Sun Country's Weblog archive
Date : May 28, 2011

Big Impact: 5 Lines Of Code To The Cloud

by alan
Published on: May 28, 2011
Comments: No Comments
Categories: Information Week - UBM

http://www.informationweek.com/news/global-cio/interviews/229502449?cid=RSSfeed_IWK_News

Share

Will IPv6 Make Us Unsafe?

by alan
Published on: May 28, 2011
Comments: No Comments
Categories: Information Week - UBM, Notes / Tips, Tutorial

http://www.informationweek.com/news/infrastructure/ipv6/229502450?cid=RSSfeed_IWK_News

Pretty good article and a sales pitch to get you to buy the full report. Some observations:

NAT was a stop gap measure to try to deal with the depletion of the IPv4 address space.

http://www.ietf.org/rfc/rfc1631.txt

This RFC is listed as informational.

As is mentioned you can secure IPv6 using IPSec but you do have to enable and then configure it. It is not enabled or configured by default. The upside to this is that once it is enabled then insecure protocols become secure by default. Telnet and FTP pass passwords as clear text. Any packet sniffer will display the username and password exactly as written to a screen or to a capture file. After you enable IPSec then those passwords pass on a secured connection so even though the protocol is insecure the delivery mechanism is secure. You can gain the same by using SSH instead of Telnet and using FTP over SSL instead of just plain FTP. A better solution would be to use SFTP. Then you get into the whole mess with the r-commands which no one likes and should already be disabled on your interior network.

https://secure.wikimedia.org/wikipedia/en/wiki/Rlogin
https://secure.wikimedia.org/wikipedia/en/wiki/Remote_Shell

And just to finish scaring you there is also the X Display Manager Control Protocol

https://secure.wikimedia.org/wikipedia/en/wiki/X_display_manager_%28program_type%29

Not mentioned were early efforts by Novell to try to side step the issues altogether. They had a plan to use IPX clients that connected to a machine and then that machine connected to the Internet using TCP/IP and then passed the data back to the clients using IPX. http://tools.ietf.org/html/rfc1234 The security gain there being that the clients had no way to talk directly to the Internet thereby mitigating the risks involved in connecting to and participating with the Internet. This happened in the early days of the Internet and Netware tanked as the OS of choice for File and Print services and so did this idea. Windows NT being both NetBIOS and TCP/IP aware claimed that space.

The other great area of concern is internally without NAT. With NAT your machines talk TCP/IP to the NAT host and then the host machine connects to the Internet and passes the data back to the client using the traditional TCP/IP mechanism. As the article points out removal of the NAT box since it is no longer required since the address space is no longer constrained presents some issues. The bigger issue is when you have machines on the interior that can all talk TCP/IP.

When NT 3.5 shipped several alarm bells rang because NT Workstation allowed 10 connections to a “Workstation” machine and not a server. This allowed peer to peer connections inside the corporate network to the user’s personal Desktop machine. We also had Unix machines inside the company and for them that was the norm. So we blew it off since NT had only gained a capability that was already present on the Unix machines.

Now you take those same machine and you give them a IP address and remove the NAT box and the fun begins. Without the use of firewall you can peer to peer across the Internet and not just inside of your companies network.

So the removal of a NAT box would require something else to filter the traffic between the corporate network and the Internet. And traditionally that is the firewall machine.

And then you have other methods to secure communications such as a VPN or an SSL connection back to the corporate or personal network.

Chrome Developer Tools: Put JavaScript memory under control

by alan
Published on: May 28, 2011
Comments: No Comments
Categories: Android / Chrome / Google

http://blog.chromium.org/2011/05/chrome-developer-tools-put-javascript.html

Mexico police raid ‘La Familia drug cartel’, killing 11

by alan
Published on: May 28, 2011
Comments: No Comments
Categories: BBC, War on Drugs

http://www.bbc.co.uk/news/world-latin-america-13586444

Graphics Algorithm Becomes 8-Bit Vector Perfecter

by alan
Published on: May 28, 2011
Comments: No Comments
Categories: Wired News

http://goo.gl/Bhkct

Lego fan creates 250,000 brick ‘Garrison of Moriah’

by alan
Published on: May 28, 2011
Comments: No Comments
Categories: Wired News

http://www.wired.co.uk/news/archive/2011-05/25/giant-lego-construction/viewgallery#!image-number=1

Russia to lift grain export ban after harvest increase

by alan
Published on: May 28, 2011
Comments: No Comments
Categories: BBC

http://www.bbc.co.uk/news/world-europe-13583287

Libya: Nato planes target Gaddafi’s Tripoli compound

by alan
Published on: May 28, 2011
Comments: No Comments
Categories: BBC

http://www.bbc.co.uk/news/world-africa-13585019


Tunisia camp destroyed in fatal clashes, say UN


http://www.bbc.co.uk/news/world-africa-13575486


Ratko Mladic ‘resigned to extradition’ on war crimes


http://www.bbc.co.uk/news/world-europe-13585578

Afghanistan: Suicide blast kills top police commander

http://www.bbc.co.uk/news/world-south-asia-13585242


North Korea releases US citizen Eddie Jun Yong-su


http://www.bbc.co.uk/news/world-asia-pacific-13583136

Egypt: Hosni Mubarak fined for cutting internet

http://www.bbc.co.uk/news/world-middle-east-13585237

Giving to Charity by Managing Your E-Mail

by alan
Published on: May 28, 2011
Comments: No Comments
Categories: The New York Times

https://www.nytimes.com/2011/05/28/technology/28charity.html?nl=todaysheadlines&emc=tha26

Data Breach at Security Firm Linked to Attack on Lockheed

by alan
Published on: May 28, 2011
Comments: No Comments
Categories: The New York Times

https://www.nytimes.com/2011/05/28/business/28hack.html?nl=todaysheadlines&emc=tha25

Flattr Me
Categories
Welcome , today is Wednesday, July 23, 2014