Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > comp.lang.python > #101515 > unrolled thread
| Started by | Steven D'Aprano <steve+comp.lang.python@pearwood.info> |
|---|---|
| First post | 2016-01-12 15:26 +1100 |
| Last post | 2016-01-12 06:36 -0800 |
| Articles | 5 — 5 participants |
Back to article view | Back to comp.lang.python
OT: There are no words for how broken everything is Steven D'Aprano <steve+comp.lang.python@pearwood.info> - 2016-01-12 15:26 +1100
Re: OT: There are no words for how broken everything is Rick Johnson <rantingrickjohnson@gmail.com> - 2016-01-11 22:43 -0800
Re: OT: There are no words for how broken everything is Marko Rauhamaa <marko@pacujo.net> - 2016-01-12 10:30 +0200
Re: OT: There are no words for how broken everything is Chris Angelico <rosuav@gmail.com> - 2016-01-12 19:37 +1100
Re: OT: There are no words for how broken everything is wxjmfauth@gmail.com - 2016-01-12 06:36 -0800
| From | Steven D'Aprano <steve+comp.lang.python@pearwood.info> |
|---|---|
| Date | 2016-01-12 15:26 +1100 |
| Subject | OT: There are no words for how broken everything is |
| Message-ID | <56948066$0$11120$c3e8da3@news.astraweb.com> |
There are no words to explain just how broken everything is. This post tries: https://medium.com/message/everything-is-broken-81e5f33a24e1 but barely covers even a fraction of the breakage. Thanks goodness for anti-virus, right? One of the leading anti-virus vendors in the world, TrendMicro, has been opening their victims^W users' computers to trivially-discoverable remote execution attacks, exposing passwords to the internet, and running an old and insecure browser with security settings disabled (no sandbox). https://code.google.com/p/google-security-research/issues/detail?id=693 What's the worst security screw-up you've seen? The worst I've seen was a sys admin I used to work with who put a new Linux server on the internet with root ssh enabled. Guess what password he used for the root account? "test". Guess how long it took before it was broken into? Less than two hours. That is at the top of my list only because I can prove exactly what happened. Otherwise it would be an incident that I can't completely explain. I have my suspicions, but I'm not entire sure what happened. This was one of the last incidents that drove me off Windows. I was running Windows XP, protected behind a firewall, with commercial up-to-date anti- virus installed. I started up Windows update one day, and went out for a few hours, and came back to find the computer absolutely swarming with malware and the firewall turned off. I don't know what happened, I can only guess that the Windows update process turned off the firewall, but I don't really know. All I know is that whatever it was, it was a completely automated attack, as nobody was home to click on any buttons or visit any dubious websites. Took me three weeks to remove the last of the malware, and another two weeks to track down the cause of an annoying glitch where every 30 seconds the PC would freeze up for a fraction of a second. It was one of the anti-virus programs I had installed. -- Steve
[toc] | [next] | [standalone]
| From | Rick Johnson <rantingrickjohnson@gmail.com> |
|---|---|
| Date | 2016-01-11 22:43 -0800 |
| Message-ID | <965849d1-1b64-4788-8bfd-18f01a4293a6@googlegroups.com> |
| In reply to | #101515 |
On Monday, January 11, 2016 at 10:26:40 PM UTC-6, Steven D'Aprano wrote: > [...] > Took me three weeks to remove the last of the malware, and another two weeks > to track down the cause of an annoying glitch where every 30 seconds the PC > would freeze up for a fraction of a second. It was one of the anti-virus > programs I had installed. Three weeks??? Dude, you could have rebuilt the system in a few hours! :-) But this is *WAY* off topic. Hey Steven, they have these new inventions now called "blogs", maybe you should sign up for one? Heck, *I* even have a blog now! http://arantadaykeepsthemonstersaway.blogspot.com/ PS: And there's an nice Easter Egg on my google profile you might enjoy. *wink*
[toc] | [prev] | [next] | [standalone]
| From | Marko Rauhamaa <marko@pacujo.net> |
|---|---|
| Date | 2016-01-12 10:30 +0200 |
| Message-ID | <87egdn5he8.fsf@elektro.pacujo.net> |
| In reply to | #101520 |
Rick Johnson <rantingrickjohnson@gmail.com>: > they have these new inventions now called "blogs", maybe you should > sign up for one? "Sign up for a blog?" What does that mean? Is it like creating a computer program or starting a company: you sign up for one? Anyway, why not use Usenet what it is meant for: discussions. Marko
[toc] | [prev] | [next] | [standalone]
| From | Chris Angelico <rosuav@gmail.com> |
|---|---|
| Date | 2016-01-12 19:37 +1100 |
| Message-ID | <mailman.49.1452587878.13488.python-list@python.org> |
| In reply to | #101530 |
On Tue, Jan 12, 2016 at 7:30 PM, Marko Rauhamaa <marko@pacujo.net> wrote: > Rick Johnson <rantingrickjohnson@gmail.com>: > >> they have these new inventions now called "blogs", maybe you should >> sign up for one? > > "Sign up for a blog?" What does that mean? > > Is it like creating a computer program or starting a company: you sign > up for one? It means getting someone to put up a sign saying "BLOG". I'm sure you can find professional signwriters in your area. ChrisA
[toc] | [prev] | [next] | [standalone]
| From | wxjmfauth@gmail.com |
|---|---|
| Date | 2016-01-12 06:36 -0800 |
| Message-ID | <c5ecc163-9629-4033-9a05-8522b88aa627@googlegroups.com> |
| In reply to | #101515 |
Le mardi 12 janvier 2016 05:26:40 UTC+1, Steven D'Aprano a écrit : > There are no words to explain just how broken everything is. There are even people who tried to "re-invent Unicode" and they do not see, they failed.
[toc] | [prev] | [standalone]
Back to top | Article view | comp.lang.python
csiph-web