I've had friends cited for reckless driving/and or speeding when a cop catches them "racing the yellow"... so it may not be on the books per say but they'll still get you for something
"At one point he was concerned about the security of the FiberWAN routers in remote offices, so he had them set up without saving the config to flash. "If they go down, I'll get alerted, and connect up to them and reload the config." Great, except we have power outages all the time in this city, some of those devices aren't on UPSs, and what happens if you're on vacation? And what about the 15 to 60 minutes it might take you to connect up and reload? He eventually conceded and (ahem) decided that disabling password recovery was sufficient security."
After reading that would you reboot any of those routers?
Source
No that's a twist on what happened to suit the ideas of slashdot. What happened was he was locked up and said "I'll only give these passwords to the Mayor"
Now what he was required to do by the state policy was provide the passwords to Information Security for inclusion in the central password management database due to them being production passwords. He obviously did not do this as none of this would have happened if he did.
All production system-level passwords must be part of the security administered global password
management database.
In fact, if the passwords had been in that database, then he would A) probably never had been asked for them and B) would have been able to say "you need to request access from the security department"
Now HE may have thought they were "user" passwords because the system was his baby, but if you truly agree with that... then well this is going to be like arguing with a religious person about the existence of god.
He was not arrested for "felony assault" he was arrested for, and i quote TFA:
He was in custody Friday night, pending charges that could include criminal nuisance, endangering the welfare of a minor and obstructing government administration, Smith said.
So In July 09 it seems that the "count everyone" unemployment rate was 16.5% with the "official" rate was 9.5%
That includes discouraged workers, Those who took part time job and anyone else classified as a marginally attached worker.
>>What sort of security do you put on your backup infrastructure?
It depends.
I guess it depends how valuable the data is, how current it needs to be. Does it need to be kept secret or simply kept uncorrupted? How fast do you need to access these backups. The harder for you, potentially the more secure.
For starters let's have a copy off-line in a location where the servers are not. Heck, choose another location for more security. I am thinking: A tape and a DVD in a safe with a lock on it. And another somewhere else.
If you really need to keep it safe, commit it all to memory and then shoot yourself in the temple.
I think you are missing an even bigger problem. How many of your servers does your backup infrastructure have admin access to - or if not admin elevated access? Are your backups a push or pull? If they are a pull you now have INBOUND firewall rules from your backup segment into your other network segments allowing the backup server to talk and start the pull. Or if you have a backup segment, there is not firewall protection, except host based firewalls, which have rules to allow the backup server to talk.
Yes having multiple copies is a good idea, but backups are a very dangerous thing security wise if not done right and secured properly.
I don't have any issues with boot time in windows 7. It's up and running in about 20 seconds... of course this is on an i7 proc w/ 6GB or ram and 15k Velocerapter drives
And how many applications are installed? Unless MS does something amazing, once you finish installing Office, windows boot times traditionally go out the window. And every application thereafter makes it worse. Also, keep in mind that what people are perceiving as boot time is from off to a useable state. For a server this means off->services running. For a user PC this means Off-> Fully Logged in and can launch applications.
Actually quite a few - I use it as my main work machine now with an XP laptop as backup. The full office suite, all of my remote admin tools, VMWare Client, Im, etc. using your definition of usable: fully logged in and can launch applications, my machine is usable in about 30-45 seconds from off and this includes the time it takes me to enter my username/password at 9am before i've finished my first cup o joe. I'm actualy working in about 3-5 mins from boot, outlook up, im up and possible a few ssh sessions and RDP sessions going, depending on what i need to check in the morning.
I don't have any issues with boot time in windows 7. It's up and running in about 20 seconds... of course this is on an i7 proc w/ 6GB or ram and 15k Velocerapter drives
I second this, We have two instances, one for Ops and one for Development. Especially with the new release it is a decent product for Small to medium sized shops.
The free version only lets you have one tech though, but it's a cheap product to buy between 1k and 5k/year depending on which version you buy and how many techs you need.
The CCIE - which is what they are doing this for - already has a practical section. You have to go to Cisco's site and they setup a broken network that you need to fix. I believe it's a week long affair that is graded by cisco's experts.
You should talk to a few RN's before you make the assertion that a nursing graduate has a more healthy lifestyle than a CS graduate. One of the nurses at the flu clinic recently had just come off of three straight "twelves." I was glad that it was the other lady who was giving me my shot . ..
But you also have to realize that she wasn't up for 36 hours trust me she snuck in some naps. Also those 3 strait 12s where probably her work for the week. She had the rest of the 7 day week off.
In IT i know i'm not the only one who has worked 36 or 48 hours, slept for 12 (if i was lucky) then come back in and kept working. Nurses don't get calls at all hours of the night. They don't get their vacation interrupted, or if they do it's a "We are really short staffed can you possibly come in for a shift?" where in IT it's "Shit is fucked up. We need you to fix it now"
while I don't think either lifestyle is all that healthy, Nurses definitely have it a little bit better in that most of the time they can just leave it at the office.
I actually find that they still find ways to get pr0n on them...
Although the proxy logs are entertaining sometimes when a lot of people are working from home.
Oh and one thing i forgot... don't allow split-horizon vpn.
We require all users with remote access to use corporate laptops that are locked down. You cannot connect your personal computer via vpn.
Also there is the standard "treat it as if you were sitting at your desk, all rules regulations etc. still apply."
Let's say you pass through an EZ-Pass terminal. You keep on driving and pass through another one. Using timestamps, a computer calculates how long it took you to get from Point A to Point B and whether you've been speeding. If you cover 25 miles in 15 minutes, then you've obvously been speeding (100 miles an hour).
Well, they do take timestamps - AFAIK if you have EZ-Pass you can see when you went through a particular toll on the web interface to your accound (At least in PA... ).
Now the math to figure out your speed is trivial enough a 3rd grader could do it. The reason they DON'T start issuing tickets is that everyone would simply stop using EZ-Pass. Everyone stops using EZ-Pass the congestion at the tolls goes back up - in fact gets worse because at least in the Philly area a good half of every toll is EZ-Pass only now. Then there is the added cost of having to rehire all those toll agents that due to a strong union make something like 27-30$/hr.
So in short... yes it is something completely in their ability to do, however they would actually LOSE money on the deal. As stated above, rehiring all those people, less people actually using the toll roads due to congestion, etc.
it would probably be hard for it to hold up in court.
I don't know about that, it seems like a pretty scientific measure to me. Also they take a picture of your plate and match it up to the registered owner of the EZ-Pass. It's illegal to lend your easy pass to a friend btw so you would be hit by an other ticket if you used that as your defense.
Man you all have nothing on Fairmount Park (9200 acres) in Philly, you can start in Valley Forge and end up at the art museum without leaving the park system.
The business model is to get you hooked on the free ESXi version, then sell you the expensive Virtual Infrastructure package with all the really cool features, such as HA (VMotion) and DRS(automatic - if you want - resource balancing) etc.
I would look into EFS, it's not great but it is built in XP Pro, 2003 definatly probably 2000 server and possibly 2000 pro. It seems to fill your requirements of built in to the OS encryption.
No, because you are buying a copy of Windows Vista Ultimate. That license is valid for XP, 2000, 98, etc as well - Downgrade Rights. It is still just 1 license, so you can't use both XP and Vista at the same time, and if you sell the Vista License you have to stop using the copy of XP as the licenses for that are also gone with the sale of the Vista License. Also note that you cannot resell OEM licenses, they are locked to the hardware.
C:\>ftp ftp.mozilla.org
ftp>get "/pub/firefox/releases/3.0/win32/en-US/Firefox Setup 3.0.exe"
Then you don't have to be bothered to go to another computer.
Slashdot Mirror
I've had friends cited for reckless driving/and or speeding when a cop catches them "racing the yellow" ... so it may not be on the books per say but they'll still get you for something
After reading that would you reboot any of those routers? Source
No that's a twist on what happened to suit the ideas of slashdot. What happened was he was locked up and said "I'll only give these passwords to the Mayor" Now what he was required to do by the state policy was provide the passwords to Information Security for inclusion in the central password management database due to them being production passwords. He obviously did not do this as none of this would have happened if he did.
In fact, if the passwords had been in that database, then he would A) probably never had been asked for them and B) would have been able to say "you need to request access from the security department" Now HE may have thought they were "user" passwords because the system was his baby, but if you truly agree with that ... then well this is going to be like arguing with a religious person about the existence of god.
Ha, the school districts around here ALREADY do their damnedest to bankrupt the homeowners in their districts.
And no i'm not new here.
So In July 09 it seems that the "count everyone" unemployment rate was 16.5% with the "official" rate was 9.5% That includes discouraged workers, Those who took part time job and anyone else classified as a marginally attached worker.
And how exactly do you pull off being exact and punctual while being sloppy and unable to figure out what time it is from being drunk?
Practice... lots and lots of practices. Speaking of which it's time for me to do some practicing.
about an hour ago... why?
>>What sort of security do you put on your backup infrastructure?
It depends.
I guess it depends how valuable the data is, how current it needs to be. Does it need to be kept secret or simply kept uncorrupted? How fast do you need to access these backups. The harder for you, potentially the more secure.
For starters let's have a copy off-line in a location where the servers are not. Heck, choose another location for more security. I am thinking: A tape and a DVD in a safe with a lock on it. And another somewhere else.
If you really need to keep it safe, commit it all to memory and then shoot yourself in the temple.
I think you are missing an even bigger problem. How many of your servers does your backup infrastructure have admin access to - or if not admin elevated access? Are your backups a push or pull? If they are a pull you now have INBOUND firewall rules from your backup segment into your other network segments allowing the backup server to talk and start the pull. Or if you have a backup segment, there is not firewall protection, except host based firewalls, which have rules to allow the backup server to talk.
Yes having multiple copies is a good idea, but backups are a very dangerous thing security wise if not done right and secured properly.
I don't have any issues with boot time in windows 7. It's up and running in about 20 seconds ... of course this is on an i7 proc w/ 6GB or ram and 15k Velocerapter drives
And how many applications are installed? Unless MS does something amazing, once you finish installing Office, windows boot times traditionally go out the window. And every application thereafter makes it worse. Also, keep in mind that what people are perceiving as boot time is from off to a useable state. For a server this means off->services running. For a user PC this means Off-> Fully Logged in and can launch applications.
Actually quite a few - I use it as my main work machine now with an XP laptop as backup. The full office suite, all of my remote admin tools, VMWare Client, Im, etc. using your definition of usable: fully logged in and can launch applications, my machine is usable in about 30-45 seconds from off and this includes the time it takes me to enter my username/password at 9am before i've finished my first cup o joe. I'm actualy working in about 3-5 mins from boot, outlook up, im up and possible a few ssh sessions and RDP sessions going, depending on what i need to check in the morning.
No no ... i have great battery life, i get a full 2 mins and 42 seconds ! you can't beat that!
I don't have any issues with boot time in windows 7. It's up and running in about 20 seconds ... of course this is on an i7 proc w/ 6GB or ram and 15k Velocerapter drives
I second this, We have two instances, one for Ops and one for Development. Especially with the new release it is a decent product for Small to medium sized shops. The free version only lets you have one tech though, but it's a cheap product to buy between 1k and 5k/year depending on which version you buy and how many techs you need.
The CCIE - which is what they are doing this for - already has a practical section. You have to go to Cisco's site and they setup a broken network that you need to fix. I believe it's a week long affair that is graded by cisco's experts.
You should talk to a few RN's before you make the assertion that a nursing graduate has a more healthy lifestyle than a CS graduate. One of the nurses at the flu clinic recently had just come off of three straight "twelves." I was glad that it was the other lady who was giving me my shot . . .
But you also have to realize that she wasn't up for 36 hours trust me she snuck in some naps. Also those 3 strait 12s where probably her work for the week. She had the rest of the 7 day week off.
In IT i know i'm not the only one who has worked 36 or 48 hours, slept for 12 (if i was lucky) then come back in and kept working. Nurses don't get calls at all hours of the night. They don't get their vacation interrupted, or if they do it's a "We are really short staffed can you possibly come in for a shift?" where in IT it's "Shit is fucked up. We need you to fix it now"
while I don't think either lifestyle is all that healthy, Nurses definitely have it a little bit better in that most of the time they can just leave it at the office.
I actually find that they still find ways to get pr0n on them ...
Although the proxy logs are entertaining sometimes when a lot of people are working from home.
Oh and one thing i forgot ... don't allow split-horizon vpn.
We require all users with remote access to use corporate laptops that are locked down. You cannot connect your personal computer via vpn. Also there is the standard "treat it as if you were sitting at your desk, all rules regulations etc. still apply."
Let's say you pass through an EZ-Pass terminal. You keep on driving and pass through another one. Using timestamps, a computer calculates how long it took you to get from Point A to Point B and whether you've been speeding. If you cover 25 miles in 15 minutes, then you've obvously been speeding (100 miles an hour).
Well, they do take timestamps - AFAIK if you have EZ-Pass you can see when you went through a particular toll on the web interface to your accound (At least in PA ... ).
Now the math to figure out your speed is trivial enough a 3rd grader could do it. The reason they DON'T start issuing tickets is that everyone would simply stop using EZ-Pass. Everyone stops using EZ-Pass the congestion at the tolls goes back up - in fact gets worse because at least in the Philly area a good half of every toll is EZ-Pass only now. Then there is the added cost of having to rehire all those toll agents that due to a strong union make something like 27-30$/hr.
So in short ... yes it is something completely in their ability to do, however they would actually LOSE money on the deal. As stated above, rehiring all those people, less people actually using the toll roads due to congestion, etc.
it would probably be hard for it to hold up in court.
I don't know about that, it seems like a pretty scientific measure to me. Also they take a picture of your plate and match it up to the registered owner of the EZ-Pass. It's illegal to lend your easy pass to a friend btw so you would be hit by an other ticket if you used that as your defense.
Man you all have nothing on Fairmount Park (9200 acres) in Philly, you can start in Valley Forge and end up at the art museum without leaving the park system.
They would still manage to screw it up and then wait for the manufacture's support personnel to tell them how to fix it.
The business model is to get you hooked on the free ESXi version, then sell you the expensive Virtual Infrastructure package with all the really cool features, such as HA (VMotion) and DRS(automatic - if you want - resource balancing) etc.
I would look into EFS, it's not great but it is built in XP Pro, 2003 definatly probably 2000 server and possibly 2000 pro. It seems to fill your requirements of built in to the OS encryption.
No, because you are buying a copy of Windows Vista Ultimate. That license is valid for XP, 2000, 98, etc as well - Downgrade Rights. It is still just 1 license, so you can't use both XP and Vista at the same time, and if you sell the Vista License you have to stop using the copy of XP as the licenses for that are also gone with the sale of the Vista License. Also note that you cannot resell OEM licenses, they are locked to the hardware.
C:\>ftp ftp.mozilla.org
ftp>get "/pub/firefox/releases/3.0/win32/en-US/Firefox Setup 3.0.exe"
Then you don't have to be bothered to go to another computer.