Forgot your password?
typodupeerror

Comment: Anybody know what technique was used here? (Score 1) 16

by Ponga (#39045977) Attached to: NASDAQ and BATS DDoSed
I'd be curious to know if a particular application-level vulnerability was used in this event. There has been several vulnerabilities of late related to Java/Apache/PHP such as the hash-collision vulnerability with exploit code here http://www.securityfocus.com/bid/51193/info that has demonstrated to be very effective - so much so that a single host can bring down a relatively large site by exhausting CPU on the web server.... does anyone know the particulars of this event??

Comment: Get on while the gravy train is still in service (Score 2) 352

by Ponga (#38357280) Attached to: Ask Slashdot: Working As an IT Contractor In a War Zone?
I've worked in the defense sector and although I have not signed up for one of these gigs, I know plenty of people that have. It's true that if you are worth your salt (or look good on paper), can obtain a secret clearance and willing to sacrifice a year of your life working 15 hours a day, every day... you can make $250 in a year in Afghanistan. Good places to look are the company websites: L3, SRI and STG - there are many more. Also job fairs in military towns. HOWEVER, if you really want to do this, get on while the getting is good. As you may know, the US trying to fold up it's many operations in SWA and other combat theaters, plus while the government is going broke, it's going to be hard for the DoD to justify paying a quarter million a year for each contractor working in these places... knowing what I know from my days in the DoD, I suspect this gravy train will come to screeching halt... and soon.

Comment: Re:I think he means things like cache engines (Score 1) 577

by Ponga (#34130194) Attached to: Will Netflix Destroy the Internet?
That is an excellent point. I would take a guess that most ISP's are not so much up in arms over the bandwidth aspect of things, but that a fair portion of ISP's just happen to be cable and media providers themselves, with their *OWN* video on demand offerings that Netflix is essentially competing with.

Comment: Like /. Low Employee # A Status Symbol (Score 1) 342

by Ponga (#33691578) Attached to: I am employee number ...
The company I used to work for, most folks had numbers over 100,000 - I was employee # 149259. As a field office, the management was 07XXXX or some such series (thereabout). I remember going to corporate HQ and getting in an elevator... ended up riding with a guy who's badge number was # 2. Who does number 2 work for?? Turns out he co-founded the company... In that respect, the lower your employee number... chances are the more clout you carry.

Comment: Re:I find it annoying (Score 1) 250

by Ponga (#33642090) Attached to: Did Google Go Instant Just To Show More Ads?
Agreed. I generally hate auto-complete. MOST annoying is when entering a US zip code to get the weather, such as on Yahoo... auto-complete for a zip code is about the stupidest use I've seen yet. I do however like the auto-complete feature on certain things, like constrained fields. As an example, I would much rather type "Uni" and have "United Kingdom", "United States", "United Arab Emerites" appear from which I can select from, rather than fishing down a long drop-down list. In this case, auto-complete makes sense. But for things like Google search... annoying at best. --ponga

Comment: Re:Here's a better Defcon RFID story... (Score 1) 338

by Ponga (#33308048) Attached to: Is RFID Really That Scary?
Yup. All Govies carry around a CAC, or Common Access Card, which among others things has an RF interface. The difference between this and US passports, for example, is that the passorts come with a handy booklet shield, that when closed, blocks RF. The CAC card has no such thing, unless suplemented with aftermarket holders, etc. Though, I don't believe much information can be gained as the CAC is a smart card - though I would imagine that you would at least have the knowledge of what it was you detected, but probably nothing further. --ponga

Comment: SFTP improvements (Score 3, Informative) 127

by Ponga (#31430758) Attached to: OpenSSH 5.4 Released
FTFA:

* Many improvements to the sftp(1) client, many of which were implemented by Carlos Silva through the Google Summer of Code program:...

... - Add recursive transfer support for get/put and on the commandline
(Alas!!)

Whole host of other improvements and bugfixes; give it read if SSH is pertinent to your environment....
Encryption

OpenSSH 5.4 Released 127

Posted by timothy
from the but-it's-secret dept.
HipToday writes "As posted on the OpenBSD Journal, OpenSSH 5.4 has been released: 'Some highlights of this release are the disabling of protocol 1 by default, certificate authentication, a new "netcat mode," many changes on the sftp front (both client and server) and a collection of assorted bugfixes. The new release can already be found on a large number of mirrors and of course on www.openssh.com.'"

Comment: Re:Donald Knuth (Score 5, Insightful) 737

by Ponga (#31430582) Attached to: What IT pioneer do you respect the most?
I agree with this poster. I too draw a distiction between Information Technology and Computer Science. To further the idea, IT is to CS as electrical engineering would be to a physics. One field is devoted to the science of a subject, the other - the application of that science.

Ada Lovelace, Knuth and Turing are soundly in the Computer Science realm for me; I don't equate them with "IT" at all.

Even though I am not an M$ fan, I chose Bill Gates. I'm surprised to see his numbers so low in this poll!

Comment: How about Linux users? (Score 1, Troll) 388

by Ponga (#31362498) Attached to: Typical Windows User Patches Every 5 Days
Running Ubuntu at home, seems like once a week there an update for something or other... Thank God Linux is *FAR* more graceful applying patches - I can update anything on the system and so long as the kernel is not touched, no reboot is required. Windoze just kills me... yo have to reboot for every damn thing! Glad I don't have to deal with that...

The reason that every major university maintains a department of mathematics is that it's cheaper than institutionalizing all those people.

Working...