I think the point of it was to minimize the chance of another scenario like Slammer. In Slammer's case, it infected so many hosts within so little time which is what made it so 'destructive.' As some other posters pointed out earlier, I believe diversity is key in slowing down and containing such a threat. Also, making people aware that some services just don't need to be open to the hands of 15 year olds should help in isolating vulnerable services.
Nobody is forcing you to use a blacklist on your mail server. Forcing people to accept this trash, err spam, is free speech? I think the freedom to accept whatever mail you want is crucial. Next time I get DoS'd I'll remember your comment and think.. hmm.. I should let them flood the hell out of me because if I blocked them, that'd be quite fascist.
Let the people choose. I use SpamCop as a RBL and I still get a decent amount of spam. This weekend, I plan on adding some broad ACLs so my mail server won't have to put up with this garbage (or at least most of it).
I haven't seen many other net admins post their experiences, so I'll give mine. We run DarkFire (which averages around 400-500 a night) and within about 2 hours our global client count tripled to about 1200.
The bots tend to join "random" channels (not really random because ~40 or so will collect in each channel) and they sit there. Now get this.. they spit out random English/German gibberish. No joke. Things like "Money is a diabolical power" and "Religion is an oppressive force"; things of that nature. Some of it is in German also.
As an admin previously posted, they use random "real" sounding nicknames, usernames, etc. Their host addresses span across the world. At first, we had no idea what they were until one of our opers broke into one of the random Win2k servers the bot ran on and went through the registry and process list. From there, after some google search, we found out about Fizzer.
We let them collect for awhile to look for any threats they might pose. We also checked their reconnect delay. None; they don't reconnect to the same network. In other words, banning them is a waste of time. I try to avoid placing thousands of network bans, and in this case, it would certainly be wasteful. After a few masskills to wipe the channels clean most of the bots disappeared as quickly as they came. Now, on to my IRC rant. I've been waiting for a soapbox. If you're from DarkFire, get ready to cringe because you've heard this before..
IRC's future is one that a *BSD is Dying troll might say. Over the years networks have had to put up with an increasing thread of DDoS attacks that are provoked by the slightest change in breeze. DALnet went through hell and back; the aggregate bandwidth they had to absorb from the attacks is insane. IRC was turnd into a warez and botnet haven within a few years, and the future looks bleak.
Whenever I mention IRC to someone that's never really used it but keeps up with tech news almost always gets the impression that it's just a ubnch of warez and botnet networks. At one point when I was getting DoS'd, I spoke to someone at MFN to get a filter in place and he asked me if I had any idea why I was beign attacked. I mentioned that I run an IRC network and he immediately reminded me that it's a massive DDoS magnet. I had to agree.
I'm getting sick of the whole situation. About a month ago, we decided to shut off the network to public access and require registration with confirmation of a code being placed on an image (Yahoo reg style). The decision doesn't mean it was an overngiht process. We'll probably be done coding it in June, and that's when we'll go in.
We prove a public service, and we volunteer hours. That alone will not convince our upstream provider of why it's worth it for them to lose service along with us because of a DDoS that is almost always related to IRC. Over the years, we've tried in every way not to provoke attacks, and we've really only been hit about 5 or 6 times since we opened in April of '98. However, enough is enough. If someone doesn't want to take the 10 seconds to copy a code from an image on our webpage to verify registration, then they can find a different network to use.
I replied to another comment similar to your first answer. What I really meant was preparation for the SAT test itself (like finding SAT trends, tricks, etc.) instead of the abilities its supposed to test.
Well, I think taking the Kaplan course (in some/most cases, not all) reflects the obsession to do well on the SAT test, period. Not improve abilities or whatever. If anyone has taken the test and wants to say otherwise, then your opinion of it may very well be more credible than mine. This is just my perception from the people I know who have taken it.
Hehe I like your SAT story. I think that it may be a flaw within a single test trying to determine that. Your case, like others, is probably just another that the SAT's crystal ball fails to predict. I don't see anything better out there that could replace the SAT. I think most of what just annoys me is people obsessing over getting a high score. This would include the stereotype I mentioned in my first post of some people freaking out over getting a 96% instead of a 99%;)
My minirant was too 'mini', I don't think I was specific enough. I agree with most of your response. What I really meant is the type of test preparation. The type that comes to my mind is the type that focuses on the test and not the abilities. (Or over-emphasizes on the test) For example, the books that find trends in the tests and what the test authors tend to do, etc.
If you want to improve your own abilities (and not SAT test taking abilities) then I applaud that.
I'd like to clarify. I'm all for someone trying their best at a course. What I meant is that some people seem to lose perspective of the whole thing (imho). If you wish you would've gotten a 99% instead of 96%, cool. But if you start whining to other people about it and making a big deal out of it, then I don't think that's warranted.
I think the thing that pisses me off the most is the amount of preparation people can do for the tests. I mean, if these tests are supposed to measure (whatever they think it measures).. is it really that accurate when taking a Kaplan course guarantees to improve your score by 300 points? (I'm making up numbers, sorry, but you get the point) So far, I've seen it good for 3 things.
1. The tutors who get the money for test preps 2. Annoying egos (the same people who "failed" a test because they got a 96% and not a 99%) 3. Distinguishing people with high gpas without any other significant experience in h.s.
I think that was one of the things I hated most about high school.
Slashdot Mirror
Well, to catch up with RedHat, Mandrake, and everyone else I think it should be Mozilla 9!
Just another reason to metamod.
The report card of our Congress. :P
No, it's the company! This article is really about a database that can detect if it is stolen; if so, it'll delete all records.
I think the point of it was to minimize the chance of another scenario like Slammer. In Slammer's case, it infected so many hosts within so little time which is what made it so 'destructive.' As some other posters pointed out earlier, I believe diversity is key in slowing down and containing such a threat. Also, making people aware that some services just don't need to be open to the hands of 15 year olds should help in isolating vulnerable services.
Another troll hits the dust. Stupid copy and paster.
This will explain what I'm talking about
So a little more useless trash won't hurt. Right.
This is about as bad as disposable cell phones.
Yeah yeah, the same people who get 'pregnant' after eating a huge meal ;)
-547, Flamebait
had the theatre chuckling in their seats.
Which theater did you go to?
Nobody is forcing you to use a blacklist on your mail server. Forcing people to accept this trash, err spam, is free speech? I think the freedom to accept whatever mail you want is crucial. Next time I get DoS'd I'll remember your comment and think.. hmm.. I should let them flood the hell out of me because if I blocked them, that'd be quite fascist.
Let the people choose. I use SpamCop as a RBL and I still get a decent amount of spam. This weekend, I plan on adding some broad ACLs so my mail server won't have to put up with this garbage (or at least most of it).
Yep. That's why we'll be forcing registration and verification by this June. I'm sick of putting up with all of the shit you mentioned.
I haven't seen many other net admins post their experiences, so I'll give mine. We run DarkFire (which averages around 400-500 a night) and within about 2 hours our global client count tripled to about 1200.
;)
The bots tend to join "random" channels (not really random because ~40 or so will collect in each channel) and they sit there. Now get this.. they spit out random English/German gibberish. No joke. Things like "Money is a diabolical power" and "Religion is an oppressive force"; things of that nature. Some of it is in German also.
As an admin previously posted, they use random "real" sounding nicknames, usernames, etc. Their host addresses span across the world. At first, we had no idea what they were until one of our opers broke into one of the random Win2k servers the bot ran on and went through the registry and process list. From there, after some google search, we found out about Fizzer.
We let them collect for awhile to look for any threats they might pose. We also checked their reconnect delay. None; they don't reconnect to the same network. In other words, banning them is a waste of time. I try to avoid placing thousands of network bans, and in this case, it would certainly be wasteful. After a few masskills to wipe the channels clean most of the bots disappeared as quickly as they came. Now, on to my IRC rant. I've been waiting for a soapbox. If you're from DarkFire, get ready to cringe because you've heard this before..
IRC's future is one that a *BSD is Dying troll might say. Over the years networks have had to put up with an increasing thread of DDoS attacks that are provoked by the slightest change in breeze. DALnet went through hell and back; the aggregate bandwidth they had to absorb from the attacks is insane. IRC was turnd into a warez and botnet haven within a few years, and the future looks bleak.
Whenever I mention IRC to someone that's never really used it but keeps up with tech news almost always gets the impression that it's just a ubnch of warez and botnet networks. At one point when I was getting DoS'd, I spoke to someone at MFN to get a filter in place and he asked me if I had any idea why I was beign attacked. I mentioned that I run an IRC network and he immediately reminded me that it's a massive DDoS magnet. I had to agree.
I'm getting sick of the whole situation. About a month ago, we decided to shut off the network to public access and require registration with confirmation of a code being placed on an image (Yahoo reg style). The decision doesn't mean it was an overngiht process. We'll probably be done coding it in June, and that's when we'll go in.
We prove a public service, and we volunteer hours. That alone will not convince our upstream provider of why it's worth it for them to lose service along with us because of a DDoS that is almost always related to IRC. Over the years, we've tried in every way not to provoke attacks, and we've really only been hit about 5 or 6 times since we opened in April of '98. However, enough is enough. If someone doesn't want to take the 10 seconds to copy a code from an image on our webpage to verify registration, then they can find a different network to use.
Excuse the typos, I tend to typo more in rants
BG is pretty cool. I only have 2 of their songs that a friend gave to me, but I like them.
GC
~10 comments or so and the site is toast. I suspect the subscribers may be pre-/.ing it. This has been happening to a lot of other stories too.
I replied to another comment similar to your first answer. What I really meant was preparation for the SAT test itself (like finding SAT trends, tricks, etc.) instead of the abilities its supposed to test.
;)
Well, I think taking the Kaplan course (in some/most cases, not all) reflects the obsession to do well on the SAT test, period. Not improve abilities or whatever. If anyone has taken the test and wants to say otherwise, then your opinion of it may very well be more credible than mine. This is just my perception from the people I know who have taken it.
Hehe I like your SAT story. I think that it may be a flaw within a single test trying to determine that. Your case, like others, is probably just another that the SAT's crystal ball fails to predict. I don't see anything better out there that could replace the SAT. I think most of what just annoys me is people obsessing over getting a high score. This would include the stereotype I mentioned in my first post of some people freaking out over getting a 96% instead of a 99%
My minirant was too 'mini', I don't think I was specific enough. I agree with most of your response. What I really meant is the type of test preparation. The type that comes to my mind is the type that focuses on the test and not the abilities. (Or over-emphasizes on the test) For example, the books that find trends in the tests and what the test authors tend to do, etc.
If you want to improve your own abilities (and not SAT test taking abilities) then I applaud that.
I'd like to clarify. I'm all for someone trying their best at a course. What I meant is that some people seem to lose perspective of the whole thing (imho). If you wish you would've gotten a 99% instead of 96%, cool. But if you start whining to other people about it and making a big deal out of it, then I don't think that's warranted.
I think the thing that pisses me off the most is the amount of preparation people can do for the tests. I mean, if these tests are supposed to measure (whatever they think it measures).. is it really that accurate when taking a Kaplan course guarantees to improve your score by 300 points? (I'm making up numbers, sorry, but you get the point) So far, I've seen it good for 3 things.
1. The tutors who get the money for test preps
2. Annoying egos (the same people who "failed" a test because they got a 96% and not a 99%)
3. Distinguishing people with high gpas without any other significant experience in h.s.
I think that was one of the things I hated most about high school.
Here's a project that was adapted from Fran Golden's floppy.
This is off of their forgotten password page. Can you give us more code please? Thanks.
.NET Passport password, please enter the following information and then click Continue.
To reset your Microsoft®
Help
{{if RSP._isHotmailMode }}{{else}}{{endif}}
Maybe this will help.
Maybe hell froze over and everyone read the long and detailed article..?
Nah.
Holy shit. It went from +4 Informative to +1 Troll. I saw the page was lagging to hell and back so I was nice and mirrored it. Sheesh.
Mirror