I hate to be an advocate for security through obscurity, but I figured these things would be ultra super restricted, and "laboratory tests" would be irrelevant because they had access to a device that attackers do not have access to.
"The system's designers seem to have assumed that attackers would not have access to a Secure 1000 to test and refine their attacks'"said Hovav Shacham, a professor of computer science at UC San Diego.
And yet these machines are in public places. If the attacks involve wifi, they're available for pen testing by bad guys. For the low tech smuggling techniques, they're not just available for testing; they're foisted upon anyone with a ticket. If you have more manpower and money than scruples, you can send tester after tester through with items and figure out the ways to get through.
GURPS strongly suggests a limit on disadvantages, and there are "disadvantages" like truthfulness, sense of duty, code of honor, etc. that restrict actions but are heroic in nature. Of course a friend of mine has a pirate campaign where there is no disad limit and players usually start as physically disfigured outlaws with psychological issues, some who owe allegiance to captains of other ships. But that's pretty normal for pirates.
Gee, I don't like Micro$oft as much as the next Linux Zealot, but let's be fair here...
M$ is darned if they do and darned if they don't.
Unless you said the bolded portion gleefully while grinning and rubbing your hands together, you don't really hate Microsoft as much as the next Linux Zealot.
It's already close to 99.99%. Set up ssh on port 22 and don't block it. Check your security log. Valid logins versus failed attempts to access root, admin, or other common usernames. Even with fail2ban or denyhosts and ignoring slow distributed attacks like in the article, the number of failed attempts can sometimes dwarf valid logins. I remember the "Web 2.0" just prior to captchas. It was tough finding content that wasn't written by a spambot.
Sort of like how a destroyer is easier to lift with one's bare hands than the Empire State Building?
The real bad part about a grammatically correct sentence is memory mutation.
"I'm going to take my dog, Spot, to the park."
"I'm going to take my dog to the park today."
"I'm taking my dog, Spot, to the park today."
"#&@*!!! What was that passphrase?"
Why do it to a file and not to the block device itself?
dd if=/dev/zero of=/dev/sda
(I can never remember the argument for setting the block size.)
the block size setting is a lot of bs. (bs=)
You can't be guaranteed to escape a kernel panic or general screwiness when the system tries to use swap space or access a file. That's why I suggested a "run from RAM" distro.
Also dd dead stops if it hits a bad block. You're better off using shred or ddrescue to overwrite stuff when going directly to device.
You can target other partitions like say,/home ,/data ,/var , etc. if you've actually partitioned them separately. You can also turn swap off and target it. But like I said, you're best off nuking from RAM.
An OS reimage with 'doze and use sdelete.exe from Sysinternals Suite. http://technet.microsoft.com/e...
Or 'nix, dd a huge file and shred it (remember to restrict the passes with -n since the default is "a lot")
Neither is perfect, but better than delivering your data to the next schmoe on a platter (pun intended).
If you can request the specific OS image, send them a copy of a memory-resident linux installation configured to auto-wipe the HDDs with shred.
"What can I do to supplement my Java-oriented studies?"
Learn C. Learn C++. Learn Assembly. On the other end of the spectrum: Learn LISP. Learn Prolog. Learn learn learn.
BTW, I heartily agree that Java should be a second-year type of language. "Now that you know all about pointers and how to use them to make the data structures we discussed in CS 190, we'll let the computer handle memory management so we can focus on algorithms."
Switch all of the info docs back to man pages. man pages are neatly organized and have all of the info in a handy grep-able format. info help pages are as disorganized as 1990's websites with their random hyperlinking. Something GNU got waaay wrong.
The type of people who bought the Wii will use it until it dies. Nintendo saturated the market and should have focused on selling Wii games or attachments. Of course, some MBA tool will decide that future consoles should self destruct when a newer console becomes available. That will kill your brand faster than anything.
Gandalf knows that Sauron is back. This directly contradicts LotR. In fact, there's no reason Gandalf would let Bilbo keep the ring once he knew Sauron existed. And what's up with the Smaug fight scene? Instead of deducing Lake Town as the source of the intruder and exacting his revenge on the town (since he can't find the intruder), the movie version of Smaug runs around under the mountain for a while (so they can show off all the cool under the mountain visuals) then inexplicably decides to leave the dwarves without killing them. And the barrel riding was supposed to be a leisurely ride down the river; an escape plan showing the dwarves how clever their burglar really is, escaping with no danger or bloodshed. Also, Smaug didn't die in the second movie. That's the climax of the second portion. The cliffhanger should have been the first hints of the gathering of the five armies.
4. People in Israeli cabinet even had the gull to say that Israelis that do not support the military action in Gaza should have their citizenship revoked and be deported.
How did they get the gull to say that? Was it part parrot?
But to further clarify, our context was mass administration, which actually requires substantial Powershell knowledge to do...pretty much at all.
Bzzzt. A Windows admin at a medium sized org can get by doing mass administration with just Active Directory/GPO clickity clicks. It's not as efficient, but it works.
you're living in another world if you think *nix admins are some sort of gods when compared to their Windows counterparts
Apparently you didn't read my first post in this thread. A competent 'doze admin is on par with a competent *nix admin. But the *nix admin *has* to do things the command line way for mass-admining, because the GUI just isn't there.
And just so we're clear, I've managed (as an admin not a user) numerous versions of Windows (starting with 98se through 2012), Unices (including HP-UX, Solaris, and IRIX), Linux (RedHat, RHEL, Fedora, Gentoo, Debian, Ubuntu, Suse, SLE[S/D], Mandrake...), and Macintosh (not counting OSX which is rolled into the Unix bunch). I will admit that there were a lot of GUIfied admin tools for Solaris and IRIX, but nothing like AD's "click a check box and every machine tied to a computer object in tbe OU now has the following mandatory setting that a local admin can't modify".
this "low cost, low skill" Windows admin myth drives me insane
To be fair, it's not a myth (in the colloquial or academic sense). Windows is "easy", allowing for low cost, low skill "admins" who do everything via GUI and one machine at a time (or maybe many if you include AD and GPOs). Same with OSX (with ARD and OpenDirectory for the "mass-admining"). I've known guys that get paid more than myself who didn't want to understand any command line stuff.
But in the *nix world, if you don't know a shell, you're not even a user, let alone a sysadmin.
This is a mistaken belief. Windows is actually pretty easy to mass-admin remotely, even with built-in windows services (not relying on SSH). But... Windows admins who know how to mass-admin boxes remotely usually get paid as much as Linux admins. Usually because once they've gotten to this point, they've gotten *nix under their belt.
The sci fi promise of robots were things that would automate our work so we could spend time with friends. This thing sounds like something I have to spend more time working on/with to get a "friend".
Slashdot Mirror
We should ban pens and paper so it doesn't happen again.
"Oh no! He typed 'pens and paper!' When will they stop?!?"
I hate to be an advocate for security through obscurity, but I figured these things would be ultra super restricted, and "laboratory tests" would be irrelevant because they had access to a device that attackers do not have access to.
"The system's designers seem to have assumed that attackers would not have access to a Secure 1000 to test and refine their attacks'"said Hovav Shacham, a professor of computer science at UC San Diego.
And yet these machines are in public places. If the attacks involve wifi, they're available for pen testing by bad guys. For the low tech smuggling techniques, they're not just available for testing; they're foisted upon anyone with a ticket. If you have more manpower and money than scruples, you can send tester after tester through with items and figure out the ways to get through.
GURPS strongly suggests a limit on disadvantages, and there are "disadvantages" like truthfulness, sense of duty, code of honor, etc. that restrict actions but are heroic in nature. Of course a friend of mine has a pirate campaign where there is no disad limit and players usually start as physically disfigured outlaws with psychological issues, some who owe allegiance to captains of other ships. But that's pretty normal for pirates.
He's a physicist. He was just imagining the electrical grid as a perfect sphere on an infinite frictionless plane.
Gee, I don't like Micro$oft as much as the next Linux Zealot, but let's be fair here... M$ is darned if they do and darned if they don't.
Unless you said the bolded portion gleefully while grinning and rubbing your hands together, you don't really hate Microsoft as much as the next Linux Zealot.
/Linux sorta-Zealot
It's already close to 99.99%. Set up ssh on port 22 and don't block it. Check your security log. Valid logins versus failed attempts to access root, admin, or other common usernames. Even with fail2ban or denyhosts and ignoring slow distributed attacks like in the article, the number of failed attempts can sometimes dwarf valid logins. I remember the "Web 2.0" just prior to captchas. It was tough finding content that wasn't written by a spambot.
Sort of like how a destroyer is easier to lift with one's bare hands than the Empire State Building?
The real bad part about a grammatically correct sentence is memory mutation.
"I'm going to take my dog, Spot, to the park."
"I'm going to take my dog to the park today."
"I'm taking my dog, Spot, to the park today."
"#&@*!!! What was that passphrase?"
Why do it to a file and not to the block device itself?
dd if=/dev/zero of=/dev/sda
(I can never remember the argument for setting the block size.)
the block size setting is a lot of bs. (bs=) /home , /data , /var , etc. if you've actually partitioned them separately. You can also turn swap off and target it. But like I said, you're best off nuking from RAM.
You can't be guaranteed to escape a kernel panic or general screwiness when the system tries to use swap space or access a file. That's why I suggested a "run from RAM" distro.
Also dd dead stops if it hits a bad block. You're better off using shred or ddrescue to overwrite stuff when going directly to device.
You can target other partitions like say,
An OS reimage with 'doze and use sdelete.exe from Sysinternals Suite. http://technet.microsoft.com/e...
Or 'nix, dd a huge file and shred it (remember to restrict the passes with -n since the default is "a lot")
Neither is perfect, but better than delivering your data to the next schmoe on a platter (pun intended).
If you can request the specific OS image, send them a copy of a memory-resident linux installation configured to auto-wipe the HDDs with shred.
"What can I do to supplement my Java-oriented studies?"
Learn C. Learn C++. Learn Assembly. On the other end of the spectrum: Learn LISP. Learn Prolog. Learn learn learn.
BTW, I heartily agree that Java should be a second-year type of language. "Now that you know all about pointers and how to use them to make the data structures we discussed in CS 190, we'll let the computer handle memory management so we can focus on algorithms."
Switch all of the info docs back to man pages. man pages are neatly organized and have all of the info in a handy grep-able format. info help pages are as disorganized as 1990's websites with their random hyperlinking. Something GNU got waaay wrong.
I thought Interpol existed to catch Carmen SanDiego.
The type of people who bought the Wii will use it until it dies. Nintendo saturated the market and should have focused on selling Wii games or attachments. Of course, some MBA tool will decide that future consoles should self destruct when a newer console becomes available. That will kill your brand faster than anything.
An agency that knows which members of congress are pedophiles and which ones are drug addicts will not be easy to arrest.
Why not? Put congressmen in jail too.
Astrophysicist kept his foot on the scale again.
What's so horrible about The Hobbit?
Gandalf knows that Sauron is back. This directly contradicts LotR. In fact, there's no reason Gandalf would let Bilbo keep the ring once he knew Sauron existed. And what's up with the Smaug fight scene? Instead of deducing Lake Town as the source of the intruder and exacting his revenge on the town (since he can't find the intruder), the movie version of Smaug runs around under the mountain for a while (so they can show off all the cool under the mountain visuals) then inexplicably decides to leave the dwarves without killing them. And the barrel riding was supposed to be a leisurely ride down the river; an escape plan showing the dwarves how clever their burglar really is, escaping with no danger or bloodshed. Also, Smaug didn't die in the second movie. That's the climax of the second portion. The cliffhanger should have been the first hints of the gathering of the five armies.
4. People in Israeli cabinet even had the gull to say that Israelis that do not support the military action in Gaza should have their citizenship revoked and be deported.
How did they get the gull to say that? Was it part parrot?
Children who smoke their mothers have bigger issues than DNA alterations.
But to further clarify, our context was mass administration, which actually requires substantial Powershell knowledge to do...pretty much at all.
Bzzzt. A Windows admin at a medium sized org can get by doing mass administration with just Active Directory/GPO clickity clicks. It's not as efficient, but it works.
you're living in another world if you think *nix admins are some sort of gods when compared to their Windows counterparts
Apparently you didn't read my first post in this thread. A competent 'doze admin is on par with a competent *nix admin. But the *nix admin *has* to do things the command line way for mass-admining, because the GUI just isn't there.
And just so we're clear, I've managed (as an admin not a user) numerous versions of Windows (starting with 98se through 2012), Unices (including HP-UX, Solaris, and IRIX), Linux (RedHat, RHEL, Fedora, Gentoo, Debian, Ubuntu, Suse, SLE[S/D], Mandrake...), and Macintosh (not counting OSX which is rolled into the Unix bunch). I will admit that there were a lot of GUIfied admin tools for Solaris and IRIX, but nothing like AD's "click a check box and every machine tied to a computer object in tbe OU now has the following mandatory setting that a local admin can't modify".
this "low cost, low skill" Windows admin myth drives me insane
To be fair, it's not a myth (in the colloquial or academic sense). Windows is "easy", allowing for low cost, low skill "admins" who do everything via GUI and one machine at a time (or maybe many if you include AD and GPOs). Same with OSX (with ARD and OpenDirectory for the "mass-admining"). I've known guys that get paid more than myself who didn't want to understand any command line stuff.
But in the *nix world, if you don't know a shell, you're not even a user, let alone a sysadmin.
That's an unfair characterization. They might be tipsy or hung over.
This is a mistaken belief. Windows is actually pretty easy to mass-admin remotely, even with built-in windows services (not relying on SSH). But... Windows admins who know how to mass-admin boxes remotely usually get paid as much as Linux admins. Usually because once they've gotten to this point, they've gotten *nix under their belt.
The last nail in the coffin was when I trained a "more qualified" H1-b about "what those asterisks mean in C programming".
He was just asking for a few pointers.
Biochem is just a specialty of chemistry which is in turn a specialty of physics.
The sci fi promise of robots were things that would automate our work so we could spend time with friends. This thing sounds like something I have to spend more time working on/with to get a "friend".