on the other hand... maybe next time i'll read the article...:) I guess local execution of said binaries does give it one up on exceed. Although said support was "purported". We shall see.
Like many others, I too find myself at a loss here agreeing with Orrin Hatch. But don't bother bringing up his criticism of Microsoft. There's a perfectly good republican-type (check that, I mean't 'politician-type') reason. He's from Utah. Home of a certain software company that is getting eaten alive by Microsoft. I'm probably not the first to point this out here (sorry can't browse that low with just about 500 messages already.....). Having said that, he does seem genuine for such a wack job as he... I mean I trust him (trust him to be himself) more than a lot of Democrats. I sure liked him more Dianne Feinstein who doesn't get any of this and was basically a jerk about it (I saw the c-span).
>Formal is nice but it almost never works in the real world.
Really? I guess Trusted Solaris is a big waste huh? Shoot, just tighten up the services, shut off telnet, ftp, and rpc and set-up a bank..? No, nothings perfect. But that blithe dismissal of formal standards was a little too much. "Trusted" versions are little bit more than just more secure defaults. They include a mandatory access controls, and suite of tools to help administrators give users and processes (and administrators!) the least amount of privilege necessary. I would be out of my league if I speculated on how close this approximates a true capability-based system (yes there is still a root account so...). But, still, it's a lot more than being on top of your patches.
Notice, I'm making NO mention of whether OSS OS's (that was fun to write) would be better or worse at this. I don't see why they wouldn't be fine! In fact I would think Red Hat Trusted Linux would be a natural and a huge hit. Perhaps they're worried about making their money back... but oh man, just think of the consulting gigs!
Out of couriosity, are there Mandatory Access Controls (i.e. permissions [ok, 'labels'] that even the file's owner may not change) available for OpenBSD or Linux? Something that's polished?
To some people IP matters... to others maybe not so much. I have an internal dhcp address behind a firewall doing NAT. I happen to know the dhcp server doesn't keep logs. So what do I have to worry about?
I bet a lot of dhcp servers don't log. Maybe ISPs do for legal reasons but I don't think we're alone here in terms of not logging.
The only potential issue I see is that my IP address, in practice, rarely changes... but hey all it takes is a release and renew and boom, you're not 'where' you were.
Oh and please, if I am dead wrong, flame away and set me straight, I don't mind.
>I just wish it would quit blowing smoke about profits it would never have had
Reminds me of the time the SPA said the software industry loses several billion dollars per year in China due to piracy.
It's so painfully obvious that if pirating were impossible (hypothetically here), there is no way they would actually sell as much software as people today pirate. Most of the pirates would simply be shit out of luck.
There's a reason why I say open. They are not 'running' them as far as they are concerned. In this case anyway, they were probably trying to view the document, not 'run a script' or even 'run a program'.
And don't forget it did have a txt in there. And if you save it to the desktop first, it looks like a text file. windows by default hides the file extension, which in this case is vbs, so you are left with just.txt. And have you seen the vbs icon? It looks like a scroll.
Lastly, if you get something in your real mail that you look at and say wtf? wouldn't you open it? (yeah, yeah, yeah, not if it looked like a bomb, right?)
And I'm kind of surprised there aren't more trojaned joke email programs. Those things get sent around like no tomorrow if they're funny enough (and some, uh, less so)... remember elf bowling? the combo#5 flash program? that fucking cat that walks around on the desktop... In other words, people are just plain used to viewing and running attachments in most settings.
"Does it autorun in Outlook? NO. Does it autorun in Outlook Express? NO"
Um.... well, no. Many users were apparently affected by having the message-preview pane active and selecting the message. That's pretty darn close to autorun.
But partly this post is correct. The virus only delivers its damage with a machine with Windows Scripting Host enabled, no need for outlook... Which means any windows machine with Win98, 2000, or IE 4.x and up, as long as scripting left on (the default). So Outlook doesn't have to be present for the script to run, only for the addressbook replication.
We use Groupwise, and while we didn't get bombed because of the re-mailing 'feature' didn't kick in, there were a couple of users who did open and run the script and the payload did deploy AND do it's thing on network files (of course only those to which the user had r/w access) as well as local.
It's interesting that you bring up Farenheit, on NTK Now! I saw a post that was supposedly from an ex-SGI employee... in it he 'explains' Microsofts position and what happened...
Read This... It is some funny shit. I submitted it as a story way back and it was declined. I guess it wasn't breaking news but I figured that funny sarcastic material about how Microsoft handles 'interoperability'-type issues would go over well here...:)
That reminds me about one thing that was very lame about The Matrix (which I have seen *once* so don't kill me if I got this wrong)... that whole bit about harvesting energy from human bodies and mixing it with a bit of fusion power. Gee if you had fusion power why bother with the pods, duh, you still have to nourish the body. I must have missed something.
I guess they were sucking *our souls* (!) so maybe you ought not to be so bold with your worst case scenario of renegade machines setting up solar panels... It might just be that they want... to... *suck* *our* *souls* (!!!!!)
I mean, I don't care about the past and I don't care that Novell has so few apps that it makes Linux look like application paradise. But if you really like operating systems and utilities in general, you really should play around with Netware and NDS. Of course it's not as much fun as getting ZENworks to work at a real world place but...
The thing is, Novell may never become a great application platform (their Java-induced delusions notwithstanding) but you don't really need to use Netware for that. In fact, it's now downright easy to manage NT servers through NDS and use them for what their good for.. (uh, that's nothing!) well, application support. and then do file and print services with Netware.
I'm still not sure how they plan on making money off this (they have to deliver more directory apps) but Active Directory is NO compitition, it's really not even worth talking about unless you have a 100% MS shop. Now you can manage solaris, linux, etc. users with it as well (this includes file rights, group membership, password..). Then there's a product that let's you manage Exchange and Notes directories through NDS, hot damn.
While I'm babbling on about Novell.... ever notice their products just appear suddenly. No preanouncement, no nothing. Just BAM: now shipping. Unfortunately it's that kind of marketing that gets them screwed all the time. Anyway, don't mean to sound like a shill for Novell, but you don't hear much rah rah about them around here so.... here it is: rah rah Novell.
Slashdot Mirror
on the other hand... maybe next time i'll read the article... :) I guess local execution of said binaries does give it one up on exceed. Although said support was "purported". We shall see.
Good God, man, what's next??? an X server for Windows 98? Oh wait...
Like many others, I too find myself at a loss here agreeing with Orrin Hatch. But don't bother bringing up his criticism of Microsoft. There's a perfectly good republican-type (check that, I mean't 'politician-type') reason. He's from Utah. Home of a certain software company that is getting eaten alive by Microsoft. I'm probably not the first to point this out here (sorry can't browse that low with just about 500 messages already.....).
Having said that, he does seem genuine for such a wack job as he... I mean I trust him (trust him to be himself) more than a lot of Democrats. I sure liked him more Dianne Feinstein who doesn't get any of this and was basically a jerk about it (I saw the c-span).
Exactamundo. If you don't have Dell BIOS the Cd won't work. It may not have to be the same model but it must be a Dell.
Egad.
Really? I guess Trusted Solaris is a big waste huh? Shoot, just tighten up the services, shut off telnet, ftp, and rpc and set-up a bank..? No, nothings perfect. But that blithe dismissal of formal standards was a little too much. "Trusted" versions are little bit more than just more secure defaults. They include a mandatory access controls, and suite of tools to help administrators give users and processes (and administrators!) the least amount of privilege necessary. I would be out of my league if I speculated on how close this approximates a true capability-based system (yes there is still a root account so...). But, still, it's a lot more than being on top of your patches.
Notice, I'm making NO mention of whether OSS OS's (that was fun to write) would be better or worse at this. I don't see why they wouldn't be fine! In fact I would think Red Hat Trusted Linux would be a natural and a huge hit. Perhaps they're worried about making their money back... but oh man, just think of the consulting gigs!
Out of couriosity, are there Mandatory Access Controls (i.e. permissions [ok, 'labels'] that even the file's owner may not change) available for OpenBSD or Linux? Something that's polished?
It can all be traced.
To some people IP matters... to others maybe not so much. I have an internal dhcp address behind a firewall doing NAT. I happen to know the dhcp server doesn't keep logs. So what do I have to worry about?
I bet a lot of dhcp servers don't log. Maybe ISPs do for legal reasons but I don't think we're alone here in terms of not logging.
The only potential issue I see is that my IP address, in practice, rarely changes... but hey all it takes is a release and renew and boom, you're not 'where' you were.
Oh and please, if I am dead wrong, flame away and set me straight, I don't mind.
Reminds me of the time the SPA said the software industry loses several billion dollars per year in China due to piracy.
It's so painfully obvious that if pirating were impossible (hypothetically here), there is no way they would actually sell as much software as people today pirate. Most of the pirates would simply be shit out of luck.
And don't forget it did have a txt in there. And if you save it to the desktop first, it looks like a text file. windows by default hides the file extension, which in this case is vbs, so you are left with just .txt. And have you seen the vbs icon? It looks like a scroll.
Lastly, if you get something in your real mail that you look at and say wtf? wouldn't you open it? (yeah, yeah, yeah, not if it looked like a bomb, right?)
And I'm kind of surprised there aren't more trojaned joke email programs. Those things get sent around like no tomorrow if they're funny enough (and some, uh, less so)... remember elf bowling? the combo#5 flash program? that fucking cat that walks around on the desktop... In other words, people are just plain used to viewing and running attachments in most settings.
I really AM a dipshit.
I really AM a dipshit.
I really AM a dipshit.
I really AM a dipshit.
Um.... well, no. Many users were apparently affected by having the message-preview pane active and selecting the message. That's pretty darn close to autorun.
But partly this post is correct. The virus only delivers its damage with a machine with Windows Scripting Host enabled, no need for outlook... Which means any windows machine with Win98, 2000, or IE 4.x and up, as long as scripting left on (the default). So Outlook doesn't have to be present for the script to run, only for the addressbook replication.
We use Groupwise, and while we didn't get bombed because of the re-mailing 'feature' didn't kick in, there were a couple of users who did open and run the script and the payload did deploy AND do it's thing on network files (of course only those to which the user had r/w access) as well as local.
Mark
Read This... It is some funny shit. I submitted it as a story way back and it was declined. I guess it wasn't breaking news but I figured that funny sarcastic material about how Microsoft handles 'interoperability'-type issues would go over well here... :)
Yep thats right. An A/UX home page has all you'd want to know about this 'Mac compatible' UNIX... Someday I'd love to try it out... The FAQ also mentions that MachTen (A UNIX running on top of the MacOS as opposed to Mac emulation on UNIX a la A/UX) utilized the Mach kernel, but it was published by Tenon not by Apple. Interesting. Well, to me anyway. :)
My understanding was that A/UX was Apple's first experiment with the Mach kernel. Predating MkLinux by quite a bit.
No, No. That was a typo. He mean't Satan... don't worry Santa's real.
I guess they were sucking *our souls* (!) so maybe you ought not to be so bold with your worst case scenario of renegade machines setting up solar panels... It might just be that they want... to... *suck* *our* *souls* (!!!!!)
The thing is, Novell may never become a great application platform (their Java-induced delusions notwithstanding) but you don't really need to use Netware for that. In fact, it's now downright easy to manage NT servers through NDS and use them for what their good for.. (uh, that's nothing!) well, application support. and then do file and print services with Netware.
I'm still not sure how they plan on making money off this (they have to deliver more directory apps) but Active Directory is NO compitition, it's really not even worth talking about unless you have a 100% MS shop. Now you can manage solaris, linux, etc. users with it as well (this includes file rights, group membership, password..). Then there's a product that let's you manage Exchange and Notes directories through NDS, hot damn.
While I'm babbling on about Novell.... ever notice their products just appear suddenly. No preanouncement, no nothing. Just BAM: now shipping. Unfortunately it's that kind of marketing that gets them screwed all the time. Anyway, don't mean to sound like a shill for Novell, but you don't hear much rah rah about them around here so.... here it is: rah rah Novell.