Slashdot Mirror

Arguendo writes "A federal appeals court ruled Monday that Blackboard Inc.'s patent on a learning management system is invalid in light of the inventors' own prior software product. We have previously discussed the patent and Blackboard's trial court victory against Desire2Learn. It's not completely over, but this is almost certainly the death knell for Blackboard's patent. If so inclined, you may read the appellate court's decision here (PDF) or on scribd."

Hugh Pickens writes "TechCrunch's Michael Arrington has been talking for a year about building a touch-screen tablet for Web surfing and now it appears that the CrunchPad is close to becoming a reality. 'We're going to make some really big announcements,' said Arrington, who predicted a prototype would be ready for unveiling by the end of July. The purpose of the CrunchPad will be very simple: surfing the Web. Turn it on and up comes a browser — 'an Internet consumption device,' for reading, checking e-mail or watching video. The CrunchPad will not have a hard drive or keyboard and photos of the latest prototype show a device with a 12 inch screen. 'The screen is now flush with the case and we've decreased the overall thickness to about 18 mm,' writes Arrington. 'The case will be aluminum, which is more expensive than plastic but is sturdier and lets us shave a little more off the overall thickness of the device.' The CrunchPad boots directly into the browser with a Linux-based operating system and a WebKit-based browser. A video of an earlier CrunchPad prototype in action shows a device which, unlike the iPhone, runs flash. 'The next time we talk about the CrunchPad publicly will be at a special press and user event in July in Silicon Valley,' writes Arrington. 'We're full on. These prototypes are real.'"

BrianWCarver writes "The San Francisco Business Times covers a study by student researchers at UC Berkeley's School of Information pointing up the massive holes in privacy policies and protections of which US companies take advantage. The researchers have released a study and launched a Web site, knowprivacy.org, in which they found that Web bugs from Google and its subsidiaries were placed on 92 of the top 100 Web sites and 88 percent of the approximately 394,000 unique domains examined in the study. This larger data set was provided by the maintainer of the Firefox plugin Ghostery, which shows users which Web bugs are on the sites they visit. The study also found that while the privacy policies of many popular Web sites claim that the sites do not share information with third parties, they do allow third parties to place Web bugs on their sites (which collect this information directly, typically without users' knowledge) and share with corporate 'affiliates.' Bank of America, to take one extreme example, has more than 2,300 affiliates — and users cannot learn their identities. The full report and more findings are available from their Web site."

FredMastro writes "Craigslist has now stepped past just asking for an apology. The Wall Street Journal and CNet report that Craigslist is fighting back. 'Craigslist said it has sued South Carolina Attorney General Henry McMaster, in the latest escalation of a battle over adult-oriented ads on the company's site. Jim Buckmaster, Craigslist's chief executive, said in a blog post that the company filed its suit in federal court in South Carolina. ...'" Unfortunately, the WSJ's piece requires a subscription, but reader Locke2005 adds a link to coverage in the San Jose Business Journal.

Tyketto writes "The United States Air Force has taken the first public step in the search for a replacement of the Boeing VC-25, also known as Air Force One, saying it is no longer cost effective to operate and modernize the two 19-year-old VC-25s, which are converted Boeing 747-200s. Airbus has already submitted data for the A380, and while Boeing has had the Air Force One contract for nearly 50 years, delays with the Boeing 787 Dreamliner and Boeing 747-8, as well as the KC-X Tanker competition, may see the USAF looking to Europe for its next presidential aircraft."

theodp writes "Intellectual Ventures (IV) will be setting up shop at the top of a Four Seasons this week as Headline Sponsor of the Ready to Commercialize 2008 conference hosted by the University of Texas at Austin. It's the patent firm's 100th university deal, though some, such as Professor Michael Heller at Columbia University, warn against such deals. '... their individual profit comes at the cost of the public ability to innovate. The university's larger mission is to serve the public interest, and some of these deals work against that public interest.' It's a follow-up to the conference IV sponsored last summer for technology transfer professionals entrusted with commercializing their universities' intellectual property, and should help IV, a friend of Microsoft, snag even more exclusive deals (PDF)."

An anonymous reader writes "A Dallas newspaper is claiming that the long-in-development title Duke Nukem Forever is headed for retail release in late 2008. Unfortunately, game creator 3D Realms says that's not exactly what they meant. 'What the modest Texas newspaper actually seems to suggest is that 3D Realms is "on target" to release the mythical sequel sometime this year, though company president Scott Miller adds, "we may miss the mark by a month or two" (wink, wink). Miller also hinted that "hitting the big three" (in this case, PC, Xbox 360 and PS3) is the obvious development strategy, but he continued to stress that 3D Realms has not "formally announced any platforms for DNF."'"

bob_calder writes "California has walked away from $2 billion a year in revenue by declining to get on board with a group working to standardize tax rates so a national tax on Internet sales could eventually be implemented by Congress. Supporters of the tax think they still have a chance in New York, Texas, and Florida. At the moment the largest states pursuing the Streamlined Sales Tax Initiative are New Jersey, Michigan, Indiana, and Ohio. California didn't want to give up its autonomy in setting taxes to a coalition of smaller states."

davidwr writes "Paypal settled a suit with Maryland and 27 states. Among other things, they'll conspicuously advertise a contact phone number and staff it 14 hours a day and be much more forthcoming about when they will debit your bank account. For those of you who think Paypal Sucks, well, starting soon it sucks just a little less."

dthomas731 writes, "After reading Ed Foster's blog about how the Embroidery Software Protection Coalition (ESPC) is suing grandmothers over using pirated digitized designs, I thought you might want to call your own grandmothers and tell them they are going to be needing a lawyer. And the ESPC is very serious. On the ESPC faq page they scare these grandmothers by telling them even if they didn't know the software was pirated, that 'Unfortunately, when it comes to copyright violations, ignorance is no defense.'"

Billosaur writes "From NPR, we get a Marketplace story about the theft of corporate laptops and the sensitive data they may contain, specifically how to handle the repercussions. From the story: 'TriWest operates in about 21 states. It's based in Phoenix, Arizona. In December of 2002, somebody broke into the company's offices and stole two computer hard drives.And those hard drives contained the personal information of 550,000 of our customers from privates in the military all the way up to the chairman of the Joint Chiefs of Staff.' How they handled the situation earned them an award from the Public Relations Society of America."

freaktheclown writes "Via Engadget, the news that Massachusetts' state legislature is considering a cell phone bill of rights, which would 'limit contracts to one year, require easier to understand monthly bills, and force carriers to fix dead zones.' You may recall that California adopted a similar bill of rights last year before it was shelved last January."

diegocgteleline.es writes "Via google news, I found a article at MSNBC claiming that Michael Dell, Dell's founder and chairman, has droped $100M into Red Hat (Michael himself, not his company). Analyists say that "Dell - neither the person nor the company - is interested in acquiring Red Hat", but one wonders what's behind of this move. A fight against their competence in the server market?"

prostoalex writes "San Jose Business Journal talks about Nanochip, a company that's developing molecular-scale memory: "Nanochip has developed prototype arrays of atomic-force probes, tiny instruments used to read and write information at the molecular level. These arrays can record up to one trillion bits of data -- known as a terabit -- in a single square inch. That's the storage density that magnetic hard disk drive makers hope to achieve by 2010. It's roughly equivalent to putting the contents of 25 DVDs on a chip the size of a postage stamp." The story also mentions Millipede project from IBM, where scientists are trying to build nano-scale memory that relies on micromechanical components."

Mark Leaman writes "About six years ago I founded an internet broadcasting company called GT2K (Gametalk 2000) which featured Real Audio based radio shows on gaming in all its incarnations (table top, strategy, computer...). During the dot.com "plague years" we saw hordes of internet broadcasting companies belly up. But now internet broadcasting is making a comeback thanks to Podcasting. Although Podcasting isn't new news Yahoo has some nice coverage on the re-emergence of the medium."

eberry writes "The Cincinnati Children's Hospital Medical Center will use a robot to mix intravenous medications and prepare its syringes. The robot, about the size of three refrigerators strapped together, can fill 300 syringes an hour, each with a custom dose and a bar-code label routing it to a particular patient. The robot should reduce the potential for errors and improve patient safety. The robot still needs further approval by the Ohio State Board of Pharmacy, but that should come within a month. It should be noted that five Cincinnati hospitals already use computerized pill-dispensing systems." On the other hand, reader Bobbert sends in a cautionary note: "'A group of German patients has filed a lawsuit against financially beleaguered Integrated Surgical Systems Inc., alleging that the Davis company' Robodoc surgical robot is defective and dangerous, according to a company filing with the Securities and Exchange Commission.' So now with robotic surgery, both the doctor and the robot can liable for damages. Next thing you know, telecoms will be liable for medical malpractice if the network connections fail during remote robotic surgery."

Joel from Sydney writes "According to the Sydney Morning Herald, Google is being sued for copyright infringement by a Los Angeles-based porn site. The complaint revolves around Google's Image Search, which allegedly displays copyrighted pictures and links to unauthorised mirrors. The complaint also alleges that Google Search is providing 'links to password hacking sites that provide ways to gain illegal access to [the complainant's] website.' Where will it all end? (Note: free registration may be required to view the article)." The same AP story is being carried by eWeek, no registration required. Reader Nath adds "Interesting that there's no Thank You from the site for the traffic that Google sends its way due to search hits; are these companies forgetting the important role that search engines play in their business?"

An anonymous reader writes "How can people who parody people sue people who parody them? Mr. Sinus is being sued by Best Brains Inc. the owners of the rights to Mystery Science Theatre 3000 because they are using a name/format that is too similar to their own. Here is the story." Evil thought: Apple should include a "three silhouettes yakking on merged soundtrack" mode in iMovie.

cimmer writes "USA Today, the San Jose Business Journal and the suspiciously captivating monitor thing in the elevator are reporting the results of a survey conducted by Aon Consulting that states voluntary turnover in the tech industry is at 8.9%, 'the lowest in the history of the surveys, which date back to the mid-1980s'. Given all of the talk about an economic turnaround, are we looking at a potential tech turnover spike as individuals leave positions they have stayed in only because of a dismal job market? Aon seems to think so. Interestingly, the results of this study are released just as CNN.com reports that personal income growth is at its weakest in two years. Also of note is a discrepancy in the reported sample size, with USA Today stating the results are based upon input from 595 companies while the Business Journal reports that over 950 companies participated."

Thanks to the San Jose Biz Journal for its article discussing the boom in funding for mobile phone game creators and publishers. The story notes that venture capitalists "made six gaming investments totaling $50 million in all of 2003. In the second quarter of 2004 alone, there were five [largely mobile gaming] deals totaling $86 million." Apparently: "Java-enabled handset sales tripled in 2003 to 95.5 million units and sales of Qualcomm's Brew platform reached 11.6 million in 2003, up from 3.5 million the prior year." Although "mobile gaming is young enough that it's cheap to produce a lot of games and see which ones stick", do you think these large investments are going to pay off?

An anonymous reader writes "Not to say that Mr. Gates has been wrong before (sarcasm), but now he is claiming that DVDs will be obsolete in 10 years. As this post claims, I would have to disagree with the world's richest man and say that compact disk media is here to stay for a while because there is just no substitute for a media that cost cents." (And since SMH is going registration only, thanks to the anonymous reader who points out two non-registration sites -- FlexBeta and Yahoo! -- to read the same wire story, and for the observation that not all of Gates' predictions pan out.)

An anonymous reader writes "Not to say that Mr. Gates has been wrong before (sarcasm), but now he is claiming that DVDs will be obsolete in 10 years. As this post claims, I would have to disagree with the world's richest man and say that compact disk media is here to stay for a while because there is just no substitute for a media that cost cents." (And since SMH is going registration only, thanks to the anonymous reader who points out two non-registration sites -- FlexBeta and Yahoo! -- to read the same wire story, and for the observation that not all of Gates' predictions pan out.)

Roland Piquepaille writes "At Sandia National Laboratories (SNL), a data mining and visualization software suite developed in the last two years is now able to extract information from many sources of data and to return 3D images as results. In Sandia's intelligence lab converts business data into 3-D images, the New Mexico Business Weekly reports that Sandia's Information Visualization Lab is able to search structured documents, such as scientific journals, or unstructured ones, such as the Web or an intranet. Since the lab has been established five months ago, this software has already been used to determine the potential of several partnerships with SNL. Other firms, such as Lockheed Martin, also are starting to use the lab. Let's hope that SNL releases this software as open source. It should be fun to use it. For more details and pictures, please read this overview."

An anonymous reader submits "Rio Rancho, New Mexico is going to have 103 square miles of wifi coverage thanks to Intel & Usurf. The Albuquerque International Airport also has free wifi available. (By the way, Rio Rancho also has one of the largest chip factories in the world. Owned by Intel of course.)" The airport service will be free, but though the site is coy about pricing, users will need to sign up (and pay) for the Rio Rancho mesh network. Update: 06/20 03:56 GMT by T : Rio Rancho, not Rio Ranch. Mea culpa.

securitas writes "AP reports that the Jacksonville Airport permanent RFID luggage tracking system will be installed this fall in time for the Super Bowl. The article concludes explaining that when San Francisco and Seattle ended their RFID pilot programs, they 'switched back to bar-code systems, saying the radio systems were unnecessary.' Mirror at Globetechnology, with more at Computerworld ,a large article at Jacksonville Business Journal, as well as some history from RFID Journal and Computerweekly." Moving to an untested system... paying for it by firing the baggage handlers who could help you recover from problems if the system proves to have bugs... what could go wrong?

Numeric writes "Baseball games won't be as boring at SBC Park, home of the San Fransico Giants, because they are offering "one of the largest hotspots", according to this Yahoo article. SBC Communications provides DSL and wireless connectivity to business and consumers. I wonder if Minute Maid Park will offer free orange juice or even better Citizen Ball Park could offer free money! Its nice to see the staduim sponsor offering more than just the name sake of their business." LostCluster writes "The San Jose Business Journal adds the details that the WiFi access will be called SBC's Freedom Link, and and be based on 121 access points spread across the park. Access will be free during the 2004 season, but will cost $7.95 per day or $19.95 per month starting next year."

ibi writes "Yahoo will start taking payments to "tilt the playing field" for companies that want their listings given more prominence by Yahoo's search engine. In an NY Times article, one search consulting firm [bias warning] claims that the extra material that paid listings get to submit will muck up the search results. Yahoo combined the announcement of the paid listings with an unrelated announcement of a new partnership with a few non-profits. ("Don't look over there - what about this nice shiny thing here.")"

Thanks to the San Jose Business Journal for its article discussing the sentencing of a notable videogame pirate to 50 months in prison after being found guilty on charges of "copyright infringement and... mail fraud." According to the piece: "[Sean Michael] Breen... admitted that he was a leader in the Internet-based piracy group known as Razor1911. Since the early 1990s, Razor1911 had sought to achieve a reputation in the underground Internet piracy community... as the leading distributor of cracked computer and console game software." A report at GameSpot has further details, noting Razor1911 "...acquired advance copies of [videogame] titles by posing as reviewers for fictitious game magazines and having them shipped to a derelict storefront address in Oakland."

Thanks to the San Francisco Business Times for its article discussing Electronic Arts' increasing use of product placement in its videogames. The article explains: "In EA's games, basketball players wear Adidas or Nike and run past a McDonald's banner on the court; Old Spice deodorant highlights football college players of the game; a snowboarder swooshes past Honda Motor Co.'s newest vehicle, the Element." It's also pointed out that "a six-figure deal with an advertiser defrays some of the costs of game development, which can run up to $10 million in the industry", but it's claimed: "Video-game makers said they try to take care when incorporating products in games, not wanting to overwhelm game players with product spots."

sofakingl writes "As mentioned in this Slashdot article, Disney has been planning to shut down their 2D animation studios. Just recently, Disney shut down their Florida studio, with some animators transferred to Disney's Burbank studio, and others being left out of a job. This has brought criticism from Roy Disney, the nephew of Walt Disney. And to top it off, Disney may be facing new competition from Legacy Animation, a new animation studio that was formed by ex-Disney animators."

hawaiian717 writes "Pacific Business News is reporting that Hawaii-based ISP LavaNet is looking for beta-testers for their ISP-based Spam filtering tool, Spammo, in preparation for a wider release of the product."

Makarand writes "Technological advances constantly render functional cable obsolete by demanding data transfers at higher rates which older cabling cannot support. New cables that support higher data rates are laid right over older wires. The old wires are simply left in place and abandoned. This interesting article talks about the problems caused by abandoned cabling. According to an estimate several billion feet of abandoned cable lies unused in the plenum spaces of buildings that allow air to circulate creating a fire hazard. Also, very few firms currently worry about removing cabling when they move out of a building."

Thanks to GameSpy for their section featuring extracts and articles centered around the previously Slashdot-mentioned new book, Dungeons And Dreamers, which discusses "the rise of computer game culture" through figures such as Ultima creator Richard Garriott. The feature includes a three part extract from the book, dealing with "the trials and tribulations Richard Garriott and his team at Origin underwent in order to bring Ultima Online to the masses." There's also an interview with the book's authors, as well as a chat with Garriott himself, in which he trails his new NCSoft-backed massively multiplayer title, Tabula Rasa, which he says "combines MMP with story-based scripted adventures for parties of players."

An anonymous reader writes "According to the Austin Business Journal, Dell's 3-teraflop, 600 server supercomputer cluster cost the University of Texas $38 million. As The Apple Turns has pointed out that this is 7 times the cost (and a quarter of the power) of Apple's cluster at Virginia Tech! " Update: 10/14 17:56 GMT by M : worm eater writes "The Register has posted a correction to the widely-reported story that a 3.7 terraflop Dell cluster cost the University of Texas $38 million. As it turns out, the computer cost $3 million, vs. $5.2 million for the 17.6 terraflop Mac G5 cluster at Virginia Tech."

darksoulz writes "The St. Louis Business Journal is reporting that Jay Nixon, Missouri's attorney general, has filed the first lawsuits under the new no-spam law against two Florida spammers. The law doesn't totally prohibit spam, it just requires that the subject line be tagged to let consumers know that it is an advertisement. One of the lawsuit recipients even managed to spam an address maintained by the attorney general's office."

darksoulz writes "The St. Louis Business Journal is reporting that Jay Nixon, Missouri's attorney general, has filed the first lawsuits under the new no-spam law against two Florida spammers. The law doesn't totally prohibit spam, it just requires that the subject line be tagged to let consumers know that it is an advertisement. One of the lawsuit recipients even managed to spam an address maintained by the attorney general's office."

Tonight's Slashback brings you more on Florida's LAN-taxation proposal, the BBC's public archive (which won't be quite as big as you might have hoped), one user's plea to those who respond to viruses, and more. Read on for the details. They're taxing whatnow and hownow? Chad Eric Watt, author of the story posted yesterday on Florida's proposal to tax LANs, writes with a helpful clarification:

"The layout of our Web page doesn't do a great job of showing that the story continues on a second page. That's where I explain what is up for taxing.

Quoting the story now:

'...That brings them under the purview of the proposed rule, which includes computer networks as 'substitute communications systems' -- subject to a 9.17 percent state tax, plus local option taxes.

In Orange County, the local tax typically runs between 5.5 percent and 6.5 percent. That would bring the total tax to between 14-15 percent.

[end of first page, you hafta click to get to the rest of the story]

Computer networks would be taxed at that percent on either annual lease payments or depreciation.'"

He also provides this link to the full, uninterrupted text.

Willie Sutton has met his betters. Syphtor writes "DE Tech has responded to a reporters inquiries as to their patent claims (DE Tech refuses to say why NZ firms were targeted first) DE Tech appeared previously in the /. article, Australian Gov't Moves To Block E-commerce Patent. Latest: the patent has been just granted in Virginia 'after five years of making changes in the application.'
Legitimate protection of IP or a 'fishing expedition worthy of a Sicilian Mafia protection racket.'?"

Well, not releasing everything, No, not as such, that is, you see ... An anonymous reader writes "According to this press release from the BBC, the 'BBC creative archive' (earlier on slashdot) will not be as full as previously assumed. As the page says, 'The BBC Creative Archive would make selected BBC material universally available for private not commercial use in the UK.' (my emphasis) Looks like we won't be able to get the Hitchhiker's Guide and complete works of Monty Python after all, folks."

Who, really, is Peter Lynds, and how old is he? evil_one666 writes "You may remember that Slashdot reported a few weeks ago on ground-breaking work in the understanding of time. Well, it appears that it was all a hoax. While the Guardian is running a story that suggests several interesting conspiracy theories (although they seem to think that Peter Lynds is in fact legitimate), Museumofhoaxes.com present some convincing evidence that he is in fact a 17-year-old student at the same radio college at which he claimed to be a 27-year old-lecturer. Astute Slashdot readers rightly pointed out some big red flags, the first time the topic was aired, and Cesar Sirvent, a researcher in the field, has a list of links related to the controversy here."

Outlook Express not yet left out to rot. dr. electron writes "As stated previously on Slashdot, Outlook was to be slaughtered. Now MS says, in a article on Internet Magazine, it won't be, but developed further. They blame communication problem inside the company about the previous press release. Maybe the ongoing development of Outlook Express isn't the biggest news here, I find the reason 'communication problem' a bit odd (It's not a small decision to kill a product)."

Speaking of Outlook and anguish: caseywest, among others, has had enough blame redirected into his email box. He writes "This is my plea, my Public Service Announcement. Please, please stop bouncing email viruses! I don't run any windows computers, and /dev/null'ing viruses are trivial. I cannot, however, say that this problem is only a Windows-only menace. My email address is plastered all over the internet. As a result, I'm receiving thousands of bounced messages claiming I sent a virus. This is costly, let alone wrong! I didn't send you that virus! If you admin an email server, please answer chromatic's one question test. If you're bouncing email viruses, please reconfigure your filters to send viruses to /dev/null, and save us all money on bandwidth, hard disk space, and general anguish. Thank you."

Vellmont writes "From the state that brought you the 2000 presidential election debacle, now comes the proposal to tax your LAN. The Orlando Business Journal is reporting that the the state of Florida is thinking about putting a 9% tax on LANs within the state. Exactly what they will be taxing isn't clear, since the tax amounts to 9% of... something. Will taxing the electrical wires within your home be next?"

securitas writes "The New York Times published a story about Intermagnetics -- a company that plans to use 'superconductors as valves on the electric-utility power grid, letting their temperature rise to choke off the flow of power,' a day before the largest blackout in North American history. The timing couldn't have been better. On the day of the blackout, Intermagnetics announced a $6 million contract from the Department of Energy to develop and install superconductor 'valve' prototypes by 2006 in the Niagara Mohawk distribution system. Considering that one of the leading theories for the cause of the cascading blackout is a surge in the Niagara Mohawk power grid, this announcement seems incredibly timely."

Eric Stats writes "Working as a Network Engineer for web-hosting company that prides itself on uptime and network availability, and moonlighting as a part-time Linux administrator, my managers and clients are starting to expect a level of information security knowledge from me. I decided that if I wanted to take my career to the next level, I needed to develop some security-specific skills. I heard a lot about the open source Intrusion Detection System (IDS), Snort from friends and co-workers (mostly that it was a pain to get running, and an even bigger pain to understand what it was doing)." To get past those frustrations, Eric looked at two more books on Snort (and compares them to the already-reviewed Intrusion Detection with Snort ); read on below for his take on what each offers. Intrusion Detection with SNORT: Advanced IDS Techniques Using SNORT, Apache, MySQL, PHP, and ACID; Intrusion Detection with Snort; Snort 2.0 Intrusion Detection author (See each) pages (See each) publisher (See each) rating (See each) reviewer Eric Stats ISBN (See each) summary (See each)

I ran Snort at home for a while, using the online docs, but I could never get a handle on which output plugin to use (When to log? When to alert?), how to email alerts to myself (I later found out Snort doesn't natively do this), and how to create signatures from packet captures (no online docs at all for this). When I did get The Pig running, it filled up my log directory with thousands of small alert files, which ended up being in tcpdump format. This frustrated the hell out of me, so I decided I needed to find a good book on Snort, as the online docs simply did not describe how to use Snort from start to finish.

In the past few months, an assortment of books have come out on Snort. Because it has begun to eclipse closed-source, multimillion dollar IDSes in terms of raw performance and features, much attention is currently focused on Snort. Naturally, when an open source project achieves this level of notoriety, publishers, venture capitalists, and corporations want to get in on the game. The flood of Snort books is a testament to this, but it doesn't mean they were all created equally. This book review covers the three books on Snort currently available (we will see another two Snort books later this winter). It covers what is good about them, what is bad, and who the target audience is for each. If you are looking to learn intrusion detection the open source way, or simply do not have a million-dollar IT security budget, these books are a good starting point.

Each of these three books serves a different purpose and consequently is appropriate for a different reader. In summary, Rafeeq Rehman's Intrusion Detection with Snort: Advanced IDS Techniques Using SNORT, Apache, MySQL, PHP, and ACID presents a concise, quick-start guidebook to getting Snort up and running fast. He doesn't delve into the details of Snort, and this book makes a perfect choice for a reader who wants to get The Pig up and running quickly and move on to something else.

The whole gaggle of authors that put together Snort 2.0 Intrusion Detection created a much-needed user manual for Snort. This book makes for good desktop reference, but assumes you understand the core concepts of intrusion detection, or have significant field experience with Snort. It is also somewhat convoluted to read; I suppose it's inevitable when you have 12 authors working on a single book, it is going to come out somewhat disjointed and jumbled. If I hadn't read the other two books first, I doubt I would have been able to piece together what this book is talking about in places. (Such as referring to Barnyard logs in one chapter and "unified binary format" in another; how is the reader going to know they are the same?)

Lastly, Jack Koziol's Intrusion Detection with Snort is a guidebook for using Snort in the real world, either on small networks or in large corporate settings. Like any security tool, Snort is only as effective as its operator. Snort can do an enormous number of things, but if you don't understand the "how and why" you aren't going to be able to apply your knowledge in unexpected, different, or new situations. Koziol's book bridges the gap and teaches you the nitty-gritty Snort details not found in online docs, as well as how to apply your newfound IDS knowledge in practice. This book does lack in terms of screenshots and diagrams, which can be frustrating at points. Instead of a paragraph of text, a simple diagram would have sufficed.

Intrusion Detection with SNORT: Advanced IDS Techniques Using SNORT, Apache, MySQL, PHP, and ACID author Rafeeq Rehman pages 288 publisher Prentice Hall rating 7/10 ISBN 0131407333

I first picked up Rehman's Intrusion Detection with Snort: Advanced IDS Techniques Using SNORT, Apache, MySQL, PHP, and ACID. Rehman's book is also a member of the Bruce Perens Open Source Series. All of the books in his series are published under the OPL. Overall, Rehman's book served as a good intro to Snort. I followed the examples, used some of the custom startup and log-rotation scripts, and got Snort working for the first time. I also learned of ACID, which is a PHP-based GUI for Snort, put out by Carnegie Mellon's CERT/CC. It makes managing alerts from Snort much less time-intensive. It was an exciting experience, but the book left me in the dark on a number of concepts that I knew I needed to learn. I still didn't understand what I was getting out of Snort; I had so many alerts I couldn't "tune out the noise." I didn't know when to use log or alert plugins, so I just turned on both for safety's sake. I also found that Snort was dropping packets (meaning it wasn't able to keep up with the traffic load going to my webservers hosted at home), but didn't find any way to fix this problem. This setup was fine for experimenting at home, but I didn't feel I would be able to use Snort in a mission-critical corporate setting yet.

Intrusion Detection with Snort author Jack Koziol pages 400 publisher SAMS Publishing rating 9/10 ISBN 157870281X

I thumbed through Jack Koziol's Intrusion Detection with Snort at the bookstore, and it seemed to have some more detailed descriptions of using Snort. It also had a lot of the planning, deployment, and maintenance activities you never think of until you are faced with one at 2 a.m. (such as how to upgrade Snort in an organized manner after a vicious integer overflow exploit is released for a core Snort component). It is also the most popular Snort book, so I figured I would buy it. When I took it home, I learned where to place Snort on a network, and what advantages and disadvantages there are to different IDS sensor placement strategies, something I had never considered.

Koziol's book also had the technical detail I was in desperate need of. I learned how to use Barnyard to spool alerts, which keeps Snort from dropping packets. I got to write my own attack signatures from scratch by using Ethereal packet captures in an controlled lab environment. I created a targeted ruleset; it enables specific attack signatures based on what I actually have running on my network, simply using nmap and some complicated perl scripts. The targeted ruleset went a long way to reducing false alerts, and is now a selling product from the Snort commercial vendor, Sourcefire. I finally got email alerts working using syslog-ng with Snort. The book ends with some more advanced content, namely using Snort as an Intrusion Prevention device. You can setup Snort to block packets that match a signature, using Inline Snort, or you can have Snort reconfigure routers and firewalls to block offending IP addresses, using SnortSam. I've experimented with Inline Snort as part of a honeypot, but, as the author points out, this is not yet production-safe, as it can easily be used by attackers to disrupt network availability.

Snort 2.0 Intrusion Detection authors Jay Beale, Anne Carasik, Aidan Carty, Scott Dentler, Adam M. Doxtater, Wally Eaton, Jeremy Faircloth, James C. Foster, Vitaly Osipov, Jeffrey Posluns, Ryan Russell, Brian Caswell pages 485 publisher Syngress rating 4/10 ISBN 1931836744

The final Snort book in this review is Snort 2.0 Intrusion Detection. This book has a lot of the screenshots and figures that the Koziol and Rehman books leaves out. It also contains a lot of useful diagrams, about one for every other page, and a CD-ROM with all of the Snort source and a pdf version of the book. This book, and the Koziol book, cover Snort version 2.0, which isn't all that much different from version 1.9 covered in the Rehman book. Still, it is nice to have the most up-to-date documentation, but it doesn't make the Rehman book any less effective. This book has the most reference material in it, over 500 pages' worth, and it has very organized user manual-like descriptions of important Snort components (preprocessors, output plugins, and rules). Keep in mind that this book was created more as a user manual rather than an implementer's guide. You aren't going to see planning, deployment, and maintenance activities as well as technical deployment examples, as in the Koziol book. And, you aren't going to find a concise quick-start guide such as the Rehman book.

In summary, you aren't going to find anything in this book that isn't in the other two. What you will find is lengthy descriptions, and a lot more screenshots. As stated before, Snort 2.0 Intrusion Detection was written by 12 different people (one of them a Sourcefire employee and Snort.org website maintainer, Brian Caswell). This is obviously done by the publisher to get the book out as fast as possible, which is important for technology book publishers as books are outdated quickly, but has the end result of a disjointed book that contradicts itself in many areas. An example: one author stresses how deadly important it is for us to only use the latest Snort version, while another tells us to use the CDROM that comes with the book, which contains an outdated version of Snort.

You can clearly tell a different authors worked on different chapters, as the style and format change frequently. You can also tell that the authors didn't talk to each other much, as you will find one author referring to something in one chapter (unified binary format) that he expected to have been explained in a previous chapter. In print, the concept was not explained until later, which can be really frustrating if you are not a Snort pro. Additionally, there are enough grammatical errors in the book to be distracting, and, much like a vendor-provided user manual, the chapters don't logically flow from one to the next. If you do purchase this book, this slashdotter would recommend it as a supplement to either the Rehman or Koziol book.

You can purchase Intrusion Detection with SNORT: Advanced IDS Techniques Using SNORT, Apache, MySQL, PHP, and ACID , Intrusion Detection with Snort , and Snort 2.0 Intrusion Detection from bn.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page.

pgrote writes "As mentioned previously, the Acxiom consumer database company was compromised. More details have emerged including the background of the alleged hacker and the method used to gather access. It turns out he had access since December of 2002 and came in through an unsecured FTP server. The suspect was not a former employee of Acxiom as previously reported, but an employee of data mining company."

Thanks to the Dallas Business Journal for a brief article announcing the release of F/A 18: Operation Iraqi Freedom, an Atari-distributed PC flight combat game that's just about to ship, less than 4 months after the start of the real-life campaign. The game's official website has more information on the title, which allows you to "..jump through your television directly into.. the F/A-18 Hornet.. load up with precision guided munitions and bring the forces of freedom to bear on the Iraqi regime of terror." And yes, this upgrade of GraphSim's earlier popular F/A 18 Hornet flight sim really does exhort you to "Kick Some Ba'ath" on the features section of its site.

NearlyHeadless writes "The California Supreme Court reversed lower court rulings that ex-Intel employee Kourosh Kenneth Hamidi committed electronic trespass by sending e-mail to Intel employees, reports the San Jose Business Journal. E-mail has the same protection as other communication, according to the court's opinion, available here (PDF link)." We've covered Hamidi's case more than once in the past.

murat submitted linkage to a simple little story that proclaims that Intel has recently shipped it's One Billionth Chip. Quite an impressive accomplishment... it took them 25 years to reach the billions, but they estimate that they will hit 2 billion by only 2007.

Thanks to Evil Avatar for pointing to a Puget Sound Business Journal story suggesting that Half-Life 2 may not come out for Xbox after all. This relatively obscure article has word from David Hufford of Microsoft that "As of now, Half-Life 2 is not going to be on the Xbox.. Valve is sending us mixed messages on that." Up to now, established sites such as Planet Half-Life have said of the sequel: "An Xbox port is very likely", but it looks like that may no longer be true. Update: 06/09 21:34 GMT by S : GameSpyDaily have got hold of Valve's Doug Lombardi, who is saying that Half-Life 2 is still planned for both PC and Xbox - it may be that either contract negotiations or simply misinformation is clouding the issue.

An anonymous reader writes "ComputerWare, a ComputerLand-like chain of stores specializing in Apple computers, went out of business in 2001. Thinking he sees an opportunity for expansion, the guy who owns Elite Computers, the long-time independent Apple computer store literally across the street from Apple HQ in Cupertino, bought the CW name and leased and reopened the SF Bay Area stores as 'ComputerWare by Elite Computers.' In 2003, Mr. Elite realized the reason the original ComputerWare owners got out -- Apple's engaging in 'unfair competition' -- and announced he is closing the chain along with his original store."

Sloppy writes "The Albuquerque Tribune reports that Comcast, who has cable TV franchise agreements with many city governments, refuses to run ads for competing internet service providers. I guess that's something that citizens need to remind their local governments to correct the next time the monopoly terms are negotiated .. fourteen years from now."

redfenix writes " Here, there, and everywhere, the words "Internet Tax" are being uttered with intentions of bolstering state budgets. It may be inevitable that products purchased on the net will be taxed someday. The real question is: can the fragile internet economy really help local tax economies now?"

jackbang writes "One small but positive step in the gradual erosion of personal privacy and increase of corporate intrusiveness - RadioShack will no longer ask for your name and address when all you want to do is buy some batteries. Now if only they would agree to remove the motion sensor that rings a bell every time someone walks in or out of the store..." Always freaked me out being asked my address just to buy some solder or something.

sg3000 asks: "Our lawnmower broke -- it's an electric, rechargeable Craftsman mulcher mower, and it seems the battery won't charge any longer. So, now we have to find a new lawnmower. My wife, being an environmentalist, listed her requirements: electric, zero emissions, and mulching. Luckily, she never said she didn't want robot to mow our lawn, so my solution so far is the Toro iMow. Unfortunately, the iMow isn't selling well; They only sold about 500 units last year and Friendly Robotics's US local company declared Chapter 11 bankruptcy earlier this year. They've already dropped the price 50% since it's introduction, so I don't want to pick one of these up and then have Toro discontinue the model. Has anyone had any experience with one of these things? Does it really work? Will my lawn look good afterwards? Will I spend 3 hours watching it to make sure it doesn't run over a neighbor's kid? Does it have little arms that sprout out to run the edger? Should I look for something else, resigned that my dreams of a little robot to mow my lawn are still years away?"

"Apparently, the way it works is you lay out some conductive wire along the perimeter of your lawn, and let the iMow loose. It first mows the perimeter, and then it zig-zags through the inside until it completes your lawn. It looks a little random in action-- kind of like a teenager half-heartedly mowing the lawn after he's been told 5 times to, 'Do it already!'

After a little searching on Google, I learned a little about the mower. Apparently Toro rebrands the Robomower made by Friendly Robotics. There are some mpegs of the mower in action on their site. The movies are pretty funny to watch -- check out the "Handling a Tree". Unfortunately, the robot doesn't seem to be very efficient and there are no good shots of what the lawn looks like afterwards. There should also be a movie showing what the neighbors think when they see this thing in action."