Forgot your password?

Comment: You had a VM w/ VLAN; TechCentral took a big risk (Score 1) 227

by Paul Fernhout (#47761163) Attached to: TechCentral Scams Call Center Scammers

I cant believe more people aren't pointing out how potentially dangerous what the TechCrunch author, Regardt van der Berg, did was. He gave a potential unknown attacker a beachhead inside the TechCentral network, even if only for a few minutes. That is long enough for someone to potentially have compromised other machines on the network.

The article says: "We have a spare PC in the TechCentral office that has been newly installed and that contains no personal information. I used this machine for the next part of the ploy. I installed the application and provided "John" with the access details. ... Because I did not furnish my PayPal or credit card details, the scammers turned nasty and proceeded to my documents folder. I saw the engineer poking around in some folders, but I promptly disconnected the office Wi-Fi connection. After some research, I found out that they'll delete system files and users' personal documents. Fortunately, I disconnected before they managed to delete files on the dummy PC -- not that there was anything of value for them to delete."

At that point, regardless of what was done to that specific PC, they have to assume the attacker could compromise every machine on their network by exploits launched immediately from that machine in the background at all other computers on the network, like through potentially zero-day exploits such as for unpatched Microsoft issues relating to local workgroup file sharing or other services. They cant assume they knew everything the attackers were doing. That's why it's been said that firewalls, like some lollipops, are "crunchy on the outside and chewy in the middle". The article author does not say he re-imaged the PC either. Granted, his informative article that may help many other potential victims was maybe worth the risk, but he should at least make clear to his readership what those risks are and that he understood them and accepted them on behalf of helping his readership.

Contrast with what your setup, where the VM was on its own virtual LAN and so presumably could not get to other machines on your local network. And as a snapshotted VM, you can easily roll it back. Still, if you had installed software, how risky that was would also depend on the exact network configuration and how that VM's VLAN interacts with your gateway to the internet -- as in whether the VLAN to gateway interface via whatever virtualization software you were using was set up like guest networking with isolation from other guests. One mistake somewhere in configuration (or even with no mistakes and buggy virtualization software), and your production network could have been compromised. And as you said, there could be credentials on a test machine like SSH keys and such. You did the right thing by not installing anything.

Granted, it doesn't sound like these examples of scammers are doing internal network attacks, but you never can know for sure what they really intend...

Comment: Re:In other news... (Score 1) 193

The problem with solar is that it requires an upfront investment that pays back over a long term but does not significantly increase the value of your home.

It may surprise you, but some people buy homes to live in them. Not to flip in 3 years for a profit.

And I don't believe there's enough data in various markets to know whether or not solar panels would increase the value of a house more than their installation price (which is coming down, by the way).

Comment: Re: What's so American (Score 1) 439

Sure they do. Corporatist Democrats play for the same team of rich elitists than Corporatist Republicans. Why do you think that no matter what else happens to the economy, the bankers always get their dough? No matter what happens to the economy, Wall Street gets taken care of first.

And no banker ever goes to jail.

Comment: Re:progress (Score 1) 95

by PopeRatzo (#47759515) Attached to: Hackers Claim PlayStation Network Take-Down

Will you pay more?

Pay more for what? Dedicated servers? They had that figured out more than 10 years ago. How much more do you think it would cost to add dedicated servers to a game today? And yes, if people would pay $19.99 for some DLC that gives your character new hats, I'm pretty sure they'd pay for dedicated servers.

The reason they are not included is because Sony is so scared that there might be some kid in Slovenia playing a pirated version of their game. Not that the kid would actually ever pay for a Sony game, but they are outraged that there is a nickel in some kid's pocket that doesn't belong to them.

Comment: Re:ICREACH? (Score 1) 205

The problem with the free press is that it is not an independent press. The press that matters is owned by companies that are often the cause of the problem.
Furthermore the press is a marketing tool for their customers. That are the companies who buy advertisement places or times. And those

The people are the product that is being sold.

Comment: Re:Do the math (Score 1) 332

by Grishnakh (#47758251) Attached to: New EU Rules Will Limit Vacuum Cleaners To 1600W

It's worked fine for me for 16 years (mine was the very first model, not the later touchscreen models), except for the big mold issue (which after a couple years they did a factory recall and sent a technician to my place to install a bunch of new, redesigned parts in the door and front area), and the water pump failed a couple years ago which I replaced myself. There haven't been any electronic issues. I have read of some people having problems with the wax motor (the thing that controls the door locking) control circuit.

Comment: Re:put a label on it. (Score 1) 260

by PopeRatzo (#47756119) Attached to: The Evolution of Diet

But yes, I'm sure that a legal attribute totally affects the digestibility.

For me, it does. Monsanto owning a license on a basic foodstuff makes me sick.

The idea of any corporation owning a license on the idea of a basic foodstuff makes me sick. That's something I just cannot digest.

And I can't imagine how improving food production will prevent hunger,

You don't know the story of "Golden Rice", do you?

Comment: Re: What's so American (Score 3, Insightful) 439

Nonsense. Who even cares what party the Kochs are? Are they GOP or Tea Party or libertarians or who even knows how they vote. They're just corporatists, like Soros and Bloomberg.

They may not all be the same, but they all play for the same team.

manipulate the markets

You're full of shit. You think people who support Net Neutrality are the ones wanting to "manipulate the markets"?

Comment: Re:Keyword: Believe (Score 1) 260

by PopeRatzo (#47756053) Attached to: The Evolution of Diet

The reality is italian bread and cold beer will tend to make you fat, if you don't carefully control quantities.

My point is that if you're restricting your diet to a very narrow selection of foods, you are almost certainly also controlling quantities without thinking about it.

It's not so much about what you eat, it's about eating thoughtfully. Be aware of what you're taking in. Know that drinking a 64oz Big Gulp is taking in a LOT of food. I'm sure there are people who sock away the soda pop who might say, "I didn't eat anything all day".

Whatever, something is making people hugely fat. Outrageously, amazingly, shockingly fat. Circus freak fat. Industrial accident fat. I mean, comic book supervillain fat. And it's not because they ate too much brown rice and vegetables, or even Italian bread and mozzarella.

I believe the food and chemical industries have been experimenting on humans for years without our consent. You never saw people this fat when you were little. Well, I don't know how old you are, but not when I was little. I mean, there were fat people, but they looked like, I don't know, Jackie Gleason, not fucking Jabba the Hutt in stretch pants. And not just one or two. If you move around the city during the day, you will see thousands of people who are not just a little plump, but enormously, freakishly fat. When I was little maybe I'd see one of those every year.

So, what's changed? I'm not sure people are eating that much more food. You know who else gets freakishly large in the past 20 years? Livestock. And you know what they eat? GMO corn. I'm not sayin', I'm just sayin'.

Comment: Re:In other news... (Score 1) 193

Not true. The taxes on gasoline and other fossil fuels far exceed the tax breaks for oil exploration.

Not if you start to examine the externalities of the fossil fuel industry.

Like the wars in the Middle East and the environmental cleanups. The money BP put into the Gulf repair wasn't but a small fraction of the costs. The rest have to be picked up by government. You and me.

Comment: Re:In other news... (Score 1) 193

The "coal subsidies" only affect the profit of a few politically connected democrats

Man, you're behind the times. I'm not talking about those subsidies. I'm talking about the externalities, like the health care costs for the people who get sick from coal, or the environmental costs of coal or the way coal destroys communities.

Comment: Re:Urgh (Score 2) 439

Possibly because marxism and its derivatives were responsible for the murders of over 100 million innocent people in the 20th century.

So, what the Kochs are saying is that if we have Net Neutrality 100 million people will die?

Well, that's reasonable. We should probably forget all about that Net Neutrality thing.

Next Koch campaign: "Net Neutrality is like Ebola!"

Comment: Re:Urgh (Score 1) 439

Not only does it disregard the Nordic socialist countries...

That's why you're not hearing talk radio mention "European-style Socialism" as much any more. They go right to talking about North Korea whenever they want to call someone a socialist. So, if you're talking about single-payer health care, it's like, "How's that working in North Korea". They can't mention Cuba, because they've got good health care, so it's always North Korea. Net Neutrality? North Korea. Minimum wage? "Why don't you just move to North Korea".

To the systems programmer, users and applications serve only to provide a test load.