Make a.job (scheduled command) to open your command prompt a minute from the time you create it. After it opens, crash explorer.exe and then restart it from the command prompt; you're now logged in as System. You should have access to that file. You can access everything as System. Does this work for you? Either that or boot a live CD and run 'strings' over the file... anything interesting there?
Use a boot loader password.
Disable CD/USB boot in BIOS or make the hard drive boot first(and password protect it... with clever users, lock the box so no one can clear the CMOS).
The bottom line though is that if someone has physical access to 'your' box, it's no longer yours. This applies to security as well as users. The only thing you can do is make the process so painful and bothersome that they decide it's not worth it.
Speak softly and carry a big stick. Keeping a CAT5 cable that terminates to a power outlet is a good tool to have handy. Plug it in to the spot on the patch panel where the trouble user's connection is - they'll get the point after a couple of 'hardware failures' for their desktop.:)
Just to clarify for those that aren't familiar with RHEL...
I think parent meant a kickstart file, not quickstart.
And yes, kickstarts are freakin' awesome. I can pump out a new server image in under ten minutes with nothing more than an updated (via rsync) RPM tree and a web server. I just wish the kickstart cfgs would allow you to set the hostname in the network settings. Then I wouldn't even have to do 'setup' on first boot.
... and of those of us highly skilled, in debt and just graduating from college? Glad the boom was fun for y'all, but some of us showed up a little late to the party.
FWIW, you should give your python dev. a book and revoke his IDE until he can come back to you with a solution for setting the CPU affinity of his code. Pencil and paper coding is For His Own Good(TM) and everyone needs to go back to the basics (sometimes even BASIC) from time to time. It also builds character.
It gives you better perspective when you have a: problem, good book, pencil, paper, and no distractions/crutches. I know I need to do this from time to time (whiteboard, diagram, pseudocode, and a good reference for the language I'm using), when I'm spinning my wheels or neglecting good practices.
I'm assuming you'd like the logarithmic scaled version!:)
I'd go one further. That very same graph with a third axis (axee? axen? Arg!) that shows this burst/time graph relative to an energy source I can somewhat comprehend. Maybe the projected output of an average star over that same time frame.
Will your project be part of this summers' massive release (named after some spacey thing or another, no doubt) or do you have any milestones that are targeted around then?
I look forward to building a new Eclipse distro every summer during the simultaneous release. That's generally when I do my 'window-shopping-for-shiny-objects'.
...due to a metric/standard conversion glitch, it landed at 320 M/sec^2.:)
The french have reportedly surrendered and the English plan on nuking the crater from orbit, just to be sure. A few Russians were overheard saying, "... it's still got nothin' on Sputnik!", while the Scotish blamed it all on the Welsch who, in turn, blamed the Irish, who dared both to "bring those fightin' words down to the pub".
What if you run your own cloud? You'd surely trust your datas safety, then.
Along those lines... At what point does clustered storage (RHEL has had this since mid RHEL-4) become a cloud? At Amazon's level, Google's, a single rack of RAID boxes, colo'ed RAID boxes? I'm not even sure that the idea of cloud has an exact requirement that makes it a 'cloud'.
There should be an RFC for this kind of thing. OK, I'll get off your cloud, now.
You spoiled kids! back in my day, I had to crawl under my desk and use a lighter to see while plugging in a USB stick. We didn't need fancy lights or front-of-box USB ports; we had our raw muscle and... oh, wait. You said candles, not flashlight.
Could you rephrase the question but with the word 'flashlights' in place of 'candles'?
I was shooting from the hip to make a point and wound up at Epic Fail.
You've got me thinking now, what would be the most secure way to handle a private key on a campus computer (I live off campus, so I use one of them about once a semester)? I guess boot a live cd first, then use the key... or keep two keys and use the first one (a throw away) to SSH to a known secure host where you have your normal key? That way, at least you've gotten your good key encrypted and you can always revoke the throw away if it becomes compromised, I guess.
[...] So, universities and schools can monitor what students do on the Internet. Over any protocol, not just e-mail.
That's fine by me, all they have to do is break my 8192 bit rsa key (on USB drive, along with a portable-apps PuTTY, firefox, thunderbird, and other 'goodies'), or figure out a way to keep me from tunneling other protocols over SSH. They could lock down USB ports, I guess. Although I'll be a bit ticked when I have to go back to carrying live CDs on disk. I guess they could also confiscate the half dozen USB drives that I usually carry... and hope that none of them are hacksaws when them plug them in to a 'doze box as admin. That'd push me back to borrowing a laptop from the library and netstumbling over the campus.
The bottom line is, they aren't going to catch anyone who has a clue, so they'll end up wasting a lot of time and money to monitor all the wrong people. If they're not careful, though, they might accidentally become a challenge to the kind of people who enjoy technical puzzles/systems (read: target for bored and/or curious geeks). For most networks, that would be akin to showing up to a gun fight with a rubber chicken... at best.
If I'm reading it correctly, they mean; "Seeking a non-existent silver bullet (shiny object syndrome) while not considering that part of the solution is to follow known good practices".
Smart enough to know that if they want to eat, they have to work.
Following your logic far enough reveals that we're all guilty of murder.
If you were half as clever as you think you are, you'd be able to rationally sort reality from your own hatred of Microsoft. BTW, this is coming from the president of a Linux User Group.
Take a step back, get some perspective, and stop allowing yourself to be so emotionally involved with technology. It's fine to be passionate about a technology... up until the point where it replaces rational thought. After you cross that point, you lose respect, geek cred., and any chance to be taken seriously. There are plenty of brilliant people who will never impact the world because they lost all creditability. Don't be one of them.
Slashdot Mirror
Be insightful and you can be a philosopher!
P.S. - Mods, this one is informative or you'll break the chain.
Cheers. I owe you a beer.
*Starts the 'slow clap'*
Classic. Simply freakin' classic.
Ahhh.... So you chose Windows Bob over Vista; I'm honestly not sure if that was wise or not.
Make a .job (scheduled command) to open your command prompt a minute from the time you create it. After it opens, crash explorer.exe and then restart it from the command prompt; you're now logged in as System. You should have access to that file. You can access everything as System. Does this work for you? Either that or boot a live CD and run 'strings' over the file... anything interesting there?
Use a boot loader password.
:)
Disable CD/USB boot in BIOS or make the hard drive boot first(and password protect it... with clever users, lock the box so no one can clear the CMOS).
The bottom line though is that if someone has physical access to 'your' box, it's no longer yours. This applies to security as well as users. The only thing you can do is make the process so painful and bothersome that they decide it's not worth it.
Speak softly and carry a big stick. Keeping a CAT5 cable that terminates to a power outlet is a good tool to have handy. Plug it in to the spot on the patch panel where the trouble user's connection is - they'll get the point after a couple of 'hardware failures' for their desktop.
Just to clarify for those that aren't familiar with RHEL...
I think parent meant a kickstart file, not quickstart.
And yes, kickstarts are freakin' awesome. I can pump out a new server image in under ten minutes with nothing more than an updated (via rsync) RPM tree and a web server. I just wish the kickstart cfgs would allow you to set the hostname in the network settings. Then I wouldn't even have to do 'setup' on first boot.
Seconded.
/opt/myApp and drop whatever you want in there.
If you disagree, use
Sorry, I blew my mod points earlier this week.
FWIW, Sorry to hear about your situation.
... and of those of us highly skilled, in debt and just graduating from college? Glad the boom was fun for y'all, but some of us showed up a little late to the party.
Well played. But I'm docking half a point for "failure to cite a meme". You gotta' learn to stick the landing.
9.5/10
FWIW, you should give your python dev. a book and revoke his IDE until he can come back to you with a solution for setting the CPU affinity of his code. Pencil and paper coding is For His Own Good(TM) and everyone needs to go back to the basics (sometimes even BASIC) from time to time. It also builds character.
It gives you better perspective when you have a: problem, good book, pencil, paper, and no distractions/crutches. I know I need to do this from time to time (whiteboard, diagram, pseudocode, and a good reference for the language I'm using), when I'm spinning my wheels or neglecting good practices.
I'm assuming you'd like the logarithmic scaled version! :)
I'd go one further. That very same graph with a third axis (axee? axen? Arg!) that shows this burst/time graph relative to an energy source I can somewhat comprehend. Maybe the projected output of an average star over that same time frame.
P.S. - Great sig. I actually LOL'ed.
Will your project be part of this summers' massive release (named after some spacey thing or another, no doubt) or do you have any milestones that are targeted around then?
I look forward to building a new Eclipse distro every summer during the simultaneous release. That's generally when I do my 'window-shopping-for-shiny-objects'.
...due to a metric/standard conversion glitch, it landed at 320 M/sec^2. :)
The french have reportedly surrendered and the English plan on nuking the crater from orbit, just to be sure. A few Russians were overheard saying, "... it's still got nothin' on Sputnik!", while the Scotish blamed it all on the Welsch who, in turn, blamed the Irish, who dared both to "bring those fightin' words down to the pub".
What if you run your own cloud? You'd surely trust your datas safety, then.
Along those lines...
At what point does clustered storage (RHEL has had this since mid RHEL-4) become a cloud? At Amazon's level, Google's, a single rack of RAID boxes, colo'ed RAID boxes? I'm not even sure that the idea of cloud has an exact requirement that makes it a 'cloud'.
There should be an RFC for this kind of thing. OK, I'll get off your cloud, now.
Candles! Candles?!
You spoiled kids! back in my day, I had to crawl under my desk and use a lighter to see while plugging in a USB stick. We didn't need fancy lights or front-of-box USB ports; we had our raw muscle and... oh, wait. You said candles, not flashlight.
Could you rephrase the question but with the word 'flashlights' in place of 'candles'?
Also, feel free to get off my lawn after that.
Good point.
I was shooting from the hip to make a point and wound up at Epic Fail.
You've got me thinking now, what would be the most secure way to handle a private key on a campus computer (I live off campus, so I use one of them about once a semester)? I guess boot a live cd first, then use the key... or keep two keys and use the first one (a throw away) to SSH to a known secure host where you have your normal key? That way, at least you've gotten your good key encrypted and you can always revoke the throw away if it becomes compromised, I guess.
[...] So, universities and schools can monitor what students do on the Internet. Over any protocol, not just e-mail.
That's fine by me, all they have to do is break my 8192 bit rsa key (on USB drive, along with a portable-apps PuTTY, firefox, thunderbird, and other 'goodies'), or figure out a way to keep me from tunneling other protocols over SSH. They could lock down USB ports, I guess. Although I'll be a bit ticked when I have to go back to carrying live CDs on disk. I guess they could also confiscate the half dozen USB drives that I usually carry... and hope that none of them are hacksaws when them plug them in to a 'doze box as admin. That'd push me back to borrowing a laptop from the library and netstumbling over the campus.
The bottom line is, they aren't going to catch anyone who has a clue, so they'll end up wasting a lot of time and money to monitor all the wrong people. If they're not careful, though, they might accidentally become a challenge to the kind of people who enjoy technical puzzles/systems (read: target for bored and/or curious geeks). For most networks, that would be akin to showing up to a gun fight with a rubber chicken... at best.
Never mind that if the music industry actually managed to make this happen, they could essentially STOP making music
There are some that say this has already happened.
... and everyone else just thinks it, I assume.
But... Scotty wasn't a Klingon...
Does this story take place in San Francisco, perchance?
if you missed the obscure reference to Terry Childs
If I'm reading it correctly, they mean;
"Seeking a non-existent silver bullet (shiny object syndrome) while not considering that part of the solution is to follow known good practices".
Smart enough to know that if they want to eat, they have to work.
Following your logic far enough reveals that we're all guilty of murder.
If you were half as clever as you think you are, you'd be able to rationally sort reality from your own hatred of Microsoft. BTW, this is coming from the president of a Linux User Group.
Take a step back, get some perspective, and stop allowing yourself to be so emotionally involved with technology. It's fine to be passionate about a technology... up until the point where it replaces rational thought. After you cross that point, you lose respect, geek cred., and any chance to be taken seriously. There are plenty of brilliant people who will never impact the world because they lost all creditability. Don't be one of them.
Screw lock them out; take them out! If they were decent hackers, they'd be doing something other than police work.
I'm very good at what I do, I don't like being bullied and I won't stand for it. Funny that, in a technological arena, the geek becomes the jock.
I welcome them show up on my stomping grounds. Full disclosure: I'm an American, but what I said applies globally.