Messages - SeraphimLabs [ switch to compact view ]

Pages: prev1 [2] 3 4 5 6 7 ... 65next
6
Living Room / HitchBOT vandalized in Philadelphia, bringing an abrupt end to its tour.
« on: August 02, 2015, 02:15 PM »
Very sad to hear. Can't have anything nice in America.

Even though he made it from coast to coast in Canada, within two weeks of trying to do same in America someone had totally wrecked him.

http://www.cbc.ca/news/technology/hitchbot-destroyed-in-philadelphia-ending-u-s-tour-1.3177098


7
Living Room / Re: Be prepared against ransomware viruses..
« on: July 04, 2015, 05:45 PM »
However we are talking about ransomware and I fear ransomware can't be stopped by limited privileges. Encrypting data is not a system operation, so I think ransomware are allowed to do it even if privileges are low.
I think limited privileges are useful against other kinds of malware only.
-Giampy (July 03, 2015, 05:57 PM)

It can be stopped by limited privileges from accessing backups on the network and other machines.  Which was the most tragic part of the incident in the OP.
-wraith808 (July 04, 2015, 09:12 AM)

Not necessarily.

Mapped network drives can be created and accessed by users without administrative access unless a group policy exists saying otherwise.

And Windows also allows users to access removable devices regardless of administrative access. Including any remote network filesystem that it has read-write access to.

Messing with user privilege would not have any impact at all on the speed of ransomware encrypting files unless that user privelage change also had associated restrictions on CPU and IPOS resource consumption.


8
Living Room / Re: Save Domain Privacy
« on: June 30, 2015, 05:09 PM »
I formerly used a PO box, but I was paying for a PO box just for this.  Then I used privacy, but GoDaddy are greedy.  So now I use Tucows, and they give it for free.  And as far as the pre-paid, you still have to top it up, or they'll cut it off.
-wraith808 (June 30, 2015, 04:57 PM)

PO Box costs me $50 per year, I use it as my main mailbox anyway since I don't trust my neighbors to not snoop.

The prepaid phone I have has two expirations. The first is based on minutes used- it counts down till its gone. It also keeps track of service days remaining, again counting down till its gone.

And its all too easy for one of these phones to end up with like 300 minutes and several years of service time on it, making it ideal for a low cost point of contact to comply with ICANN regulations.

My domains are registered with dyn, and they want like $20 a year on top of the registration for the privacy service. Multiplied by the list of domains I have.

Using the PO box and prepaid phone instead, my info is compliant with ICANN regulations, but at the same time I am not inviting unwanted guests or getting a lot of telemarketters like I would be with a normal phone line and mailbox arrangement.

9
Living Room / Re: Save Domain Privacy
« on: June 30, 2015, 04:40 PM »
They haven't yet made it against policy to use a PO Box as your contact info.

And the phone number is allowed to be a crappy prepaid phone that is never actually used- it just has to actually ring and be answered after a couple of attempts.

As usual the only people to lose out to policies like these are the masses. The savvy can still evade them as easily as they please.

I've been rather annoyed lately with the ICANN policy changes, and the general attitude of 'we must regulate and make a profit from everything that exists on the internet  and how dare you try to do otherwise'


namecoin is looking rather attractive right now as an alternative technology to the existing ICANN regulated DNS infrastructure.

I was actually thinking about what it would take to create a namecoin-like decentralized SSL certificate system, along the lines of your sitename and the public fingerprint of your site's SSL certificate are published in a blockchain so that anyone at any time can check to see if they have the correct certificate for the site in question. This would eliminate the need for a central authority for SSL certificates much the same way Namecoin eliminates the need for a central authority to serve DNS.

10
Living Room / Re: Be prepared against ransomware viruses..
« on: June 27, 2015, 09:40 PM »
Are there any fast global checks? Like are the ransomed files renamed to some bizarre file extension, or just ".zip" (that happens not to be unzippable)? So then you could put a list of all sane file extensions somewhere, and then some kind of deep background process that says "hey, if you find yourself creating anything evil, stop all activity and holler"?


-TaoPhoenix (June 27, 2015, 01:51 PM)

The one I encountered turned every image, office document, email, and html file into a .EXX added on to its normal extension.

I literally had dodged a bullet with it- the night before I had noticed it acting funny and kicked it off the network suspecting malware. Next morning it had the cryptolocker ransome notice up and while it still ran all of the documents on it had been encrypted.

If I had left it alone it would have tried to encrypt everything it could reach on the fileserver.


Pages: prev1 [2] 3 4 5 6 7 ... 65next
Go to full version