<div dir="ltr"><br><div class="gmail_extra"><br><div class="gmail_quote">On Tue, Jul 11, 2017 at 7:33 AM, Okan Demirmen <span dir="ltr"><<a href="mailto:okan@demirmen.com" target="_blank">okan@demirmen.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><span class="gmail-">On Tue 2017.07.11 at 19:38 +0530, Sujit K M wrote:<br>
> On Tue, Jul 11, 2017 at 7:01 PM, James E Keenan <<a href="mailto:jkeenan@pobox.com">jkeenan@pobox.com</a>> wrote:<br>
> > Here's a topic I wouldn't mind seeing discussed at a future NYCBUG meeting:<br>
><br>
> Are you suggesting that since FreeBSD is the defacto standard in<br>
> Networking Routers?<br>
<br>
</span>I don't want to distract from the question James asked, but this statement<br>
above is incorrect; I typically refain from responding to these, but this is<br>
just wrong.<br>
<span class="gmail-"><br>
> Or Are you suggesting the High Availability to Loads that it can support?<br>
><br>
> ><br>
> > Is there a role for the BSDs in response to massive ransomware attacks?<br>
><br>
> I have never understood these attacks. I find it solely because of<br>
> illiterate professionals.<br>
> It can always be avoided.<br>
<br>
</span>It is because the frameworks allow for it.<br>
<div class="gmail-HOEnZb"><div class="gmail-h5"><br>
> > In the last few months ransomware attacks such as WannaCry<br>
> > (<a href="https://en.wikipedia.org/wiki/WannaCry_ransomware_attack" rel="noreferrer" target="_blank">https://en.wikipedia.org/<wbr>wiki/WannaCry_ransomware_<wbr>attack</a>) have had a<br>
> > devastating effect on large organizations. Organizations affected include<br>
> > one of the largest law firms in the country and one of the world's largest<br>
> > advertising agency networks. Such organizations are, typically, "Windows<br>
> > shops."<br>
> ><br>
> > Suppose that you are a sysadmin or other, non-executive-level techie in such<br>
> > an organization. You've heard about FreeBSD and OpenBSD and you wonder,<br>
> > "Would using these OSes have helped us either resist a ransomware attack?<br>
> > Could they help us recover better from such an attack?"<br>
><br>
> I agree We are better equipped.<br>
><br>
> ><br>
> > I ask because I know such people. Their organizations have decades of<br>
> > investment in Windows, so, under normal circumstances, it's difficult for<br>
> > them to argue the case for other OSes. But these are not normal<br>
> > circumstances. Is there an "elevator pitch" we could provide them for<br>
> > exploring BSD?<br>
> ><br>
> > Thank you very much.<br>
> > Jim Keenan<br>
> ><br>
> > ______________________________<wbr>_________________<br>
> > talk mailing list<br>
> > <a href="mailto:talk@lists.nycbug.org">talk@lists.nycbug.org</a><br>
> > <a href="http://lists.nycbug.org/mailman/listinfo/talk" rel="noreferrer" target="_blank">http://lists.nycbug.org/<wbr>mailman/listinfo/talk</a><br>
><br>
> ______________________________<wbr>_________________<br>
> talk mailing list<br>
> <a href="mailto:talk@lists.nycbug.org">talk@lists.nycbug.org</a><br>
> <a href="http://lists.nycbug.org/mailman/listinfo/talk" rel="noreferrer" target="_blank">http://lists.nycbug.org/<wbr>mailman/listinfo/talk</a><br>
<br>
______________________________<wbr>_________________<br>
talk mailing list<br>
<a href="mailto:talk@lists.nycbug.org">talk@lists.nycbug.org</a><br>
<a href="http://lists.nycbug.org/mailman/listinfo/talk" rel="noreferrer" target="_blank">http://lists.nycbug.org/<wbr>mailman/listinfo/talk</a><br>
</div></div></blockquote></div><br><br><a href="https://wikileaks.org/vault7/">https://wikileaks.org/vault7/</a></div><div class="gmail_extra"><br></div><div class="gmail_extra">Most of these exploits are Windows. It's just the easiest target. There's certainly at least this body of "tools" one can point to, and by inference on the art of war the bad guys doing ransomware are using similar technology. So far all ransomware attacks I've heard of (ever) target Windows networked storage.</div><div class="gmail_extra"><br></div><div class="gmail_extra">I am certainly interested in how an office can use network storage without using Windows software, in a practical manner. Would be good to hear people's ideas on this. EG: How can you get a 20 person accounting firm to be more secure against such an attack while having to run Quickbooks and whatever their favorite tax software is, using shared document storage.</div><div class="gmail_extra"><br></div><div class="gmail_extra">-- <br><div class="gmail_signature">-jesse</div>
</div></div>