Wednesday, December 21, 2005

Buenos Dias from Green Valley

Greetings, from Green Valley, Arizona. Mrs. Ober and I are enjoying reading (I'm exploring Six Sigma; Mrs. O is deep into Dean Koontz bullshit), working out, and wonderful weather!

A quick note before I turn in tonight: Nobody has grass here and I love it. I love the fact that residence of Green Valley actually embrace the desert in which they live by avoiding grass. It seems so unnatural and wasteful to see grass in the desert when visiting Las Vegas or Phoenix. But here, it seems like a lot of folks actually get it...somewhat. But I'll conduct the usual investigation and get back to you all. Please standby with baited breath.

Sunday, December 18, 2005

Opposite Ends of the Sporting Spectrum

A few minutes before kickoff and I'm a bit nervous. In fact, this post probably represents the first and only time I've ever posted on the Colts. Nervous about what you ask? How about the let downs of the past? Playoff choking? New England? Go Colts!

On the other end of the spectrum are my beloved Pens. With Mario aging and of questionable health, mid-season coaching changes, injuries, and Sergei Gonchar sucking ass, the only thing that has gotten me by in the Hockey category is OLN's showing of Fearless. For those not familiar with Lemieux's strength, skill, desire, and will, the show is well worth your time.

Worthy of their own Amendment

I enjoyed reading this article at Reason detailing the scribes in the media and their response to the killing of an American citizen. From the article:
In the old days, Americans were taught that the media would serve as a check and a balance on government powers. That platitude is fading as news professionals show less regard for private citizens than for government officials who can provide exclusive access and hot tips.

I don't know when the "old days" were but I seem to remember Waco, Ruby Ridge, the attack on Sudan, and the war in Iraq being adequately white-washed in favour of the government.

Wednesday, December 14, 2005

Was I Sleeping?

George Bush refers to the U.S. Constitution as a "Living Document."
Williams: Have you ever entertained the thought, Mr. President, that Iraq's natural state may be three separate pieces, three separate nations?

President Bush: No, I haven't. I think — I know it will be united based upon, you know, kind of universal principles, the ones I outlined in the speech, freedom to worship, rule of law, private property, marketplace, all bound by a constitution which the Iraqis approved, and which the Iraqis will improve upon. And, you know, we improved on our own Constitution. In other words, it's a living document. And no, that would be a disaster, by the way, if it were three separate nations.

But my understanding was that he wanted strict constructionists as judges and held that "opinion" of constitutional law himself. Low-hanging-fruit quote here:
I don't want somebody to go on the bench to try to supplant the legislative process. I'm interested in people that will be strict constructionists...

Although I'm not sure what a "Strict Constructionist" really believes, I do think - or thought - it was at odds with the idea of a constitution being a "living document." This strikes me as an odd comment.

Tuesday, December 13, 2005

Sellin' Crazy Somewhere Else

While navigating the interweb yesterday, I turned off of a few well-known boulevards and rambled onto some country roads - or strange, dark alleys (pick your favourite metaphor).

The first is Conservative Mommy. My two favourite posts are here, where Mommy contends Democrats are anti-Christian and where she predicts "This is an official CONSERVATIVE CENTRAL PREDICTION: we will be in Iran within five years. Get ready, all you spineless donkeys!"

The next site I found by linking off of Mommy's blog. It is called Elmersbro. My personal favourite entry here accuses John Kerry of calling American servicemen and woman "Terrorists." It's quite a leap but read for yourself.

Of course, you are encouraged to find your own favourite comment, post, or moonbat assertion.

Monday, December 12, 2005

Prom: Cancelled

"It is rather the flaunting of affluence, assuming exaggerated expenses, a pursuit of vanity for vanity's sake. In a word, financial decadence..."

More from the Times here.

Assessing Deployment Risks for Attendant Console

Shops deploying Cisco CallManager tend to also deploy, or at least consider deploying, Attendant Console(AC). While AC allows the user to do a number of things it is primarily used to monitor line-state status. However, there are a number of security concerns AC raises with savvy and security conscious organizations - like yours!

First, AC uses the JRE version 1.4.2_04. This JRE includes a number of vulnerabilities documented here. These vulnerabilities apply to your client side and, as you noticed, include escalation of privileges.

Next, AC uses ephemeral RMI ports from 40000 to 65535. There are also shenanigans that take place when the client authenticates but I can't publish that at this time; sorry. But a port range of ephemeral port numbering over 25,000 practically destroys the segregation of you voice traffic from your data. Whereas previously you would have only allowed ports 80, 443 and some other oddballs inbound, now you have to allow a much wider range. Not good.

Continuing to blow your mind, my colleagues and I have discovered that AC's client account and password, not integrated with AD or LDAP mind you (which is a problem in and of itself), is sent in clear text. Also, AC does not allow the client to manage his or her password. While this presents a limited security risk because it isn't the clients domain password, it sure seems like sloppy coding and an administrative nightmare. AC's domain service account, is a domain account and still sends passwords in the clear. Again, after my testing, I found the service account could only logon locally to a CCM but couldn't do much - anything - after that. But it is still a bad, bad idea to allow accounts to logon locally at all.

When deploying Attendant Console, one should be mindful of the risks it could present to a computing environment.

Hockey Town, Charlotte

Friday, I had a chance to check out Charlotte's newest boondoggle in person for the first time. I wasn't there to see a hoops game but rather some hockey.

I was shocked by the quality of the team, the Charlotte Checkers, and the fans. All-in-all, a great time.

Here is a schedule of Charlotte Checkers hockey. See you there in January.

This page is powered by Blogger. Isn't yours?