"The suggestion at the end of the story is to get a professional forensics firm to wipe your data or just destroy the item in question."
So are these the same "forensics experts" that were thwarted by the user using Firefox instead of Internet Explorer (previously mentioned on Slashdot).
Here in Montreal, Quebec a provider called videotron offers 5mbps cable internet, digital cable tv with video on demand and cable based residential telephone service for under $130/month... all over coaxial.
Nokia makes "electronic" pens that operate like a regular ball point. Using special paper (available in multiple sizes, including notepads) you can write in ink, but the pen remembers its movement on the paper. Once back connected to a PC/laptop you can download the pen contents (hundreds of notepad sized pages) in either the original hand written form or have text recognition software (can't vouch for accuracy) convert it to a OO doc or Word doc.
They "emailed" the video, which caused too many people to download it?
This sounds like web traffic. You would think the Ministry of Defence may incorporate firewalls, proxy servers or QoS. If this was email, why didn't the MoD mail servers refuse such large attachments?
Besides I didn't think anyone but my network users try to send out 50 mb email attachments...
Why not just work with a user input ranking system. Then use an algorithm and apply a positive/negative flag (in terms of a good/bad file) as salt.
Obviously a large marjority of p2p users would choose not to participate in file hash "ranking" so the p2p app developer could implement a "download bin" and then a "committed download bin". This could determine a postive/negative flag for the file hash without the user being aware of their participation.
The recording industry would attempt to counter the hash "ranking" system by providing postive hash salts for garbage files. But in the event this occurred a system could be put in place like on ebay's rankings...if you get too many negative/false remarks that go against the majority (p2p users) your credibility is diminished.
In the event you are hosting services for the anonymous public you will unfortunately always have to deal with attempted intrusions. If you keep your system up to date and configure it with security in mind then there is nothing to really worry about.
If you are concerned malicious activity and brute force attacks on you ssh service then simply use public key authentication to login, disable passwords and disable root login (login as user and su to root).
I have found swatch to be an excellent log monitoring tool that can execute custom scripts to automate many security responses and provide alerts via pretty much any means: pager, sms, email, etc...
Another option is to simply block all inbound connections, except for from a handful of source ip's/subnets.
Alternatively you can implement a simple port knocking system via iptables, swatch and some simple shell/perl scripts. I use such a setup to ssh to my home network and then tunnel whatever protocols i need over the ssh connection. An elegant hack that has its critics but can prove useful
It's not an especially unique stunt either. Maxim magazine featured an article two years ago describing how two university students "rented" space on various shirts and pants they wore on campus for local companies.
Believe it or not this kind of advertising has the potential to make some fair supplementary cash if done properly. If a student can earn a few hundred (advertising for 2 or 3 companies) a month for simply going to class then "self" advertising has its potential.......writing on your forehead is just plain stupid...;-)
You failed to notice reference to two separate articles I had read in the past. I used the example of Microsoft Windows simply to demonstrate the amount of bugs that are possible in large scale projects.
I too doubt that Windows has 360 000+ bugs (I have no information to prove or disprove this). But even if Windows had 1/4 of the 2 bugs per 100 lines of code it would still be a significant amount. The point being that any large scale programming project will have more bugs than could possibly be patched (or even discovered) before the software is retired .
I remember recently reading that commercial software generally has several bugs (usually minor, not necessarily security holes) per 100 lines of code (line being terminated with;). I also recall reading a long time ago in PC World Win 2K was about 16 million lines of code. XP being more or less a facelift to 2K we can assume there maybe is 18-21 million something lines of code. Based on 18 mil. and a very generous 2 bugs per 100 lines, in theory, Windows has approximately 360 000 bugs and holes of varying severity. Good job M$!!!
Its funny how all the 0.x versions of open source software I am running never seem to crash and burn like Windows (and commerical Windows software...3rd party developers make buggy software too)
I work for a small IT firm that occasionally services personal computers. It is very common for clients to show up with their monitor...I have even seen someone show up with an LCD! because Windows wasn't working.
When they actually do show up with the computer it usually includes the power cord (we apparently can't obtain their one of a kind cord!) or they show up with their laptop without its charger/AC power.
There is also the client who complained his new wireless keyboard and mouse weren't working (batteries were in backwards). He complained the manual wasn't specific and the KB/mouse combo was TOO COMPLEX for him. I asked if he had ever changed batteries on his TV remote at home in the last decade...
The funniest in most recent memory was a client that my company provides IT for. I get a call asking that I restart all the company servers due to large amounts of static electricity on the network which caused certain webpages to be unavailable..............sometimes i don't know whether to laugh or cry;-)
fyi - turned out to be hijacked hosts file on one laptop.
I agree with your post. We seem to forget that the universe is interpreted by our brain/nervous system. This negatively impacts our interpretation of the world/universe in two ways: First biologically: we are confined to our senses and their "best guesses" on what we see, feel, smell and are capable of comprehending. Secondly sociologically: based on our ethnicity, relgion, culture, sex, age, etc we have a predisposition to act/react/interpet things differently.
-A cab driver in nyc will have a very different outlook on reality/"design" than a pigmy in papua new guinea.
-A metal rod seems impossible to bend manually, yet a gorilla could bend it with ease.
end rant: The mind is part of the universe. The universe is interpreted by the mind. The mind interprets the interpretation of the interpreted universe. The universe is unlimited but reality is contained within the limitation of the mind, which is limitless, within its limited capacity; of which we are uncertain.
Ubisoft as a majority is not based in France, but in Montreal, Quebec (where I live). There are absolutely no limits on the work week. In Quebec employees are legally entitled to time and a half for ever hour after 40 hours. Of course people getting paid on salary, like myself, get screwed over on that. I get paid the same for 40 hours as I do for 60. Unfortunately Quebec has not followed the europeon trend of a more relaxed work environment (longer vacations, shorter days, etc...) and its not much different from anywhere else in N. America
Slashdot Mirror
"The suggestion at the end of the story is to get a professional forensics firm to wipe your data or just destroy the item in question."
So are these the same "forensics experts" that were thwarted by the user using Firefox instead of Internet Explorer (previously mentioned on Slashdot).
It does exist for Linux. It called Logical Volume Management (LVM).
Here in Montreal, Quebec a provider called videotron offers 5mbps cable internet, digital cable tv with video on demand and cable based residential telephone service for under $130/month... all over coaxial.
Nokia makes "electronic" pens that operate like a regular ball point. Using special paper (available in multiple sizes, including notepads) you can write in ink, but the pen remembers its movement on the paper. Once back connected to a PC/laptop you can download the pen contents (hundreds of notepad sized pages) in either the original hand written form or have text recognition software (can't vouch for accuracy) convert it to a OO doc or Word doc.
Windows CE that runs on many thin client systems has IE builtin and supports RDP/terminal services.
Microsoft seems to be repackaging Windows every which way these days...
They "emailed" the video, which caused too many people to download it?
This sounds like web traffic. You would think the Ministry of Defence may incorporate firewalls, proxy servers or QoS. If this was email, why didn't the MoD mail servers refuse such large attachments?
Besides I didn't think anyone but my network users try to send out 50 mb email attachments...
Why not just work with a user input ranking system. Then use an algorithm and apply a positive/negative flag (in terms of a good/bad file) as salt.
Obviously a large marjority of p2p users would choose not to participate in file hash "ranking" so the p2p app developer could implement a "download bin" and then a "committed download bin". This could determine a postive/negative flag for the file hash without the user being aware of their participation.
The recording industry would attempt to counter the hash "ranking" system by providing postive hash salts for garbage files. But in the event this occurred a system could be put in place like on ebay's rankings...if you get too many negative/false remarks that go against the majority (p2p users) your credibility is diminished.
In the event you are hosting services for the anonymous public you will unfortunately always have to deal with attempted intrusions. If you keep your system up to date and configure it with security in mind then there is nothing to really worry about.
If you are concerned malicious activity and brute force attacks on you ssh service then simply use public key authentication to login, disable passwords and disable root login (login as user and su to root).
I have found swatch to be an excellent log monitoring tool that can execute custom scripts to automate many security responses and provide alerts via pretty much any means: pager, sms, email, etc...
Another option is to simply block all inbound connections, except for from a handful of source ip's/subnets.
Alternatively you can implement a simple port knocking system via iptables, swatch and some simple shell/perl scripts. I use such a setup to ssh to my home network and then tunnel whatever protocols i need over the ssh connection. An elegant hack that has its critics but can prove useful
the hyperlink is to news.com.com? Why would CNET buy com.com?
so will the msn messenger guy in longer be a true 3d little fisher price guy?
It's not an especially unique stunt either. Maxim magazine featured an article two years ago describing how two university students "rented" space on various shirts and pants they wore on campus for local companies.
...writing on your forehead is just plain stupid... ;-)
Believe it or not this kind of advertising has the potential to make some fair supplementary cash if done properly. If a student can earn a few hundred (advertising for 2 or 3 companies) a month for simply going to class then "self" advertising has its potential....
You failed to notice reference to two separate articles I had read in the past. I used the example of Microsoft Windows simply to demonstrate the amount of bugs that are possible in large scale projects.
I too doubt that Windows has 360 000+ bugs (I have no information to prove or disprove this). But even if Windows had 1/4 of the 2 bugs per 100 lines of code it would still be a significant amount. The point being that any large scale programming project will have more bugs than could possibly be patched (or even discovered) before the software is retired .
I remember recently reading that commercial software generally has several bugs (usually minor, not necessarily security holes) per 100 lines of code (line being terminated with ;). I also recall reading a long time ago in PC World Win 2K was about 16 million lines of code. XP being more or less a facelift to 2K we can assume there maybe is 18-21 million something lines of code. Based on 18 mil. and a very generous 2 bugs per 100 lines, in theory, Windows has approximately 360 000 bugs and holes of varying severity. Good job M$!!!
Its funny how all the 0.x versions of open source software I am running never seem to crash and burn like Windows (and commerical Windows software...3rd party developers make buggy software too)
I work for a small IT firm that occasionally services personal computers. It is very common for clients to show up with their monitor...I have even seen someone show up with an LCD! because Windows wasn't working.
.......sometimes i don't know whether to laugh or cry ;-)
When they actually do show up with the computer it usually includes the power cord (we apparently can't obtain their one of a kind cord!) or they show up with their laptop without its charger/AC power.
There is also the client who complained his new wireless keyboard and mouse weren't working (batteries were in backwards). He complained the manual wasn't specific and the KB/mouse combo was TOO COMPLEX for him. I asked if he had ever changed batteries on his TV remote at home in the last decade...
The funniest in most recent memory was a client that my company provides IT for. I get a call asking that I restart all the company servers due to large amounts of static electricity on the network which caused certain webpages to be unavailable.......
fyi - turned out to be hijacked hosts file on one laptop.
I agree with your post. We seem to forget that the universe is interpreted by our brain/nervous system. This negatively impacts our interpretation of the world/universe in two ways:
First biologically: we are confined to our senses and their "best guesses" on what we see, feel, smell and are capable of comprehending.
Secondly sociologically: based on our ethnicity, relgion, culture, sex, age, etc we have a predisposition to act/react/interpet things differently.
-A cab driver in nyc will have a very different outlook on reality/"design" than a pigmy in papua new guinea.
-A metal rod seems impossible to bend manually, yet a gorilla could bend it with ease.
end rant:
The mind is part of the universe. The universe is interpreted by the mind. The mind interprets the interpretation of the interpreted universe. The universe is unlimited but reality is contained within the limitation of the mind, which is limitless, within its limited capacity; of which we are uncertain.
Ubisoft as a majority is not based in France, but in Montreal, Quebec (where I live). There are absolutely no limits on the work week. In Quebec employees are legally entitled to time and a half for ever hour after 40 hours. Of course people getting paid on salary, like myself, get screwed over on that. I get paid the same for 40 hours as I do for 60. Unfortunately Quebec has not followed the europeon trend of a more relaxed work environment (longer vacations, shorter days, etc...) and its not much different from anywhere else in N. America