Prudential insurance? A class A? Almost 17 million addresses?
Ford motor company? General electric?
DoD has 11 class A chunks? That's almost 200 million addresses. You could give almost everybody in the united states a mobile phone with that.
These are just the most obvious ones. Does Apple really need 17 million addresses? Does HP? Xerox PARC?
This FUD has been getting spread around since the late 1990s. I think we're fine, and I think we're going to be fine for quite a while into the future.
On top of that... Do you understand how the money traffic servers work? They're not like publicly accessible HTTP Web servers, you can't DDoS them.
Yes, you absolutely can DDOS them, you just probably couldn't do it with an existing, canned tool like LOIC. (I'm assuming LOIC just does HTTP?). Have you ever noticed that, when the internet bails out at your friendly neighborhood coffee shop, they're usually unable to process credit card transactions? This is because all of those desktop card terminals talk to VISA/Mastercard/AMEX/etc's payment processing servers over the public internet. The transaction is protected with strong encryption the same as VPN or HTTPS is, but this doesn't mean it can't be attacked.
Keep in mind that there is almost no "hacking" going on here, they're just flooding it. This is why this type of DOS attack is almost impossible to stop. The same technique could be applied to any service.
In order to even reasonably take this down you not only need to know the IP of where these are entering (It COULD be the same as the web server, but I doubt it)
This shouldn't be even remotely difficult to do for anybody who has more than a very, very basic understanding of computer networking.
Then, suppose you've figured out your point to attack, you need to figure out the vector. Using the LOIC as is won't cut it, they probably have the most minimal of firewalls that knows to just drop anything that looks like an HTTP request - so in order to really DDoS it you'll need to figure out which port your using (Which shouldn't be too difficult if you've managed to reach this part) - but then you might also need to form your requests in such a way that they don't appear malformed either, lest they be trended and dropped.
Again, no. You're not worried about specifically attacking the protocol, you're looking to just overwhelm the machine with traffic.
This is something that I've tried and tried and tried to explain to some of my friends that work in marketing. When you are sending spam, you are literally using somebody *else's* property in a way that they don't want you to use it in order to give them messages.
This should be looked at no differently than causing unused speakers in my house to play radio advertisements when I want them turned off.
You send spam, and it's taking up a limited resource (disk, bandwidth, power, man hours, etc.) to your end and against the will of the recipient. I really hope that there are more cases like this.
A) Cryptome is running on Network Solutions B) The email associated with the account is on *earthlink* ??? C) None of these things have been shut down.
Seriously, doesn't cryptome host some pretty shady stuff? On the same level as wikileaks, isn't it? What the hell is going on here?
That is absolutely fantastic news. Could you point me at a place where I could buy one?
The reality is that the derivative technologies are not always things like "we need to invent a solar panel", they're not even "we need to invent light composites", they're "we need to figure out a way of quickly producing these exotic materials on a large enough skill to fill the demand that the military is going to have for these.".
Isn't it frustrating that the military never encourages the development of new technology?
I cannot think of a single civilian use for something like this, and definitely not a use for any of the derivative technologies./sarcasm...because, well, nerdgasm
I've flown out of Sky Harbor international airport, Dallas Ft-Worth international airport and tons of smaller regional aiports privately and never ever had my bags checked or had anybody even say anything to me other than "Do you want a cookie?"
I once even had the flight crew of a Gulfstream V invite me on board to check it out when they saw me oggling it.
The point is: at least in the US (which is where Jobs does most of his flying, I would imagine) having any type of airport security *at all* is not normal for private flights.
I just want to clarify that this is absolutely *not* how things work in the United States.
In the US, if you're flying privately, you walk through the lobby of whatever FBO (Which is a company that provides fuel, a pilot lounge, catering, etc.) your plane is parked at, smile at the person behind the desk, get on your plane, and leave.
Jobs was right to think that he could get on the plane with his stars because, usually, he would be able to.
You give the public way, way, way too much credibility. I'm sitting in a coffee shop right now surrounded by about 20 people, if you had to guess, how many of them do you think know who Julian Assange is? Know what wikileaks is even? Know that Sweden incorrectly accused him of rape at the behest of the Obama Administration as an attempt to discredit him?
None? 1, maybe?
All it's going to take is a "raid" on his home where they find child pornography on one of his computers. He will go to jail for the rest of his life and, from that point forward, everything that comes from wikileaks will be something that came from "that organization that distributes kiddie porn".
Yes, the Swedes messed this up, badly, but the overwhelming majority of people don't even know that it happened, and even the majority of them don't realize that wikileaks is a lot more than Julian Assange. Despite this, he will be discredited and, with him, wikileaks will go away./sad
I think a lot of the people who used to use linux are now using mac.
This is sad to me:(. Some of what I consider the most important lessons I learned I learned by trying to get gentoo running properly (with ACPI support, mind you) on my laptop.
I wouldn't be so sure about that... The thing is made from very low-weight foam and brushless motors are getting to the point where this is a reality. Those little toy Air Hogs things, for instance, can do this (albeit on a much smaller scale)./Sidebar: wtf has happened to those things? 2 years ago, they were all over the place, now the only thing I ever see are those god-awful 2-axis helicopters.
First, UAVs have got WAYYYYYYY more uses than spying on people. Unmanned utility wire monitoring, atmospheric replacements for satellites, land surveys, search and rescue, etc. etc. etc. Spying is just a little teeny tiny subset of the things you can do with a UAV (for instance, we're using predator drones over the gulf right now to monitor the oil spill...we're doing this because they drones can stay in the air for a very long time).
Second, you're advocating a device that would indiscriminately destroy electronic equipment with a range long enough that it could take out a airplane. Are you fucking insane? People with pacemakers, or artificial hearts...just kill them?
Destroy everybody within 200 yards' telephone, laptop, pager, e-reader, etc. because you're paranoid that some scary OMG GUBBMINT guy is watching you buy a donut?
Look, Microsoft, I like you, I really do. I use windows XP on my workstation and it seems to work pretty damn well for everything I ever ask of it. You do a lot of research, that's really cool. Bill, you're a cool guy, donating all kinds of money to charity and whatnot; awesome.
But here is the thing, MS, I can download F/OSS stuff for *free*, find out if I like it, and if I do I just keep using it. I don't have to fork over any money, I don't have to register for anything or tell anybody , or do *anything* other than navigate over to sourceforge or wherever else, click download, click install, and then start working.
Your products are not that much better, they just aren't, and as a broke-ass kid, it doesn't make sense for me to spend money on them. I'd rather use the money to buy hardware.
Slashdot Mirror
I'm absolutely not advocating against early planning, that is good. What isn't good is misrepresenting the problem.
Guys, look at This list of Class A.
Prudential insurance? A class A? Almost 17 million addresses?
Ford motor company? General electric?
DoD has 11 class A chunks? That's almost 200 million addresses. You could give almost everybody in the united states a mobile phone with that.
These are just the most obvious ones. Does Apple really need 17 million addresses? Does HP? Xerox PARC?
This FUD has been getting spread around since the late 1990s. I think we're fine, and I think we're going to be fine for quite a while into the future.
On top of that... Do you understand how the money traffic servers work? They're not like publicly accessible HTTP Web servers, you can't DDoS them.
Yes, you absolutely can DDOS them, you just probably couldn't do it with an existing, canned tool like LOIC. (I'm assuming LOIC just does HTTP?). Have you ever noticed that, when the internet bails out at your friendly neighborhood coffee shop, they're usually unable to process credit card transactions? This is because all of those desktop card terminals talk to VISA/Mastercard/AMEX/etc's payment processing servers over the public internet. The transaction is protected with strong encryption the same as VPN or HTTPS is, but this doesn't mean it can't be attacked.
Keep in mind that there is almost no "hacking" going on here, they're just flooding it. This is why this type of DOS attack is almost impossible to stop. The same technique could be applied to any service.
In order to even reasonably take this down you not only need to know the IP of where these are entering (It COULD be the same as the web server, but I doubt it)
This shouldn't be even remotely difficult to do for anybody who has more than a very, very basic understanding of computer networking.
Then, suppose you've figured out your point to attack, you need to figure out the vector. Using the LOIC as is won't cut it, they probably have the most minimal of firewalls that knows to just drop anything that looks like an HTTP request - so in order to really DDoS it you'll need to figure out which port your using (Which shouldn't be too difficult if you've managed to reach this part) - but then you might also need to form your requests in such a way that they don't appear malformed either, lest they be trended and dropped.
Again, no. You're not worried about specifically attacking the protocol, you're looking to just overwhelm the machine with traffic.
Maybe I'm out of the ordinary, but I've never replaced a phone because it was out of date, I've only ever replaced it when it breaks.
I doubt any of my desktop machines would still be crunching if they got banged up against my keys in my pocket for 16 hours a day.
This is something that I've tried and tried and tried to explain to some of my friends that work in marketing. When you are sending spam, you are literally using somebody *else's* property in a way that they don't want you to use it in order to give them messages.
This should be looked at no differently than causing unused speakers in my house to play radio advertisements when I want them turned off.
You send spam, and it's taking up a limited resource (disk, bandwidth, power, man hours, etc.) to your end and against the will of the recipient. I really hope that there are more cases like this.
This is called "antivirus$year" and it's been around for a long time now.
Unless you were being sarcastic...
The real WTF here is that
A) Cryptome is running on Network Solutions
B) The email associated with the account is on *earthlink* ???
C) None of these things have been shut down.
Seriously, doesn't cryptome host some pretty shady stuff? On the same level as wikileaks, isn't it? What the hell is going on here?
If that was the case, they probably wouldn't come out of their spaceship. Our atmosphere is filled with water.
It's already *here*.
That is absolutely fantastic news. Could you point me at a place where I could buy one?
The reality is that the derivative technologies are not always things like "we need to invent a solar panel", they're not even "we need to invent light composites", they're "we need to figure out a way of quickly producing these exotic materials on a large enough skill to fill the demand that the military is going to have for these.".
Isn't it frustrating that the military never encourages the development of new technology?
I cannot think of a single civilian use for something like this, and definitely not a use for any of the derivative technologies. /sarcasm...because, well, nerdgasm
I've flown out of Sky Harbor international airport, Dallas Ft-Worth international airport and tons of smaller regional aiports privately and never ever had my bags checked or had anybody even say anything to me other than "Do you want a cookie?"
I once even had the flight crew of a Gulfstream V invite me on board to check it out when they saw me oggling it.
The point is: at least in the US (which is where Jobs does most of his flying, I would imagine) having any type of airport security *at all* is not normal for private flights.
I just want to clarify that this is absolutely *not* how things work in the United States.
In the US, if you're flying privately, you walk through the lobby of whatever FBO (Which is a company that provides fuel, a pilot lounge, catering, etc.) your plane is parked at, smile at the person behind the desk, get on your plane, and leave.
Jobs was right to think that he could get on the plane with his stars because, usually, he would be able to.
What you're saying is absolutely insane, I'm sorry.
The sensor in my copier costs, what, $10? Maybe?
You're talking about replacing that with something that would likely cost over $100,000 as well as well as the optics to support it.
The sensor in a fax machine and the sensor in a camera are *totally* different things.
They do this to prevent people from going there, taking pictures, and selling a "BURNERS GONE WILD!" calendar or something like it.
They're preventing *others* from profiting off of photos of burners, not profiting off of them themselves.
This is generally considered a good thing.
AWUS 036h
Ubiquiti XR2 (600mw) laughs at your shenanigans.
(I have a stack of these in my house...but nothing to really use them for. I feel like I should lose nerd cred for this).
Facebook has 1 server per about 10,000 users. (Although the majority of these are probably part of storage arrays)
You give the public way, way, way too much credibility. I'm sitting in a coffee shop right now surrounded by about 20 people, if you had to guess, how many of them do you think know who Julian Assange is? Know what wikileaks is even? Know that Sweden incorrectly accused him of rape at the behest of the Obama Administration as an attempt to discredit him?
None? 1, maybe?
All it's going to take is a "raid" on his home where they find child pornography on one of his computers. He will go to jail for the rest of his life and, from that point forward, everything that comes from wikileaks will be something that came from "that organization that distributes kiddie porn".
Yes, the Swedes messed this up, badly, but the overwhelming majority of people don't even know that it happened, and even the majority of them don't realize that wikileaks is a lot more than Julian Assange. Despite this, he will be discredited and, with him, wikileaks will go away. /sad
Keep in mind that Christopher Hitchens, who I think is absolutely brilliant, is a contributing editor for Vanity Fair, a pop culture magazine.
Somehow I can't connect social networking and stupid flash games to "hacker" culture.
Facebook invented Cassandra, as well as Haystack
Here is their engineering page.
Facebook *has* to be a culture of hackers as they really are pushing the limits of scaling (in the same way that google is)
Predators do not have automatic takeoff and landing capabilities.
I think a lot of the people who used to use linux are now using mac.
This is sad to me :(. Some of what I consider the most important lessons I learned I learned by trying to get gentoo running properly (with ACPI support, mind you) on my laptop.
Not likely for such a craft.
I wouldn't be so sure about that... The thing is made from very low-weight foam and brushless motors are getting to the point where this is a reality. Those little toy Air Hogs things, for instance, can do this (albeit on a much smaller scale). /Sidebar: wtf has happened to those things? 2 years ago, they were all over the place, now the only thing I ever see are those god-awful 2-axis helicopters.
Are you off of your meds or something?
First, UAVs have got WAYYYYYYY more uses than spying on people. Unmanned utility wire monitoring, atmospheric replacements for satellites, land surveys, search and rescue, etc. etc. etc. Spying is just a little teeny tiny subset of the things you can do with a UAV (for instance, we're using predator drones over the gulf right now to monitor the oil spill...we're doing this because they drones can stay in the air for a very long time).
Second, you're advocating a device that would indiscriminately destroy electronic equipment with a range long enough that it could take out a airplane. Are you fucking insane? People with pacemakers, or artificial hearts...just kill them?
Destroy everybody within 200 yards' telephone, laptop, pager, e-reader, etc. because you're paranoid that some scary OMG GUBBMINT guy is watching you buy a donut?
Stay classy, slashdot.
What the hell does this have to do with the iPhone and its antenna?
Dear Journalists,
Referencing anything to do with the iPhone in an attempt to sound hip and relevant just makes you look stupid.
Signed,
Blhack
Look, Microsoft, I like you, I really do. I use windows XP on my workstation and it seems to work pretty damn well for everything I ever ask of it. You do a lot of research, that's really cool. Bill, you're a cool guy, donating all kinds of money to charity and whatnot; awesome.
But here is the thing, MS, I can download F/OSS stuff for *free*, find out if I like it, and if I do I just keep using it. I don't have to fork over any money, I don't have to register for anything or tell anybody , or do *anything* other than navigate over to sourceforge or wherever else, click download, click install, and then start working.
Your products are not that much better, they just aren't, and as a broke-ass kid, it doesn't make sense for me to spend money on them. I'd rather use the money to buy hardware.