Slashdot is powered by your submissions, so send in your scoop


Forgot your password?
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×

Comment It's not new, most servers had this years ago... (Score 2) 368

This is not new & lots of others sell similar functionality Dell DRAC, HP ILO... Those usually have dedicated Ethernet ports, but generally function the same way. I've been helping our workstation guys roll out Intell vPro for remote administration of laptops & workstations. It operates in a powered down state & can do 802.1x authention to the network while the OS is powered down. So ya, there is definately an out of band processor there that can wake the system up & do remote control type stuff. It's a feature Intel is selling & marketing.

Can't comment on the ability of it to do arbitrary memory reads & what not, but that isn't suprising in thoery. It's much less scary than the article is making it out to be, although it is another attack surface to concerned with just like RDP or SSH.

Comment Remove access ASAP (Score 4, Informative) 279

Removing access immediately is important for 2 reasons. The first is obviously security. Then 2nd is figuring out what he does & making sure somebody else has that access & knowledge.

If he's still in the office & gets a call or something to fix an issue it will have to get bounced to somebody else. You'll have him available to do knowledge transfer on what he use to have access to do. If he's not in the office, but still getting paid he's still available for knowledge transfer. If he's past his 2 weeks notice, he has 0 obligation to assist you guys or provide any knowledge & training to his former employers.

Whenever I give notice I expect to loose my administrative access pretty much immediately. I've already backed up anything personal. I feel no disrespect when it happens. Seriously? Boho, you are giving me 2 weeks of paid vacation time, cry me a river. It's slightly annoying if I'm still around for those 2 weeks with no privileges to do anything, but I know exactly why they have been removed. Being ostracized is one thing (and not really kosher), but merely having admin credentials revoked should be expected.

As far as a security issue goes, any competent disgruntled sysadmin has already done the done the damage or set the logic bomb before they have given their notice. Still, better safe than sorry.

Comment Re:NameCheap (Score 1) 295

I haven't gotten around do doing 2fa with them (shame on me, although I haven't logged in in ages as name registration for a couple personal domains doesn't really require any ongoing maintnance), but have been using Gandi for years. They have very good privacy & rights policies (you own your domain, not the registrar owns it on your behalf type junk). Not the cheapest, but good from the security, nerdy & rights minded Slashdot crowd.

Comment Oddly enough I just said no (Score 1) 209

Yesterday I just changed me & my wife from our AT&T legacy unlimited plans to a shared 10gb plan (think it's doubled to 20gb due to some promo). I think we'll end up saving over $30 a month and going from 1400 minutes to unlimited. I looked at the stats & combined in the past year our biggest usage month was about 5gb.

Not sure if you can look up the data usage on Verizon, but you can find it for AT&T. If your not using much compared to a capped pan & there is a savings, your probably better off changing.

I noticed the AT&T app now permits tethering to boot (not that it mattered, I'm rooted & running Cyanogen, so could tether natively, although in theory they could still detect that & do something about it, I never abused it though).

Comment DEFcon (Score 1) 131

I leave for DEFcon 22 tomorrow...

Yes it's a hacker convention & not an IT convention, but it's the best conference I've ever been to. I get exponentially more out of DEFcon ($220) than I got out of RSA (over $2,000). If money was no object I'd still recommend DEFcon. It makes you think about technology in ways you never have before. It trains you to think about bending technology to your will however you can (the classic definition of hacking), not just security related exploits.

My management usually sees the value in it. They usually tell their management it's just a computer security conference as it has negative connotations to a lot of people though. The DEFcon network is the most hostile one in the world, so you may want to stay off of it (I don't), but really things aren't that bad.

Comment Band together & offer money (Score 2) 324

A ways back when I was still living with my parents, a neighbor moved in & was getting really excited about trying to get cable (TV) into the neighborhood. A main line passed by our street with a dozen houses on it. Not sure what all he did, but ended up getting the cable company to agree to put it in. The deal was he had to get a certain number of houses (half maybe) to cough up a couple hundred bucks & agree to some relatively normal 1 or 2 year commitment. He did & we ended up getting cable a little while later. A few years after I moved out the cable company ended up getting bought out & offering Internet access (don't remember if it was in that order, it was a good number of years ago). Basically you have to make it worth their while. Find out what their current rates are & see if you can get a significant number of your neighbors to promise to commit to a 1 or 2 year plan if the company will put in the new cable plant. That might get their attention. The cost of cable/wire is pretty cheap to the cost of labor & right of way issues. You might want to try & get fibre rather than coax put in.

Comment Re:Think About It This Way (Score 1) 656

GPA may matter for your first job out of college, but that's about it. 10+ years into my IT career I barely even hear "Do you have a degree?" (Finally finished it a few months back) much less "What is you degree in?". A degree is more or less a check-box at this point, they could care less if it was in Underwater Basket-weaving, just that they can tick the "Has bachelors degree" check-box.

Comment Re:depends on what you're going into (Score 1, Informative) 656

I had this discussion with some developers at my previous job, and their consensus was they didn't really use all that much advanced math compared to what is required on most college degrees. These developers were writing satellite simulation software & dealing with orbital mechanics... I tend to think that colleges require advanced math to make things hard & because it's advanced, not for practical reasons for 90% of their students. Yet another reason college tuition is skyrocketing & a degree is loosing value compared to more specific certs.

Comment Re:No thanks (Score 2) 384

I get to Slashdot via my RSS feed, which goes directly to the article. The pop-up then boots me back to the root website rather than staying on the article I was trying to view if I tell it to use mobile. On Android, if you scroll down at all, you can no longer click on the mobile or classic buttons too, extremely annoying. You have to scroll up to the top of the page to be able to click on the buttons & make it go away, despite the pop-up scrolling down the page to cover stuff up.

Comment I met mine on Everquest (Score 2) 550

I met my wife playing Everquest... We got married a couple years later & are about to celebrate our 10th anniversary this summer. Some people just don't find some things entertaining (think cliche geeks & sports), so sometimes you have to just luck into it at the start. A word of warning though... When getting her to play CounterStrike at a LAN party, be careful. No matter how much you & the other guys are trash talking each other, the same rules don't apply to her. For example when she brings a knife to a gun fight & shanks you with it, responding with "You f*&#ing b*%@h!!!" is bad. She will never play CounterStrike again & you will still be hearing about it many years later.

Comment Re:US Metric System (Score 1) 1387

How is Fahrenheit related to the human body temp? Because the normal human body temp is close to 100? That's a stretch. Water is the most abundant resource we have on earth, at least in terms of surface coverage. Most drivers deal with freezing water all the time, it's very relevant to know when the road is wet vs. icy.

Comment Re:When (Score 1) 292

The problem is science & engineering types tend to go for science & engineering jobs. Politicians & those with good social skills or massive egos tend to run for office. The whole political process is biased towards the wrong type of qualifications. You can't fault the voters for picking an idiot when their only options are dumb & dumber.

Comment Re:CompTIA Certifications (Score 1) 186

As somebody who has helped define the objectives for & write questions for some CompTIA exams, you are in the right ballpark, but not quite right. CompTIA targets most of their exams as entry level exams, for somebody who has been doing workstation (A+), basic server (Server+), Linux (Linux+), etc. for about a year. They are not meant to prove you are an expert on the subject, just prove you probably know the basics. My personal opinion is a cert will never get you a job, but they might get you the interview. They are good for getting past HR or automated filters who might not know UNIX from Perl, but can tick off requirements based on certs. Also, all things considered, somebody with a cert has a slightly higher chance of knowing their stuff. Of course you have to be able to prove it in the interview when confronted by knowledgeable people.

Slashdot Top Deals

Refreshed by a brief blackout, I got to my feet and went next door. -- Martin Amis, _Money_