So Visa/Mastercard can turn you away if they don't like your politics. Apple can turn you away if they don't like your ideology. What's next? And does this bother anyone besides me? Could it not be argued that things like card payment services and the iPhone platform are public accommodations that should be open to all on a non-discriminatory basis? If not, we risk granting de facto censorship ability to private organizations, relinquishing a substantial part of the freedom gained over the past few hundred years. This concerns me.
And yes, I would feel the same way regardless of the beliefs and ideologies being rejected. Freedom is freedom, regardless of one's beliefs.
The US average annual interruption per customer is 1.36 hours. I think that is from 2008. That's 99.98% uptime. That number would obviously be a bit lower for, say, 2003, but it's a good general indicator of overall grid reliability.
Seriously, the lower price points will allow many more people to purchase many more titles. It could be a definite shift in the market, but the impact will be similar to the impact of $0.99 song downloads, which obviously killed the music industry.
Public figures aren't allowed to have private conversations? Should we audio record all discussions in her office? Should we record all phone calls she receives? Even at her home?
I've never agreed with email retention laws. Just because we have the means to preserve something doesn't mean we should have to. Official records, yes. Conversational items, no. It is inconsistent to require records of emails and chats, but allow closed door meetings or phone calls to go unrecorded.
Actually, since the question was stated as an AND, you'd have to believe BOTH in order to respond in the affirmative. So, even if you were aware that evolution is widely accepted, you'd have to answer no if you felt it wasn't well supported by the evidence.
This poll doesn't mean that 52% believe both statements to be false, it merely means that 48% believe at least one of them to be false. Also, remember that most people interpret the term evolution expansively to cover the whole gamut of issues related to origins, as opposed to the narrow scientific definition of biological evolution. And, the phrase "well supported by the facts" is likely interpreted by many people to mean "true" or "proven", as opposed to merely "well supported".
The real problem with ID theft is that the security of my "identity" is based on the secrecy of non-secret information. Far too many people and organizations have access to my name, address, DOB, and SSN for that info to be considered reliable for authenticating me. And, in fact, it isn't reliable, which is why so much stinking fraud takes place.
Frankly, I'm sick of hearing about organizations losing information. What I really want to hear about is organizations granting fraudulent credit based on flimsy authentication procedures. That's the real problem, but nobody is talking about it.
256000 bits per second * 2592000 seconds per month / 41943040 bits in a 5MB song *.05 per song.
That's about $791 worth song transmission fees on a 256K line. Yes, you need to subtract for transmission overhead and such, but it gives a general idea of how inflated the charges would be at even $0.05 per song.
Telcos should charge for bandwidth then let us use it as we see fit.
Actually, if you look at the specs for the Mac mini, and especially the new Intel based iMac, the hardware price is competitive with Dell's PCs. No, the Macs aren't the cheapest, but the "Apple tax" isn't nearly what it used to be. If Apple rolls out an Intel mini at the current G4 price points, they'll be just fine on the price/performance chart.
Actually, years of experience tell me that the most simple explanation is usually correct. he first thing I would do if somebody informed me they had lost access, would be to check their accout status, then look at the logs. Had I done so in this case, I would have seen immediately what had happened. Instead the article states, "IBM employees eventually tracked down what happened and restored Jernigan's access. IBM billed Aventis for its investigators' time at $50 an hour, for a total cost of $20,350."
I wouldn't have spent anytime exploring more exotic explanations until the former admin had been spoken to be the authorities. In this case, it appears he didn't put up a fight, so I don't know what all the time was spent on.
I can't fathom 407 hours of time on this type of incident. I've spent far less than that on browser based compromies that included Encase reviews of hard drives and log correlation across several systems.
As I said, I may be missing something, but 10 man weeks seems grossly excessive for what appears to a simple case of misuse of administrative access.
Unless I'm missing something, I cannot understand how IBM needed 20K worth of incident response services to figure out what happened. SecurID systems can log all activity. A simple check of the logs would have indicated who disabled the access and when.
I would have told IBM to put that invoice where the sun don't shine if they tried to bill me for investigating such a simplisitic "compromise" of a system *they* were supposed to be managing.
A common argument of those who oppose full disclosure is that it does harm by allowing the development of worms, and provides infection vectors for Spyware. I personally think the widespread worms are a good thing. The act like wildfire clearing the underbrush of vulnerable machines.
What really concerns me is not some 14 year kid in Bulgaria playing "my botnet is bigger than yours" games. I'm concerned about hostile governments, terrorist groups, and organized criminals who already have a stable of zero day holes to attack my company's systems. These are the threats that keep corporate and government security teams awake at night. All the piddly little public nuisances are just ploys to get funding.
Yesterday, eEye released information about a Windows hole that they reported over 5 months ago. The WMF hole was known to Microsoft long ago, and has existed for YEARS! Does anyone really believe that the REAL bad guys don't have the knowledge to get inside any (at at least very nearly any) company in the world. The US military is getting hacked for God's sake.
I say full disclosure now. It won't make us less secure, it will only appear to.
If you can't afford to buy a TV, then how can you afford to buy anything advertised on it? In which case, why would you need one? I suppose the broadcasters want to pad their viewership numbers to keep ad rates up, but marketers know demographics, so that's unlikely to work. This sounds alot like the free magazine subscriptions we all get so the publishers can sell ads.
**There are few modern human traits more galling than this belief that "early man" was a primitive idiot who was lucky to not piss on his own feet.**
Part of that is because we mistake knowledge for intelligence. Are we more intelligent today than we were 300 years ago? Maybe, maybe not, but we sure know alot more.
It's possible, given the amazing feats of early civilizations, that humans were MORE intelligent 6000 years ago than we are today. That, however, would seem to contradict the evolutionary orthodoxy. You could argue that the FSM created really smart humans, and we've been getting stupider ever since, but such an assertion would likely get you mod'd down, so I won't go there.
All the wonderful forms of life we now see arose without the input of a designer, so why would we try to one up nature now? Let's just go about randomly mutating DNA, and let natural selection take its course.
You know, I saw the movie this weekend, and I had to squint to see anything like a "retelling of Jesus Christ". The circumstances of Aslan's death and resurrection are only vaguely like those for Jesus, and there are no other parallels at all.
The White Witch as an allegory to Satan, The Angel of Light. The temptation of Edmond by appealing to his desire for pleasure (Turkish Delight) and power (The Kingship). The "Deep Magic" requirement for the spilling of blood to "atone" for traitors. The ownership of traitors by the White Witch. The table rock splitting in two after the death of Aslan (Like the veil of the Temple). The feamles witnessing the resurrection of Aslan. Aslan leaving Narnia after the resurrection (The Ascension). Aslan going to the White Witches castle to set the prisoners free (Christ is hell taking the keys from Satan).
I saw quite a few parallels, and I didn't have to squint. It wasn't exactly like the events of Christ's life, but is was much closer to it than Tolkien's books. Perhaps that's why the movie is less well received than TLOTR movies were. Yeah, that and the special effects weren't as good.
A bunch of fop british kids leading a lion's army in order to defeat an evil ice witch and make Christmas happen again
It really depends on your perspective. I saw the movie as a story about a fall caused by the seduction of an evil temptress (The White Witch), and the subsequent redemption by the willing sacrifice of an innocent life. Yes, the story may seem a bit childish, but it was an adaptation of a childrens book after all. I thought it was a far better story than many of the recent eco-disaster movies that Hollywood has been putting out.
It is interesting that the reviews of the movie seem to reflect the reviewers religious, political, philosophical background. That makes sense. Books, movies, music, are rarely pure entertainment. There's almost always a message behind it, and the extent to which one relates to the message certainly influences the extent to which one is entertained.
-SHP
"The customer goes to an Internet banking site and that site has an end-point appliance that scans [their computer].
Uh, my computer is firewalled. How are they going to scan me? Certainly they're not suggesting that I install software off the internet, and then trust it to secure my system. Perhaps they missed the part about Trusted Computing Base in the CISSP review course.
It may say 'you have Sobig [or another infection]' and up will pop the anti-virus vendor's window that says 'do you want to fix this problem or buy a solution'," said Sykes.
This is EXACTLY the MO Spyware is using. Gee, hit a website, get a popup that says you're infected, click here to fix. yeah, I'll click that...
This could be paid for by the customer using their credit card or by adding it to their mobile phone bill by sending a text message, said Sykes,
ROTFLMAOPMP [Rolling On The Floor Laughing My Ass Off Peeing My Pants]. So now I have to PAY for the privilege of them compromising the integrity of my machine? And what's up with this billing my credit card in response to a text meesage? Text messaging is rock solid secure, right? No spoofing there, no siree!
who warned that banks could decide not to provide access to anyone with an infected computer.
One might comment that if the security of one's account is dependent on the integrity of one's PC, then there is a problem. One would be right. What's sad is that Symantec is trying to fix the wrong problem. We need online banking solutions that are secure even when accessed from Satan's computer. That's a much harder problem to solve
"If you don't use the service then you may not be able to log onto the Internet banking site," he added.
I use Linux. Is there a version available for my OS?
Additionally, never mind me trusting them, how do they trust me? Do you really think they can code something which cannot be cracked and spoofed? Do you really think that malware writers won't be able to write a wootkit that can mimick the communications between the AV agent and the backend? Come on.
There's still some smart @stake guys at Symantec. I'll bet they're getting more embarrassed by the day....
How do you make money from Cyber Terrorism? Right now, cyber crime is all about making money. When someone figures out how to make lots of money hacking power companies, they'll start hacking power companies.
The current Al-Qaeda mindset is for blood and guts. There's no fear to be generated by dropping someone's porn connection for 8 hours. Certainly foreign governments could potentially do great harm, but what is the point? Take out a trading partner? That's good for business. This is the reason web pages don't get defaced anymore. No money in it. Instead that hack the site and put up spyware/trojan installers, or run a phishing scam for a few hours.
I don't believe we'll see a major Cyber Terrorism type event unless we actually get into a major scuffle with another powerhouse, or Al-Qaeda figures out that dropping communications just after a major attack can amplify the fear by introducing uncertainty in coincidence with something fearful.
In any case, the most likely attack vector is a physical attack against cyber assets. Blow up substations, major telco POPs, radio/tv transmission towers. You get the point.
Except in real life people don't exchange anti-bodies. This proposal is like asking me stick an intravenous in my arm to receive antibody updates from a *trusted* (sic) 3rd party.
In the real world of the internet, this concept would never pass review of any competent security team at major organizations.
I'm a Christian, and I look at the Bible as a collection of myths.
Huh? How do you define "Christian". Do you believe Jesus was God? Do you believe He died and rose again in the flesh? Do you believe in salvation by grace? Do believe in the need for salvation?
I'm mystified as to how you can claim to be a Christian without believing the Bible as the Word of God. If the Bible is mere myth, then isn't being a "Christian" pretty stupid?
Slashdot Mirror
So Visa/Mastercard can turn you away if they don't like your politics. Apple can turn you away if they don't like your ideology. What's next? And does this bother anyone besides me? Could it not be argued that things like card payment services and the iPhone platform are public accommodations that should be open to all on a non-discriminatory basis? If not, we risk granting de facto censorship ability to private organizations, relinquishing a substantial part of the freedom gained over the past few hundred years. This concerns me.
And yes, I would feel the same way regardless of the beliefs and ideologies being rejected. Freedom is freedom, regardless of one's beliefs.
Makes about as much sense as conducting panty raids on shoplifters.
The US average annual interruption per customer is 1.36 hours. I think that is from 2008. That's 99.98% uptime. That number would obviously be a bit lower for, say, 2003, but it's a good general indicator of overall grid reliability.
Seriously, the lower price points will allow many more people to purchase many more titles. It could be a definite shift in the market, but the impact will be similar to the impact of $0.99 song downloads, which obviously killed the music industry.
An intelligently designed biological system capable of evolution.
Gee, that's never been done before.
Public figures aren't allowed to have private conversations? Should we audio record all discussions in her office? Should we record all phone calls she receives? Even at her home?
I've never agreed with email retention laws. Just because we have the means to preserve something doesn't mean we should have to. Official records, yes. Conversational items, no. It is inconsistent to require records of emails and chats, but allow closed door meetings or phone calls to go unrecorded.
Actually, since the question was stated as an AND, you'd have to believe BOTH in order to respond in the affirmative. So, even if you were aware that evolution is widely accepted, you'd have to answer no if you felt it wasn't well supported by the evidence.
This poll doesn't mean that 52% believe both statements to be false, it merely means that 48% believe at least one of them to be false. Also, remember that most people interpret the term evolution expansively to cover the whole gamut of issues related to origins, as opposed to the narrow scientific definition of biological evolution. And, the phrase "well supported by the facts" is likely interpreted by many people to mean "true" or "proven", as opposed to merely "well supported".
Don't read more into this than is justified.
The real problem with ID theft is that the security of my "identity" is based on the secrecy of non-secret information. Far too many people and organizations have access to my name, address, DOB, and SSN for that info to be considered reliable for authenticating me. And, in fact, it isn't reliable, which is why so much stinking fraud takes place.
Frankly, I'm sick of hearing about organizations losing information. What I really want to hear about is organizations granting fraudulent credit based on flimsy authentication procedures. That's the real problem, but nobody is talking about it.
Wonderful post. Non-argumentative, clear, rational. What are you doing on Slashdot?
Yep. Do the math.
.05 per song.
256000 bits per second * 2592000 seconds per month / 41943040 bits in a 5MB song *
That's about $791 worth song transmission fees on a 256K line. Yes, you need to subtract for transmission overhead and such, but it gives a general idea of how inflated the charges would be at even $0.05 per song.
Telcos should charge for bandwidth then let us use it as we see fit.
Actually, if you look at the specs for the Mac mini, and especially the new Intel based iMac, the hardware price is competitive with Dell's PCs. No, the Macs aren't the cheapest, but the "Apple tax" isn't nearly what it used to be. If Apple rolls out an Intel mini at the current G4 price points, they'll be just fine on the price/performance chart.
Actually, years of experience tell me that the most simple explanation is usually correct. he first thing I would do if somebody informed me they had lost access, would be to check their accout status, then look at the logs. Had I done so in this case, I would have seen immediately what had happened. Instead the article states, "IBM employees eventually tracked down what happened and restored Jernigan's access. IBM billed Aventis for its investigators' time at $50 an hour, for a total cost of $20,350."
I wouldn't have spent anytime exploring more exotic explanations until the former admin had been spoken to be the authorities. In this case, it appears he didn't put up a fight, so I don't know what all the time was spent on.
I can't fathom 407 hours of time on this type of incident. I've spent far less than that on browser based compromies that included Encase reviews of hard drives and log correlation across several systems.
As I said, I may be missing something, but 10 man weeks seems grossly excessive for what appears to a simple case of misuse of administrative access.
Unless I'm missing something, I cannot understand how IBM needed 20K worth of incident response services to figure out what happened. SecurID systems can log all activity. A simple check of the logs would have indicated who disabled the access and when.
I would have told IBM to put that invoice where the sun don't shine if they tried to bill me for investigating such a simplisitic "compromise" of a system *they* were supposed to be managing.
-SHP (CISSP, CISA)
A common argument of those who oppose full disclosure is that it does harm by allowing the development of worms, and provides infection vectors for Spyware. I personally think the widespread worms are a good thing. The act like wildfire clearing the underbrush of vulnerable machines.
What really concerns me is not some 14 year kid in Bulgaria playing "my botnet is bigger than yours" games. I'm concerned about hostile governments, terrorist groups, and organized criminals who already have a stable of zero day holes to attack my company's systems. These are the threats that keep corporate and government security teams awake at night. All the piddly little public nuisances are just ploys to get funding.
Yesterday, eEye released information about a Windows hole that they reported over 5 months ago. The WMF hole was known to Microsoft long ago, and has existed for YEARS! Does anyone really believe that the REAL bad guys don't have the knowledge to get inside any (at at least very nearly any) company in the world. The US military is getting hacked for God's sake.
I say full disclosure now. It won't make us less secure, it will only appear to.
-SHP
I've got fifty one dollar bills, all you have is two hundreds. I've clearly got more money than you. Shine my shoes.
-SHP
If you can't afford to buy a TV, then how can you afford to buy anything advertised on it? In which case, why would you need one? I suppose the broadcasters want to pad their viewership numbers to keep ad rates up, but marketers know demographics, so that's unlikely to work. This sounds alot like the free magazine subscriptions we all get so the publishers can sell ads.
**There are few modern human traits more galling than this belief that "early man" was a primitive idiot who was lucky to not piss on his own feet.**
Part of that is because we mistake knowledge for intelligence. Are we more intelligent today than we were 300 years ago? Maybe, maybe not, but we sure know alot more.
It's possible, given the amazing feats of early civilizations, that humans were MORE intelligent 6000 years ago than we are today. That, however, would seem to contradict the evolutionary orthodoxy. You could argue that the FSM created really smart humans, and we've been getting stupider ever since, but such an assertion would likely get you mod'd down, so I won't go there.
-SHP
All the wonderful forms of life we now see arose without the input of a designer, so why would we try to one up nature now? Let's just go about randomly mutating DNA, and let natural selection take its course.
I thought M$ bugs were a dime a dozen.
-SHP
You know, I saw the movie this weekend, and I had to squint to see anything like a "retelling of Jesus Christ". The circumstances of Aslan's death and resurrection are only vaguely like those for Jesus, and there are no other parallels at all.
The White Witch as an allegory to Satan, The Angel of Light. The temptation of Edmond by appealing to his desire for pleasure (Turkish Delight) and power (The Kingship). The "Deep Magic" requirement for the spilling of blood to "atone" for traitors. The ownership of traitors by the White Witch. The table rock splitting in two after the death of Aslan (Like the veil of the Temple). The feamles witnessing the resurrection of Aslan. Aslan leaving Narnia after the resurrection (The Ascension). Aslan going to the White Witches castle to set the prisoners free (Christ is hell taking the keys from Satan).
I saw quite a few parallels, and I didn't have to squint. It wasn't exactly like the events of Christ's life, but is was much closer to it than Tolkien's books. Perhaps that's why the movie is less well received than TLOTR movies were. Yeah, that and the special effects weren't as good.
-SHPA bunch of fop british kids leading a lion's army in order to defeat an evil ice witch and make Christmas happen again
It really depends on your perspective. I saw the movie as a story about a fall caused by the seduction of an evil temptress (The White Witch), and the subsequent redemption by the willing sacrifice of an innocent life. Yes, the story may seem a bit childish, but it was an adaptation of a childrens book after all. I thought it was a far better story than many of the recent eco-disaster movies that Hollywood has been putting out.
It is interesting that the reviews of the movie seem to reflect the reviewers religious, political, philosophical background. That makes sense. Books, movies, music, are rarely pure entertainment. There's almost always a message behind it, and the extent to which one relates to the message certainly influences the extent to which one is entertained. -SHP
"The customer goes to an Internet banking site and that site has an end-point appliance that scans [their computer].
Uh, my computer is firewalled. How are they going to scan me? Certainly they're not suggesting that I install software off the internet, and then trust it to secure my system. Perhaps they missed the part about Trusted Computing Base in the CISSP review course.
It may say 'you have Sobig [or another infection]' and up will pop the anti-virus vendor's window that says 'do you want to fix this problem or buy a solution'," said Sykes.
This is EXACTLY the MO Spyware is using. Gee, hit a website, get a popup that says you're infected, click here to fix. yeah, I'll click that...
This could be paid for by the customer using their credit card or by adding it to their mobile phone bill by sending a text message, said Sykes,
ROTFLMAOPMP [Rolling On The Floor Laughing My Ass Off Peeing My Pants]. So now I have to PAY for the privilege of them compromising the integrity of my machine? And what's up with this billing my credit card in response to a text meesage? Text messaging is rock solid secure, right? No spoofing there, no siree!
who warned that banks could decide not to provide access to anyone with an infected computer.
One might comment that if the security of one's account is dependent on the integrity of one's PC, then there is a problem. One would be right. What's sad is that Symantec is trying to fix the wrong problem. We need online banking solutions that are secure even when accessed from Satan's computer. That's a much harder problem to solve
"If you don't use the service then you may not be able to log onto the Internet banking site," he added.
I use Linux. Is there a version available for my OS?
Additionally, never mind me trusting them, how do they trust me? Do you really think they can code something which cannot be cracked and spoofed? Do you really think that malware writers won't be able to write a wootkit that can mimick the communications between the AV agent and the backend? Come on.
There's still some smart @stake guys at Symantec. I'll bet they're getting more embarrassed by the day....
How do you make money from Cyber Terrorism? Right now, cyber crime is all about making money. When someone figures out how to make lots of money hacking power companies, they'll start hacking power companies.
The current Al-Qaeda mindset is for blood and guts. There's no fear to be generated by dropping someone's porn connection for 8 hours. Certainly foreign governments could potentially do great harm, but what is the point? Take out a trading partner? That's good for business. This is the reason web pages don't get defaced anymore. No money in it. Instead that hack the site and put up spyware/trojan installers, or run a phishing scam for a few hours.
I don't believe we'll see a major Cyber Terrorism type event unless we actually get into a major scuffle with another powerhouse, or Al-Qaeda figures out that dropping communications just after a major attack can amplify the fear by introducing uncertainty in coincidence with something fearful.
In any case, the most likely attack vector is a physical attack against cyber assets. Blow up substations, major telco POPs, radio/tv transmission towers. You get the point.
-SHP
Except in real life people don't exchange anti-bodies. This proposal is like asking me stick an intravenous in my arm to receive antibody updates from a *trusted* (sic) 3rd party.
In the real world of the internet, this concept would never pass review of any competent security team at major organizations.
I'm a Christian, and I look at the Bible as a collection of myths.
Huh? How do you define "Christian". Do you believe Jesus was God? Do you believe He died and rose again in the flesh? Do you believe in salvation by grace? Do believe in the need for salvation?
I'm mystified as to how you can claim to be a Christian without believing the Bible as the Word of God. If the Bible is mere myth, then isn't being a "Christian" pretty stupid?