I can safely say that the concept of partitioning sites into destinct categories is not really all that accurate. Generally I would think that when you look at the net you are looking at the creativity that created it and are seeing various facets of people who inhabit it.
For example that suit and tie lawyer may be a real stif but how do you know when he dosn't get home and say have a real funky time? Same goes with the internet and how you just can't categorize it.
I was wondering is there is an exact say formal method of reverse engineering that works for hardware and such. I am really quite curious if I am to be more fully informed about the process. I would have thought it was just guess test and repeat however I may more than likely be wrong in this account. Sometimes for some things there is no other way to do something then use reverse engineering. Most old and unattended cobol applications needed a little RE before their true nature was discovered.
I hope this works I have been getting a great many network reed errors or something (may be a little conspiracy)
Hmm I bet I could post the theory of gravity here and it would be de-moderated by some power hating wacko or maybe someone who just decided to try out their new slashdot-terminal demoderating python script. Exactly how do I make myself a total looser? I bet that cannot be easily expressed without resorting to physical violence of childish name calling.
I have played angband, kamband, adom, zangband, alpha man, Quest 64, the emacs lisp dunnet, various infocom games, etc. I chose to buy and play Final Fantasy VIII and VII because in terms of sheel scalability of the playstation platform and graphics quality there are few better. Generally I like things with a little pizzaz when I play console games because I don't have that overclocked PIII or something. I like rpgs and I like squaresoft because for interesting games with man possibilities I like their offerings. Are there any other offerings that I should play that anyone would recommend?
If you have seen the actual proposed selling price in yen (39,800) and you do a currency conversion to USD you get the suggest price range of 360-370 USD. Now considerig that the starting retail price for the playsation in 1995 when it came out was about $300 USD we must conclude that if could very well retail for that. What you are not counting on is that people will buy a system for the games that they want. I personally like the Final Fantasy series and will most lkely get a P2 when FFX comes out.
Now here is my question for people why are fightih games such a big deal compared to other genres.
Uh, and exactly who is supposed to decide who gets protection under the law? Perhaps everyone who has over a certain amount of money should be just thrown in jail, since we know they couldn't have actually earned it. They must have stolen it by exploiting "average" citizens.
I could say that if one were to get at least $1,000,000,000 that said person has most likely defrauded some person or done something dishonest in their lives. That is a fact that I am at least 99.9% sure of.
Largely to get more money than anyone else infers that you have some very large advantage over others with similar levels of work. I think that parly is bad. One could say that perhaps because I don't cheat people I am making less money than you if you do. That is what is bad.
In fact, you've convinced me. By your standards, I think you're too rich to deserve protection under the law. I mean, it's pretty darn easy for you with your expensive computer, etc, when people are starving around the world.
Wish I could show you my computer some time. Incidentally the computer I am writing these posts dosn't even belong to me. I have a piece of shit for a machine. Sure if you want to to condemn me for at least getting something that would work half way decently then perhaps I am guilty of that.
I would almost bey $1,000,000 dollars that you in fact have bested me in the PC hardware arena any day of the week. However the people who are in other countries are in fact largely there because of policies that their government's took in the past which essentially made their countries less avaible for advancement. I really can't change history and neither can you.
So all that matters is what's important to you, I see. Yeah, that's a rational outlook.
It's called desperation I sure you have never heard of it either. Essentially when you have called every retailer or wholesaler in a 200 mile radius for a product you are forced to look to your only other option avaible to you. I was forced to use the internet to get what I wanted it was not a choice that would have resulted in getting the product to work properly without the choice so therefore I made the choice.
I already stated that it's "not a huge deal right now", but the time to nip it in the bud is when it's not a huge deal.
I really don't think that using the internet will ever supplant the traditional means of shopping at all. You may think so and others may think so but that would mean that business will crawl to a slow pace and that half of everyone will be going broke if they actually try to run their own business. Eventually this will gain even more power for corporations and take away your power.
I think I've been probably been taken by a troll.
Well haven't been moderated to that yet but I think with the sentiment that big business should be helped when things go wrong I guess I will be soon.
Incidently it is real hipocracy to think that corporations are evil and must be destroyed one minute and the next are the perfect angels of the universe the next. Which one is it? Make up your mind right here and now before you people do even more contradiction and say the Windows is the best and that the moon is composed of cheddar cheese.
Pardon my counter flame but I really was wanting to ask the individual who came up with this information exactly what *HIS* opinion on such things. However I will continue to remain civil throughout this discussion and not get overly excited.
First of all, corporations are owned and run by citizens. And what exactly does "average" mean? Anyone not like you is automatically a non-citizen and not deserving of protection under the law?
Gnerally there are groups that I would think have a better chance to "fend for themselves" so to speak. I think we all could agree that Microsoft is not entitled to such protection because they most likely could easily hire their own private army of assassins to do so form of quasi-legal garbage and just might get away with it.
Corporations because like so many of the people here have said are EEEEEEEEEEEEVVVVVVVVVVVIIIIIIILLLLLLLL and are akin to the Third Reich in their effect. Well I guess those widdle ol' corporations can just fend for themselves now that the heat is on or will you just moderate this down and just continue to think that the world is comprised of people who like money and moeny makers.
I mean average man is not a person who could easily buy a large mansion in southern France and who has real worries and real concerns that do not seem like he belongs to the court of Louis XVI.
Second, even if the attacks are against corporations not affiliated with you personally, others just might want to use the services they offer. Some of us even like the services they offer. Not to mention that attacks against them cause problems for sites in the general subnet vicinity (which might be some non-profit socialist site that you like).
Nope can't say that I use the internet on a daily basis to satisify my hunger for stuff. I have only bought on the internet 2 times for a total of 3 items and that was only because I couldn't very easily get what I wanted at a store (debian CDs)
Lastly, the FBI is involved because this is a very serious matter. It was an attack on the economic infrastructure. Maybe it's not a huge deal right now, but the net is becoming more and more important to the economy (particularly business-to-business services), and it's time to nip these idiots in the bud, and throw them in jail for twenty years to send a very strong message.
What that "The Business of America is Business" --Calvin Cooledge 1924. I really hate business and it's related power. That's why I got involved in CS because I didn't want to spend the rest of my life counting someone else's money for the rest of my professional career.
I can't even now see that a large portion of money is actually being transfered online versus traditional methods I would love some hard data to back up your claims.
I really believe the motive is money via stock price manipulation.
So you think that this is a form of sophisticated industrial terrorism? That seems highly unlikely.
Taking down a dot.com company is like grounding an airlines fleet.
I surely hope that the internet concept of business is not the dominate form of doing business and that no other could be done to the level that an actual place of business becomes secondary.
Maybe because you'd like to buy something from them?
Could someone give me a good example where a couple of hours of time really matters in a situation where I could just get off my lazy ass and just get the same item from a "real" store?
I really wouldn't mind getting some fresh air and still getting what I wanted from the store while not depriving people of freedom because some lazy cracker wants to bomb a site with IP packets.
But I have perfectly functioning DSL, so I sold my modem and can't dial up anymore. What would I do then?
For how much? A couple of bucks? I am sorry if you can afford DSL I don't think your hurting and if you can access E-trade I would especially say your not hurting at all.
I have access to only at 2400bps modem at home does that mean that it is a crime if I don't have a local number for a BBS to E-trade? When you get some technology you become dependent on it. When you chose to live 50 miles from work and relied on your can and it dies do you feel cheated?
The real danger is that these punks (or punk, co ordinated attacks could be one guppy with a pile o passwords and a little time on their hands) are forcing the PTB to take action. With or without government conspiracy the PTB will march forth with constricting and stiltifying regulations that will hinder and shackle the rest of us, and not being able to get online or search Yahoo will make Joe newbie their ally in doing so. Sayyyy... when did that Mitnick feller get sprung;-)
The more services that you make available to everyone on the internet, the more likely you are to be compromised due to some bug in some software that you're running that noone knows about today, but that someone's goign to find out about and exploit tomorrow.
What about Red Hat 5.2 right *looks at time on watch now!!!* or perhaps Debian 2.0? How about slackware release 3.0? I think these things are plenty old to get out all the bugs.
You can't say that anyone with any administrative ability can put up all sorts of stuff and not get rooted. that's simply not true. you would have to be very very lucky to run a machine with that kind of availability and that much code accessible to the general public and not eventually get broken into.
What if I do something like this *sly grin*.
Any connections that originate from anywhere outside of the "approved" range and that do not originate from usage of the login program or any other apporved command and do not contain a proper exit code will drop into a restricted shell where each and every command is logged and perhaps access is not given to net enabled commands?
Port scans. There are tools that people use to continuously probe for machines that run various operating systems. Especially if you are a student and don't have a strong firewall. Crackers will break into the network and scan for users with various operating systems. If they find one that they know how to break, they'll do so. It's a lot like leaving your car in a dark parking lot without having a good security system. Thieves can break in within a matter of seconds. The same is true with crackers.
Tell me how do these people actually live and how do they earn a living if they spend all day running port scanners?
Some crackers are just script kiddies trying out there new/old tools/toys. Others are professionals that are testing their skills. Either way, its good to be prepared if you are on the net. Win 95 has poor connections (no daemons and such) and probably will not have a problem. But if you use NT, you better be careful. The default settings of RedHat are not very secure, and should be turned off. Did you select "Everything" on your install?
Suppose I am running a version of Red Hat or Debian that is extremely secure and everything is non exploitable (there are some distros out there that meet these requirements) what then? Is is still bad not to really care about security?
The best thing to do with a Linux distribution, is to install without any services. Then go back and only install the ones you use. At least you will know what you do and don't have.
One of my great dreams is to create a httpd server over a good modem link. Run the slash code and have a kick ass site without mucho buckos. The linux gazette in one of it's earlier issues discussed about taking a free page and then having your linux machine dynamically update a link on said page to your current IP number assigned and whamo instant slashdot clone!
Yeah but how many average people decide to stockpile guns and spout anti-government propaganda. Of course in any area when you tell people they such they are not going to be on your good side from the get go.
Considering that the targets of these attacks have been large corporations and such I ask this.
Why should I as the average net citizen and as a citizen of the United States care that sites are being taken down. And since the FBI is involved does this mean this is a serious matter?
I don't really need to. Essentially when I get the chance for some real power I will anything and everything that currently will allow for itself to be networked. I have seen too many cases where anal sysadmins just didn't want to let people do anything because they were idiots and wanted to stop people from using a small ammount of vast system resources. The mere fact that you have theories that suggest that people should not run various servers is indicative of that fact that they want total and compelte control over every facet of our lives. WHoa run that last sentence by me again! That's right, this DDOS detector is really a secret government plot to gain "complete control over every facet of our lives." So you better not run it. Terminal doesn't need to check security because he "doen't really need to." Well I think that's obvious because " Essentially when I [Terminal] get the chance for some real power I will anything and everything that currently will allow for itself to be networked. Whatever that means, anyone else confused besides me?
*Sigh* sometimes I get a little carried away with myself.
What I mean to say is that given the chance for some real insane bandwidth I would run all of the nice ammenities like an irc server, an http server, a cvs server, sendmail, web based interface for email (aks atdot), slashdot code, mangband, regularly pull html pages (slashdot's), gimp interface, ftp, ssh, etc. This is what I mean. Any person with any administrative ability could very easily to this and still be secure. All of these things are possible except hardly anyone does them because they are lame and foolish. I think that what we really need from the world is what we had back a few years ago when there were more free services.
Free services were the backbone of emerging internet factors back in the early days. This is what I mean. Instead of being afraid of your own shadow you should really allow more freedom.
It makes perfect sense, the more power you have, the less corrupt you are.
Let's just say I haven't seen examples of the FBI beating up people, buddying up with people, taking bribes, working for their own personal agenda, violating civil rights, etc.
Your box gets cracked and they don't touch your stuff (as you predict). They do, however use your box to launch a DDoS against whitehouse.gov or even worse from your perspective crack boxes further on that launch a DDoS. A few days later, the secret service is knocking on your door and taking your hardware away and you end up spending thousands in legal fees.
But you can clearly indicate that someone connected and that it wasn't you. Furthermore you could very easily say that you had a little disclaimer that indicated that you in fact were not liable for anything that went wrong. This can absolve you.
Do you still think, no harm, no foul?
Oh there is foul but that's what targeted hits are for.
You are assuming an unusual amount of intelligence for a government agency.
You know that not everyone who works for the government is an idiot.
Your points are somewhat valid except for the first one (anybody around here trusts the FBI? Anyone? Anybody?), but again you assume that the Feds have no more important hidden goals that you know nothing about.
I trust them more than I trust the god damned bastards who run the local PD where I live. Believe the level of shall we say improper conduct is a lot greater at the local level.
I would still not run it and would not recommend to people to run it. Besides, it is not that hard to check, e.g., standard trin00 ports with other tools.
Well I state similar things and get flamed I guess you are luckier.
So have you configured your box to tell you when you're being scanned? You'll be surprised how often it happens. Next, check your system to see if you've already been broken into. Please.
I don't really need to. Essentially when I get the chance for some real power I will anything and everything that currently will allow for itself to be networked. I have seen too many cases where anal sysadmins just didn't want to let people do anything because they were idiots and wanted to stop people from using a small ammount of vast system resources.
The mere fact that you have theories that suggest that people should not run various servers is indicative of that fact that they want total and compelte control over every facet of our lives.
If I were quite wealthy I would just run a system where I would allow free use of resources for almost anything. As such I would just put a little disclaimer that whatever people do is non of my business and that I take no legal responsibility. Plain and simple.
I know I'm breaking my own rule here, but from now on I will no longer reply to him either. He's just posting shit like this to get the bonus karma from heavily-replied-to comments.
Well thanks for the slame Wakko I sure that a "mature" person like you can just silence dissidents and pretend they aren't here.
I am not deliberately interested in gaining karma however I am interested in figuring out why I should care when I and the vast majority of Americans cannot see why anyone should care about issues that are mainly concerned with the security of machines that has historically cost several thousand dollars and had even more expensive per month costs to achieve them.
Essentially what people do when they do little scare tactics is that they try to subdue the isolation of their plight. I had a reasonable idea (from many periodicals and reference books about computer security) that internet security was pretty much fixed for most uses.
What he says is controversial only to those who would bother to reply to such inane, stupid viewpoints to begin with. Please do not give him forum.
Now, now, now little man do you realise that I care little for what happens. I can just as easily just get another account on slashdot change my wording slightly and then succeede. It's that simple. Bingo. Do you know that I have been on slashdot's database in my third account reincarnation. I have had people flame those 2 other accounts before and I just bounced back. I know I am unpopular and quite frankly I see this as a plus. I want to probe the world before I get out in it.
Largely security concerns are not valid if I just have say crap on my machine. Tell me what the problems are if you have nothing but OS system components and a net connection? What possible problems could actualyl happen say someone could actually crack your box? I have backups and such and I don't really care if some ass manages to format the partition. With all the modern hardware out there and the speed and ease of installation there is little reason to care.
For anyone who's interested in actually doing this blantly illegal activity I have a test machine set up in a computer lab. DoS away at: 144.35.152.144
You'd be surprised at the sheer randomness of attacks. One time someone discovered my Linux box (running Slackware 2.2 at the time) on a university dialup line, and since it was running the relay-rapable Sendmail of the time, they used it as an open relay. My bandwidth slowed to a crawl and a LOT of people got mad at me for spamming them.
Exactly how pray tell do people actually figure that a machine is newly connected to the net and how long had your machine been there.
But aren't you interested to see if someone else has hacked into your computer?
Well since I don't have any access to one of those nifty permanent internet connections that usually go to slobs and rich businessmen I don't think I have much of a problem to wory about that. I would love for someone to actually hack my box and such. I enabled md5 to the password system and now have passwords up to 128 characters in lenght.
I was shagrined to find two new root accounts added to my computer this weekend. Luckily, they didn't run pwconv so they weren't able to use them.
Until I get a nice T-1 I doubt that I will have any wory about this kind of thing.
Slashdot Mirror
I can safely say that the concept of partitioning sites into destinct categories is not really all that accurate. Generally I would think that when you look at the net you are looking at the creativity that created it and are seeing various facets of people who inhabit it.
For example that suit and tie lawyer may be a real stif but how do you know when he dosn't get home and say have a real funky time? Same goes with the internet and how you just can't categorize it.
I was wondering is there is an exact say formal method of reverse engineering that works for hardware and such. I am really quite curious if I am to be more fully informed about the process. I would have thought it was just guess test and repeat however I may more than likely be wrong in this account.
Sometimes for some things there is no other way to do something then use reverse engineering. Most old and unattended cobol applications needed a little RE before their true nature was discovered.
I hope this works I have been getting a great many network reed errors or something (may be a little conspiracy)
Hmm I bet I could post the theory of gravity here and it would be de-moderated by some power hating wacko or maybe someone who just decided to try out their new slashdot-terminal demoderating python script.
Exactly how do I make myself a total looser? I bet that cannot be easily expressed without resorting to physical violence of childish name calling.
I have played angband, kamband, adom, zangband, alpha man, Quest 64, the emacs lisp dunnet, various infocom games, etc.
I chose to buy and play Final Fantasy VIII and VII because in terms of sheel scalability of the playstation platform and graphics quality there are few better. Generally I like things with a little pizzaz when I play console games because I don't have that overclocked PIII or something. I like rpgs and I like squaresoft because for interesting games with man possibilities I like their offerings.
Are there any other offerings that I should play that anyone would recommend?
If you have seen the actual proposed selling price in yen (39,800) and you do a currency conversion to USD you get the suggest price range of 360-370 USD.
Now considerig that the starting retail price for the playsation in 1995 when it came out was about $300 USD we must conclude that if could very well retail for that.
What you are not counting on is that people will buy a system for the games that they want. I personally like the Final Fantasy series and will most lkely get a P2 when FFX comes out.
Now here is my question for people why are fightih games such a big deal compared to other genres.
Uh, and exactly who is supposed to decide who gets protection under the law? Perhaps everyone who has over a certain amount of money should be just thrown in jail, since we know they couldn't have actually earned it. They must
have stolen it by exploiting "average" citizens.
I could say that if one were to get at least $1,000,000,000 that said person has most likely defrauded some person or done something dishonest in their lives. That is a fact that I am at least 99.9% sure of.
Largely to get more money than anyone else infers that you have some very large advantage over others with similar levels of work. I think that parly is bad. One could say that perhaps because I don't cheat people I am making less money than you if you do. That is what is bad.
In fact, you've convinced me. By your standards, I think you're too rich to deserve protection under the law. I mean, it's pretty darn easy for you with your expensive computer, etc, when people are starving around the world.
Wish I could show you my computer some time. Incidentally the computer I am writing these posts dosn't even belong to me. I have a piece of shit for a machine. Sure if you want to to condemn me for at least getting something that would work half way decently then perhaps I am guilty of that.
I would almost bey $1,000,000 dollars that you in fact have bested me in the PC hardware arena any day of the week. However the people who are in other countries are in fact largely there because of policies that their government's took in the past which essentially made their countries less avaible for advancement. I really can't change history and neither can you.
So all that matters is what's important to you, I see. Yeah, that's a rational outlook.
It's called desperation I sure you have never heard of it either. Essentially when you have called every retailer or wholesaler in a 200 mile radius for a product you are forced to look to your only other option avaible to you. I was forced to use the internet to get what I wanted it was not a choice that would have resulted in getting the product to work properly without the choice so therefore I made the choice.
I already stated that it's "not a huge deal right now", but the time to nip it in the bud is when it's not a huge deal.
I really don't think that using the internet will ever supplant the traditional means of shopping at all. You may think so and others may think so but that would mean that business will crawl to a slow pace and that half of everyone will be going broke if they actually try to run their own business. Eventually this will gain even more power for corporations and take away your power.
I think I've been probably been taken by a troll.
Well haven't been moderated to that yet but I think with the sentiment that big business should be helped when things go wrong I guess I will be soon.
Incidently it is real hipocracy to think that corporations are evil and must be destroyed one minute and the next are the perfect angels of the universe the next. Which one is it? Make up your mind right here and now before you people do even more contradiction and say the Windows is the best and that the moon is composed of cheddar cheese.
Pardon my flame, but what an idiotic question.
Pardon my counter flame but I really was wanting to ask the individual who came up with this information exactly what *HIS* opinion on such things. However I will continue to remain civil throughout this discussion and not get overly excited.
First of all, corporations are owned and run by citizens. And what exactly does "average" mean? Anyone not like you is automatically a non-citizen and not deserving of protection under the law?
Gnerally there are groups that I would think have a better chance to "fend for themselves" so to speak. I think we all could agree that Microsoft is not entitled to such protection because they most likely could easily hire their own private army of assassins to do so form of quasi-legal garbage and just might get away with it.
Corporations because like so many of the people here have said are EEEEEEEEEEEEVVVVVVVVVVVIIIIIIILLLLLLLL and are akin to the Third Reich in their effect. Well I guess those widdle ol' corporations can just fend for themselves now that the heat is on or will you just moderate this down and just continue to think that the world is comprised of people who like money and moeny makers.
I mean average man is not a person who could easily buy a large mansion in southern France and who has real worries and real concerns that do not seem like he belongs to the court of Louis XVI.
Second, even if the attacks are against corporations not affiliated with you personally, others just might want to use the services they offer. Some of us even like the services they offer. Not to mention that attacks against them cause
problems for sites in the general subnet vicinity (which might be some non-profit socialist site that you like).
Nope can't say that I use the internet on a daily basis to satisify my hunger for stuff. I have only bought on the internet 2 times for a total of 3 items and that was only because I couldn't very easily get what I wanted at a store (debian CDs)
Lastly, the FBI is involved because this is a very serious matter. It was an attack on the economic infrastructure. Maybe it's not a huge deal right now, but the net is becoming more and more important to the economy (particularly
business-to-business services), and it's time to nip these idiots in the bud, and throw them in jail for twenty years to send a very strong message.
What that "The Business of America is Business" --Calvin Cooledge 1924. I really hate business and it's related power. That's why I got involved in CS because I didn't want to spend the rest of my life counting someone else's money for the rest of my professional career.
I can't even now see that a large portion of money is actually being transfered online versus traditional methods I would love some hard data to back up your claims.
I really believe the motive is money via stock price manipulation.
So you think that this is a form of sophisticated industrial terrorism? That seems highly unlikely.
Taking down a dot.com company is like grounding an airlines fleet.
I surely hope that the internet concept of business is not the dominate form of doing business and that no other could be done to the level that an actual place of business becomes secondary.
Maybe because you'd like to buy something from them?
Could someone give me a good example where a couple of hours of time really matters in a situation where I could just get off my lazy ass and just get the same item from a "real" store?
I really wouldn't mind getting some fresh air and still getting what I wanted from the store while not depriving people of freedom because some lazy cracker wants to bomb a site with IP packets.
But I have perfectly functioning DSL, so I sold my modem and can't dial up anymore. What would I do then?
For how much? A couple of bucks? I am sorry if you can afford DSL I don't think your hurting and if you can access E-trade I would especially say your not hurting at all.
I have access to only at 2400bps modem at home does that mean that it is a crime if I don't have a local number for a BBS to E-trade? When you get some technology you become dependent on it. When you chose to live 50 miles from work and relied on your can and it dies do you feel cheated?
I say you made the choice now live with it.
The real danger is that these punks (or punk, co ordinated attacks could be one guppy with a pile o passwords and a little time on their hands) are forcing the PTB to take action. With or without government conspiracy the PTB will ;-)
march forth with constricting and stiltifying regulations that will hinder and shackle the rest of us, and not being able to get online or search Yahoo will make Joe newbie their ally in doing so. Sayyyy... when did that Mitnick feller
get sprung
What is a PTB? government?
The more services that you make available to everyone on the internet, the more likely you are to be compromised due to some bug in some software that you're running that noone knows about today, but that someone's goign to
find out about and exploit tomorrow.
What about Red Hat 5.2 right *looks at time on watch now!!!* or perhaps Debian 2.0? How about slackware release 3.0? I think these things are plenty old to get out all the bugs.
You can't say that anyone with any administrative ability can put up all sorts of stuff and not get rooted. that's simply not true. you would have to be very very lucky to run a machine with that kind of availability and that much code
accessible to the general public and not eventually get broken into.
What if I do something like this *sly grin*.
Any connections that originate from anywhere outside of the "approved" range and that do not originate from usage of the login program or any other apporved command and do not contain a proper exit code will drop into a restricted shell where each and every command is logged and perhaps access is not given to net enabled commands?
Port scans. There are tools that people use to continuously probe for machines that run various operating systems. Especially if you are a student and don't have a strong firewall. Crackers will break into the network and scan for users
with various operating systems. If they find one that they know how to break, they'll do so. It's a lot like leaving your car in a dark parking lot without having a good security system. Thieves can break in within a matter of seconds.
The same is true with crackers.
Tell me how do these people actually live and how do they earn a living if they spend all day running port scanners?
Some crackers are just script kiddies trying out there new/old tools/toys. Others are professionals that are testing their skills. Either way, its good to be prepared if you are on the net. Win 95 has poor connections (no daemons and
such) and probably will not have a problem. But if you use NT, you better be careful. The default settings of RedHat are not very secure, and should be turned off. Did you select "Everything" on your install?
Suppose I am running a version of Red Hat or Debian that is extremely secure and everything is non exploitable (there are some distros out there that meet these requirements) what then? Is is still bad not to really care about security?
The best thing to do with a Linux distribution, is to install without any services. Then go back and only install the ones you use. At least you will know what you do and don't have.
One of my great dreams is to create a httpd server over a good modem link. Run the slash code and have a kick ass site without mucho buckos. The linux gazette in one of it's earlier issues discussed about taking a free page and then having your linux machine dynamically update a link on said page to your current IP number assigned and whamo instant slashdot clone!
Yeah but how many average people decide to stockpile guns and spout anti-government propaganda. Of course in any area when you tell people they such they are not going to be on your good side from the get go.
Considering that the targets of these attacks have been large corporations and such I ask this.
Why should I as the average net citizen and as a citizen of the United States care that sites are being taken down. And since the FBI is involved does this mean this is a serious matter?
I don't really need to. Essentially when I get the chance for some real power I will anything and everything that currently will allow for itself to be networked. I have seen too many cases where anal sysadmins just didn't want to
let people do anything because they were idiots and wanted to stop people from using a small ammount of vast system resources. The mere fact that you have theories that suggest that people should not run various servers is
indicative of that fact that they want total and compelte control over every facet of our lives. WHoa run that last sentence by me again! That's right, this DDOS detector is really a secret government plot to gain "complete control
over every facet of our lives." So you better not run it. Terminal doesn't need to check security because he "doen't really need to." Well I think that's obvious because " Essentially when I [Terminal] get the chance for some real power
I will anything and everything that currently will allow for itself to be networked. Whatever that means, anyone else confused besides me?
*Sigh* sometimes I get a little carried away with myself.
What I mean to say is that given the chance for some real insane bandwidth I would run all of the nice ammenities like an irc server, an http server, a cvs server, sendmail, web based interface for email (aks atdot), slashdot code, mangband, regularly pull html pages (slashdot's), gimp interface, ftp, ssh, etc. This is what I mean. Any person with any administrative ability could very easily to this and still be secure. All of these things are possible except hardly anyone does them because they are lame and foolish. I think that what we really need from the world is what we had back a few years ago when there were more free services.
Free services were the backbone of emerging internet factors back in the early days. This is what I mean. Instead of being afraid of your own shadow you should really allow more freedom.
It makes perfect sense, the more power you have, the less corrupt you are.
Let's just say I haven't seen examples of the FBI beating up people, buddying up with people, taking bribes, working for their own personal agenda, violating civil rights, etc.
Your box gets cracked and they don't touch your stuff (as you predict). They do, however use your box to launch a DDoS against whitehouse.gov or even worse from your perspective crack boxes further on that launch a DDoS. A few
days later, the secret service is knocking on your door and taking your hardware away and you end up spending thousands in legal fees.
But you can clearly indicate that someone connected and that it wasn't you. Furthermore you could very easily say that you had a little disclaimer that indicated that you in fact were not liable for anything that went wrong. This can absolve you.
Do you still think, no harm, no foul?
Oh there is foul but that's what targeted hits are for.
You are assuming an unusual amount of intelligence for a government agency.
You know that not everyone who works for the government is an idiot.
Your points are somewhat valid except for the first one (anybody around here trusts the FBI? Anyone? Anybody?), but again you assume that the Feds have no more important hidden goals that you know nothing about.
I trust them more than I trust the god damned bastards who run the local PD where I live. Believe the level of shall we say improper conduct is a lot greater at the local level.
I would still not run it and would not recommend to people to run it. Besides, it is not that hard to check, e.g., standard trin00 ports with other tools.
Well I state similar things and get flamed I guess you are luckier.
So have you configured your box to tell you when you're being scanned? You'll be surprised how often it happens. Next, check your system to see if you've already been broken into. Please.
I don't really need to. Essentially when I get the chance for some real power I will anything and everything that currently will allow for itself to be networked. I have seen too many cases where anal sysadmins just didn't want to let people do anything because they were idiots and wanted to stop people from using a small ammount of vast system resources.
The mere fact that you have theories that suggest that people should not run various servers is indicative of that fact that they want total and compelte control over every facet of our lives.
If I were quite wealthy I would just run a system where I would allow free use of resources for almost anything. As such I would just put a little disclaimer that whatever people do is non of my business and that I take no legal responsibility. Plain and simple.
I know I'm breaking my own rule here, but from now on I will no longer reply to him either. He's just posting shit like this to get the bonus karma from heavily-replied-to comments.
Well thanks for the slame Wakko I sure that a "mature" person like you can just silence dissidents and pretend they aren't here.
I am not deliberately interested in gaining karma however I am interested in figuring out why I should care when I and the vast majority of Americans cannot see why anyone should care about issues that are mainly concerned with the security of machines that has historically cost several thousand dollars and had even more expensive per month costs to achieve them.
Essentially what people do when they do little scare tactics is that they try to subdue the isolation of their plight. I had a reasonable idea (from many periodicals and reference books about computer security) that internet security was pretty much fixed for most uses.
What he says is controversial only to those who would bother to reply to such inane, stupid viewpoints to begin with. Please do not give him forum.
Now, now, now little man do you realise that I care little for what happens. I can just as easily just get another account on slashdot change my wording slightly and then succeede. It's that simple. Bingo. Do you know that I have been on slashdot's database in my third account reincarnation. I have had people flame those 2 other accounts before and I just bounced back. I know I am unpopular and quite frankly I see this as a plus. I want to probe the world before I get out in it.
Largely security concerns are not valid if I just have say crap on my machine. Tell me what the problems are if you have nothing but OS system components and a net connection? What possible problems could actualyl happen say someone could actually crack your box? I have backups and such and I don't really care if some ass manages to format the partition. With all the modern hardware out there and the speed and ease of installation there is little reason to care.
Actually make that
144.35.152.212 that I am currently monitoring.
For anyone who's interested in actually doing this blantly illegal activity I have a test machine set up in a computer lab. DoS away at:
144.35.152.144
You'd be surprised at the sheer randomness of attacks. One time someone discovered my Linux box (running Slackware 2.2 at the time) on a university dialup line, and since it was running the relay-rapable Sendmail of the time, they
used it as an open relay. My bandwidth slowed to a crawl and a LOT of people got mad at me for spamming them.
Exactly how pray tell do people actually figure that a machine is newly connected to the net and how long had your machine been there.
But aren't you interested to see if someone
else has hacked into your computer?
Well since I don't have any access to one of those nifty permanent internet connections that usually go to slobs and rich businessmen I don't think I have much of a problem to wory about that. I would love for someone to actually hack my box and such. I enabled md5 to the password system and now have passwords up to 128 characters in lenght.
I was shagrined to find two new root accounts
added to my computer this weekend. Luckily,
they didn't run pwconv so they weren't able
to use them.
Until I get a nice T-1 I doubt that I will have any wory about this kind of thing.