Forgot your password?

Comment: Re:Every single day (Score 1) 176

by bill_mcgonigle (#47567775) Attached to: Comcast Confessions

So, pray tell, if writing your representative is worse than useless, what's the action that would actually work?

Working to obsolete that system.

"You never change things by fighting the existing reality.
To change something, build a new model that makes the existing model obsolete."

- R. Buckminster Fuller

Politics is an enormous opportunity cost that ought to be left to people who cannot participate in society in a more meaningful way. e.g. Libertarianism is an abject failure by every conceivable measure. Intent isn't important, it's results, and things have *not* gotten better. Yeah, 1 out of 10 battles are won, but any General can tell you how that war will go.

Comment: Re:Common? (Score 1) 176

Right. See if it meets PCI requirements (you need to at least be able to reference them if you're in this line of work). If so, leave a note with the employer as to what might (will) happen and move on.

If every port on the VLAN is 802.1x certificate-authenticated you might not need to actually worry. Hahahaha, yeah, I'm sure it is....

Comment: Re:Tower Systems (Score 1) 177

I build and supply retail chain management systems and part of the platform is a store management system, which communicates with POS machines (in most cases via a share). So our solution to what you are describing (a common problem with POS systems) is to put our store management system on a Linux machine that has 2 network cards in it, one is the Internet connection and the other is LAN, this Linux machine runs the store management system and it becomes local network manager and a firewall.

The POS machines are on the LAN only, no Internet connection for them, the store management system connects to the retail management system that is external to the store (controls the entire chain). This way we can avoid this huge security breach.

Comment: common or not, it's not prudent (Score 0) 177

Well, whether this practice is common or not is probably irrelevant, it is still not a prudent thing to do.

I build and supply retail chain management software to a number of chains, there are dozens of stores that use it, we switch at least one computer in a store to a Linux machine that runs the store management software (the chain management software is a central system and it doesn't run in a store, but all stores talk to it.)

Store management system is on the Linux machine that faces the Internet, it has 2 network cards, one is the Internet and the other is LAN (the same machine controls the LAN). Since this is Linux, iptables is used to filter out any unnecessary traffic.

I think there should be some sort of packet filter on Internet facing equipment, POS or anything else.

Comment: Comcast Business is anything but! (Score 1) 176

by DigiShaman (#47565645) Attached to: Comcast Confessions

So a client of mine uses Comcast Business as their ISP. I drove on-site to configure a SonicWALL. Their modem was in bridge mode with the only option of turning into "pseudo bridge mode" (something like a DMZ). Also, the modem wasn't yet provisioned for their assigned static IP pool. Only Tier 1 answers the phone. If you require Tier 2, a call-back within 24 period IS THE ONLY OPTION! And most of the Tier 1 guys don't know how to do anything other than provision modem, basic reboot troubleshooting, and scheduling a truck roll for physical coax connectivity problems. Or put it another way, I can't schedule in advance (proactively) to setup a business gateway firewall. You have to wait and be reactive, then drive X amount of mile on-site all while the customer is left offline with a business that can't function (IE losing money!!!). But it gets better; Tier 2 will configure the modem and reboot the unit without calling first. Epic fail!

Problem 1: I can't get a modem that will drop down to true bridge mode

Problem 2: Business class support is inharently reactive and not proactive with regards to scheduling downtime.

Problem 3: Tier support of all levels wildly range in competency.

Problem 4: -fill in the blank because I'm sure I missed something here-

Comment: Re:What's the point? (Score 1) 169

by meta-monkey (#47565435) Attached to: Senate Bill Would Ban Most Bulk Surveillance

We haven't had an election since the spying scandal broke. We haven't seen what kind of impact candidates' stances on spying will have on their electability. We also haven't seen the resolution of the EFF and ACLU lawsuits now that the leaks have provided standing.

There are four boxes to use in defense of liberty: soap, ballot, jury, ammo. Use in that order. Right now we're still on soap. That's what we're doing right now. Bitching about it on the internet is our duty. We'll find out how well ballot works with regards to this legislation and the 2014 and 2016 elections. Jury is just getting ramped up. Patience. The system is supposed to work slowly.

Comment: Re:So! The game is rigged! (Score 1) 447

by MightyYar (#47564689) Attached to: 35% of American Adults Have Debt 'In Collections'

I have no idea, so I'm totally speaking out of my ass here, but I suspect there is a reason Europe does it that way. In the US there are a few credit rating companies who have data on the entire population of the US, thus creating a de-facto system for determining credit. I'd bet dollars to donuts that Europe has a far more Balkanized collection of credit agencies.

Comment: Re: Tag, you're it! (Score 4, Informative) 152

It still doesn't excuse Israel ignoring the targeting said hospital though.

When a group fires from the grounds of a hospital, religious building, or homes, under the geneva convention those buildings automatically become military targets. There is no ignoring the geneva convention, what you've just posted is that hamas is committing war crimes in order to try and sway opinion.

We have a equal opportunity Calculus class -- it's fully integrated.