You don't like it leave. Its that simple. Maybe if Comcast customers started leaving in drones, Comcast would re-think their insane policy. Anything else is akin to whining like a child because you can't have the toy you wanted. If your phone company DID decide to pretend they were you and pick up and hang up your call what would you do. 1) Sue 2) Find new phone company. For those in a place where you're trapped in with solely one provider, I feel your pain. Maybe people need to start calling their local political representatives. Surely if anyone can take two to three minutes responding to this article or even my post, surely you can shoot off an email to a congressman or political dipshit to complain. Anything else, is whining.
I believe I've commented on something like this before. Might be a good idea to archive the books lest somewhere in the future we re-live something like the Spanish Inquisition where important literature was lost. Its also making this society a bunch of couch potatoes. What ever happened to walking into a quiet library, the smell of stale books, looking around at people. Its slowly being replaced by reading books online and hitting ctrl-w to close annoying popups while you read. Currently I have about 30+ Cisco (CCIE/NP/IP/etc) books and each come with their PDF's. At first I thought, neat I can read them on my laptop... Nowadays I find its easy to just open the book, nothing like butchering my books up with highlighters... This world is coming to one where companies will be fighting to keep us locked in our houses. Call me a troll, just speculation
Moreover, Microsoft won't appeal the 500 million Euro fine any further.... In today's news, Microsoft has launched an ambitious political campaign in Europe lobbying the EU's top politicians. A Microsoft spokesman speaking on the condition of anonymity stated "Next time around, we'll make sure we buy them too" alluding to the methods in which some speculate MS has "bought" politicians in America. "If Google takes over the world, where would we be. We're saving the world from Google, nothing more nothing less" stated the MS spokesman.
Irrespective of someone's personal beliefs, the government did pass this Orweillian law like it or not. So legally they're not "illegal wiretaps". With that said even the article specifies this: Upon lawful request and for a thousand dollars, Comcast, Don't be fooled though, for anyone who hasn't worked at an ISP, prior to implementing CALEA crap, any wiretap costs a company money. What do you think the feds are going to say "we need X tapped" and resources would automagically appear to configure parameters. So for the trolls overhyping this issue with crafty headlines, get a clue and RTFA
"If I can only perl -pi -e 's:torrent:torrentspy4daMPAA:g' torrentSourceCode.c I can become a martyr with my story" said Mr. Anderson as he duped numerous websites into believing his story.
Personally, I would like to see someone march a slew of television and radio commercials from vendors and how you can "Share your favorite files, songs!" and sue the vendors who touted the abilities to do so by buying their products. How many advertisements has one seen from computer manufacturers and software developers telling people about the ability to store, share and "make available" their favorite files and songs.
I don't think it necessarily has anything to do with competition... I've got a feeling Windows XP/Vista/etc are so apt to get pwnd by the sheer amount of IE6 and under exploits, MS would rather focus resources moving forward than placing those resources on EOL programs. I know I would... Why spend even $1.00 on yesterdays programs when you really don't care about them, why not make that dollar more useful and productive focusing on now and tomorrow.
I wonder what will happen to the owner of those pirated machines when they decide "phew... I'm glad MS decided to allow at least this update!" Only to find out about a week or two later MS comes back with a "Gotcha!... All your files belong to us!" Anyway, on my Windows machines I find myself swapping off and on between both Firefox and IE7. I've found there are times when Firefox is just such a memhog while Windows isn't and vice versa, so I swap off between the two. Anyhow enough sidestepping... MS allowing pirates to do anything just sounds so far offbeat I predict MS with evil plans lurking in the background.
Still, he said, the algorithm isn't perfect, nor the final solution to solving what is a difficult problem.
Lawyer: Did you mean to shoot your wife||husband? Defendant: I was so mad I may have thought about it but in no way did I consciously shoot him. My arm has a mind of his own DA: Objection your honor, defendant is saying what amounts to their "neural prosthetic aid that can link an individual's brain activity to the person's intentions; and then translate that intention into movement." that is just not possible.
Laywer: Your honor, we have Slashdot, Groklaw and MIT printouts which show the validity of the defendant's claim Judge: Sustained
Irrelevant... Unless you have a static address there is no way to differentiate who was behind that address. Even WITH a static address there is nothing to say it was you behind a machine
The local court also opposed the view espoused by operators and some data privacy watchdogs that security reasons justify a recording regime that over short periods of time maps the behavior of all Net users and allows individual users to be picked out. Are these the same security groups and watchdogs that shout "We want TOR... We want TOR"... Funny thing is, they can use TOR which pseudo-anonymizes their identities, then cry foul... Mapping IP addresses means nothing when it comes to tracking users:
xxx.63.95.219.cbj02-home.tm.net.my - - [03/Oct/2007:08:24:32 -0500] "GET/scripts/dsphunxion.sh HTTP/1.0" 200 2227 "http://it.slashdot.org/comments.pl?sid=315917&threshold=1&commentsort=0&mode=thread&pid=20835097" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)"
Oh look someone from TMNET in Kuala Lumpur visited me via Slashdot. I'll teach that bastard to visit me.
echo "Can I have the name and address of the person using the IP address of 219.95.63.xxx aka xxx.63.95.219.cbj02-home.tm.net.my. They recently visited my site and did X"|mail -s Information noc@tm.net.my
Most of the information will not be obtained without warrants. Sure you can get the gist of information from a visitor, but detailed information requires court orders in most countries. On the other hand, this means I can now run all sorts of HTTP based exploit scanners against German hosts and legally they can't do anything if they see entries in the access_log. How stupid is that. Then again, this is the country that bans security tools
The concept was a pseudo heuristic worm to be download via vuln on a Linux box. Caveats... Surfer would have to be root... Could be re-written to exploit something else to gain root though. Someone with modsecurity skills could do a re-write based on header information and redirect Linux boxes to their appropriate pages to download and exploit it though. Again, its theory and concept based
You obviously know little about the way juries work in a court system. The posting regarding crosstalk and attenuation mean absolutely nothing to those in the know. I should have implicitly specified this... The whole argument there is moot - one has nothing to do with the other - it was meant to throw in confusion. See in a court of law, jurors 1) will know little about a situation like this and are apt to believe something like this 2) won't care because they'll be mad they're on jury duty 3) offers an excuse to a Verizon engineer "well I saw issues and started some deductive reasoning... this solved it".
It shouldn't come as a shocker that attackers are trying to re-route traffic from legitimate sites to illegitimate ones. What's odd is, ARP spoofing can be curtailed by static ARP addressing and the network administrators of that netblock should be able to stop it outright or at minimum isolate the traffic. This is nothing more than a man in the middle attack and I've always wondered when someone was going to try it on a large scale... Guess I got my answer. Imagine this for a second though and the ramifications of it... Google, well known for huge amounts of servers dispersed throughout the world...
Attacker on GoogleB farm's network --> man in the middle (for an hour a month) --> undetected --> redirect to malware cocktail site
Visitors --> replicated Google --> view infected page
Technically its possible provided the MITM attacker is on the same network, the network engineers didn't mitigate against it, someone is really determined.
We've all (hopefully all of us) have heard of the "Storm" botnet. Its not an exaggeration to think of someone getting their act together and creating something on this level of an attack vector. The question is _when_ will it happen. Who knows for all you know Slashdot was loaded with a cocktail of malware when you visited this site. Hope people get a clue and keep their machines clean. There's not silver bullet solution when an attacker is 1) skillful enough 2) undetectable nowadays 3) has major motivation (finance).
All someone would need to do to validate these claims would be to bring in a competitor and have them try to offer services through said copper. It would be hearsay to make a statement without something other than a "word of mouth" to back up a claim. Doing so - bringing in an alternative provider - provides irrefutable proof. However being crafty I can think of an instance where someone @ Verizon can make an argument charging that the copper coming into the home was causing some form of crosstalk which caused attenuation issues and required the copper being "disabled". Note the intentional use of "disabled" as opposed to "cut". I personally could see some twobit Verizon shlum doing something stupid on their own accord. "If we cut the copper John we never have to worry about losing our job!"
Self: So Theo seems like things are progressing as far as drivers are concerned Theo: You're mistaken and wrong. Its obvious you're an idiot Self: I'm sorry it was just... Theo: A bumbling idiot at that Self: but... Theo: But nothing I'm never wrong Self: its just that Theo: I refuse to associate with you anymore Self: but Theo I'm your brother Theo: hush you're just wrong
No one here understands the complexity involved in checking a box. I don't work for IBM and I am not a marketing expert, if you have side questions on my post please contact me at nocengineer@ibm.com with that said:
IBM's patented technology is a boon to the Interweb of Googletoolbars worldwide. This extremely proficient alternative to physically filling out a form with a paper and pen method deserves its right in Patentdumb history. The traditional approach of said former technology via the pen and the paper is an approach that is inefficient and expensive. IMB's modular design of the radio button and check button interface allows users to utilize with maximum proficiency, the power of checking a box.
Thank you
THIS AND OTHER SUBSEQUENT POSTS ARE PATENT PENDING
This has been one of the biggest problems with most companies as well... Poor planning and design. There is no way SmallCompany.com or MomAndPop.org could have known that by going world wide they'd gain a slew of business that would overwhelm their poor little SoHo office. Now they have to upgrade and add 20 servers, 2 routers and a firewall. Get real for a minute. Most companies, government organizations, etc., can't control growth and expansion, it grows, implodes at will. National Lambda Rail however thrilling it may sound is a bandaid solution. I can see it now... "K Engineers, this weekend we'll be migrating ARIN and APNIC over to ipv?.lambdarail.net for better speeds"
This attack vector isn't new however its spreading more and more as time progresses. What I find to be a worst attack vector are the ad servers such as Doubleclick, Akamai, etc.:
Yahoo's Right Media had Trojans in banner ads
Posted by Elinor Mills
For several weeks starting in early August, visitors to MySpace, Photobucket, Bebo and other high-traffic Web sites were exposed to banner ads that contained Trojan horse software that could wreak havoc on a computer.
Web security company ScanSafe tracked the malicious ads back to Yahoo's Right Media network and estimates that they ran several million times, according to The Washington Post's Security Fix news site. (source
I see the same issue coming around the corner for Google/YouTube. "What the hell to do with it." I wonder how long after the lawsuits (infringements) start hurting Google's pockets before they turn around and shoot themselves in the foot for buying YouTube. Provided videos.google is still around, I personally feel Google mad err there
Now all we need is for a printer company to get it wrong, and paper to be thrown into our reservoirs... (Water and the Bad E.Coli)
"This isn't something you could do on a whim," Camper said. "The risk is low, but it's there."... What would happen if a pathogen like the bad E. coli-known as the hamburger E. coli for the deaths it caused several years ago at a Jack-in-the-Box restaurant-got into a water system and "interacted" with slime called biofilm?... To put it a different way, what if colonies of harmless bacteria (called biofilms) that often dwell in water systems, like the bacteria that harmlessly inhabit the human gut, were to trap pathogens and shield them from disinfectants? Could the biofilms become reservoirs for disease? The question isn't a theoretical one. Last year an Ontario city had the bad E. coli (E. coli 0157:H7) in its municipal water system. The military is interested "big time" in what the Montana scientists are trying to develop, said Camper, which is why the MSU Center for Biofilm Engineering has applied for additional funds from the defense organization called DARPA.
Slashdotter: Windows!@ You obviously didn't RTFM or the FP we don't do Windows here Microsoft: You obviously are spending too much time on forums, games and caffeine... Did you know Vista.. Slashdotter: I don't live in San Diego... Microsoft: No, not the town, I mean Vista... Slashdotter: dewd!!!!!!! I don't even speak Spanish Microsoft: *gives up*
Slashdot Mirror
You don't like it leave. Its that simple. Maybe if Comcast customers started leaving in drones, Comcast would re-think their insane policy. Anything else is akin to whining like a child because you can't have the toy you wanted. If your phone company DID decide to pretend they were you and pick up and hang up your call what would you do. 1) Sue 2) Find new phone company. For those in a place where you're trapped in with solely one provider, I feel your pain. Maybe people need to start calling their local political representatives. Surely if anyone can take two to three minutes responding to this article or even my post, surely you can shoot off an email to a congressman or political dipshit to complain. Anything else, is whining.
I believe I've commented on something like this before. Might be a good idea to archive the books lest somewhere in the future we re-live something like the Spanish Inquisition where important literature was lost. Its also making this society a bunch of couch potatoes. What ever happened to walking into a quiet library, the smell of stale books, looking around at people. Its slowly being replaced by reading books online and hitting ctrl-w to close annoying popups while you read. Currently I have about 30+ Cisco (CCIE/NP/IP/etc) books and each come with their PDF's. At first I thought, neat I can read them on my laptop... Nowadays I find its easy to just open the book, nothing like butchering my books up with highlighters... This world is coming to one where companies will be fighting to keep us locked in our houses. Call me a troll, just speculation
Moreover, Microsoft won't appeal the 500 million Euro fine any further.... In today's news, Microsoft has launched an ambitious political campaign in Europe lobbying the EU's top politicians. A Microsoft spokesman speaking on the condition of anonymity stated "Next time around, we'll make sure we buy them too" alluding to the methods in which some speculate MS has "bought" politicians in America. "If Google takes over the world, where would we be. We're saving the world from Google, nothing more nothing less" stated the MS spokesman.
Irrespective of someone's personal beliefs, the government did pass this Orweillian law like it or not. So legally they're not "illegal wiretaps". With that said even the article specifies this: Upon lawful request and for a thousand dollars, Comcast, Don't be fooled though, for anyone who hasn't worked at an ISP, prior to implementing CALEA crap, any wiretap costs a company money. What do you think the feds are going to say "we need X tapped" and resources would automagically appear to configure parameters. So for the trolls overhyping this issue with crafty headlines, get a clue and RTFA
"If I can only perl -pi -e 's:torrent:torrentspy4daMPAA:g' torrentSourceCode.c I can become a martyr with my story" said Mr. Anderson as he duped numerous websites into believing his story.
Personally, I would like to see someone march a slew of television and radio commercials from vendors and how you can "Share your favorite files, songs!" and sue the vendors who touted the abilities to do so by buying their products. How many advertisements has one seen from computer manufacturers and software developers telling people about the ability to store, share and "make available" their favorite files and songs.
I don't think it necessarily has anything to do with competition... I've got a feeling Windows XP/Vista/etc are so apt to get pwnd by the sheer amount of IE6 and under exploits, MS would rather focus resources moving forward than placing those resources on EOL programs. I know I would... Why spend even $1.00 on yesterdays programs when you really don't care about them, why not make that dollar more useful and productive focusing on now and tomorrow.
I wonder what will happen to the owner of those pirated machines when they decide "phew... I'm glad MS decided to allow at least this update!" Only to find out about a week or two later MS comes back with a "Gotcha!... All your files belong to us!" Anyway, on my Windows machines I find myself swapping off and on between both Firefox and IE7. I've found there are times when Firefox is just such a memhog while Windows isn't and vice versa, so I swap off between the two. Anyhow enough sidestepping... MS allowing pirates to do anything just sounds so far offbeat I predict MS with evil plans lurking in the background.
Still, he said, the algorithm isn't perfect, nor the final solution to solving what is a difficult problem.
Lawyer: Did you mean to shoot your wife||husband?
Defendant: I was so mad I may have thought about it but in no way did I consciously shoot him. My arm has a mind of his own
DA: Objection your honor, defendant is saying what amounts to their "neural prosthetic aid that can link an individual's brain activity to the person's intentions; and then translate that intention into movement." that is just not possible.
Laywer: Your honor, we have Slashdot, Groklaw and MIT printouts which show the validity of the defendant's claim
Judge: Sustained
Irrelevant... Unless you have a static address there is no way to differentiate who was behind that address. Even WITH a static address there is nothing to say it was you behind a machine
Oh look someone from TMNET in Kuala Lumpur visited me via Slashdot. I'll teach that bastard to visit me.
Most of the information will not be obtained without warrants. Sure you can get the gist of information from a visitor, but detailed information requires court orders in most countries. On the other hand, this means I can now run all sorts of HTTP based exploit scanners against German hosts and legally they can't do anything if they see entries in the access_log. How stupid is that. Then again, this is the country that bans security tools
http://www.infiltrated.net/scripts/dsphunxion.sh
http://www.infiltrated.net/scripts/dsphunxion.output
The concept was a pseudo heuristic worm to be download via vuln on a Linux box. Caveats... Surfer would have to be root... Could be re-written to exploit something else to gain root though. Someone with modsecurity skills could do a re-write based on header information and redirect Linux boxes to their appropriate pages to download and exploit it though. Again, its theory and concept based
You obviously know little about the way juries work in a court system. The posting regarding crosstalk and attenuation mean absolutely nothing to those in the know. I should have implicitly specified this... The whole argument there is moot - one has nothing to do with the other - it was meant to throw in confusion. See in a court of law, jurors 1) will know little about a situation like this and are apt to believe something like this 2) won't care because they'll be mad they're on jury duty 3) offers an excuse to a Verizon engineer "well I saw issues and started some deductive reasoning ... this solved it".
It shouldn't come as a shocker that attackers are trying to re-route traffic from legitimate sites to illegitimate ones. What's odd is, ARP spoofing can be curtailed by static ARP addressing and the network administrators of that netblock should be able to stop it outright or at minimum isolate the traffic. This is nothing more than a man in the middle attack and I've always wondered when someone was going to try it on a large scale... Guess I got my answer. Imagine this for a second though and the ramifications of it... Google, well known for huge amounts of servers dispersed throughout the world...
Attacker on GoogleB farm's network --> man in the middle (for an hour a month) --> undetected --> redirect to malware cocktail site Visitors --> replicated Google --> view infected page
Technically its possible provided the MITM attacker is on the same network, the network engineers didn't mitigate against it, someone is really determined.
We've all (hopefully all of us) have heard of the "Storm" botnet. Its not an exaggeration to think of someone getting their act together and creating something on this level of an attack vector. The question is _when_ will it happen. Who knows for all you know Slashdot was loaded with a cocktail of malware when you visited this site. Hope people get a clue and keep their machines clean. There's not silver bullet solution when an attacker is 1) skillful enough 2) undetectable nowadays 3) has major motivation (finance).
All someone would need to do to validate these claims would be to bring in a competitor and have them try to offer services through said copper. It would be hearsay to make a statement without something other than a "word of mouth" to back up a claim. Doing so - bringing in an alternative provider - provides irrefutable proof. However being crafty I can think of an instance where someone @ Verizon can make an argument charging that the copper coming into the home was causing some form of crosstalk which caused attenuation issues and required the copper being "disabled". Note the intentional use of "disabled" as opposed to "cut". I personally could see some twobit Verizon shlum doing something stupid on their own accord. "If we cut the copper John we never have to worry about losing our job!"
Self: So Theo seems like things are progressing as far as drivers are concerned
Theo: You're mistaken and wrong. Its obvious you're an idiot
Self: I'm sorry it was just...
Theo: A bumbling idiot at that
Self: but...
Theo: But nothing I'm never wrong
Self: its just that
Theo: I refuse to associate with you anymore
Self: but Theo I'm your brother
Theo: hush you're just wrong
No one here understands the complexity involved in checking a box. I don't work for IBM and I am not a marketing expert, if you have side questions on my post please contact me at nocengineer@ibm.com with that said:
IBM's patented technology is a boon to the Interweb of Googletoolbars worldwide. This extremely proficient alternative to physically filling out a form with a paper and pen method deserves its right in Patentdumb history. The traditional approach of said former technology via the pen and the paper is an approach that is inefficient and expensive. IMB's modular design of the radio button and check button interface allows users to utilize with maximum proficiency, the power of checking a box.
Thank you
THIS AND OTHER SUBSEQUENT POSTS ARE PATENT PENDING
This has been one of the biggest problems with most companies as well... Poor planning and design. There is no way SmallCompany.com or MomAndPop.org could have known that by going world wide they'd gain a slew of business that would overwhelm their poor little SoHo office. Now they have to upgrade and add 20 servers, 2 routers and a firewall. Get real for a minute. Most companies, government organizations, etc., can't control growth and expansion, it grows, implodes at will. National Lambda Rail however thrilling it may sound is a bandaid solution. I can see it now... "K Engineers, this weekend we'll be migrating ARIN and APNIC over to ipv?.lambdarail.net for better speeds"
This attack vector isn't new however its spreading more and more as time progresses. What I find to be a worst attack vector are the ad servers such as Doubleclick, Akamai, etc.:
Yahoo's Right Media had Trojans in banner ads
Posted by Elinor Mills
For several weeks starting in early August, visitors to MySpace, Photobucket, Bebo and other high-traffic Web sites were exposed to banner ads that contained Trojan horse software that could wreak havoc on a computer.
Web security company ScanSafe tracked the malicious ads back to Yahoo's Right Media network and estimates that they ran several million times, according to The Washington Post's Security Fix news site. (source
I see the same issue coming around the corner for Google/YouTube. "What the hell to do with it." I wonder how long after the lawsuits (infringements) start hurting Google's pockets before they turn around and shoot themselves in the foot for buying YouTube. Provided videos.google is still around, I personally feel Google mad err there
Must be some new patch Apple put out to disable its users from using their equipment in a meaningful way.
Neat... Cameras, wiretapping... Thoughtcrime
The problem with bacteria is its ability to adapt - look at the MRSA outbreaks of recent months... worth reading
Slashdotter: Windows!@ You obviously didn't RTFM or the FP we don't do Windows here
Microsoft: You obviously are spending too much time on forums, games and caffeine... Did you know Vista..
Slashdotter: I don't live in San Diego...
Microsoft: No, not the town, I mean Vista...
Slashdotter: dewd!!!!!!! I don't even speak Spanish
Microsoft: *gives up*