Comment Re:BFG (Score 2) 93
Yes! That's exactly what this reminds me of: psDooM ! http://psdoom.sourceforge.net/
Why merely check for vulnerabilities when you can obliterate them, along with the rest of the system you're "auditing"
Yes! That's exactly what this reminds me of: psDooM ! http://psdoom.sourceforge.net/
Why merely check for vulnerabilities when you can obliterate them, along with the rest of the system you're "auditing"
Saw a similar, amateur setup in the tiny harbor of my hometown, NeuchÃtel, Switzerland, maybe, huh, 10 years ago?
Unfortunately the 8+ different cellphone charging cables provided weren't rugged enough for an outdoor/public setting, and I suspect that frequent damage is what eventually decided the owner to eventually, er, shall I say, pull the plug.
Also, re charging time: common Li-ion takes 2~3h for a full charge, 15 minutes may be a 80-to-90% top-off...
My bet would be a company into something like Flash-based SANs, with marketing guys not interested in the original meaning of IO.com but betting that such a catchy domain name will convince people they really care about IOPS, and/or to try and be perceived as the next big player in that field.
We'll see early enough anyway -- too soon I'm sure for everyone using on io.com today, sadly.
...or he just knew that the password to remotely administer the thing was 'cisco'.
But if it was indeed so easy, he's certainly not the only one to have figured that out by now.
Maybe "people" gave it a thought and concluded that trusting a company with all their passwords and/or data wasn't such a great idea either...
...then I'm sure you don't mind sharing your financial details, medical history etc with us, your boss, insurance, etc... It's already electronically available somewhere anyway, right?
(and we're back to the whole "if you have something to hide" debate. I personally side with Schneier on this, privacy is a necessity: http://www.schneier.com/essay-114.html)
If one's main concern is cost, then regular VoIP (the open kind, with competition and all) wins hands down.
E.g: http://progx.ch/home-voip-prixbetamax-3-1-2.html
Sorry, djb's rant is just bs. Was he just venting because he didn't invent IPv6 or something?
Nothing prevents a server from simultaneously serving both v4 and v6 clients. DNS publish both A and AAAA records, clients pick whatever they support.
It's a one-time setup for admins (but yes, too bad, they have to configure those IPv6 addresses somewhere).
Even easier for end users, most won't have to do anything. The "magic box from the ISP" one day answers DHCP (v4), rtsol (v6) and DHCP6 requests, so v6-capable devices (all recent OSes) get v6 connectivity; no change to the v4 part... except more NATing over time probably.
Doesn't look like a particularly painful transition if you ask me.
Granted, it would be better if it didn't require collaboration from ISPs, esp in the US...
during DDOS-attacks there is just to much state for the firewall to handle.
Sorry, this is wrong for all except maybe the most stupid firewalls out there.
A decent firewall will not only handle a lot more connections (or attempted connections) than any server can, it can also use a range of mitigation strategies should things start to get hairy, such as weeding out states selectively/faster, outright dropping anything unusual or matching any known-bad behavior, falling back to SYN-cookies (which don't require any state to be kept) and only forwarding traffic after completion of the TCP handshake (only allowing connections from non-spoofed addresses), adaptive per-IP/subnet/network rate-limiting, etc...
Heck, firewalls from reputable companies are devices designed to handle and resist attacks, and are tested accordingly. Regardless, while those will weather DDoSs fine, they can't magically prevent your pipe from being saturated either...
TFA completely misses the point too IMHO. Worthless.
The typical chemical battery used in hybrids have very poor efficiency.
...
Source please? Last I've heard, Nickel-based chemistries (early hybrids such as the Prius use(d?) Ni-MH) achieve 90% charging efficiency if fast-charged (that is, the battery stores 90% of the energy provided to it).
And Li-ion's charge efficiency reaches an impressive 99.9%.
While compressed air may have many advantages over modern batteries, charging/discharging efficiency is unlikely to be one of them.
So Stuxnet chatter is still observed around the planet, including in Iran and the US. Duh.
Now how exactly does this "expert" come to the conclusion that, somehow, activity from the US etc must be from infected home PCs, yet the same from Iran must be from some seekret uranium enrichment plant, which typically wound not be connected to the internet?
Oh, my bad, forgot, this comes from ScareTV... Never mind.
At the end of the day, if you don't commit a crime, the presence of a camera will not affect you.
Wrong. It affects everyone, in a lot more ways than you think. Simple example: visiting any "embarrassing" place (medical facility, sex-shop, late movie, badly rated restaurant or bar...) is perfectly legal, yet I bet most people would behave differently if the footage of a camera at such places entrance was publicly available and/or archived forever, instead of only kept by the owner and for a short time.
More arguments against that stupid "If you have nothing to hide..." line
Well, unlike you [White Shade] I feel that so-called wholesale surveillance, if left unregulated, even "just" in public places, would become a threat, a violation of everyone's right to privacy and dignity.
Today we have cameras. To prevent crime we're told (but studies seem to indicate that doesn't work). UK especially. More and more, networked, centralized. With now Joe Sixpack watching too (brilliant, really). Plus license plate OCR to enforce traffic restrictions, with such info logged to some big-ass database and cross-referenced to car owners details. Software also tries to analyze and pick "suspicious" behavior. Next is facial recognition (too unreliable today, but technology only improves). All in all, logging everyone's moves relatively cheaply seems doable in a not-so-distant future.
Now would you consider a detailed list of all the places you went to (e.g. stores, bars, relatives, friends, doctor's office, lawyer...) free for anyone to look at (your spouse, your ex, your boss, your parents, the government...) or just your own damn business?
Where do we draw the line?
/me continuing that game:
Just 'cause the crypto's lifted from peer-reviewed software doesn't mean it's used correctly.
[RC4 is a good stream cipher -- yet WEP is an epic fail]
Top Ten Things Overheard At The ANSI C Draft Committee Meetings: (5) All right, who's the wiseguy who stuck this trigraph stuff in here?