Monday, January 24, 2011
RAID 1 with offline elements
I created this webpage and submitted it for comments at comp.os.linux.misc.
Thursday, January 20, 2011
On Point : Stuxnet
Yesterday's On Point discussed the Stuxnet worm. The guests were very much in favor of deploying the worm, and weren't shying away from calling it a weapon of war. They thought that it was a good alternative to a physical attack (airstrike). A few callers questioned the attack on the grounds that we have no declaration of war against Iran and that the attack was a covert operation. The host pointed out that the recipient of the attack can reverse engineer the "bomb," and potentially point it back at us. At least one caller amplified that theme. The guests responded that we are already under attack daily, and that we better be prepared for threats that can emerge very quickly. This kind of cyber attack may not be confined to computer networks. For example, one of the guests mentioned that enemies have surveyed our electrical grid for vulnerabilities. If I remember correctly, the Y2k disaster scenarios included failure of certain types of programmable controllers, perhaps similar to the ones targeted by Stuxnet, that are widely deployed in all kinds of industrial settings.
The stuxnet worm included four different attack scenarios using four different Windows zero day bugs. To me it seems that is a real grey area. The white-hat security researchers look for bugs in order to fix the OS; black hats find holes that they can exploit for profit. The "gray hats" are apparently at work finding holes that they can exploit to harm enemies.
Here is a link to the discussion.
Update: 2011-01-26
Slashdot reported recently that cybercriminals are finding that Windows is "tapped out" and are gearing up to attack other platforms. Whether that is really true, or not is debatable. (My WAG is that the Windows field is still ripe and there are easy pickins' for the taking.) However, others have already noted that a successful attack against unix (and its variants) would definitely be worth something to bad guys because the core of online sites are hosted on a unix-variant platform.
I thought this AC comment was on the mark.
Update: 2011-03-15
On the Media picked up the discussion. The point is made that it is "Hiroshima moment" in warfare. Stuxnet is a new type of weapon that was developed to target a specific enemy. It is the first salvo in the age of cyber-warfare.
The stuxnet worm included four different attack scenarios using four different Windows zero day bugs. To me it seems that is a real grey area. The white-hat security researchers look for bugs in order to fix the OS; black hats find holes that they can exploit for profit. The "gray hats" are apparently at work finding holes that they can exploit to harm enemies.
Here is a link to the discussion.
Update: 2011-01-26
Slashdot reported recently that cybercriminals are finding that Windows is "tapped out" and are gearing up to attack other platforms. Whether that is really true, or not is debatable. (My WAG is that the Windows field is still ripe and there are easy pickins' for the taking.) However, others have already noted that a successful attack against unix (and its variants) would definitely be worth something to bad guys because the core of online sites are hosted on a unix-variant platform.
I thought this AC comment was on the mark.
Update: 2011-03-15
On the Media picked up the discussion. The point is made that it is "Hiroshima moment" in warfare. Stuxnet is a new type of weapon that was developed to target a specific enemy. It is the first salvo in the age of cyber-warfare.
Thursday, January 6, 2011
File Deduplication in bash
I submitted this script for comments to comp.os.linux.misc
Update: 2011-02-11
I added a feature that for files to be considered for more checking both the file name and file size must match exactly. Here is the latest version.
Update: 2011-02-11
I added a feature that for files to be considered for more checking both the file name and file size must match exactly. Here is the latest version.
Sunday, January 2, 2011
Russian Government Mandates GNU/Linux
Russia is the latest government to initiate the switch to GNU/Linux. They follow after China and Cuba. There have been other governmental mandates which have had varied success and staying power. Here is Slashdot's
headline.
There needs to be some commitment to stick with it because there can be some pain during the transition period. Users may push back when pushed away from their comfort zone. They are more likely to stick with it if they know there is a payoff in the end. For example, they could have the incentive of keeping their jobs because they know their salaries are in part paid for by capturing the Microsoft tax. Some of the cynical comments on the Slashdot posting also hit the nail on the head. They guessed that Vladimir Putin could be posturing for a big discount from Microsoft by just threatening to move to GNU/Linux. That could certainly be true, and the monopolist is likely to comply with a cost incentive. However, if Russia doesn't follow through, it will be too bad. GNU/Linux is certainly very usable as a desktop and server OS at this point, not to mention its resounding success and acceptance on Android devices. Big government backing could be the final piece of the puzzle to break the monopolist's agenda to maintain its predatory price structure.
headline.
There needs to be some commitment to stick with it because there can be some pain during the transition period. Users may push back when pushed away from their comfort zone. They are more likely to stick with it if they know there is a payoff in the end. For example, they could have the incentive of keeping their jobs because they know their salaries are in part paid for by capturing the Microsoft tax. Some of the cynical comments on the Slashdot posting also hit the nail on the head. They guessed that Vladimir Putin could be posturing for a big discount from Microsoft by just threatening to move to GNU/Linux. That could certainly be true, and the monopolist is likely to comply with a cost incentive. However, if Russia doesn't follow through, it will be too bad. GNU/Linux is certainly very usable as a desktop and server OS at this point, not to mention its resounding success and acceptance on Android devices. Big government backing could be the final piece of the puzzle to break the monopolist's agenda to maintain its predatory price structure.
Subscribe to:
Posts (Atom)