Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 internet speed test! ×

Comment Re: I knew it (Score 1) 94

No dumbass, GG is going into production again.
You're so out of touch. Glassholes was just a smear campaign started by drunk people. Who cares what they think?
Even with the smear GG was a success and is now being produced again.

You seem to lack reading comprehension

"So did the Samsung Note7 and look how that turned out.. Just because something goes in to production and even enters the market doesn't preclude it from being a failure."

Comment Re:That's nice, but... (Score 3, Insightful) 76

Most switches support ACLs on all services, and/or on switch SVIs (if you don't have prohibitively many of those), and/or CoPP, so you can tell the switch not to talk to anything but your management stations. You just have to set things up so you can alter those ACLs en-masse when needed. No need for a firewall, really, as long as you aren't using ridiculous utilities that do not belong on a switch in the first place.

That said, there's pretty much zero reason to use telnet these days, and even the last vestiges of FTP and TFTP are starting to become unnecessary as more switch facilities are supporting SCP or (sigh) SFTP. Sigh on the latter because you really are putting a lot of trust in the other end of the connection because SFTP subprotocol code is not production quality code, even in the openSSH tree. But at least someone has to actually own the endpoint to get at it.

Yes, I understand that, that's great, a lot of that is best practice and in all my years and all the companies I've worked for and systems I've helped migrated, worked on, have managed, etc. I can count on one hand the number of them that were properly configured with ACLs blocking of stuff from user segments, properly configured interconnectivity, complex passwords, clear text protocls being fully off, etc. Not allowing this station etc. And you think your management computers are safe? not really. I've seen plenty of bastion systems being used as source mgmt points for all manner of systems and lazy engineers using web browsers on them to download whatever utility or tool they need. Just because you've locked out your stuff to a bastion server doesn't mean it's protected, it just means your compromise point is now actually pinpointed to a singular or group of devices. Lucky me. Less field work to do.

That's all great on paper, but it's not as wide-spread in most places as you'd think. I've met many CCIEs that are outright lazy when it comes to locking down switching and routing connections because it makes their job even harder to deal with the ever changing zones, lans, nodes, and whatever wildass hair mgmt gets in their butt that week about which people/persons "need" access to what and when.

I use firewall generically here and not literally a Firewall as well.

Comment Re:That's nice, but... (Score 4, Interesting) 76

That means someone would have to be dumb enough to
1) Have the mgmt of the switch be publicly available
2) Have Telnet enabled.

Don't get me wrong, it's a bad bug. But a security-minded admin should not have these problems.

Err.. yes/no..

If I was going to attempt to exploit something like this, I'd assume most would be inaccessible from the internet as a general use or would be white listed only..

What I WOULD do is use this in conjuction with a machine level hack/compromise inside their network and then run amuk from there.. That's much easier to do and less will have full firewall off from within their networks from all PC segments.

Comment Re: I knew it (Score 1) 94

Google Glass wasn't a failure dumbshit.
It's literally going into production already.

So did the Samsung Note7 and look how that turned out.. Just because something goes in to production and even enters the market doesn't preclude it from being a failure.

Google Glass was outright HATED by many.. To the point of people wearing them being physically assaulted, yelled out and called Glassholes.

Comment Re:$700 GTFO (Score 1) 151

Who in their right mind spends that much for a video card? Seriously, I want to know. Unless you are a trust fund PC master race worshiper, why would you sink 2x the cost of a console into a card that will be obsolete in a year or two?

Some people seem to have completely lost sight of the whole point of playing games: it is to have fun...

Well, for some of us. Spending 700.00 on something like that isn't an issue. I know plenty of people that spend that kind of money on a 1 time sporting event, concert, etc. and that's only a one time use. While the 1080Ti won't be top-dog for long, it's not going to be useless in 1 calendar year. I just upgraded from a 970GTX to a 1070GTX for my HTC VR rig, but had been using my 970 for years now and it was just fine.

Comment Re:But VR's still cool, right? RIGHT???? (Score 1) 399

Depending on your living room it's not overly hard to clear out the needed space. I move two small tables and flip up the ottoman (takes 2m) and I'm set. My room-scale light houses are mounted high up on the walls and just look like satellite speakers. I have a 4.0m x 3.1m space just like that. It's really not all that hard to do for me and is actually less annoying and time consuming than dragging out my PlaySeat simseat, pedals and wheel.

The game quality needs to come up, but that's partly due to pixel density in the headset.. They all still have the screen door effect to some extent, but I rather like my HTC Vive and am looking forward to getting the upgraded headstrap and the tracker.

Comment Re:Store-and-forward spyware (Score 1) 35

Eh, to be fair. There are many applications that have an offline mode that will store-and-forward your comments, replies, posts, etc. once signal is reacquired.

So now Google's excuse for doing evil is "Others do evil too"?

Any pretense of having an ethical standing is long gone at Google. They don't even bother to hide it anymore.

You're an idiot. You're sending a search request to a provider, how the f* do you think they're going to give you results if it doesn't know what you're looking for? Also, if you think for one second that your data in transit to something like that isn't already affected by a MITM or copying or indexing, etc. then you're naive and just complaining to complain.

Comment Re:Store-and-forward spyware (Score 1) 35

"There are many applications that have an offline mode that will store-and-forward your comments, replies, posts, etc. once signal is reacquired."

No there aren't. Most "Apps" are pointless shells around a HTTP REST API. Basically a glorified browser.

The only App I've known to do this was G+ which will hang onto your posts until the connection comes back. But even then, they're only doing it because Google is/was desperate for posts to G+, and it wasn't very reliable anyway...

Yes, there are. Just because you don't know of them or use them doesn't mean they don't exist. Off the top of my head, the Facebook mobile app will absolutely store you comments until you're online and then post for them.

Slashdot Top Deals

Why won't sharks eat lawyers? Professional courtesy.

Working...