For those of us who don't speak German, here is a reference that might just come in handy:
beer -- das Bier
beer barrel -- das Bierfass
beer barrel -- das Bierfass [obs.]
beer brewed from wheat -- das Hefeweizen
beer brewed from wheat -- das Weissbier
beer mat -- der Bierdeckel
beer mat -- der Bieruntersetzer
beer mug -- der Bierkrug
beer mugs [pl.] -- die Bierkruege [pl.]
beer tent -- das Bierzelt
bottled beer -- das Flaschenbier
head (on beer) -- die Schaumkrone
life isn't all beer and skittles -- das Leben besteht nicht nur aus Vergnuegen
life isn't all beer and skittles -- das Leben ist kein endloses Vergnuegen
Life isn't all beer and skittles. -- Das Leben besteht nicht nur aus Vergnuegen.
a kept woman -- eine Maetresse
bosom (woman) -- der Busen (Frau)
buffalo woman -- die fette Frau
business woman -- Geschaeftsfrau
career woman -- Karrierefrau
cleaning woman -- die Aufwartefrau
cleaning woman [Brit.] -- die Zugehfrau
foolish woman -- die Toerin
gipsy woman -- die Zigeunerin
kept woman -- die Maetresse
married woman -- verheiratete Frau
the new woman -- die Frau von heute
to play the woman -- empfindlich sein
vanward woman -- die Vorreiterin
woman -- die Frau
woman -- Frau
toilet -- Abort
toilet -- Abtritt
toilet -- die Toilette
toilet -- Toilette
toilet -- WC
toilet article -- Toilettenartikel
toilet articles -- Toilettenartikeln
toilet bag -- der Kulturbeutel
toilet paper -- Klosettpapier
toilet papers -- Toilettenpapiere
toilet set -- Toilettengarnitur
toilet sets -- Toilettengarnituren
toilet soap -- Toilettenseife
toilet soaps -- Toilettenseifen
toilet table -- Toilettentisch
toilet tables -- Toilettentische
toilet tank -- der Spuelkasten (Toilette)
I saw that link on CNN earlier in the evening and didn't read it because I knew it would suck and only went back and read it only because I saw the link here on/. and knew I could vent.
ditto
more numbers is such a rational idea
agreed
next step is get rid of this restricive domain naming stuff
Well, I think we have been selecting our own domains on the premise that shorter is better. You can't even get a three letter.com domain anymore because they are all taken. Longer is not necessarily better when your customers have to type this.is.my.cool.domain.name.everyone.will.remember.com
Seriously, I doubt this thing has the power to pull cable. That would require quite a bit of traction unless you can feed it without snags. I wonder how much traction it really could get on insulation laden ceilings or across ceiling tiles. It sure would be fun to try, though.
Actually that was meant as a joke. I don't subscribe to the theory that packet timing reveals anything meaningful about passwords. Knowing the length of the password does not seem to be that much of a security breach as long as one is using at least seven characters with mixed case.
Not even kidding - imagine a worm thar tried to send just one.mp3 to each person in an address book. The bandwidth consumption would be HUGE. Considering the default Napster download paths are often in place, lots of users will have.mp3s in a known location (still)... oops.
To understand recursion you must first understand re... wait.
I like the idea. In fact, let's sue the broadcasters and ISP's for bringing us the information from the media. How far can the chain extend? How about suing the lawyers for making public the complaints against mp3.com which drew the media to the story which increased the number of pirates, and so on, and so on...
Russ also raised a point about eEye's motivation. Why do they insist on not only full disclosure, but also releasing exploit code? Again he raises a good point, and I think it's quite clear.
This question sort of assumes that if eEye doesn't release the exploit code, the code won't be written. On the contrary - exploit code is often referred to as proof of exploit code and is intended to show that the vulnerability indeed exists. Otherwise, vendors have a habit of stonewalling: "that vulerability is entirely theoretical."
That is pretty much the algorithm many people in the industry currently follow. If they discover something new, they inform the vendor and wait impatiently. If the vendor doesn't respond, or responds with something lame about not considering the vulnerability exploitable, the vulnerability is reported to the security community.
I have read several emails from people who promise full disclosure shortly, but who are giving the vendor a chance to review their code because they acknowledged the problem.
Re:Tech support load varies with configuration cou
on
Dorm Storm?
·
· Score: 3, Insightful
imposing arbitrary restrictions isn't the answer
I agree. My answer would be that there is only one *supported* configuration. You can use our NIC, Windows 9x, NT, or 2000, and we have a first-call, first-served policy; or fix it yourself.
The users should be allowed (even encouraged) to run their own OS, but restricted from putting up servers just like most ISP's AUP's dictate. No one can run DNS, you can only run DHCP behind a firewall (and if it leaks, your IP gets shut off until you procure a clue.)
Re:When our campus got Ethernet in the dorms...
on
Dorm Storm?
·
· Score: 2
One night on gnapster I found a computer that had just tons of great Alice in Chains songs (whole CD sets) on a T3. I began downloading 10 at a time, but realized that could be considered quite rude, so I messaged the user with "I hope you don't mind, but you have a lot of great songs."
Getting no response, I kept downloading. I became curious about where this great connect was from, so I tracerouted to it and found that it was some big university and they named the routers with meaningful names like WILRES01.XXX for Wilson Residence Hall or whatever. I pulled up the University's web page and found the dorm for that router. The user naming scheme was also easy to translate into the girl's real name. (Her Napster ID was Goddess something or other.) Pulled up the student directory and there she was. So I ended up messaging her with something like saying "Thanks again (first name), Wilson Hall looks like a really cool place. Hope you are enjoying it there." She never responded so I assume she was out for the night and left her computer running. Probably got back to her dorm and saw all these messages waiting and freaked!
Thanks - you saved me the trouble of pulling that out of the SecurityFocus mailing list archive. I think Elias said it best then and the thread should have ended there.
Re:It's worse than that
on
Dorm Storm?
·
· Score: 2
Jesus - listen to what you just said!
the guy that... can be called up at any time of the day or night
Just show up with a six-pack and make it a fix-my-computer/social visit. Did you ever think that if they are calling in the middle of the night it might lead elsewhere?
Recruit from the Student Population
on
Dorm Storm?
·
· Score: 2
Get some tech-savvy student volunteers to help out with the setup. No admin privileges, just things like explaining people's context, the fact that they have to locate a NIC driver for their particular hardware, etc.
At least the girls' dorms will get hooked up quickly that way;)
Yes, *nix presents at least as much of a target as Win boxes, if not more since the services running on a default install are likely to include daemons like ftp and telnet. However, it is also really easy to run a perl script like Bastille to tighten security fast and with little technical know-how. Try that on an NT box.
Notably the drive partitioning utility. It works great and is *so* easy to use. I have actually booted off the Mandrake CD just to partition the drive when doing a Redhat install since Redhat's partitioning wasn't nearly as, uh, cooperative.
Slashdot Mirror
beer -- das Bier
beer barrel -- das Bierfass
beer barrel -- das Bierfass [obs.]
beer brewed from wheat -- das Hefeweizen
beer brewed from wheat -- das Weissbier
beer mat -- der Bierdeckel
beer mat -- der Bieruntersetzer
beer mug -- der Bierkrug
beer mugs [pl.] -- die Bierkruege [pl.]
beer tent -- das Bierzelt
bottled beer -- das Flaschenbier
head (on beer) -- die Schaumkrone
life isn't all beer and skittles -- das Leben besteht nicht nur aus Vergnuegen
life isn't all beer and skittles -- das Leben ist kein endloses Vergnuegen
Life isn't all beer and skittles. -- Das Leben besteht nicht nur aus Vergnuegen.
a kept woman -- eine Maetresse
bosom (woman) -- der Busen (Frau)
buffalo woman -- die fette Frau
business woman -- Geschaeftsfrau
career woman -- Karrierefrau
cleaning woman -- die Aufwartefrau
cleaning woman [Brit.] -- die Zugehfrau
foolish woman -- die Toerin
gipsy woman -- die Zigeunerin
kept woman -- die Maetresse
married woman -- verheiratete Frau
the new woman -- die Frau von heute
to play the woman -- empfindlich sein
vanward woman -- die Vorreiterin
woman -- die Frau
woman -- Frau
toilet -- Abort
toilet -- Abtritt
toilet -- die Toilette
toilet -- Toilette
toilet -- WC
toilet article -- Toilettenartikel
toilet articles -- Toilettenartikeln
toilet bag -- der Kulturbeutel
toilet paper -- Klosettpapier
toilet papers -- Toilettenpapiere
toilet set -- Toilettengarnitur
toilet sets -- Toilettengarnituren
toilet soap -- Toilettenseife
toilet soaps -- Toilettenseifen
toilet table -- Toilettentisch
toilet tables -- Toilettentische
toilet tank -- der Spuelkasten (Toilette)
That should about do it.
Since I haven't seen anyone mention it yet, if you are a LOTR fan, you absolutely must check out this website. Enjoy!
I know - I thought the same thing the other day when I read "Linux, the upstart operating system..." Upstart? Ten years old and it's an upstart?
ditto
more numbers is such a rational idea
agreed
next step is get rid of this restricive domain naming stuff
Well, I think we have been selecting our own domains on the premise that shorter is better. You can't even get a three letter .com domain anymore because they are all taken. Longer is not necessarily better when your customers have to type this.is.my.cool.domain.name.everyone.will.remember .com
Seriously, I doubt this thing has the power to pull cable. That would require quite a bit of traction unless you can feed it without snags. I wonder how much traction it really could get on insulation laden ceilings or across ceiling tiles. It sure would be fun to try, though.
Womens' dormitory/lockerroom "surveillance"
Password capture a'la Sneakers
Chasing pets around the house
Making the geek next door jealous
Producing amusing video's to send Bob Sagget
I think you meant Ken Thompson.
I'm so sure the source doesn't contain anything like this:
/etc/hosts.equiv
/root
if $LOGNAME==`NSA_Agent` then
echo `crackyou.nsa.gov ispy` >>
useradd ispy -G wheel -d
Actually that was meant as a joke. I don't subscribe to the theory that packet timing reveals anything meaningful about passwords. Knowing the length of the password does not seem to be that much of a security breach as long as one is using at least seven characters with mixed case.
Not even kidding - imagine a worm thar tried to send just one .mp3 to each person in an address book. The bandwidth consumption would be HUGE. Considering the default Napster download paths are often in place, lots of users will have .mp3s in a known location (still) ... oops.
I like the idea. In fact, let's sue the broadcasters and ISP's for bringing us the information from the media. How far can the chain extend? How about suing the lawyers for making public the complaints against mp3.com which drew the media to the story which increased the number of pirates, and so on, and so on...
Select a password over 7 characters in length, using mixed case, both characters and numbers ... oh yeah - and pause between each character entered.
"She asked if I could get her box running, so I started pinging her host. I told her my uptime was impressive and we could frag all night."
This question sort of assumes that if eEye doesn't release the exploit code, the code won't be written. On the contrary - exploit code is often referred to as proof of exploit code and is intended to show that the vulnerability indeed exists. Otherwise, vendors have a habit of stonewalling: "that vulerability is entirely theoretical."
I have read several emails from people who promise full disclosure shortly, but who are giving the vendor a chance to review their code because they acknowledged the problem.
I agree. My answer would be that there is only one *supported* configuration. You can use our NIC, Windows 9x, NT, or 2000, and we have a first-call, first-served policy; or fix it yourself.
The users should be allowed (even encouraged) to run their own OS, but restricted from putting up servers just like most ISP's AUP's dictate. No one can run DNS, you can only run DHCP behind a firewall (and if it leaks, your IP gets shut off until you procure a clue.)
Getting no response, I kept downloading. I became curious about where this great connect was from, so I tracerouted to it and found that it was some big university and they named the routers with meaningful names like WILRES01.XXX for Wilson Residence Hall or whatever. I pulled up the University's web page and found the dorm for that router. The user naming scheme was also easy to translate into the girl's real name. (Her Napster ID was Goddess something or other.) Pulled up the student directory and there she was. So I ended up messaging her with something like saying "Thanks again (first name), Wilson Hall looks like a really cool place. Hope you are enjoying it there." She never responded so I assume she was out for the night and left her computer running. Probably got back to her dorm and saw all these messages waiting and freaked!
Thanks - you saved me the trouble of pulling that out of the SecurityFocus mailing list archive. I think Elias said it best then and the thread should have ended there.
Just show up with a six-pack and make it a fix-my-computer/social visit. Did you ever think that if they are calling in the middle of the night it might lead elsewhere?
At least the girls' dorms will get hooked up quickly that way ;)
Yeah, I have used them. Impressive auditing too, I must admit. But we are discussing home users, most of whom are not running Win2K Adv. Server.
Yes, *nix presents at least as much of a target as Win boxes, if not more since the services running on a default install are likely to include daemons like ftp and telnet. However, it is also really easy to run a perl script like Bastille to tighten security fast and with little technical know-how. Try that on an NT box.
Notably the drive partitioning utility. It works great and is *so* easy to use. I have actually booted off the Mandrake CD just to partition the drive when doing a Redhat install since Redhat's partitioning wasn't nearly as, uh, cooperative.
Oh yeah, thanks! Damn colons :)