Feeds

* Posts by koolholio

242 posts • joined 3 Mar 2010

Page:

Users rage as Fasthosts virtual servers go titsup... again

koolholio

Any link with their web server would be my question...

Then again, could be an update mishap?

0
0

Police 'stumped' by car thefts using electronic skeleton key

koolholio
Joke

Re: As I was saying

I read that as cat, shall I connect my pets to it too? *hic hic*

0
0

UK gov's troll-finder general says he's hanging up his axe

koolholio
Go

"mainly cite section 127 of the 2003 Communications Act, which outlaws messages that are "grossly offensive or of an indecent, obscene or menacing character"."

I believe that may also cover those of frivolous or vexatious nature... if not, it f'in well should!

0
0

Are you being robbed of sleep by badly designed servers?

koolholio
Pint

Harmony in a network

I dont know whether its specific to servers or network infrastructure, since infrastructure is what servers sit and reply on, so they must somehow work in unison.

Heres a metaphor:

The network is like a road, a server is like a petrol station... where the server gets its oil from is just as important as who it serves, but also the effect it can have on its customers vehicles too.

Dodgy batch (patch) of petrol? :-S Or is it 'the standard', 'the design' or 'the implementation'?

The problem is, if a remote administrator can do something, if not thought about whos doing what and when... its possible for others to do too? :-/

Just a thought of metaphorical proportion?

0
0

Harassed Oracle employee wins case, cops huge legal bill

koolholio
Joke

Wouldn't one need a lawyer/barrister for that also?

0
0
koolholio
WTF?

Re: You takes your chances..........

@Symon

In the UK that could be tricky, since the circumstances of bumping the elbow would be taken into account. Given that presumably, the spilling of the pint is a sub-effect of bumping your elbow and the intention.

Criminal legislation in the UK does somewhat cover this, such as the protection from harassment act / equality act and other legislation may touch upon it (for instance in the computer world, communications act / misuse of computers act / data protection act)

The likelyness is, they would plead not guilty in court, normally, just to bump the cost in a typical 'victory for the victor' duel, which actually then makes it economically unviable from the offset for the average joe that may have to pay for rectification of the matter also (e.g. mental health).

1
1

US House of Representatives passes CISPA by 288-127

koolholio
Joke

"Once you understand the threat, and you understand, the mechanics of 'how', it works"

Yet his 14 year old nephew, didnt understand the mechanics of it....

It's a rarely static threat, so to determine its mechanics is like, likening electricity flow to some cog wheels turning...

Best get the elbow grease at the ready and all turn into mechanics... *shakes head in hands* the irony!

0
0

Publishing ANYTHING on .uk? From now, Big Library gets copies

koolholio
Pirate

Out comes the pragma/cache-control, copyright, doc-class, doc-rights and other applicable meta tags!

0
0

Ancient website from 1999: By Mark Zuckerberg aged 15¾

koolholio
WTF?

Re: Good to see...

Faceparty was the original contender to Myspace...

0
0

IT Pro confession: How I helped in the BIGGEST DDoS OF ALL TIME

koolholio
Boffin

Possible to detect and monitor... but not so easy to filter out

You can capture just dns requests from a dns server itself using a capture filter, such as this one:

"<CONNECTIONTYPE> host <GATEWAYMAC> and src net <LOCALNET/CIDR> or not src net <LOCALNET/CIDR> and port 53" (optionally omitting "and udp" and changing the port if configured differently)

of course you can specify destinations respectively, if you're doing this further upstream by using:

host <IP> or net <IPRANGE/CIDR> or mask <netmask> if its over multiple subnets

Which will capture all requests and responses to and from... Heres where it gets difficult:

You would just need to apply filters to this, using pattern matching for distinguishing characteristics but there may be need for utilising comparisons within the filters.

0
0
koolholio
Boffin

Possible solutions for the opensource community

http://www.ntop.org/products/ndpi/

0
0
koolholio
WTF?

Re: Caching?

so are you saying that TTL, expiry and any cache including an EDNS0 cache timeout are redundant and are of no effect in relation to caches and if that is the case... caches may aswell not exist...

If that is the case, I also think a cached response shouldn't have its own flag assigned to it?

0
0
koolholio
Boffin

Re: Caching?

Or, depending upon your network setup... you could implement the use of a router/switches iptables/netfilter (provided it has --match --hexstring and --algo filters) by matching the request for the recursive flag set on usually UDP packets inbound at a certain offset. I believe iptables/netfilter is included within most linux and unix distros. Zeroshell (a linux based router distro) may even allow you to enter raw commands to utilise this.

Wireshark is useful for finding what offset and the dns query flags--- which is the hex string you wish to filter for... you may also apply a rate limiter using the same patterns, but with the rate respectively.

0
0
koolholio
Boffin

Re: Caching?

*interjects* You would need a method of applying an address answer limit... but then surely this could also be covered by:

http://tools.ietf.org/html/rfc2827 or http://tools.ietf.org/html/bcp38

it says primarily about forged packets, I assume that would be dns spoofing or even related to cache poisoning? Is there a difference between the two?

0
0
koolholio

Re: Here's a workaround on Windows Server

http://support.microsoft.com/kb/198408 <<< theres some hidden gems within!

0
0
koolholio
WTF?

All relational to root

DNS amplification Is more to do with forwarding queries to root servers than recursive lookups, if you wish to have a look through some whitepapers, although recursive lookups can play a part of it, hopefully you enabled DNS spoofing/DNS cache pollution protection too and spool size to limit queries to an adjustable level?

Rate limitation only works so far given it can be small but many... the counter to this is big but few

What about 3 Mobile's dns resolvers that queries/matches the ip listed in the SOA record and checks that against the A record... and will fail to resolve if one cannot be resolved successfully... as is, with section 2.4.2 of here: http://www.iana.org/procedures/nameserver-requirements.html

1
0

ASA says 'unlimited' broadband can have 'moderate' limits on it

koolholio
Coat

"the watchdog believes punters will expect "moderate restrictions" on broadband traffic even when the service has been advertised as "unlimited"."

When the vast majority of service users dont know their left from their right elbows?

1
0

Spotting a Big Data faker as you set up Big Data for someone

koolholio
Childcatcher

One would assume...

That this model would work, if these three conditions return true...

your contractor has no bias / hangups for whom gets the position and judges purely upon merits AND

big data should be considered a philosophical 'sales term' since... if it is distributed it is, somewhat, modular which forms part of a whole 'architecture' AND

the company is willing to pump in the resources, for what people require to achieve this aim with (this includes trusting your team to do their job properly)...

Some developers, I think are better at coding than others, results will vary depending upon coding style, but you do get incompatibilities between styles, so knowing what resources you have already and what is missing , might perhaps, be best left to a philosopher or even the youth of today (since youth by nature are best at pointing out anomalies)... the downside with that, can be, that it comes with some ego?

0
0

Furious Stephen Fry blasts 'evil' Reg and 'TW*T' Orlowski

koolholio
Joke

Would send a correction in...

But, you would probably disagree.

Since the basis of network packet transmission is on syncronised time, and thus you get timeouts for applications within networks, and the WAN is no exception.

But hey there would go someones tech cred ehy!? ^_^

0
1

Lots more virtualisation, cloud, added to TAFE courses

koolholio
Boffin

A degree in awards anyone?

Configure and manage advanced enterprise virtual computing environment

Monitor and troubleshoot enterprise virtual computing environment

Design and configure enterprise desktop virtualisation

Manage security controls for cloud service deployment

Direct the development of a cloud computing strategy for a business

All of those tasks would probably be worthy of a Noble Award!? no?

0
0

BIGGEST DDoS ATTACK IN HISTORY hammers Spamhaus

koolholio
FAIL

Dave Lee of the BBC - last updated ... 27 March 2013 @ 13:03

2
0

Voda: Brit kids will drown in TIDAL WAVE of FILTH - it's all Ofcom's fault

koolholio
Joke

Knee-jerk

Knee-jerk...

Knee-jerk!

Did I mention the reflexes?

0
0

Stephen Fry explains… Alan Turing's amazing computer

koolholio
Joke

"idiocy just spreads like a bad smell"

Just as Mathmaticians are limited by their limited ability to define infinity...

Best look to physics for the answer! They'll have the same problem.

On a side note what is the root number of squared... anything inbetween is interpretatory.

0
0

SCADA honeypots attract swarm of international hackers

koolholio
Thumb Up

Re: This just in

and be careful to avoid contamination between the two... ;-)

1
0
koolholio
Facepalm

Re: So there are people out there looking for these systems with the tools to do damage.

jumping to a conclusion that it MUST be ex-employees springs to mind... just like the origin of everything bad in the world?

0
0

Dear gov cyber-ninjas, try NOT to KILL PEOPLE. Love from the lawyers

koolholio

Banks and Media Networks

What about them? :-/

The economy needs protecting!

0
0
koolholio
WTF?

"hospitals, dams and nuclear power plants" are out... okay... I'm alrite with that!

What about other power plant types? air traffic systems? maritime systems? mobile systems? satellites (in space) and on the ground (set top box networks?)... internet capable vehicles? even drones? missile systems of not a nuclear ability?

How would one be able to define who and how someone is targetting civilian systems? could a malformed DNS response packet be sufficient?

I reckon this whole cyberwar thing is somewhat, just asking for trouble... :-( *shrugs*

1
0

Researcher sets up illegal 420,000 node botnet for IPv4 internet map

koolholio
Joke

Re: If you wanna be elite...

Call Jeremy Clarkson, he might condone it to find those people!? :-/

0
0
koolholio
Stop

Re: On tracking (etc)

Depends if the information stored in the readme is a herring or the truth? how could one tell the difference? What if its somebody elses information in order to frame them for such? I guess if it said Jeremy Clarkson, there might be motive too! CRAZY! *facepalms*

3
0

Google adds validation to DNSSEC

koolholio
FAIL

That explains

Why wireshark labels it a malformed DNS response. :-/

What about EDNS0? and the billions of other DNS options...

0
0

Phone, internet corps SNUB US government's cybersecurity ABCs

koolholio
Alert

I didnt see BIOS/CMOS/UEFI lock-down controls or the lifetime of power sources(e.g. batteries) or much physical security mentioned... e.g. protecting users from themselves, on social media and otherwise on a more physical level.

I didnt see driver configuration (the one device which has wifi with AP mode by default) --- that would make a bridge! :-/

The Wifi Distribution Service/Wifi Protected Setup configuration for wireless networks wasnt mentioned.

I didnt specifically see prevention of booting/use of or monitoring use of boot discs, or Wake on technologies or deployment services (WDS) on the networks :-/

*concerned look*

Other than this... shouldnt the competent be already doing this kind of stuff? One would assume they have sufficient amounts of people to achieve this?

1
0

Is UK web speech regulated? No.10: Er. We’ll get back to you

koolholio
Joke

Re: What about forums on news related web sites?

So the evidence is all in the framing of the HTTP POST... ? what about passthrough techniques? I'm just thinking of origin source, and authenticity.

relevant to the main content of the title... What if it's untitled document?

This is interesting steering of ones ship!

0
0
koolholio
Black Helicopters

Re: What about forums on news related web sites?

It would most likely be covered by personal tort law... which is another minefield... Not to forget that, insulting was taken out of the public disorder legislation.

Whilst I believe news should have a line, for which it should not cross (and I hope a big corp. doesnt come at me with a lawsuit)... it would become interesting if they try to make it apply to what has occured prior to their legislation... which may bring a whole new meaning to 'public interest' which could then, probably, be likened to a "witch hunting" exercise?

Security is no doubt, still a sore subject... i.e. if it's a hypervisor device, your own device is supposedly included... Where is the line between utilising legislation for detecting/preventing crime and hindering technical/expressive/creative and sometimes even productive ability.

0
0

Win8 Safeguarding series critiques wanted

koolholio

Re: Target audience

You do need to bear in mind that a computer's network topology makes a difference... since if upnp is on, on the router, it may still be able to jump the NAT gap? And remote access technologies... such as RDP? or others? Java? Heuristics in AV engines? firewalls on both networking and devices (mobile ones too!), oh and also wifi security?

Just throwing a few ideas about there?

0
0

Longest-standing bug?

koolholio

Services that run on port 445's according to SANS ISC... has varied though according to the graphs...

https://isc.sans.edu/

0
0

Sysadmins: Let's perch on Microsoft Santa's lap, show him our wish list

koolholio
Joke

Re: Licencing

You forgot the training... but I guess thats what supposedly separates the techies from the 'average office user'

With linux, you either know it or you dont, and its not the paperwork that proves it!

0
0

Weev gets 41 months in prison for exposing iPad strokers' privates

koolholio
Joke

Aslong as you dont distribute the code and its not a Sony Playstation!

1
1

UK's 'Nobel prize for engineering' given to 'inventors of the interwebs'

koolholio
Joke

200,000 each... Just enough to buy a very basic house in the UK... or half of one these days...

1
0

3UK, the IWF and filtering

koolholio
FAIL

Fact about 3 Mobile DNS

It will request from a DNS server the requested domain's A address and AAAA address

But somehow goes based upon the SOA servers IP irrespective of the actual domain being requested! :-/

...so it only likes masterful / authorative nameservers that seemingly MUST host the content too. Isnt that a little BDSM like!?

0
0

Insufficient Storage Available - El Reg should investigate!

koolholio
Boffin

Logcat output

<3>[ 1067.185000] mmcblk1: error -84 transferring data, sector 4952, nr 1, card status 0x900

<3>[ 1067.205000] end_request: I/O error, dev mmcblk1, sector 4952

<3>[ 1067.205000] Buffer I/O error on device mmcblk1, logical block 4952

<4>[ 1067.205000] lost page write due to I/O error on mmcblk1

<3>[ 1067.220000] FAT: Filesystem error (dev mmcblk1)

<3>[ 1067.225000] fat_free_clusters: deleting FAT entry beyond EOF

<3>[ 1067.230000] FAT: Filesystem has been set read-only

--------------------------------------------------------------------------------------------------

The error complained of:

D/Finsky (12849): [1] DownloadImpl.setState: **APPNAME** from DOWNLOADING to SUCCESS.

D/Finsky (12849): [1] DownloadQueueImpl.onComplete: **APPNAME**: onComplete

D/Finsky (12849): [1] DownloadQueueImpl.remove: Download **APPNAME** removed from DownloadQueue

I/installd( 1981): free_cache(0) avail 63672320 <<<<< PLENTY OF AVAIL space then!

I/ActivityManager( 2116): Start proc com.android.defcontainer for service com.an

droid.defcontainer/.DefaultContainerService: pid=***** uid=***** gids={****, ****}

D/dalvikvm(12978): GC_EXPLICIT freed 40K, 53% free 2544K/5379K, external 717K/1038K, paused 90ms

W/ActivityManager( 2116): No content provider found for:

I/DefContainer(12978): Exception : java.io.IOException: No space left on device when copying file

E/DefContainer(12978): Couldn't copy file: /cache/downloadfile.apk

W/ActivityManager( 2116): No content provider found for:

D/dalvikvm( 2116): GC_EXPLICIT freed 491K, 45% free 5061K/9095K, external 2501K/3123K, paused 200ms

D/Finsky (12849): [7] 1.packageInstalled: Package install status for "null" is -4

D/Finsky (12849): [1] InstallerTask.cancelCleanup: Cancel running installation of **APPNAME**

0
0
koolholio

Addtionally

Also do you sometimes get it where the media scanner starts and it says the external SD card is damaged? --- but removing and re-inserting fixes that? next time it does it check in the external sdcard storage options and see if it displays properly or whether thats all zeros aswell?

0
0
koolholio
Boffin

Even rooted phones im sure may experience this issue... how much storage does it say in settings > storage ? in particular the user space / available space...

if it says none, it could be a little bit of corruption on the internal sd card... thats all it takes!

or it might be you need a program that can execute pm setInstallLocation 0 (or 2 for external)

0
0

Touch screens and greasy mitts: All you need is glove

koolholio
Joke

Parody

Sticky finger chops.... doobie doobie doo!

sticky finger chops, chops...

Ohhh, gloves are all you need!

*sings it for the rest of the day*

0
0

Crack Bombe squad dismantles Reg encryption in an hour

koolholio

And here I was..

Thinking that CESG had history of doing such since as early as 1919

0
0

Attention, CIOs: Stop outsourcing or YOU will never retire

koolholio
Facepalm

Quality versus Quantity

Is it more the quality of what is taught in the academic route?

Is it the quantity of renumeration for a job (supposedly well done)...

Is it just that some in these roles dont care, if they cant see it there? -- lacking quality

I've at times read more in a book or online, or even seen on youtube... than whats probably been taught in academia!

0
0

Page: