Forgot your password?
typodupeerror

Comment: bootable, scripted and encrypted (Score 2) 154

by mikem170 (#43324783) Attached to: Happy World Backup Day

I have a script that can setup a bootable partitioned usb drive, set it up to be encrypted, then dd/rsync all my system and data files to it.

I keep a couple of these bootable-backups around, one of them off-site.

I can connect the usb drive to another pc and boot my system up on it. If I need to I can run the script and have it copy everything from the usb drive to the new pc internal drive.

This system has served me well for a number of years, and a number of computers.

I'm running Freebsd and I use GEOM for encryption. I did do a new system install to go from 32 bit to 64 bit. Otherwise this system has served me well for a number of years, through a number of computers, with minimal effort.

Security

IPMI: Hack a Server That Is Turned Off 90

Posted by timothy
from the great-power-brings-great-vulnerability dept.
UnderAttack writes "A common joke in infosec is that you can't hack a server that is turned off. You better make sure that the power cord is unplugged, too. Otherwise, you may be exposed via IPMI, a component present on many servers for remote management that can be used to flash firmware, get a remote console and power cycle the server even after the normal power button has been pressed to turn the server off."

Comment: Re:Good, Because Certs Are Worthless (Score 4, Interesting) 267

by mikem170 (#38911781) Attached to: The IT Certs That No Longer Pay Extra
Most CCIEs I've met are sharp, however I've bumped into at least one glaring exception. He couldn't edit then copy/paste a simple standard access-list into a router - he didn't understand the access-list, nor did he know how to copy/paste into the session!!! We checked, his cert was legit as far as we could tell. I figured it had something to do with him working for a telco at the time (10+ years ago). I believe he had a lab. I also think he was grandfathered in - he didn't need to recertify or something. I changed my interview style after that. I ask a bunch of simple nitty-gritty tech question now, no matter how impressive the candidate sounds. You would be surprised how often someone whose resume looks stellar can't answer multiple simple questions - like what is a /24, a tcp reset packet, port used by http, etc.

Comment: Re:you're a troll but even so.... (Score 1) 612

by mikem170 (#38885803) Attached to: Pentagon: 30,000 Pound Bomb Too Small

Why do you think the commies were an different? At the time I remember the word was that they were led in lockstep by a bunch of megalomaniacs that wouldn't stop until they ruled the world.

It is a bit far-out to say that Iran would commit suicide by launching a first strike. How often does a country commit obvious suicide? Sure, we don't want them to have nukes. But they live in a dangerous world. Much more dangerous (to them) then our world.

And don't forget that the US has been the only country that has used nuked another country. We've destroyed a number of countries in other ways, too.

No, this stuff is pure risk analysis. Are they really crazy enough to destroy another country? If so, then it makes sense to be able to defend yourself at all costs. And this is what Iran is trying to do!

Comment: ARP Networks (Score 3, Informative) 375

by mikem170 (#38478054) Attached to: Ask Slashdot: Best Inexpensive VPS Provider?

I'm with ARP Networks and I have a US $10 per month VPS with 256 megs memory, 4 gigs of drive space, and 100 gigs of network use on a 100 meg ethernet. (All upgradable, for a cost.)

I installed a current version of OpenBSD from a list of system images they have. I have console access, a fixed ip, and root. I run ssh and a web server, etc. I've been running this VPS for a couple of years and I'm very happy with it.

Comment: Re:Tether detector can see your DNS requests (Score 1) 123

by mikem170 (#38380840) Attached to: Verizon's Galaxy Nexus To Launch Tomorrow

carrier un-detectable tethering

Hard to do, unless you do everything though ssh - which is fun!. I'm able to run ssh server and client apps on my cyanogen mod'd rooted Samsung Galaxy II S (with some quirks, but supporting tunneling and both ipv4 and ipv6).

I start an ssh client from my phone to desktop. The vnc port from my desktop is forwarded to my phone. I ipv6 ssh from my tethered laptop to my phone, forwarding that vnc port to my laptop. The from the laptop I vnc to my pc. All the phone company would see is ssh from the phone to my pc. They wouldn't see the encapsulated forwarded traffic. There would be no leaking dns traffic - nothing (only vnc inside of ssh). The packet sizes may reveal tethering (i.e. fragmented encapsulated packets, perhaps? unless the mtu's were adjusted, which might be possible a couple of ways but might be inconvenient...)

I have not had a problem with AT&T. I have a pay as you go plan. I pay for my data, and I get what they sell me. They've never asked me what I'm doing with it. A few years ago T-Mobile changed the price of my data plan when I told them the model of my phone - because it was a smart phone. I left T-Mobile over that.

Data is data - tethered or not.

Comment: Re:Government responsible says, 'Look, commies'. (Score 1) 281

by mikem170 (#38336342) Attached to: Was Russia Behind Stuxnet?

> Iran knows the clock is ticking and if they don't have the bomb some neocon is gonna come into power and squash them like a bug, if for no other reason than they don't get along with Israel and too many neocons are of the "Jesus won't come back if there aren't Jews in Zion! Come back Jesus come back!" variety. i don't know what is scarier, the Mullahs wanting a bomb or the fact that one of the most highly weaponized countries in the west have a large power base that believes the ME policy should be based on 1800 year old words written on a sheep's ass by goat herders about some 2000+ year old dead guy and how he needs a certain race in a certain place so he has a spot to park his fluffy white cloud.

>> What you seem to disregard is that Iran is now ruled exclusively by a religious leader [wikipedia.org], and that his dog Ahmadinejad doesn't just not get along with Israel, but calls out for the destruction of Israel pretty much any time there's an open microphone nearby. He does so even though Israel has never done anything bad to Iran and the two countries even had strong military relations prior to 1979.

Sounds like both countries have issues.

Comment: decision for each city (Score 4, Insightful) 861

by mikem170 (#38227322) Attached to: Should Composting Be Mandatory In US Cities?

I think that's a great idea, if the decision is made on a city-by-city basis. I'm in favor of each municipality making this decision for themselves.

I'm opposed to a federal mandate to do this. It should be a local decision. This avoids a lot of potential future problems.

If it's a good thing, it will be copied. Just like the article says is already happening.

The first Rotarian was the first man to call John the Baptist "Jack." -- H.L. Mencken

Working...