MrZaius - Slashdot User

Comment Re:Solution: Public Key Auth (Score 1) 327

by MrZaius on Monday December 22, 2008 @09:33AM (#26199289) Attached to: The Slow Bruteforce Botnet(s) May Be Learning

So then brute force attacks would be preceded by an open port check?

Unless you use some kind of port knocking attempt, that wouldn't solve much of anything for long.

Two points:
1: Port knocking or single-packet authentication really paired with the aforementioned port change really is a remarkably effective solution.

2: The article is discussing attempts to break into a large mass of computers, not targeted attacks on a single box. To add the considerable increase in overhead and visibility inherent in running port scans over a public network would be quite expensive, both in terms of the decrease in the number of boxes you can hit per minute and the risk of nodes in the botnet being cleaned up and removed sooner than they might otherwise have been. The former is doubly troubling to a botnet owner when you consider the cost of trying to identify the protocol in use on all the open ports other than 22, or of wasting an attempt to open a TCP connection on each of the ports.

Submission + - Suprnova.org Is About To Return

Submitted by Anonymous Coward on Thursday August 02, 2007 @04:29PM

An anonymous reader writes: The legendary BitTorrent site Suprnova.org will be back in action soon. Sloncek, the former owner of suprnova.org decided to donate the domain to The Pirate Bay lads, who will relaunch the site in a few days, staying true to its original design. The return of a Legend.

Submission + - SuprNova.org Transferred to The Pirate Bay (slyck.com)

Submitted by Anonymous Coward on Thursday August 02, 2007 @04:28PM

An anonymous reader writes: Andrej Preston, ex-administrator of legendary BitTorrent SuprNova.org, has turned over the keys to The Pirate Bay.

"My deal with [The Pirate Bay] was that the role of SuprNova can't change much," he tells Slyck.com. "It needs to be community orientated, but I hope they make some updates the SuprNova was sooo missing. But what they will do, it's not my thing to decide anymore. But I know they will do [well] and will try to keep the community spirit running."

Submission + - One man's anguish installing Vista

Submitted by

netbuzz

on Friday March 02, 2007 @12:05PM

netbuzz writes: "This hellish tale of installing Vista on one PC won't exactly bring smiles to those who have to install it on thousands.

http://www.networkworld.com/community/?q=node/1199 5"

Submission + - YouTube: the presidential election X Factor

Submitted by

coondoggie

on Friday March 02, 2007 @11:34AM

coondoggie writes: "YouTube this week announced You Choose '08, where voters can find the official and unofficial Web videos from a host of presidential candidates, including Hillary Clinton, Barack Obama, John McCain and John Edwards. Most of the videos are of the official variety but there are a fair number of the ones that the candidates would probably not like you to keep watching. For example, Sen. Hillary Clinton's off-key "Star-Spangled Banner", John Edwards prepping his hair for a TV appearance, John McCain sleeping (there's also a classic of Sen. Ted Kennedy sleeping during one of President George Bush's speeches and of course Howard Dean's rant that likely cost him the Democratic nomination in 2004). http://www.networkworld.com/community/?q=node/1199 3"

Submission + - Study contradicts RIAA on cause of CD sales drop

Submitted by IBuyManyCd on Saturday February 24, 2007 @01:16PM

IBuyManyCd writes: A new research paper (PDF) published in the Journal of Political Economy contradicts the RIAA claim that illegal downloading is the main reason for the 25% drop in CD sales.
A quick overview of the article is presented on the University of Chicago Press site: Downloads are not the primary reason for the decline in music sales. "Researchers from Harvard and Kansas find that impact of P2P sharing on U.S. music sales is "statistically indistinguishable from zero".
The overview also quotes:
"We match an extensive sample of downloads to U.S. sales for a large number of albums", write Felix Oberholzer-Gee (Harvard University) and Koleman Strumpf (University of Kansas). "While file sharers downloaded billions of files in 2002, the consequences for the industry amounted to no more than 0.7% of sales."
The author compiled data on nearly 50,000 music downloads of popular songs (on pop charts) and across eleven genre from 2 major P2P servers. They then compared these with the same pop chart songs CD sales, "it is striking to see that more than 60% of the songs in our sample are never downloaded".
This underlines what many online users have lived first hand. If an album is good enough, reaching the pop chart, it will gladly be bought by fans.

Submission + - PS3 not backwards compatible in Europe

Submitted by gormanly on Saturday February 24, 2007 @09:17AM

gormanly writes: In the build-up to the rest of the world launch of the PlayStation 3, Sony have removed the backwards compatibility to PS2 from the hardware, probably in order to reduce the per-unit loss they're making. Will this new-spec PS3 also appear in US and Japanese stores, and if so will the first batch of PS3s rise in value on auction sites as they become harder to find?

Sony Computer Entertainment Europe (SCEE) today announced that PLAYSTATION®3 (PS3(TM)) to be launched in Europe, Middle East, Africa and Australasia on 23rd March 2007 would utilise a new hardware specification. [...] It also embodies a new combination of hardware and software emulation which will enable PS3 to be compatible with a broad range of original PlayStation® (PS) titles and a limited range of PlayStation®2 (PS2) titles.

Submission + - Trivial Remote Exploit on Sun Solaris 10

Submitted by

Jeremy Kister

on Monday February 12, 2007 @01:01AM

Jeremy Kister writes: "Errata Security reports about a bug found in the telnet daemon of Solaris 10. From the article:

Basically if you pass a "-fusername" as an argument to the -l option you get full access to the OS as the user specified. In my example I do it as bin but it worked for regular users, just not for root. This combined with a reliable local privilege escalation exploit would be devastating. Expect mass scanning and possibly the widespread exploitation of this vulnerability.

"

Submission + - Do current Copyright laws still allow for backups?

Submitted by Ka D'Argo on Sunday February 11, 2007 @08:55PM

Ka D'Argo writes: I had a conversation with a associate of mine about making backups of software or music cd's. This person says under the new laws with DRM, copyright and fair use, you as a consumer are no longer allowed to copy in anyway such things. I say, as it's been for god knows how long, you are still able to make a backup of something you legally own. Common sense even says, it's yours to do with as you please if you legally own it (aside from distributing copies for example). So what's the deal? Under current laws that may or may not have been updated lately, can a consumer make a backup copy of a piece of software or music cd?

Submission + - Sex-ed the Tex-ed way

Submitted by zoltamatron on Sunday February 11, 2007 @08:21PM

zoltamatron writes: The SF Chronicle is running a story about the Bush administration's abstinence only sex-ed program and how there is no evidence to show that it works any better than the comprehensive education it replaces. Still, California is one of only three states that does not participate in the program that pushes the Texas born curriculum. From the article:

"California took a very progressive approach," [Douglas Kirby] said. "Texas pushed abstinence and made it a little more difficult for teens to receive contraceptives. Pregnancy did go down between 1991 and 2004, but Texas had the second-lowest decline of all states, 19 percent. California had the second-greatest decrease, 46 percent."
The article says there is more than $1 billion in federal money going to these programs.

Slashdot Top Deals