Posts by eriksolo

DevOps is a brilliant way

To remove System Administrators and have Developers take over and be responsible for the security and integrity of the System that they use for development.

Since DevOps became a "Thing" System Security has increased, data theft has been reduced to almost zero and no one has accidentally left anything open and available to the public on the "Cloud".

No, I am not being sarcastic. If I have negative thoughts about popular trends and catch phrases in IT then I will be deemed negative and bring "negativity" down on the whole workplace, and that is worse than setting my desk on fire. So I am very optimistic about DevOps.

core tech is like a baby putting things in its mouth

"Darktrace is the only cyber defense technology that is capable of detecting anomalous behaviors, without any prior knowledge of what it is looking for."

OK. I guess if I wanted to attack a Darktrace protected site I would send a bunch of kermit and gopher requests to their ip blocks and then try to enter modem and modbus commands via telnet into ports 443. That would cause it to focus on anomalous behavior that it had no prior knowledge.

Then I would pay some skids $200.00 to DDoS their site.

My hacker name would then be known as C@Pta1n 0bv1ou5

lavians.com is with Bluehost

But their IP is owned by Linode

The other site sharing their IP is http://cheersc.com/ which sells "P2P movie player" and one called "Frozen Movie Player" which for $39.95 will play the movie "Frozen" online for "Free"

I am wondering if malware could be embedded in that too? hmm.

"White Hat" huh?

They are hosted in Romania but they use the word "Staffs" instead of "staff" for their services.

I thought the definition of "White Hat" was not breaking into anything you do not have permission to break in to, to me this would be "Grey Hat".

A Black Hat will put a pile of dog poo on your welcome mat.

A white hat will clean the dog poo on your welcome mat and provide you with steps to poo proof your entry way.

A Grey Hat will ring your door, and when you answer they will grab the poo and throw it inside while saying "Look what you almost stepped in!"

Stressor vendors are easy enough to find.

When I worked for a webhosting company our most basic linux plan would get stressor sellers and resellers all the time. They would sign up, start a DDoS, get their account suspended, and then complain that we had cut off their service.

But there were not hundreds of them or anything, they had all bought a "Make Money Fast" type package for $200.00 on CL or ebay in which they essentially acted as a franchise for "McDDoS" and were under the impression that their services were legitimate and even told by the Franchise that the Web Host's technical support would "set up everything for you".

What was shocking was not that this happened but that the DDoS supression industry seemed really uninterested in targeting the real live humans at the other end of a keyboard somewhere and instead more interested in selling fancy packet inspection services.

There is also one Stressor running around out there from South Carolina. His offerings have been slowly improving but his ability to conceal himself has not. He does not Franchise but does everything himself, like someone with an airbrush competing against Photoshop. It is kind of charming.

I think it is a Bear Cat with mange

http://en.wikipedia.org/wiki/Bear_cat

Maybe one kept as a pet escaped (or one raised for food escaped)