Forgot your password?

Comment: Re:Its Fine. - not (Score 2) 348

I setup all our Oracle databases.. (Many, many of them). Only port 1521 is open in iptables. (actually, for some, I have secondary listeners).. The Junipers also ONLY allow access on port 1521, (and a secondary, if specified)
I have never had issues connecting to the database.

Comment: And there there is Charter Com6munications (Score 1) 146

by QuantumRiff (#47524745) Attached to: Comcast Carrying 1Tbit/s of IPv6 Internet Traffic

Charter's Ipv6 website hasn been saying its coming "soon" since about 2011. Last time I called the NOC, and our regional sales people (I'm a fiber customer of theirs) nobody could give me any time frame, area, or any other information about when they plan to start testing it for customers.

Comment: Re:Netflix fucked up when they paid (Score 1) 43

by QuantumRiff (#46825403) Attached to: AT&T Plans To Launch Internet Video Service

When cable providers and stations have a spat, its common to see a runner of "this station might be affected by X.. call them at ###-###-#### and tell them you want to keep this channel

They really annoy me, but it might be very, very effective for netflix to give users notice that its their ISP's uplink that is not sufficient.

Comment: Prove its about talent (Score 3, Interesting) 325

by QuantumRiff (#46637815) Attached to: Wants More H-1B Visas, But 50% Go To Offshore Firms

If the claim is that there is a shortage of talent, then simply add a fee to the process, that is roughly equivalent to a years worth of college education in the state where the job is located, for every year the H1B worker works, into a scholarship program for that industry/disipline. Facebook should jump at the chance to make college more affordable for CS majors, since they seem to need so many of them. And hey, if the student can graduate without "mortgage level" loans, they can actually afford to work for less money.

Comment: Decision details (Score 5, Informative) 934

Really sad that the links have few details, and more than 1.5 hours later, no one's posted anything more.

The decision text is available here. The decision is by Judge Edmond Chang, appointed in 2010 by Obama to the United States District Court for the Northern District of Illinois. The case name is Illinois Association of Firearm Retailers v. City of Chicago (formerly known as Benson v. City of Chicago).

This link says that the lawsuit challenges five aspects of Chicago's law:

  1. the ban on any form of carriage
  2. the ban on gun stores
  3. the ban on firing ranges
  4. the ban on self-defense in garages, porches, and yards
  5. the ban on keeping more than one gun in an operable state

Comment: Re:Upate to the most current (Score 3, Funny) 241

by QuantumRiff (#45559007) Attached to: New Windows XP Zero-Day Under Attack

We have some expensive pitney bowes mailing systems. We inquired about a newer computer, NOT running xp. Turns out they changed the entire print assembly for the version that runs Windows 7. Its a $20k upgrade. (also need a new controller box, old one doesn't work with WIndows 7 software (mainly the hardware dongle, apparently)..

Our brand new pitney bowes mailing system has a windows 7 computer. The techs that installed it told our senior management to never run windows update, or install antivirus on it, or it would cause problems and make the machine not work. Boy did they get pissy when I put it on its own vlan, with only access to one server, and one port on that server, to get its updated files.

Comment: misleading & likely incorrect (Score 5, Interesting) 85

by jgaynor (#45504077) Attached to: Route-Injection Attacks Detouring Internet Traffic

This whole article smacks of some CISSP pouring over BGP looking glass router logs and having a sophomore Eureka moment. BGP MITM is not practically possible because of the return path problem: the last router that dumped you the traffic believes you are the legitimate endpoint for that traffic and therefore is not going to forward it to the ACTUAL target once you're done doing nefarious things to it. The article tries to explain this away with the following:

"The traffic was likely examined and then returned on a “clean path” to its destination—all of this happening in the blink of an eye."

If the 'clean path' of the internet thinks Mallory is Bob, Mallory's theoretical egress 'Clean Path' will make the same assumption. Perhaps Alice's first hop AS was compromised? If so this is an isolated vendor network problem, not an 'internet at large' problem. Maybe Mallory's 'clean path' is a point to point to Bob? If so Bob's an idiot for signing a peering agreement with a known Hooligan.

This was likely a misconfigured customer router connected to an irresponsible ISP that doesn't filter the routes it accepts, just like the Pakistan/Youtube Incident. The author either doesn't understand the technical impossibility of the attack they're dreaming about or does and is willing to lose credibility in exchange for ad traffic.

Computers are not intelligent. They only think they are.