Recount requested by Green Party candidate Stein in state where Trump beat Clinton by less than one percentage point.

Recount requested by Green Party candidate Stein in state where Trump beat Clinton by less than one percentage point.

Despite global criticism and UN warning Aleppo risked becoming a "giant graveyard", Syrian government forces press on.

Despite global criticism and UN warning Aleppo risked becoming a "giant graveyard", Syrian government forces press on.

bulled writes: In the middle of a press release discussing the move of employees from Seattle to California, Cyanogen Inc notes that it has parted ways with Steve Kondik. It is unclear what this means for the future of CyanogenMod. NDTV reports: "Kondik took to the official CyanogenMod developer Google+ community recently where he voiced what he thought were the reasons behind Cyanogen's plight and blamed Kirt McMaster, Cyanogen's Co-Founder. 'I've been pretty quiet about the stuff that's been going on but I'm at least ready to tell the short version and hopefully get some input on what to do next because CM is very much affected,' wrote Kondik in a private Google+ community first reported by Android Police. According to Kondik's version, Cyanogen's turmoil is way far from being over. He claimed that Cyanogen had seen success thanks to the efforts by the community and the company. Though, this also changed how the company worked. Explaining how it all started to come down, Kondik wrote, 'Unfortunately once we started to see success, my co-founder apparently became unhappy with running the business and not owning the vision. This is when the 'bullet to the head' and other misguided media nonsense started, and the bad business deals were signed. Being second in command, all I could do was try and stop it, do damage control, and hope every day that something new didn't happen. The worst of it happened internally and it became a generally shitty place to work because of all the conflict. I think the backlash from those initial missteps convinced him that what we had needed to be destroyed. By the time I was able to stop it, I was outgunned and outnumbered by a team on the same mission.' Kondik also seemingly confirmed a report from July which claimed Cyanogen may pivot to apps. He further wrote, 'Eventually I tried to salvage it with a pivot that would have brought us closer to something that would have worked, but the new guys had other plans. With plenty of cash in the bank, the new guys tore the place down and will go and do whatever they are going to do. It's probably for the best and I wish them luck, but what I was trying to do, is over.'"

Read more of this story at Slashdot.

President Kiir says 'no such thing' after UN reports massacres, starvation, gang rape, and destruction of villages.

First a disclaimer: This methodworks for a home network, maybe a small business network. I do describe how to do this using a specific vendors equipment. This isnt an endorsement of the vendor.

Back in the 100 BaseT days, it was pretty easy to make your own tap. You could essentially just connect the network cables transmit line to the receive pins of a output plug, and all it took was four network plug, a punch down tool and a bit of wire. Sadly, with Gigabit Ethernet, both pairs are used to transmit and receive. Tapping this type of network is a bit more tricky and requires more sophisticated circuitry.

You can buy some relativelycheap Taps, but often a simple switch is cheaper, and provides similar capabilities. To monitor just a single network segment, a simple switch like this may be perfectly acceptable, and with port-based VLANs, you can even aggregate multiple segments." />

There are three possible spots to connect a sensor:

1. Between Firewall and Modem: In this case, you will see all the traffic entering / leaving the network. But you will only see the NATed traffic assuming that the firewall/router also does NAT. It will be difficult to assign traffic to a particular device on your network
2. LAN: This is the network we use to connect our workstations/mobile device. We can define a port on the LAN switch as a mirror port and at least mirror the port connected to the gateway. This should give us a nice spot to connect a sensor.
3. WAN: Same as for the LAN port, a mirror port on the switch will allow us to watch traffic to/from the servers connected to this switch

So how do we monitor traffic in both networks, the LAN and the WAN segment? There are a couple of options here:

Run the sensor on your Firewall/Router

If you are using a homemade Linux deviceor PF Sense, then it is pretty easy to install tools like snort or even bro on the device as well. Again: We are talking home network here. But even in a home network, I find that this type of setup quickly runs out of steam, in particular, if you are using less than state-of-the-art hardware.

Run a dedicated sensor, with multiple network cards

You will need a network card for each segmentand one more for a management network. In the diagram this would require at least three (LAN, DMZ + management) or even four (LAN, DMZ, WAN + management) . Finding a small / low-cost system with more than two network cards is challenging. But luckily, with some port-based VLAN trickery, our cheap monitor switch can be coerced into aggregating multiple networks.

Aggregating Multiple Network Segments with a Switch

I am using the Netgear GS105Ev2 switch. This is a 5 port switch that offers port-based VLANs and port mirroring, the two features I am going to use here. Other switches that provides these two features should work as well. This switch currently sells for about $45.

First, figure out which port you would like to use how. In my example, I am using:

Port 1 to manage the switch
Port 2,3,4 to connect to the different network segments
Port 5 to connect to the sensor (and remember that the monitoring interface of the sensor has no IP address, but is just listening)

First, lets configure the mirror feature. We define ports 2,3,4 as source" />

Next, lets define the VLANs. Setting up port-based VLANs is CRITICAL since we do not want to shortcut" />

So how bad is it? Does it work at all?

It does work pretty well. I still have to measure the exact throughput. The admin interface for the switch does become unresponsive pretty quickly, but well, once it is set up, you dont need to touch it anymore. There are better switches with more buffer memory that you can often get on eBay for not much more money. I am having a hard time finding real gigabit taps for less than a few hundred dollars on eBay. But you may get lucky. Many of the taps that you find around this same price are typically actually just switches that are preconfigured with a monitoring port.

Let me know if it works for you, or if you have better ideas to monitor multiple gigabit network segments. If you are just interested in using a switch as a tap, there are a couple of videos on YouTube walking you through the setup.

---
Johannes B. Ullrich, Ph.D.
STI|Twitter|LinkedIn

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

An anonymous reader quotes a report from The Verge: Lenovo Moto today confirmed that it will not be releasing a new smartwatch for the launch of Android Wear 2.0, due early next year. The company had earlier said it would not be releasing a new smartwatch in 2016, but it is now saying that it doesn't plan to put out a new device timed to the arrival of Google's newest wearable platform, either. Shakil Barkat, head of global product development at Moto, said the company doesn't "see enough pull in the market to put [a new smartwatch] out at this time," though it may revisit the market in the future should technologies for the wrist improve. "Wearables do not have broad enough appeal for us to continue to build on it year after year," Barkat said, and indicated that smartwatches and other wearable devices will not be in Moto's annual device roadmap. Whether or not Moto does jump back into the smartwatch market is still up in the air, but Barkat is leaving the possibility open. "We believe the wrist still has value and there will be a point where they provide value to consumers more than they do today," Barkat said. But it doesn't appear that we'll be getting a new Moto 360 or other smartwatch any time in the near future. Google announced back in September that it would be delaying the launch of Android Wear 2.0 from this fall to next year. LG and Huawei have also confirmed that they would not be releasing new smartwatches until at least next year.

Read more of this story at Slashdot.

An anonymous reader quotes a report from The Verge: Lenovo Moto today confirmed that it will not be releasing a new smartwatch for the launch of Android Wear 2.0, due early next year. The company had earlier said it would not be releasing a new smartwatch in 2016, but it is now saying that it doesn't plan to put out a new device timed to the arrival of Google's newest wearable platform, either. Shakil Barkat, head of global product development at Moto, said the company doesn't "see enough pull in the market to put [a new smartwatch] out at this time," though it may revisit the market in the future should technologies for the wrist improve. "Wearables do not have broad enough appeal for us to continue to build on it year after year," Barkat said, and indicated that smartwatches and other wearable devices will not be in Moto's annual device roadmap. Whether or not Moto does jump back into the smartwatch market is still up in the air, but Barkat is leaving the possibility open. "We believe the wrist still has value and there will be a point where they provide value to consumers more than they do today," Barkat said. But it doesn't appear that we'll be getting a new Moto 360 or other smartwatch any time in the near future. Google announced back in September that it would be delaying the launch of Android Wear 2.0 from this fall to next year. LG and Huawei have also confirmed that they would not be releasing new smartwatches until at least next year.

Read more of this story at Slashdot.

This March will be my third trip in three years to Yosemite — I can’t miss it. I’m hopelessly addicted to one of the most beautiful places in the world.

You can go too! It’s 20% off if you register this week.

It’s not a code conference — it’s about people and art and love. Sessions are in the morning and evening, so you can go on hikes during the day.

It’s so much more beautiful and awe-inspiring in real life than on your desktop.

Doha News says it has been blocked by the Gulf country's two internet service providers - with no reason why.

Doha News says it has been blocked by the Gulf country's two internet service providers - with no reason why.

Last month, instead of asking for data relating to specific individuals suspected of a crime, the Internal Revenue Service (IRS) demanded America's largest Bitcoin service, Coinbase, to provide the identities of all of the firm's U.S. customers who made transactions over a three year period because there is a chance they are avoiding paying taxes on their bitcoin reserves. On Wednesday, a federal judge authorized a summons requiring Coinbase to provide the IRS with those records. Gizmodo reports: Covering the identities and transaction histories of millions of customers, the request is believed to be the largest single attempt to identify tax evaders using virtual currency to date. As a so-called "John Doe" summons, the document targets a particular group or class of taxpayers -- rather than individuals -- the agency has a "reasonable basis" to believe may have broken the law. According to The New York Times, the IRS argued that two cases of tax evasion involving Coinbase combined with Bitcoin's "relatively high level of anonymity" serve as that basis. "There is no allegation in this suit that Coinbase has engaged in any wrongdoing in connection with its virtual currency exchange business," said the Justice Department on Wednesday. "Rather, the IRS uses John Doe summonses to obtain information about possible violations of internal revenue laws by individuals whose identities are unknown." In a statement, Coinbase vowed to fight the summons, which the company's head counsel has previously characterized as a "every, very broad" fishing expedition.

Read more of this story at Slashdot.