I remember the Cassini protests outside the whitehouse (from CNN). Some dude carrying around a poster "Our Last Sacred Space" with a drawing of an alien like on the X-Files. Like he thought we were polluting Saturn or something...
Actually in 1984, the UK is called Landing Strip One, which is part of Oceania. Oceania is at war with Eurasia. Oceania has always been at war with Eurasia.
Remember that on Earth, multicellular animals and plants evolved in the oceans first, then moved to land. With less time available on a planet like Mars, they might have got somewhere in the oceans but never made it out.
Yeah, but this allows for an expansion -- you can send the smallest possible ICMP_ECHO packets to someone using automatic dshield.org reporting, even undersized perhaps, and get them to automatically send 120 bytes for each to dshield.org
Taking IP chains generated log lines makes for a nice little DoS of dshield.org once enough people figure it out. IP chains' kernel messages log one line per packet.
Much more sensible is encouraging use of a proper logging package, i.e. iplog v2, with a good ruleset to remove false alarms.
I wonder if this guy sold brooklynbridge.biz, or perhaps swampland.biz...
People would have had to be fools to register with an alterate root server that had little chance of ever becoming official.
This guy (the guy who ran the alternate.biz) reminds me of the guy who sells land on the Moon, Mars, etc... to suckers (he's got a web site somewhere).
Looking at my logs, generated by iplog2, I about 5% of the stuff is anything to worry about. The rest is:
@Home scanning for news servers.
an occasional ping
Napster.
I have my rules set up to the best of my (experienced) ability to eliminate irrelevant stuff. By default, most of the logging packages log everything (i.e. ftp-data connections).
If you ever read some of the newsgroups where the same users who will be using dshield.org post, you'll see that they don't know how to tell an attack from normal activity. Unforunately I can't find some of the usual "NOTICE TO WHOEVER PINGED ME: SEND ME A PING AGAIN AND I'M CALLING THE FBI AND GETTING YOU CUT OFF FROM AOL NOW LET'S BURN THE WITCH" postings today in athome.discussion-security, but they're usually there.
The "firewall" programs that most users use don't give them any help in telling the difference between a genuine 'attack' and between their web browser downloading a file using *gasp* an ftp-date connection.
In Canada, we have a similar situation: there's a tax on all CD-R media that is designated as "CD audio" material (you know the little logo on it), and the tax doesn't go to the government, or the artists. It goes directly to the Canadian equivalent of the RIAA.
This is what I get: (from a shaw @Home ip in the 24.67.119.0/255.255.255.0 netblock)
You are not authorized to view this page
You do not have permission to view this directory or page from the Internet address of your Web browser.
If you believe you should be able to view this directory or page, please contact the Web site administrator by using the e-mail address or phone number listed on the bullsh.it home page.
HTTP 403.6 - Forbidden: IP address rejected
Internet Information Services
Technical Information (for support personnel)
Background:
This error is caused when the server has a list of IP addresses that are not allowed to access the site, and the IP address you are using is in this list.
It might sound funny, but I bet if you patented RNA, which most people haven't heard of, but which is important in cell division, you could get a judge to issue a preliminary injunction.
Next they'll go after companies which make Software which use a lot of RAM....
LINUX companies will get away with $5 per copy sold commercially. Microsoft will have to pay $100 per copy for Windows ME because of the huge memory footprint required to boot. --
The paper-digital signature analogy is very valid. And it is often ignored, often in the name of improving E-commerce, or more recently, with digital signatures being advocated as authentication for electronic voting. The important thing is that both are subject to tampering. Unlike with a signature on paper, which is very hard to duplicate exactly with another person using a pen, and where copies are obvious (i.e. a photocopy would have trouble passing), digital 'signatures' can be made exact without detectability provided that the manner in which your private key was stolen is no longer apparent. In addition, courts, judges, and police are unlikely to understand these issues.
These are important issues to consider. Perhaps one day we will be required to use digital 'signatures' on a regular basis to conduct normal everyday business -- perhaps the software used will be a propietary system provided by one company (let's call this company Macrosoft for purposes of illustration). Now if the single company Macrosoft provides the software, and due to trade secrets there's no proper external review of the software, and anti-hacking treaties make white hat review impossible, perhaps one day we will live in a world where those with the knowledge can commit easy forgeries and impersonate others, and the citizenry will be powerless to do anything.
Digital Signatures: Be careful what you ask for, as you may get it.
IE is successful because it wins on the details. It's not as standards compliant. However, it has none of the shit that you have to wade throught to make Netscape 6 usable. It doesn't install MSN instant messanger. It doesn't install a "Install MSN" icon on your desktop. This of course isn't enough to win the browser wars. But it also has this going for it: It's faster, It uses less RAM, and it's standards compliant enough (TM).
IE may not install Instant Messenger, but Outlook Express does. Also, if you select a standard installation when you upgrade IE/OE in a package, it installs Instant Messenger.
Quite interesting -- it was Internet Explorer 5.5 that was showing the cached version, even though it's supposed to expire the cache whenever I restart the browser--I'd just started the browser and loaded/. when I saw the news.
I'd be surprised if MS was deliberately making that page in IE5.5 show an old version, so I'm going to assume that it had to be propogated to all the netscape servers.
Netscape.com proclaims that Netscape 6 is here, but the download page only proclaims the preview release 3. The ftp site has the proper version. What's up?
How about not just to test security, why shouldn't cracking with permission in any case be acceptable? Just like if you have a gun, and you take an old car of yours, out in a remote area, and riddle that old car full of bullets, it's okay?
I've never heard of one at U of C, but that's only since 1995.
However, speaking of old systems, when I was in 2nd year engineering (1996), we had to do C programming on old DECstations running OSF. They finally replaced them in 1998 with RedHat 4.2 or something on P-233's, then switched to WinNT 4 in 1999 fall, then a year later switched back to Debian 2.2.whatever (same hardware all along).
Slashdot Mirror
I never bought a copy of redhat commercially (although a friend did). I just (legally) downloaded the ISO's and burnt copies.
Now that I'm more familiar with LINUX (2.5 years now), I'm experimenting with Debian.
I remember the Cassini protests outside the whitehouse (from CNN). Some dude carrying around a poster "Our Last Sacred Space" with a drawing of an alien like on the X-Files. Like he thought we were polluting Saturn or something...
Actually in 1984, the UK is called Landing Strip One, which is part of Oceania. Oceania is at war with Eurasia. Oceania has always been at war with Eurasia.
That's IngSoc.
BBC 3.12.00 reporting bigbrother doubleplusungood refs doublethink thoughtcrime rewrite fullwise upsub antefiling
interesting
(sorry just testing)
Remember that on Earth, multicellular animals and plants evolved in the oceans first, then moved to land. With less time available on a planet like Mars, they might have got somewhere in the oceans but never made it out.
Yeah, but this allows for an expansion -- you can send the smallest possible ICMP_ECHO packets to someone using automatic dshield.org reporting, even undersized perhaps, and get them to automatically send 120 bytes for each to dshield.org
Taking IP chains generated log lines makes for a nice little DoS of dshield.org once enough people figure it out. IP chains' kernel messages log one line per packet.
Much more sensible is encouraging use of a proper logging package, i.e. iplog v2, with a good ruleset to remove false alarms.
I wonder if this guy sold brooklynbridge.biz, or perhaps swampland.biz...
.biz) reminds me of the guy who sells land on the Moon, Mars, etc... to suckers (he's got a web site somewhere).
People would have had to be fools to register with an alterate root server that had little chance of ever becoming official.
This guy (the guy who ran the alternate
They're looking for copies of "wingate" which are a popular proxy on private systems and which keep having new holes discovered.
Looking at my logs, generated by iplog2, I about 5% of the stuff is anything to worry about. The rest is:
@Home scanning for news servers.
an occasional ping
Napster.
I have my rules set up to the best of my (experienced) ability to eliminate irrelevant stuff. By default, most of the logging packages log everything (i.e. ftp-data connections).
If you ever read some of the newsgroups where the same users who will be using dshield.org post, you'll see that they don't know how to tell an attack from normal activity. Unforunately I can't find some of the usual "NOTICE TO WHOEVER PINGED ME: SEND ME A PING AGAIN AND I'M CALLING THE FBI AND GETTING YOU CUT OFF FROM AOL NOW LET'S BURN THE WITCH" postings today in athome.discussion-security, but they're usually there.
The "firewall" programs that most users use don't give them any help in telling the difference between a genuine 'attack' and between their web browser downloading a file using *gasp* an ftp-date connection.
In Canada, we have a similar situation: there's a tax on all CD-R media that is designated as "CD audio" material (you know the little logo on it), and the tax doesn't go to the government, or the artists. It goes directly to the Canadian equivalent of the RIAA.
This is what I get: (from a shaw @Home ip in the 24.67.119.0/255.255.255.0 netblock)
You are not authorized to view this page
You do not have permission to view this directory or page from the Internet address of your Web browser.
If you believe you should be able to view this directory or page, please contact the Web site administrator by using the e-mail address or phone number listed on the bullsh.it home page.
HTTP 403.6 - Forbidden: IP address rejected
Internet Information Services
Technical Information (for support personnel)
Background:
This error is caused when the server has a list of IP addresses that are not allowed to access the site, and the IP address you are using is in this list.
More information:
Microsoft Support
to clarify that, the Initial benchmarks show only a slight performance increase using a 1.5 Ghz P4 over a 1.2 Ghz Thunderbird.
It might sound funny, but I bet if you patented RNA, which most people haven't heard of, but which is important in cell division, you could get a judge to issue a preliminary injunction.
--
Next they'll go after companies which make Software which use a lot of RAM....
LINUX companies will get away with $5 per copy sold commercially. Microsoft will have to pay $100 per copy for Windows ME because of the huge memory footprint required to boot.
--
The paper-digital signature analogy is very valid. And it is often ignored, often in the name of improving E-commerce, or more recently, with digital signatures being advocated as authentication for electronic voting. The important thing is that both are subject to tampering. Unlike with a signature on paper, which is very hard to duplicate exactly with another person using a pen, and where copies are obvious (i.e. a photocopy would have trouble passing), digital 'signatures' can be made exact without detectability provided that the manner in which your private key was stolen is no longer apparent. In addition, courts, judges, and police are unlikely to understand these issues.
These are important issues to consider. Perhaps one day we will be required to use digital 'signatures' on a regular basis to conduct normal everyday business -- perhaps the software used will be a propietary system provided by one company (let's call this company Macrosoft for purposes of illustration). Now if the single company Macrosoft provides the software, and due to trade secrets there's no proper external review of the software, and anti-hacking treaties make white hat review impossible, perhaps one day we will live in a world where those with the knowledge can commit easy forgeries and impersonate others, and the citizenry will be powerless to do anything.
Digital Signatures: Be careful what you ask for, as you may get it.
--
IE is successful because it wins on the details. It's not as standards compliant. However, it has none of the shit that you have to wade throught to make Netscape 6 usable. It doesn't install MSN instant messanger. It doesn't install a "Install MSN" icon on your desktop. This of course isn't enough to win the browser wars. But it also has this going for it: It's faster, It uses less RAM, and it's standards compliant enough (TM).
IE may not install Instant Messenger, but Outlook Express does. Also, if you select a standard installation when you upgrade IE/OE in a package, it installs Instant Messenger.
--
Incidentally I have the search in Netscape 6 set to google right now.
/. headlines sidebar.
Kind of interesting how CNN.com gets a prominent sidebar place -- AOL TW merger at work Here?
Now if someone would only make a
--
Quite interesting -- it was Internet Explorer 5.5 that was showing the cached version, even though it's supposed to expire the cache whenever I restart the browser--I'd just started the browser and loaded /. when I saw the news.
I'd be surprised if MS was deliberately making that page in IE5.5 show an old version, so I'm going to assume that it had to be propogated to all the netscape servers.
Looks okay now.
--
Netscape.com proclaims that Netscape 6 is here, but the download page only proclaims the preview release 3. The ftp site has the proper version. What's up?
--
If you watched both movies, the terminators were assasins disguised as humans to aid in infiltration.
--
How about not just to test security, why shouldn't cracking with permission in any case be acceptable? Just like if you have a gun, and you take an old car of yours, out in a remote area, and riddle that old car full of bullets, it's okay?
--
I've never heard of one at U of C, but that's only since 1995.
However, speaking of old systems, when I was in 2nd year engineering (1996), we had to do C programming on old DECstations running OSF. They finally replaced them in 1998 with RedHat 4.2 or something on P-233's, then switched to WinNT 4 in 1999 fall, then a year later switched back to Debian 2.2.whatever (same hardware all along).
--