Maybe 12 months ago I had to investigate a problem with a dedicated Linux DNS server which no-one had logged into for years. It had been answering queries fine, but hadn't taken an update to a zone file it slaved.
Turns out _both_ halves of the RAID set had died over time. As the box had 2GB of RAM the entire FS (pretty much) had been cached and the box continued to chug away quite happily memory resident until it actually needed to update a zone file on disk.
Why oh why oh why do people persist in running web servers on non standard ports? Why is his blog on port 8090? Have they never heard of software virtual hosts?
A cunning plan with only one small flaw. The intent is to not shovel this data to google yes? So instead we post it on an open public web site thus making it readable to the entire world (including of course the google search bots.....)
Have you seen Oracle's security record recently?
Anyone who reads bugtraq or the like will know it is shocking.
Take a look at http://www.securityfocus.com/archive/1/432399 this for an example
"Most security experts REALLY believe in firewalls. They expect that when they die they will arrive at the great firewall in the sky where Saint Peter is running a default policy of REJECT.
--- Sander Plomp"
The real danger with this kind of approach is that:
1) Employee docks laptop to wired network
2) Employee gets bored with restrictive firewall policy and turns on WiFi
3) Laptop connected to corporate network and Internet
4) *#&!$!
5) Game over space cadet
"However, all was not lost. Exchange server is fairly happy to deliver e-mail, and even meeting requests, via IMAP. I quietly crept onto the Windows server, turned on the IMAP virtual server, and thus set up my Evolution mailboxes."
All very well and good, but no organization with decent change control would allow this to happen. If the policy is MAPI only does anyone have a better solution that fetchmailex ? At least for use with Thunderbird?
"Now why is this relevant to the SMB2 protocol? This is because, for symbolic links to behave correctly, they should be interpreted on the client side of a file sharing protocol (otherwise this can lead to security holes). "
Is it not rather:
"If the client does not interpret symbolic links then nothing will work?"
From TFA: "The productiveness of a conference call definitely suffers because multitasking participants are only __slightly__ paying attention."
Wow - who did they ask this question? Isn't participation in conf calls a bit like presence on the corporate IM system? Online and therefore must be working?
Assuming 64kbps (rough FM stereo number), and I doubt we had stereo FM in '54 then it would take something like 5.74 days to "fill" a 4GB (3.8 useable) TR-1.
Hmm perhaps the battery wouldn't last that long, or was that a truck full of lead acid batteries which you pulled along behind you ?
Esepcially as from TFA: Those who download these torrents are unable to complete a full download, as the file transfer stops at approximately 97%-98%.
Guess that would give plenty of time to harvest the IP, whilst the pirates end up with gigabytes of useless 1s & 0s....
I mean given the reported posioned torrents so far are: "The Wedding Crashers" "Charlie and the Chocolate Factory" The first three episodes of "The O.C."
It seems unlikely that there is any legitimate use of these.
"Wakamaru's claimed battery life is two hours, after which the robot returns to its charging station before power fails completely."
Hmmm - I hope it knows how far it is back to the charging base......
Slashdot Mirror
How about :
tcpdump -n -X -s1500 -i `netstat -rvn | grep 0.0.0 | head -1 | awk '{print $8}'` > /dev/console
Maybe 12 months ago I had to investigate a problem with a dedicated Linux DNS server which no-one had logged into for years. It had been answering queries fine, but hadn't taken an update to a zone file it slaved.
Turns out _both_ halves of the RAID set had died over time. As the box had 2GB of RAM the entire FS (pretty much) had been cached and the box continued to chug away quite happily memory resident until it actually needed to update a zone file on disk.
Who needs disks.........
Why so?
Do you have to _look_ at the keys to type?
"2. Economizing ports. I like a lack of ports, it always irks me when I see something as antiquated as a serial port on my notebook."
I guess you don't do much work on routers/switches/any device at all with a serial console then........
Why oh why oh why do people persist in running web servers on non standard ports?
Why is his blog on port 8090?
Have they never heard of software virtual hosts?
Wow, clearly not Linux, but it uses BogoMIPS to calibrate the delay loop.
0.37 BogoMIPS
Is this a record?
"Then, from any computer:
wget -O ~/.firefox/default//bookmarks.html http://mywebhost/bookmarks.html"
A cunning plan with only one small flaw.
The intent is to not shovel this data to google yes?
So instead we post it on an open public web site
thus making it readable to the entire world
(including of course the google search bots.....)
A peak of ~75 messages a minute?
Me thinks you need several zeros on the end of that to get to a medium to large installation....
Have you seen Oracle's security record recently?
Anyone who reads bugtraq or the like will know it is shocking.
Take a look at http://www.securityfocus.com/archive/1/432399 this for an example
"- A clock. On my keychain. Tells times, and has an easy to set countdown alarm. Three button interface, very easy to use, and vital to me."
I believe there was an invention in the late 19th century known as a watch to meet this requirement.
There is a famous quote about this:
"Most security experts REALLY believe in firewalls. They expect that when
they die they will arrive at the great firewall in the sky where Saint
Peter is running a default policy of REJECT.
--- Sander Plomp"
And it is correct
The real danger with this kind of approach is that: 1) Employee docks laptop to wired network 2) Employee gets bored with restrictive firewall policy and turns on WiFi 3) Laptop connected to corporate network and Internet 4) *#&!$! 5) Game over space cadet
Since when was IMAP a more network efficient protocol than POP3?
"However, all was not lost. Exchange server is fairly happy to deliver e-mail, and even meeting requests, via IMAP. I quietly crept onto the Windows server, turned on the IMAP virtual server, and thus set up my Evolution mailboxes."
All very well and good, but no organization with decent change control would allow this to happen. If the policy is MAPI only does anyone have a better solution that fetchmailex ? At least for use with Thunderbird?
Ta,
Matt
"Game over space cadet"
s/n/v/
Found some videos at http://www.solvethecube.co.uk/
Follow the "videos" link at the top, towards the bottom
of this page is a 13.86 second solve.
From TFA:
"Now why is this relevant to the SMB2 protocol? This is because, for symbolic links to behave correctly, they should be interpreted on the client side of a file sharing protocol (otherwise this can lead to security holes). "
Is it not rather:
"If the client does not interpret symbolic links then nothing will work?"
But how many Rolexs did each of them buy via special offer correspondance, and did anything that turned up in the post make their wife any happier?
From TFA:
"The productiveness of a conference call definitely suffers because multitasking participants are only __slightly__ paying attention."
Wow - who did they ask this question?
Isn't participation in conf calls a bit like presence on the corporate IM system?
Online and therefore must be working?
Assuming 64kbps (rough FM stereo number),
and I doubt we had stereo FM in '54 then
it would take something like 5.74 days to
"fill" a 4GB (3.8 useable) TR-1.
Hmm perhaps the battery wouldn't last that long,
or was that a truck full of lead acid batteries
which you pulled along behind you ?
Chances of there being a paypal option for this service?
I don't think so.
Esepcially as from TFA:
Those who download these torrents are unable to complete a full download, as the file transfer stops at approximately 97%-98%.
Guess that would give plenty of time to harvest the IP, whilst the pirates end up with gigabytes of useless 1s & 0s....
I mean given the reported posioned torrents so far are:
"The Wedding Crashers"
"Charlie and the Chocolate Factory"
The first three episodes of "The O.C."
It seems unlikely that there is any legitimate use of these.
"Wakamaru's claimed battery life is two hours, after which the robot returns to its charging station before power fails completely." Hmmm - I hope it knows how far it is back to the charging base......
We get a whiskey drink, we get a cider drink, we get a lager drink, we get a soda drink.........