meant to be taken seriously. As for the "USian race having tact bred out", keep in mind that it was your King's refusal to provide representatives in your legislature that caused the US to exist in the first place - so stop bitching about Americans not having tact.
Helixcode claims to support all major distributions; but, Slackware support is not there - and the last time I checked, Slack was most definitely a major distributions.
If I had the bandwidth, I'd go ahead and make the *.tgz's for Slackware support myself; but I'm only on a dial-up connection (*sob*), so I can't.
Hmmm... have you even read the BSD License? I would have to say that the GPL is far more oppressive in terms of what one can do with code than the BSDL is. With the GPL, code must remain open; whereas with the BSDL, it doesn't have to remain open (if for some reason it needed to be closed).
And as far as "cumbersome" goes, that caveat goes to the GPL, and not the BSDL - the BSDL states only 2 things: source must display the copyright, and binaries must display the copyright, license, and disclaimer. The GPL states that all derivative works must be under the GPL, source must be available, code can't link to non-GPL/LGPL code, etc.
It's all how open the original author of the code wants his code to be. Both the GPL and the BSDL in my opinion, are great licences, and I would use either one.
The GPL/BSDL bitchfests are idiotic, and pointless - just use whichever license suits your needs at the time.
Oh and before you accuse me of being a *BSD zealot, I use only Slackware, and love it (although my OpenBSD CD for my firewall should arrive in a couple of days). :-
There are also a number of other packages with security flaws and no updates available yet. Xchat, for example, has a well-known hole. Red Hat and Mandrake have issued updates; nothing from Debian yet.
Non-free packages, I'm sure.
X-Chat is GPL.
http://www.peicommerce .com/HISTORY/ROMAN/CLEOPAT/LIBRARY.HTM
http://www.fwkc.co m/encyclopedia/low/articles/a/a001001097f.html
This is not exactly true. The Library at Alexandria was not burned intentionally. The Roman Emporer at the time (can't quite think of his name ATM) had ordered the ships in the Alexandrian harbor burned; and the fire unfortunately spread onto the docks and to the library.
Sometimes an accurate description is needed for a correct interpretation, you know? :P
Oh, btw, I maintain perfect grades in all AP classes
Any number of consecutive primes (I used 2 in each example), STARTING at 2.
My math was flawless, and in accordance to what you said (note that I am not arguing the theorem; just your initial description of it).