Messages

571

Off Topic / Re: What is your dream job?

« on: August 17, 2013, 02:53:20 PM »

Programming
Network Infrastructure brown townysis & Network Security

572

Off Topic / Re: Does Microsoft still own the rights to XP?

« on: August 16, 2013, 03:14:31 PM »

I'm seeing all this hate for Windows XP...

I thought I was all alone.

573

Off Topic / Re: Best way to fully customize a school laptop that has limits?

« on: August 14, 2013, 07:20:42 PM »

What's wrong with the Windows Classic theme? It's hell of a lot more clean than every other Windows theme to date.

574

Off Topic / Re: Best and worst operating systems

« on: August 13, 2013, 02:41:51 PM »

Best: Windows 2000 & Windows 7
Worst: Windows ME & Windows XP

Lol at all the people bandwagoning saying Windows 8 as the worst OS

575

General Discussion / Re: HamHost Dedicated Blockland server hosting | Beta: 2 slots left

« on: August 12, 2013, 06:13:18 PM »

This is exactly the purpose of the SHA-256. It ensures that people cannot just match the file size and the file name, but the file must also contain the same content.

Then why aren't you using it on the file contents? From what I read, you're only matching name and file length for integrity. It would make more sense if you used a hash on the files as well.

576

General Discussion / Re: HamHost Dedicated Blockland server hosting | Beta: 2 slots left

« on: August 12, 2013, 05:50:07 PM »

The operating system is the newest edition of Windows server. Since it is the newest, this OS is much more secure than Windows Server 2008 (which is what all of the other hosting services use). The datacenter edition is packed with a bonanza of features, as opposed to the standard edition.

You seem to be following the old "newer = better". Not saying that WS2012 is secure/not secure, but they tend to be more vulnerable the more young they are, since the exploits for the system haven't been discovered yet. This is usually where Microsoft releases a influx of knowledge base patches.

1: File names: This process checks if there are extra executable files in the server's directory. If there are extra .exe or .dll files, the user is identified as a hacker.
2: File sizes: This process checks the file sizes of all executable files against the values which genuine versions of the files would have. If there is a difference in the file sizes of any of them, the user is a hacker.
3: SHA-256 hash: It is relatively easy for a malicious user to get past the 2 methods above, but this step is far more secure. A SHA-256 hash is a string of characters which is uniquely generated according to the contents of a file. The HamHost control panel server generates a 256-bit hash of all executable files in the Blockland server's directory before launching the Blockland server. If the generated hashes don't match with those of a genuine Blockland installation, the user is a hacker.
It is extremely difficult, if not impossible, for a malicious executable file to match both the file size and the 256-bit hash. Furthermore, the system salts the hashes by adding a random number to them. This way, it makes it harder for a hacker to know exactly what hash the control panel server considers genuine.
HamHost's Blockland server security makes sure that other users cannot delete, steal, copy, modify, or corrupt any of the files in your Blockland server's folder.

Quite honestly; this is the most ridiculous "advanced" security system that happens to be very inefficient.
All you are doing is checking file integrity and not paying attention to stuff like a better authentication system (with this type of system, you can go further than just passwords) and encrypted traffic for the more critical parts of the server. If someone manages to get into your client's server, there is nothing stopping them from messing around with the running server. They don't even need to modify files to do this.

Also I don't understand why you use checksum algorithms for binaries and dynamic link libraries but not for other files. If they aren't checked for file integrity, one can easily change the contents of the file completely while still leaving the file size the same and the file name intact.

I should also throw in that your server does not check for brute force/dictionary attacks. I tested your server against around 20 incorrect guesses with random strings on a random user that I will not mention in a short period of time (guesstimated around 10 seconds, more or less). It still responded after 5, which is usually the threshold for password cracking detection (which is why turing tests like CAPTCHA exist). This is probably the most important part of your client's server security and yet you've made it the most vulnerable part of your "advanced security system".

If you really do "value" your customer's security: I advise you to build a better system and research on many different security methods so your server hosting won't equally vulnrable and inefficient than a lone infant. You put your customer's servers at great risk.

577

AoT General / Re: My Age of Time has no sound.

« on: August 12, 2013, 05:01:04 PM »

WINE
IS NOT A
loving
EMULATOR!!!!!

Makes me wonder why Wine's name comes from "Windows Emulator" if it's not an emulator.

578

General Discussion / Re: Badspots block party is back up (with a new theme too)

« on: August 12, 2013, 03:14:59 PM »

It takes true skill and talent to make magnificent baseplates like those.

I gaze upon them with envy.

579

Off Topic / Re: this is what swag does.

« on: August 11, 2013, 02:48:56 PM »

Natural Selection at it's finest.

580

Off Topic / Re: Got stuck in the middle of a lake today

« on: August 11, 2013, 03:34:51 AM »

"what's the lake's id?"
"ill make sure to ban him from my server"

lol im so original and funny

581

Off Topic / Re: Do you think we should increase funding for NASA?

« on: August 10, 2013, 04:24:33 PM »

And how long will space be there for us to explore it?
10 years? 10 centuries? 10 millennia? No. It will always be there. So it doesn't matter if we can't get out in the next couple decades or so.
Space will always be there and it isn't going anywhere.

1. saying "we need to cure cancer" is like saying "we need to cure disease". the goal of cancer research is prevention/detection.
2. NASA will create jobs and inspire children to enter STEM fields, which would help our economy, and could lead to technologies that help the earth in return.
3. in the process of researching how to get farther than the moon with a manned capsule, NASA will likely invent more efficient ways of getting to new places in space.
4. in the process of researching new missions in general, NASA will create technologies that benefit the earth as it has before.

Okay, lets go into space right now without a complete/most understanding about our human biology.

By the time we are able cure cancers and treat diseases all together, chances are we will have the technology and information needed to advance in space. Learning more about our biology will help us survive in space longer than what we can now.
For example: Keeping people in space without bone deterioration over time, less fluid and food consumption while maintaining a healthy diet, and protecting ourselves from potentially harmful organisms on other celestial bodies.
If we go ahead right now and try go places beyond our moon or try to put man in space for longer periods of time, we risk bringing back or not getting back at all; dead pieces of shriveled fruit in million dollar suits.

582

Off Topic / Re: Do you think we should increase funding for NASA?

« on: August 10, 2013, 02:45:26 AM »

At the rate the human race is wasting resources and killing the earth with greenhouse gases, wars, toxic waste, etc etc, space could be a option - inhabiting space. http://en.wikipedia.org/wiki/Space_habitat

True, but it's not happening at a rate where we need to immediately rush out humans to space and evacuate Earth to slow/stop stuff.

But my point still stands, we should continue on better priorities besides manning other planets like curing diseases and cancer, become more economically stable, help developing countries, solving world hunger, and advance more in technology like to develop more efficient fuel to even begin traveling farther than our moon because our usual chemical reactions using gasoline and rocket fuel are very hard to transport in space and the energy output won't get us far very fast.

583

Off Topic / Re: Do you think we should increase funding for NASA?

« on: August 09, 2013, 11:01:35 PM »

I think we should worry about the stuff happening on Earth rather than spending money to find out what's going on beyond it at this moment.

584

Off Topic / Re: Cyber Death Race 2013

« on: August 09, 2013, 09:38:36 PM »

You do know you're talking about /b/, right?

They've done much worse before that you haven't even seen yet. Their thresholds of what isn't acceptable to them don't exist and yet you're getting worked up about it.

585

Off Topic / Re: My Little Pony: Friendship for Blockheads: General V2

« on: August 09, 2013, 05:21:08 PM »

Thanks, YouTube.


You can type almost any pony and the bar will change to the pony's coat color.