The annoying thing with "Previous Versions" is that you need to have the server service started. Which is weird
since there is no service level dependency it provides to the Volume Shadow Copy Service.
But they are ! Antivirus programs run most of their program as a service (services.msc). A quick look reveals Mcafee uses 4 services Framework, Shield, Task Manager, Validation Trust protection.
The avg user program and tray icon's are just front-ends to control some aspects of these services or to start custom scans.
p.s. it is perfectly viable for a literate individual to not use an antivirus. It is also possible to not use AV on a PC in a corporate environment, but it has its implications. T
I think using the OS supplied security controls the Windows Vista/7/8 family provides: Applocker/SRS, Group Policy, App-V is preferable to running antivirus in an OR scenario. It's also a lot more complicated.
And takes a very long time/dev/{u}random does not have a lot of bandwith. In my opinion a single dd if=/dev/zero suffices for drives going out of the company. But for a reinstallation of a system in the company I just format and reinstall again because a zero pass takes a long time as well.
They milk their data-usage plan subscribers as much as they can even going so far as reducing the bandwith of their premium paid-up front users. And then they try to convince everybody it's for guaranting that everyone has (some) connectivity. Douchebags ! Verizon customers vote with your money !
You can't expect them to collaborate with their 'enemy' The only thing they can do is guerilla warfare or agree to the occupation. If they didn't have the support from the palestinian public eg: if Israel was actually civil with these people instead of raiding them en masse and 'interrogating' their children then Hamas wouldn't exist as it is now anyway. Punishing everybody for the crimes of a few is wrong policy.
Threat the people like people, work your informants and send special ops to the actual terrorists, that's how you get them.
No, he was putting public keys (not private) into a home directory. Specifically, the user was root which was only possible because a)/root was exported (via exporting/), b) root squash wasn't enabled. Yes, nfs3 is fundamentally insecure. Any vaguely competent sysadmin knows this and knows to take appropriate precautions.
And what's the appropriate action besides root_squash and proper host access control (/etc/exports,tcp wrappers, firewall, etc...) ? It still doesn't do any real authentication.
All trojans/bots/ransomsware is designed to circumvent antivirus. It is a arms wars between viri and anti-virus. At the moment the viri are winning it:(.
Well it's a reactive business (hopefully) so that's to be expected.
TCP isn't noticably more secure than UDP - the extra fields in TCP are unsigned and can be spoofed too.
But it's a lot harder since you need to have the server believe you've established a connection and can't just dump spoofded data on the wire like with UDP.
Thus, security is implemented on top of the transport layer, where it works just as well for udp as tcp. The advantage of udp then is that you get more payload per encrypted or signed unit, thus higher speed.
What are you talking about: NFSv4 ?, ipsec ? What is this security you speak of.
Also, avoid distros that set up NFS to use tcp instead of the default udp. That's a huge performance killer, and not needed unless you use hubs instead of switches or need to tunnel the traffic.)
I'm not avoiding a distro if it chooses tcp over udp. Isn't using UDP instead of TCP removing that last bit of pseudo-security NFS has ? Aren't you now vulnerable to all sort of spoofing mayhem now ?
init doesn't manage services. Services are either managed by inetd or by themselves. init only has to start the services.
That's not completely true: init (re)spawns (a|min)getties on the ttys. So it does some monitoring of its "special" children. Wether this is feature creep and/or an exception I don't know.
The only problem with Macs is that people hoard them instead of throwing them in the trash where they belong. Else I would have picked up a Mac Mini on the ground, install BootCamp on it and then it would be about good enough as a DHCP server and porn storage unit.
So you want one but can't get one through "dumpster diving". Oh, poor you.
So the solution is to hand the critical stuff to systemd-logind which I assume has root privileges.
Why didn't the Xorg folks split their root sections from the server themselves ?
Slashdot Mirror
The annoying thing with "Previous Versions" is that you need to have the server service started. Which is weird
since there is no service level dependency it provides to the Volume Shadow Copy Service.
But they are ! Antivirus programs run most of their program as a service (services.msc). A quick look reveals Mcafee uses 4 services
Framework, Shield, Task Manager, Validation Trust protection.
The avg user program and tray icon's are just front-ends to control some aspects of these services or to start custom scans.
What happens when said AV solution quarantines svchost.exe ?
I think using the OS supplied security controls the Windows Vista/7/8 family provides: Applocker/SRS, Group Policy, App-V
is preferable to running antivirus in an OR scenario. It's also a lot more complicated.
Aah so instead of John doe owning 1.1.1.0/24,1.2.0.0/16, 6.6.6.0/24, etc ... he only owns one. OK thanks.
Can someone explain me how a protocol with bigger addresses and bigger routes fixes
a hardware resource problem.
And takes a very long time /dev/{u}random does not have a lot of bandwith. In my opinion a single dd if=/dev/zero suffices for drives going out of the company.
But for a reinstallation of a system in the company I just format and reinstall again because a zero pass takes a long time as well.
They milk their data-usage plan subscribers as much as they can even going so far as reducing the bandwith of their premium paid-up front users.
And then they try to convince everybody it's for guaranting that everyone has (some) connectivity.
Douchebags ! Verizon customers vote with your money !
Yes these are just 'born' troublemakers: Bohemians and barbarians. It's not like men have fought each other for resources before.
You can't expect them to collaborate with their 'enemy'
The only thing they can do is guerilla warfare or agree to the occupation.
If they didn't have the support from the palestinian public eg: if Israel was actually civil
with these people instead of raiding them en masse and 'interrogating' their children then Hamas
wouldn't exist as it is now anyway. Punishing everybody for the crimes of a few is wrong policy.
Threat the people like people, work your informants
and send special ops to the actual terrorists, that's how you get them.
Just out of curiosity which workloads are better suited to vim than Sublime and vice versa ? When do you decide to switch editors.
And what's the appropriate action besides root_squash and proper host access control (/etc/exports,tcp wrappers, firewall, etc ...) ?
It still doesn't do any real authentication.
I think he means you can spoof uid of some known user and get the private keys in his .ssh directory.
I guess it means that the apk's run on Dalvik or Art straight on the machine instead of in the emulator.
Well it's a reactive business (hopefully) so that's to be expected.
But it's a lot harder since you need to have the server believe you've established a connection and can't just dump spoofded data on the wire like with UDP.
What are you talking about: NFSv4 ?, ipsec ? What is this security you speak of.
I'm not avoiding a distro if it chooses tcp over udp.
Isn't using UDP instead of TCP removing that last bit of pseudo-security NFS has ?
Aren't you now vulnerable to all sort of spoofing mayhem now ?
That's not completely true: init (re)spawns (a|min)getties on the ttys. So it does some monitoring of its "special" children.
Wether this is feature creep and/or an exception I don't know.
So you want one but can't get one through "dumpster diving". Oh, poor you.
NFS is crap too and in my testing also slower.
Cgroups are used by VPS resellers IIRC.
So the solution is to hand the critical stuff to systemd-logind which I assume has root privileges.
Why didn't the Xorg folks split their root sections from the server themselves ?
Are you insulting the samba project ?
Time to send them my resumee.
You run X on servers ? Nevermind, ... what was your (inital) opinion of Apple creating launchd to replace ... ?
init, cron, at,