I’m just guessing that there are smarter people than me at Cisco working on this type of stuff. Cisco has purchased Postpath. If integrated with WebEx it gives them an interesting new perspective on collaboration, but I’m still not sure that the industry is ready to get away from Outlook, Entourage, etc and to get into using something fully in the cloud. I think for a company full of younglings it might make a lot of sense, given they’re already going to be used to this kind of thing, but then I’m also guessing they’re likely looking toward something like Google Apps. Having said this, the good people of Cisco have proven time and time again to give good strategy. So I trust their strategy with this acquisition will become more apparent as time goes on…
krypted January 31st, 2009
From xkcd.com, but seemingly the story of my life.
krypted January 30th, 2009
Posted In: Mac OS X
While this article is updating I’m on a beach somewhere in Mexico. One of the things I love about WordPress is that I can indicate a date to publish an article or just publish it “immediately.” If I indicate the date the article goes live then I don’t necessarily have to hop to the computer to post it. I can just indicate when it will appear and then viola – it’s up, without any intervention from me. So if you’re wondering whether I really am on vacation or not, know this – I am not shoveling snow this week… 😉
krypted January 29th, 2009
I posted another article at Xsanity last week, but forgot to mention it here. You can find the article here. Basically it’s a walkthrough of using the fibreconfig command and how it relates to Xsan. Hope you enjoy!
krypted January 28th, 2009
Posted In: Xsan
Symantec has posted a writeup of OSX.Iservice:
krypted January 28th, 2009
Posted In: Mac Security
The typical school lab: We want to update an image once a quarter or once a year, deploy it and have nothing change between quarters. In Microsoft Windows, there are about as many ways to go about this as there are IT guys. Some will use Altiris or something like that to reimage the machines every night. Others will use policies to lock everyone out of everything and trust that. But what if you don’t have a dedicated IT staff and honestly don’t really have the time to deal with it in a smaller lab environment. Well, introduce Microsoft’s Steady State (it’s actually been around for awhile, getting renamed every now and then). Steady State is a nifty little product that allows someone with little IT experience to load it onto Windows (yes, including Vista) and essentially freeze every machine to its current state. Each time the box gets rebooted after that it will go right back to the way things were.
But that’s not all Steady State does. It also has a nice management console for policies. There are far less policies than you would have, for example, in the local policy editor, but you don’t have to be a rocket scientist to set them. Best of all, Steady State is free and available for download here to run in your lab, hot spot, etc.
This might have sounded like a commercial for Microsoft. Not at all, Steady State doesn’t seem to work well in my Active Directory environment (we don’t need to change no stinkin’ computer passwords). If I’m using this in my virtual machines is that going to be a problem? Well, no, but it’s likely going to be a bit of overkill since you can just use snapshots. Since the machine goes back to the original state, what does that mean for your user data? Well, that needs to go on a jump drive or something… So overall, Steady State has a time and a place. It’s great for labs, internet cafes, hotels, kiosks and things like that where you have a shared host that will get messed up – and when it does, you won’t care about data, you’ll just want it back to the original “state” as quick as possible. If that’s what you’re after, this is great software for something freely available. Notsomuch otherwise.
krypted January 27th, 2009
Posted In: Windows XP
The first hour of Marshall Kirk McKusick’s course on FreeBSD kernel internals.
krypted January 26th, 2009
Posted In: Unix
The effects of vibration in disk performance. Pretty good stuff.
krypted January 25th, 2009
Posted In: Articles and Books
Ever get the call from an ISP that a host on a network you own (no, not p0wn) is hosting a phishing scam site and you need to fix it? Happens all the time for one reason or another. But if the sites that contain malware and phishing information are quickly repaired (and at this point they are due to some really nice advanced systems for handling this kind of thing that are being employed by universities, ISPs and corporations), why bother? Well, this is where Fast flux comes into play. Fast flux is a DNS technique used to hide compromised hosts behind a rapidly changing (thus the word fast in the name) network of other hosts that help to obfuscate everything about the network itself. Basically, think about it this way, you have a command and control core that moves around, you keep your TTL values very low and everyone proxies their information to a host that updates an A record somewhere (a location BTW that is also obfuscated by the same technique) so other hosts know where to point traffic to.
Seems like a lot of coding… Given the potential value of private information that is harnessed through these types of attacks there is a lot of money to fund this kind of development. But never fear, for each method of hiding hosts, there’s someone working on a way to defeat it. In regards to Fast flux it isn’t an antivirus company (who would honestly rather sell you software to fix it rather than fix the root cause), it’s John Bamanek, from the University of Illinois, who’s trying to get his update to the DNS protocol ratified by the IETF.
krypted January 24th, 2009
Posted In: Mac Security