Slashdot Mirror

A classic.

1. International Relations and Security Network
   
2. International Society of Nephrology
   
3. Immigrants Support Network
   
4. Internet Shopping Network
   
5. Prince Edward Island's Internet Company
   
6. International Supernovae Network
   
7. Institut des Sciences Nucleaires
   
8. International Society for Neurochemistry
   
9. Interagency Services Network
   
10. InfoSec News
    

However, postgrey (an implementation of greylisting) rejects all mail upon first attempt. Trojanned windows boxen spewing spam and/or virii, actual spammers, legitimate mail --- they all get blocked upon HELO, for 300 seconds. The theory is that legitimate mail will be resent, while bogus mail sent by spammers and virii are "fire-and-forget". Each address pair (sender and receiver) are added to the database, and the resent mail is accepted immediately, as is any future mail between the address pair.

It works fantastic --- I've put it on all my mail servers. To say that 95% of my spam problem went away is not an exaggeration.

No Photoshop for Solaris you say?

To further weirden your day, let me also submit this link: MS Internet Explorer for Solaris and HP-UX (Outlook Express is also available).

Why are operating systems which need security from buffer overflows still written in insecure languages such as C or C++ ?

I understand the most secure OS is openVMS and was coded in vaxassembler and had each line of code scrutinized for bufferoverflow errors, so I guess C could be secure if used right.

But wouldn't a language with garbage collection like oberon,java,ada or python be great for secure operating systems ?

Example. BlueBottle OS Ada OS.

So does MRTG, is that "spyware"? Nothing you install voluntarily can be considered spyware, otherwise it gets ridiculous. If that's the criteria we're using, VNC must be the epitome of evil, it lets someone control your computer remotely! Ban it!

Heat from the large data centre at ETH used to be piped and sold to nearby users. I think the practice has been discontinued but it was a neat idea.

Visual Basic and Java and Python and Oberon and Object Pascal and Boo and Nemerle and Component Pascal and Forth and Lisp and Smalltalk and Logo and Tachy.

Some of the packages are still in the larval stages, but they're out there, and more are on the horizon.

You forgot Yeti

For more details, here's a link to an actual research paper by Chow et all (2004): The Artificial Silicon Retina Microchip for the Treatment of Vision Loss From Retinitis Pigmentosa .

Besides more details, the research paper also includes photos of things like a shot of the artificial retina on top of a penny (it's about as big as Abraham Lincoln's nose), the actual circuitry, and where it gets placed in the back of the eye. It also shows the results of their visual tests on patients with the artificial retina.

• Python
• Perl
• Tcl
• JavaScript

After seeing this screenshot I have to disagree. I'm very comfy around windows/KDE interfaces (Haven't played as much with Gnome but it looks ok), but this looks like quite a mess to me. Hopefully the screenshot isn't very representative of what your desktop usually looks like. Quite a mess if you ask me.

Thanks Department of Physics, ETHZ, GNUSTEP-i386-0.9.4.iso
Thanks inode.at and Robe GNUSTEP-i386-0.9.4.iso
Thanks Lyle E. Dodge, GNUSTEP-i386-0.9.4.iso
Thanks Philipp, GNUSTEP-i386-0.9.4.iso
Thanks Daniel Aubry, GNUSTEP-i386-0.9.4.iso
Thanks Peter Samuelson, GNUSTEP-i386-0.9.4.iso

Thanks Department of Physics, ETHZ, GNUSTEP-i386-0.9.4.iso
Thanks inode.at and Robe GNUSTEP-i386-0.9.4.iso
Thanks Lyle E. Dodge, GNUSTEP-i386-0.9.4.iso
Thanks Philipp, GNUSTEP-i386-0.9.4.iso
Thanks Daniel Aubry, GNUSTEP-i386-0.9.4.iso
Thanks Peter Samuelson, GNUSTEP-i386-0.9.4.iso

Try the following:

• 3ivx Codec
• DivX Codec
• Xvid Codec
• Real Export Plug-in

Enjoy!

Yaz.

What they have failed to realize is that there are games out there of comperable quality that you can play for free, such as this highly-addictive game. Click the snowman once to start the jump, then click a second time to swing the bat. Watch Tux fly!

Google cache http://www.google.co.uk/search?q=cache:KiH513c0cEc J:support.bbc.co.uk/support/+&hl=en

The user/pass only seems to affect access to the main page. Once you view the cached version you can get access (mostly) to the sub-pages.

Extensive use of MRTG (http://people.ee.ethz.ch/~oetiker/webtools/mrtg/) for the graphing. Someone at the beeb is/was a geek that liked their charts/graphing/Perl/etc.

Baz

An interesting (and excellent) link on VHDL coding standards in a working environment is also available off that page: the European Space Agency's VHDL coding standard (available in PostScript format here http://tech-www.informatik.uni-hamburg.de/vhdl/doc /style_guide/ModelGuide.ps.gz).

The Xilinx WebPack is a great place to start - you get everything you need to take you from text-edited files to a binary image on one CD (or download from here: http://support.xilinx.com/support/download.htm). It even comes with a (very) cut-down version of Mentor Graphics' ModelSim and Xilinx's own synthesis tool, XST.

If you use Altera chips, they have a similar offering, called Quartus II Web Edition (http://www.altera.com/products/software/products/ quartus2web/sof-quarwebmain.html)

Speaking of text editors, (X)Emacs has a great VHDL mode that can beautify your code, create makefiles and manage your projects, available here:http://opensource.ethz.ch/emacs/vhdl-mode.htm l.

Here is a direct quote: "From a scientific point of view, it has to be stated very clearly that the REFLEX data do not prove a causal link between EMF exposure and any adverse health effects." And then, of course, a call for more research... The summary report can be found here: http://www.itis.ethz.ch/downloads/REFLEX_ProgressS ummary.pdf The full report here: http://www.itis.ethz.ch/downloads/REFLEX_Final%20R eport_171104.pdf

Here is a direct quote: "From a scientific point of view, it has to be stated very clearly that the REFLEX data do not prove a causal link between EMF exposure and any adverse health effects." And then, of course, a call for more research... The summary report can be found here: http://www.itis.ethz.ch/downloads/REFLEX_ProgressS ummary.pdf The full report here: http://www.itis.ethz.ch/downloads/REFLEX_Final%20R eport_171104.pdf

and our company uses it far more than we use verilog...

btw, if you are editing vhdl, check out the Emacs mode for VHDL.
It's far more powerful than vhdl editing aids in any other editors I've used.
(And, yes, you *can* use GNU emacs in Windows too)

I use postgrey with postfix, and it seems to work pretty good. By the way, I also run clamav and spamassassin, both of which are handled by amavis-new, which also rejects mail with errant windows attachments. You can read an extensive description of my setup here.

Postgrey.

Our Postfix mail server uses Postgrey (click link for graph showing effectiveness), and it's as close to 'magic' as I've seen yet in the antispam category.

-Mark

for live graphical reporting use mailgraph with RRD

for live graphical reporting use mailgraph with RRD

Greylisting relies on the fact that most SPAM is not being sent by open SMTP relays any more, a surprising amount of SPAM is being sent through open web proxy servers or windows bot nets, as these are not real MTAs they can't deal with errors properly.

Of course spammers will adapt to greylisting but in the meantime its extremely effective.

Jason

Holograms are synonymous with "real" 3D images. They've been around a long time because they don't rely on computer tech like almost everything in 3D imaging. They also provide a closed loop solution, they cover both image capture and display in a single medium, which has an elegant appeal to it.

The problem is theat they've been around such a long time and we haven't figure out a way to get around some very difficult limitations. The article points out that holographic video is years away at best. Live image capture will be very difficult. Meanwhile huge advances are being made in other 3D image captue methods. Real time surface capture is becoming a reality. Alternate the structured light patterns with natural light at about 120 FPS and you have full color 3D video. This requires a digital projector and digital video camera which are synchronized, a standard PC, and not much more. Other methods use laser, invisible infra red light patterns, and so on. Reasearch projects exist which seek to combine human 3D image capture and virtual reality display already exist. Holography was likely not even a consideration.

Holography is synonymous with real 3D in many people's minds, but there are many other ideas out there that could hold much more potential. Display is an issue, but even today's VR displays are likely better than any true holographic technology, and quickly improving.

I'm confused. What exactly does Amphetamine have to do with software security?

4D Sports Driving (aka Stunts) already had that feature in 1990...you could choose different camera angles (including a series of TV cameras automatically placed along the track), and you could save replays to disk. Coolest racing game ever...

You don't really say what sort of problems you're talking about or why you want to build the language.

If you just want to build a language that will teach you about programming languages, look at old fashioned Pascal not Delphi or Kylix or even Turbo Pascal, but good old-fashioned Jensen and Wirth 1974 Pascal.

If you want to design a programming language, the best advice is to write some code in the proposed language. Remember Tony Hoare's rule, and keep it simple. Most programming languages, from Perl to Python to Java 5, suffer from being accumulations of features.

Have a look at Ruby, Modula-n, Oberon, and so forth.

If you're looking to learn lots about programming in general, think about things you want to do, and construct a lanaguage that does them. Icon is a nice example. Look at SNOBOL, if only because you'll appreciate the "five miles through the snow" stories we old farts tell.

Typo corrections:

I meant, Niklaus Wirth's languages, Oberon and Modula-2.

He also wrote the classic CS book, Algorithms & Data Structures which while dated is a fine example of how Computer Science should be taught.

Typo corrections:

I meant, Niklaus Wirth's languages, Oberon and Modula-2.

He also wrote the classic CS book, Algorithms & Data Structures which while dated is a fine example of how Computer Science should be taught.

That would be Wirth. Also see his "official homepage" My first year CS was Oberon... A Pascal derivate. :-)

Well you must be really mad you read this!

** So what? His articles are interesting.
**

his articles suck.

basically what the guy does is he follows some other sites that have the real news on them, then he takes them(sometimes pretty much copypastes) them to his blog and after that he submits them to slashdot.

his publication(his blog) is pretty much a standard ripoff of the real sites and their news. but i guess they don't another publication copying their stories verbatim without hesitation.. I wonder if they would mind if started a newspaper that just copied the articles from other papers..

if he just wanted us to know about it he could submit the stories instead of copypasting together 'stories' of his own. yeah, i got karma to burn. i wish the excess karma could be used to vote on _changes_ to the system(among other things filtering the politics.slashdot.org doesn't seem to work, i've ticked both 'politics' topics in the exclude topics tab.. and for the reference there aren't _any_ sections to tick in the sections tab).

and to really 'stick it up': here's actually a meaningful link about the story at hand: http://www.sim.inf.ethz.ch/projects/alpsim/ . It's to the actual project..

For your information, the U.S. has allready admitted to having large amounts of weapons of mass destruction, namely nuclear weapons, ready for use. The U.S. and Russia also keep reference samples of biological agents for use in counteracting biological weapons.

You may be interested to know that there are actually inspection/monitoring systems set up to monitor test ban treaties and such. So yes, the U.S. might be inspected, but I'm not sure it would be by the U.N. but rather by other states.
The U.N. Headquarters is situated in the larges city in the U.S. The open nature of the U.S. society, and the seismiological and radiological monitoring stations around the world help to reveal any test of a nuclear weapon on the planet. If I recall correctly, there is allready in place an agreement not to use nuclear weapons in space. New nuclear powers and any alien governments haven't signed that treaty.

Not specifically related to WMD, is the Open Skies Treaty, which allows other countries to do reconnaissance flights over the U.S.

(The moderators said this was Interesting, so you get a matter-of-fact reply.)

These guys use Java for real-time applications and there are for sure more.

I've been using it and it cut my SPAM significantly with only minimal problems (broken mail servers not resending messages after a temporary failure). With the reporting tool included, it's easy to check for legitimate messages that were not resent.

Since you already reject mail with a temporary failure, you should look into using greylisting. More info is available at http://greylisting.org/. As you're using postfix, check out Postgrey at http://isg.ee.ethz.ch/tools/postgrey/. I've been using it for a while and I'm extremely satisfied with it as it's cutting the amount of SPAM significantly. With the report tool, it's pretty easy to see if legitimate mail wasn't resent.

Not sure how helpful this will be in huge environments, I live in the small to midsize market, but here are some tools that I have found useful in the past:
Not exactly a monitoring tool, but definitely the most versatile all around auditor I have ever found: Nessus.
Ettercap is a good sniffer.
The MRTG tool has been a godsend when I have had managed devices to deal with, and I have heard very good things about the RRD tool and Cacti.
Tripwire is freely available for Linux and the BSDs, though the Win32 version has not been open-sourced.
One tool I have not been able to find in F/OSS is a Windows event log monitor (though believe me I'm still looking).

Not sure how helpful this will be in huge environments, I live in the small to midsize market, but here are some tools that I have found useful in the past:
Not exactly a monitoring tool, but definitely the most versatile all around auditor I have ever found: Nessus.
Ettercap is a good sniffer.
The MRTG tool has been a godsend when I have had managed devices to deal with, and I have heard very good things about the RRD tool and Cacti.
Tripwire is freely available for Linux and the BSDs, though the Win32 version has not been open-sourced.
One tool I have not been able to find in F/OSS is a Windows event log monitor (though believe me I'm still looking).

There are alternatives. I didn't have the forethought to realise that powerbooks don't have PS/2 ports. They do have a RS232 or a Parallel port though don't they?

You could try LIRC using a sound card for input.

To quote the page:

This page first describes an approach to use the sound input to record IR remote control signals and then provides hard- and software to deploy it on Linux/Unix systems and on Mac OS X.

I presume that the Powerbook has a line (or possibly even microphone) input available that's supported by Debian.

For software documentation, I think TeX is a good example. Knuth wrote it using literate programming techniques, and published the annotated source code in book form, along with the TeXbook. Because TeX and LaTeX were very useful, and had become very stable, other people came along and provided aftermarket books, some of which are very good. We're now seeing a third generation of documenation, which is free, such as this. I doubt that any of this would have happened if Knuth hadn't started out by stabilizing the software, and writing his own high-quality docs.

Such a story is useless without the images. So here's a temporary mirror for the resulting images of the project:

Photon Rendering Project: image mirror

The mirror won't be up forever.

Looks like Micro$oft has been at it again... Newest M$ Patent

It might, if the ISP can afford to maintain dual infrastructure, one oversold for resi customers and one strictly conforming to weird "sell-one-build-one" rules for business customers.

And when I say "afford", I mean afford to do so while competing with companies that just oversell everything. :) So, business-only providers might.

The real goal is not to restrict overselling but to identify when your oversell level begins to impact customer throughput.

1. The keys are
2. watch the traffic graphs like a hawk
3. don't sell someone 40 Mbit/s guaranteed in an area that's already oversold -- they might actually use all 40 Mbit/s and
4. have a plan to rapidly increase bandwidth when the crunch comes.

The third item is tough -- depending on who has what fiber in the ground, it could take weeks to get an OC-3, months to get an OC-12 in place. That won't be cool with the customers to whom you've sold "guaranteed bandwidth". So you need to trigger the order when the traffic reaches maybe 80% of the pipe capacity in question.

Oversell is probably a canard, since everyone does it, but it does lead to interesting and difficult issues which are NOT handled the same way (or well) by every provider.

eastpole

I've heard conflicting things about the tcp/ip stack. Regardless, MS does use BSD licensed code and credit it as required in its acknowledgments. So, its not theft.

Other companies (Sun, HP, Apple, etc) have also extensively used BSD code.

Very cutesy, but the 3-d data layout could be useful.

I've been playing with MRTG a little lately...I wonder if you could have Apache or other processes provide info via SNMP and use or modify MRTG to provide more 3-d and 4-d (brightness like VisitorVille's lit/unlit buildings or color) 'graphs'?

It's probably a strech, but maybe....

Although the official reason that GnomeBasic was dropped was because of "stagnation", the real reason that it died was because Mono was supposed to take it's place.

If that happened, I've seen no evidence of it.

While you can write Mono code in Java, PHP, Logo, Oberon, Pascal, Forth and Lisp, VB is still unavailable.

It's a pity such a popular language appears to be entirely ignored.