274 posts • joined 18 May 2007
"It’s important to note that in the tests where the virus lived for days, they were kept in the dark, at low temperatures, around 4 degrees Celsius, which helped the viruses survive."
At room tempurature or above, and/or any exposure to UV, the lifetime on a hard surface is *minutes* not hours. UV and standard chlorinated cleaners will shatter the exposed DNA of this virus. Hell, lye based soaps will do the job as well. Cloth or soft surfaces, once the material dries, there are no transmission vectors remaining.
As noted, getting vital fluids directly *on* you is the method. -- I'll conceded that someone sneezes directly in your face, transmission is possible.
There are a *crapton* of VERY bad news articles going around that misquote a study that found that the virus could live for *days* on hard surfaces. The quote above is the missing element.
Unless you happen to have been in western africa, or one one of the two flights between Cleveland and Dallas, you have nothing to be terrified about.
To be safe:
Wash your hands regularly and DONT touch your face when about in public. (its hard. try to count how often you touch your face in the day)
so done with the ebola panic syndrome.
amongst all the other OMG PANIC crap that's been falling out of the mainstream media of late.
1) im in IT. If there's the remotest possibility that there is an actively infected ebola patient in my country that has NOT been diagnosed, I can work from home. If they HAVE been diagnosed, they will NOT be wandering about leaving a trail of infected zombie patients behind them.
2) SARs taught a good percentage of the population in my country about hand washing. (okay - not all but better than 10%.)
3) Once I'm out of the house I'm not in the habit of touching my face.
4) You have to get boogers, spit, blood, wee-wee or poop from the actively infected patient into your mouth, your nose, your eyes, or into an open wound on your body.
sweat has been dismissed as a transmission vector. Tears *might* qualify, however the saline and any exposure to UV closes that one down quickly - it is considered an equal risk, but unlikely.
Exposure in this case is not being in the same building/aircraft, but wearing someone else's bodily fluids. Most of us tend not to be comfortable with dismissing someone else's blood/vomit/poop/urine on our bodies, thus will be sufficiently aware of that risk, and likely to seek appropriate medical support.
YOU WILL NOT GET EBOLA BECAUSE SOMEONE SNEEZED ON YOUR AIRPLANE! even if he is one of the dumbest human beings alive.
Re: Rumours are untrue
On the gripping hand, however, we do have a few observational craft floating around out there. One might be available to give it a closer look.
(mine's the one with the motie coffee pot in the pocket)
did anyone else
"Many miles away something crawls from the slime, at the bottom of a dark Scottish lake"
(mines the one with a Denon DP29F in the oversized pocket)
DrDre and lousy acoustics.
Will.I.am and Not.a.phone.
I Gotta Feeling this will be sold soon.
That will be 4 Fears per core please.
Re: The Hype is Strong in This One
Ayyyyyyyyyup. That teamviewer there. yupyup.
/unlocks the gun cabinet under the desk.
(grumpy old sysadmin)
@Andy The Hat
I think your post will be staggeringly popular in this manor, squire.
Oh look, theres a neat building over there in Paris. I'll steal the plans and build one here.
Please re-read the article the pivot is that the industries in which the largest losses were recorded are the industries in which there is little to no piracy active.
While there is argument that "artists loose revenue" with piracy, the point is that the money still gets spent in the economy. Thus his statement that the pirates aren't pulling money out of the economy.
Personal opinion, "artists loose revenue" still applies in the current situation, but they're probably loosing more to the MPIAA/RIAA/(whichever organization collects the revenue/sets the rates) than they really are loosing to piracy.
"We already know that drivers can
miss hit stop signs, pedestrians and other cars while using voice technologies because their minds are not fully focused on the road ahead,” said AAA CEO Bob Darbelnet.
But then, perhaps I'm just too damn blunt.
turn it off, put it down, and just #%#$%^ drive dammit!!!!!!!!!!!!!
missed on .taxi.
I guess thats an "Uber" fail?
/ducks and runs.
Re: I'm facing a problem with Facebook's privacy settings...
I suspect (insert appropriate photo edit software) would engender a chuckle in the long run.
in the category of "what can go wrong" this week....
(In the voice of clippy)
"Oh, I see you're trying to be anonymous on Facebook......."
And of course, they will make a phone app as well.....
Nope, nothing could go wrong there..
Re: adobe digital editions
Re: unauthorized snooping by noobs
sorry -- misread that as unauthorized snooping for boobs.
dunno what came over me there.
(the rumpled, grubby one)
Re: Olivetti and Time Travel
"Who the hell decided that we need to do....."
But being willing to stand up and ADMIT that you screwed up in the past (or even right this moment) is *FAR* more important than putting a lead shield around your ego.
Re: Oh please...
Agree - avahi is crap that causes more problems than it solves in most cases. I pull it out the instant I can.
Pulse has been a serious PITA... oddly of late I've found it seems to be getting its act together -- I wonder why...... (checks commits)
But then I have been an *anything* but gnome user for ages.
systemd does appear to be a cancer on *nix, I will not install a distro that uses it...
Best get your Slackware on then. Or Gentoo.
Sadly RHEL7 is infected.
I don't need Toppins opinion, mine's even lower and more vilifying.
Poettering's crew are ignoring pleas from app teams, system admins, and environment managers, insisting on tying non server toolkits into a core server process and then dropping the ball on bug filings "because it doesn't meet our agenda" (I've seen that on a closed bug once, I'll see if I can find the BZ entry)
Personally as an SA, having had the exposure through F18/19/20 I can see nightmares ahead of us on a scale that staggers the imagination. .......... (ahhhhhhhhhh I could go on for quite some time, but that would make me an intolerant, ignorant empowered white male egotist in some dev's mind. Instead of a grumpy old bastard.)
Re: Simple solutions ...
Don't attend gunfight.
Nuke from orbit.
Proceed to evacuate the system. Sadly, I'm too close to the north end of the problem to implement said solution.
Re: You can't do that
I'll agree with UKgnome. 99% of the "compliance issues" I've seen have had nothing to do with actual legal compliance, mostly "But our security people said......" compliance. That said, there are unfortunately some security types that have been handed a mandate, and thus have become bulls in the proverbial china shop.
On the other side, I've mined data out of application transaction streams that was blatantly clearly violating essential security rules and had the app team come back with "Oh, no, there is no such data in our application, you must have seen something else." For MONTHS after the fact. Only to have the DSS third party analysis agree with my findings.
Most of the Sysadmins I've met have the little grey cells to read the law so that they have a chance. Few of them are willing to stand up and wave the document around, I suspect due more to the current atmosphere in IT than anything else.
I'm seeing more "dont rock the boat" attitude lately than I've seen in years and I'm not 100% sure *why*.
Mines the one on the far side of the canoe, hold on while I stand up and grab it.
Re: Same as MS & USA judge
US court finding an Argentine Court in contempt of court?
Re: These Gauls are crazy.
Does that worm sauce include the kitty giblets or not?
You might deter the kittehs and wurms, but if you're doing that in france you might end up with a crowd around your pan.
(The one with the funny face mask and a handcart in the pocket please)
Gnome is terrible of late.
But who the hell installs desktop code on server hardware?
systemd *shudder* but I haven't tangled with rhel7 yet. 6 still suffices for now. I don't relish digging into startup issues on hosts where we spawn 15 or 20 apache instances because the app teams are lazy, and have to coordinate that and the application instances.
On my work laptop, KDE, not gnome and fedora20. And I get to work on my systemd paranoia.
Gentoo is still my personal preference.
I rather like the bits of CloudForms I've seen in the presentations. It rather looks to me like they could do very very good things with the ideas there.
(grumpy old guy, cause thats just me these days)
I have a feeling that it's a combination of hipsters, skinny jeans and oversized phones....
If the iPhone 6plus rids the world of
skinny jeanshipsters it will have done us all a huge favour !
Only reason I haven't hunted one down yet is that I tend to use my phone left handed, and it strikes me that I'd want the curve on the left side not right... but then, I'm weird that way.
(grumpy old fart 'cause I'm hunting down a problem on a winders DB server. *shudder*)
Norwich has an apple store?
Last I looked it was a table on the side of the road.
but thats my Norwich. And those apples DONT bend. They mush. And make good cider too.
Icahn dissasemble #5
(although I'm sure its more than 5 he's hit I'm sure there are some that will get it)
Lets see what happens to the rest of the property in the package. I do not hold my breath.
Re: More patches....
Say it with me now folks:
1500 to 1600 active systems, no sanity in trying to do each one manually. Test against the app layer in a controlled environment, validate results and push it out with automation. Including the validation.
Hmmm. Parallel for a bank would be:
While you are on your way to work try to find a homeless person who would like a mortgage they can't afford.
>>> end of cycle >>>
"we need a bailout!!"
(okay yeah, I'm carrying on a bit aren't I?)
Re: Straight outta Nuland
Governments - looking out for themselves since the Assyrian empire.
Bash patches and the flack.
I've been following the discussions that this group of folks are having, on the mailing list. Quite closely.
In our case (approximately 1600 linux hosts, all RHEL, covering 4->6 in numerous set ups, we've had 0 issues with the patches, we waited until the second fix came out before we pushed, and cfengine did the job it was built for so there was no overtime involved. The patch does not require a reboot, but in most cases we did an apache (or other) graceful restart, just to play it safe.
Long and short - the issue was discovered, and about 4 days later a set of suggested fixes were discussed, and the first set of fixes was put in place, those were tested and one tester found an additional unique path that had a similar flaw. That opened up a new set of discussions because it was a substantially different path through the code. The debate on how to handle that took much longer since it required much more stringent logic to avoid breaking things in current use. If you went and read the list to see what they were discussing, you'd find that the secondary fix is in no way easy, and despite us already having a fix, will result in much larger code changes in the future.
What scares the crap out of me on this front is all those landfill wifi routers out there that use cgi - many of them DONT use bash, but I'll bet that there will be a crapton that do and have lousy coding practices, and will NOT be updated anytime soon. Worm time anyone? *that* will be a pain in the tuchus when it comes down.
These guys are bright, solid coders, applying solid common sense and strong skills to fix the problem, without breaking things that work the way they should. Not an easy job folks.
We can predict where the terrorists will sit on the plane.
And just shoot those seats.
what could go wrong?
VC's are part of the disease. Wallstreet is the pandemic
I'll just re-iterate my previous comment from here:
Re: Smartphone vulnerability?
I was being fairly specific -- I've rooted my phone and put Cyanogen on it - I checked the other 4 phones in the house last night.
a) default shell in all cases is /bin/sh - not bash.
b) bash is present on my Cyanogen unit *and* on the moto (on the moto, it *might* have been installed by an app the young fella installed)
*and* Cyanogen pushed an update last night that has the *first* patch to bash.
Rooted iphone has something *called* bash on it but it does not appear to be a binary.
Re: Smartphone vulnerability?
/wanders off to go fiddle some more --
(for the record, most versions of weblogic have some sort of sanity checking for data strings, but if you happen to *know* the checking done....... it can get ugly fast.)
Damn. I can point out that bash on Cyanogen 11.(2) is vulnerable as far as the default test goes.
Re: What about Windows
if you have bash installed in there anywhere, you'll want to patch it.
And yes, I have windows servers with bash that have to be patched. Its not available yet but it will be out soon.
Re: shell shocked admins?
-- Process p = Runtime.getRuntime().exec("bash -c '" + injectCommandLikeABeachedWhale() + '"); --
Thanks for that -- playing with it now.
Re: shell shocked admins?
I understand that at this point it's too late?
I suppose that depends on what you do to strip it - check your sshd_config for AcceptEnv objects.
I accept that not everyone is running sshd updated for that - but in our case we are.
shell shocked admins?
I think I've got my head wrapped around the worst of this one:
a) in the case of ssh calling bash, this is not an issue until after authentication has completed, ie, you cannot (at the moment at least from what I've read and tested) *spawn* a shell without completing the authentication process. -> no open sewer there that would have opened a pit to hell.
With ssh the issue is the "ForcedCommand" functionality - authentication completes, and with some creativity a user COULD pass in a function definition that would spawn them a shell.
I've about 40 of these accounts out there and I don't know about anyone else, but I wipe the environment at the top of the script intentionally ... and then parse the hell out of the command coming in to make sure it qualifies.
b) HOWEVER - in cases where services are exposed to the network, where those services *can* accept input from outside, and where those services then *can* call or invoke a shell with that input (unchecked) -
You haz a great big cheezburger.
So - at least in my *managed* apache environments we don't allow cgi, and php is heavily limited, we don't have any *screaming* issues -- I've found a couple of things that made me go *ick* but nothing terrifying.
I don't do the DHCP, but its on BSD and should not have an issue
things like weblogic and jboss at this point make things in my gut go ickky. I seem to recall an input in Java 1.5.(something) that could be used to fork a shell out of a jvm.....
We have a few "packaged" apache solutions. *sigh* no comment. 3rd party vendors getting calls to investigate those.
Last check of the patched RH systems indicates that the issue is not 100% resolved yet - and my fedora systems arent fixed yet either. Its gonna be a hella long weekend for some admins.
Simple really, statistics
I'd hate to have people look at me and say, 'Well how come you can't save this kid,' 'How come you can't do this thing
Please provide statistics that indicate that the FBI has saved hundreds of kids based on evidence found on other persons phones.
Ahhhhhhhhhhhhh. I see. Never happened. Okay.
*ding dong* <st>avon</st> spacex calling
@JDX -- might be interesting to see how quickly they adapt to (near 0) G. Fruitflies aren't too bright to start with. (contemplates neon painted fuitflies in (near 0) G under a blacklight) ......
@Irongut. considering the capabilities it has, it wouldn't denigrate it by labelling it a baseball mitt. But I'll grant the license in context.
Always nice to see another successful launch and delivery. I really would like to see the first "controlled" landing in the first person, hell I wouldn't mind being on one of the early passenger ready modules either, but I seriously doubt they'd need me to do an "on site" visit.
Re: Once some players drop out then....
doesn't butter any parsnips - or direct capital.
Wall street might disgree with you on that one - although profit is the principle driver, when profits in general are low, the target with the largest market segment gets the pip, usually since it has the greatest chance of ticking the profit box.
fibre cable undersea splicing jobs.
I thought we had sharks with frikkin lazers man! I mean, teeth. Lazers. Job done no?
Oh look. There's a free port on that there Sonet tree. 'click'. pokes at keyboard.
What? yup, we're all good here.
Re: What a total rip-off!
CST 100 does come down on land, using airbags to cushion the landing.
What a wonderful way for the americans to recycle used polititcians!
Re: USA Freedom Act?
And you thought there was some OTHER reason GOOGLE are wanting this in place???????
Anything that's likely to make your (meta) data safer on line is likely to take away something google is making money from selling to someone else.
I *like* this idea
COBOL on linux. Even if its targetted at SUSE and I run RH.
Rock solid port platform for legacy cruft. Heck, I can even move some stuff off HPUX to linux when they get this wrapped up nicely.
And perhaps we'll get something better than TN3270 for linux.
EFCC simply said it is a "new generation bank."
As in "formed out of money farmed from email suckers"
Apparently this lot missed the "security requirements" documents, at a guess they got lost i the "spam folder". Irony at its finest.
printer lp0 on fire
can now be updated:
"printer lp0, We're ALL DOOMED I tell ya...."
You can tune SAS/IDE/SSA disks at the host level. No SAN needed.
I'm fiddling out network solutions for the hadoop here. Hardware is relatively cheap now, storage is dirt cheap now, but dear lord the networking to get it all glued together well is horrendously expensive. And god help you if you don't grok your storage performance tuning.
All that even before you bring in the analytics, and in that case you need folks that understand WHERE the data is relevant, not just what it might be good for. At this point I get the feeling that those of us actually doing the work have aquired the appearance of wizards, and we're expected to pull all sorts of strange things out of ..... well a hat would be polite.
(grumpy old wizard, no windows here)
(we NEED a pointy hat icon)
- Crawling from the Wreckage Want a more fuel efficient car? Then redesign it – here's how
- Review Xperia Z3: Crikey, Sony – ANOTHER flagship phondleslab?
- Human spaceships dodge ALIEN BODY skimming Mars
- Ex-US Navy fighter pilot MIT prof: Drones beat humans - I should know
- Downrange Are you a gun owner? Let us in OR ELSE, say Blighty's top cops