Slashdot Mirror

← Back to Domains

Domain: immunix.org

Stories and comments across the archive that link to immunix.org.

Comments · 160

  1. Re:Better Compiler by phek · · Score: 1 · on What's Wrong with Unix?

    http://www.research.ibm.com/trl/projects/security/ ssp/
    http://www.immunix.org/

    Theres others, just cant think of the names...

  2. Re:Buffer checks by cowbutt · · Score: 3, Informative · on XP SP2 Can Slow Down Business Apps
    Immunix for one. Alternatively, taking a slightly different path towards pro-active security measures, Red Hat has recently included exec-shield (as seen previously in Fedora Core 1 onwards) in RHEL3 update 3. FC2 includes SELinux, so that'll probably turn up in RHEL eventually, too.

    --

  3. Re:Firefox Too? by Anonymous Coward · · Score: 0 · on New IE Malware Captures Passwords Ahead Of SSL

    It would be nice if operating systems could protect applications from each other.... Are there any operating systems that do that?

    My prayers have been answered, yes there are and discusing them on slashdot should have heaponed eons ago... With computers taking more sick days then people you would think people would be asking for a secure OS when they buy a new pc at compusa.

    Its called capability based acces control (first implemented in the 70`s). Its just a fancy way of saying that rather then having a program get rights becouse of whoever executes it it gets all sorts of rights all by itself.... yes thats an improvement security wise becouse this way a process can get only the rights it needs.

    Ofcourse you could go and build an all new operating system for this priciple. However many operating systems have been hacked to do tiny bits of this already. In fact many personal firewalls do it for windows (I never though I would be advocating something called a firewall considering I tend to call firwalls "stupid packet filters", and claim they do little for security) Ofcourse open operating systems have plenty of implementations of this idea. Now if only people were to ask microsoft for stuff like this. Windows is full of crazy features that are there becouse big customers needed them. With microsoft giving up on their "(backwards) compatibility before anything else" idea (XP sp2) structural changes might someday make it into windows. Ofcourse thats only if paying customers want them.

  4. Solutions: Cyclone and Stackguard by cquark · · Score: 1 · on Analysis of the Witty Worm

    Excellent post. Moving away from C/C++ is a good idea for many projects, but since there's far too much C/C++ code out there for that to be a universal solution, we need to see wider deployment of stackguarding compilers like the propolice and stackguard patches to gcc 3.x. We also need to look at easy migration paths from C/C++ to a type-safe language, like Cyclone, a type-safe dialect of C.

  5. Here is a question for the Linux buffs out there by 00RUSS · · Score: 1 · on Windows XP SP2 Could Break Some Applications

    What steps has linux put forth to make sure buffer overruns dont happen? I have seen programs that bost that they can detect and fix the error in code (Stackguard). Now, why hasnt GCC implemited this idea. It seems to me protecting it so the code cant buffer overflow AND the kernel cant would fix alot of problems.(Apache)(How to)

  6. Finally, the patch party is over (for now). by graf0z · · Score: 4, Insightful · on Kernel 2.6.1 Released
    2.4-patches i regulary used:

    I got really tired of applying combinations of those patches to newest kernel source (due to security issues). They 're now all included to 2.6! Only MPPE-support seems still to lack.

    They must have beaten up Linus to get all those accepted ...

    /graf0z.

  7. Re:SELinux by CajunArson · · Score: 5, Interesting · on Linux 2.6.0 Kernel Released

    My thesis project involves a module similar to SELinux and I have found that the best 2.6 kernel for messing around with it is actually the BK tree mantained by the Linux Security Modules (LSM) project. Technically SELinux is one module that is part of the LSM project but the two are often referred to synonymously. LSM is at: immunix and you can check out their kernel branch for extra features that are not yet in mainline 2.6 (and may not get in at all if the kernel maintainers aren't confortable with the changes)

    My personal project is actually a big modification of the Domain & Type enforcement that is present in LSM now. but the code is nowhere near ready for inclusion just yet ;)

  8. Re:Time for better security. by Spruce+Moose · · Score: 1, Informative · on Kernel Exploit Cause Of Debian Compromise
    Dude, it is. Check out Linux Security Modules which has an implementation of SELinux.

    It should be in the 'Security' menu option when you configure the kernel.

  9. Resources by bobbozzo · · Score: 1 · on Linux Source Distribution for Firewalls?
    You should probably look at
    lwn.net/Distributions/

    Specifically, lwn.net/Distributions/index.php3#secure and possibly also the special purpose distros (mini, floppy, cd, whatever).

    Engarde, Immunix, and Openwall are all designed to be secure platforms for server or firewall development.

    If you want something small, you might look at LEAF or Coyote or Wolverine. Coyote is free, Wolverine is $30-$120 depending on which license you need.

    Personally, I'm using Astaro (free for personal use). It seems to be well designed from a security perspective (everything is chrooted, etc.), but it is not easy to customize the web interface, etc. A 'pluspack' is downloadable which includes gcc, etc, or you can compile on RedHat if you have the right versions of all the libraries.

  10. Re:Monster.com: Unethical Pirates by Crispin+Cowan · · Score: 1 · on A New Meaning For Geotargeting At Monster.com
    It's as if a well fed westerner telling a poor hungry 3rd world citizen to stay away from the truffles because they will give him a bad case of indigestion. Hypocritical at best...
    hypocrisy: The practice of professing beliefs, feelings, or virtues that one does not hold or possess; falseness.

    So, are you saying that I don't believe that Monster.com is a scumbag organization? That I have some sekrit plan to keep the joyous motherlode of high-quality opportunities at Monster.com all for my eviil self?

    Perhaps you might consider that I am an employer, and that therefore my views on where I will and won't look for candidates might be of some use to job seekers.

    So for those who might actually care, when I am recruiting I post & read in these kinds of forums:

    • local Linux user group mailing lists (we are a Linux vendor)
    • local system administration mailing lists (I have high respect for admins as potential developers)
    • Craig's List
    • Security Jobs
    • "networking", i.e. friends of friends
    Caveat: we have no open positions at this time. We filled several positions last month.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  11. Monster.com: Unethical Pirates by Crispin+Cowan · · Score: 4, Interesting · on A New Meaning For Geotargeting At Monster.com
    Two months ago, I posted some job ads (open position) to various forums, noting clearly that I did not want to work with recruiters or third parties. Then I started getting candidate applications responding to a post on flipdog.com (a Monster subsidiary). But I could not access this ad describing my own position unless I paid flipdog.com for the privilege.

    Advice to job seekers: never, ever, ever deal with Monster.com or their subsidiaries. I have monster.com and flipdog.com in my spam filters.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  12. List of Luminaries by Werner+Deitel · · Score: 1 · on Linuxfest Northwest
    I can't believe I haven't heard about this yet! I live in Tacoma, and admittedly I've never managed to make it to the LUG meeting here. You'd hope that some local papers, etc, would have meantioned this, but we are in the Microsoft Municipality here, so what can you expect.

    I was looking at the list of speakers, and damn, it's impressive.

    This promises to be a really cool - I look forward to going up there this weekend!

  13. List of Luminaries by Werner+Deitel · · Score: 1 · on Linuxfest Northwest
    I can't believe I haven't heard about this yet! I live in Tacoma, and admittedly I've never managed to make it to the LUG meeting here. You'd hope that some local papers, etc, would have meantioned this, but we are in the Microsoft Municipality here, so what can you expect.

    I was looking at the list of speakers, and damn, it's impressive.

    This promises to be a really cool - I look forward to going up there this weekend!

  14. What about by Anonymous Coward · · Score: 4, Interesting · on OpenBSD Stomping On Buffer Overflows

    What about stackguard? Why isn't it in use everywhere? Or libsafe for that matter? Or Openwall Project kernel patch for Linux? Can anyone please tell me why no one uses it?

  15. Re:StackGuard by stevey · · Score: 1 · on Secure Services on Virtual Machines?

    Yes that's what distributions like Immunix do, but notice that even with the extra protection they offer they still update their packages everytime a new hole is discovered.

    Stackguard isn't a magic bullet, and isn't gonna stop you from being 0wn3ed. Typically it just means that the released exploits won't work, and that's also the case for odd architechtures like Alpha - most of the released exploits are for intel, so avoiding that gives you as much protection as the stack guard compiler.

    The same with the no-exec patch from Solar Designer, which Linus keeps vetoing for Linux; it gives you protection from the commonly released exploits, but via return-into-libc attacks, etc, you can still be rooted.

    Use it if you like, but don't think it protects you completely..

  16. StackGuard by drdink · · Score: 4, Interesting · on Secure Services on Virtual Machines?
    You might want to check out StackGuard:
    StackGuard is a compiler that emits programs hardened against "stack smashing" attacks. Stack smashing attacks are the most common form of penetration attack. Programs that have been compiled with StackGuard are largely immune to stack smashing attack. Protection requires no source code changes at all.
  17. Re:SPELLCHECKER ... ADD IT DAMN-IT!!! by Crispin+Cowan · · Score: 3, Informative · on Run For Cover; It's Mozilla 1.4 Alpha
    I have been using this Mozdev spell checker for about a week, and I love it.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  18. Re:Hudson Hawk by Crispin+Cowan · · Score: 1 · on What's Your Favorite Underappreciated Movie?
    Keen: there was an original film that "12 Monkeys" was based on called "La Jetee". Anyone seen it? I'm not generally a fan of French film, but there have been a few brilliant exceptions (Nikita, Diva, City of Lost Children, Delicatessin). Hmmm ... perhaps I am a fan of French film after all :-)

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  19. Re:Low budgets, big profits... by Crispin+Cowan · · Score: 1 · on What's Your Favorite Underappreciated Movie?
    Some other spectacularly profitable low-budget movies: Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase
  20. Re:Hudson Hawk by Crispin+Cowan · · Score: 4, Informative · on What's Your Favorite Underappreciated Movie?
    Yeah, I love 12 Monkeys too, but it was not under-appreciated. It was widely critically acclaimed, and made $159M world-wide on a budget of $29M. In contrast, Hudson Hawk grossed $17M on a budget of $68M.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  21. Re:Hudson Hawk by Crispin+Cowan · · Score: 1 · on What's Your Favorite Underappreciated Movie?
    I second that. "Hudson Hawk" was a brilliant farce, and the audience treated it like it was just a really stupid action movie.

    Similar, but less pronounced effect for "The Fifth Element". Also for "Sunset". Hmmm ... maybe it's just people don't get Bruce Willis :-)

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  22. Re:Scale over 4 CPUs by blakestah · · Score: 1 · on What High End Unix Features are Missing from Linux?

    Web page from Sun on scalability

    Note that it doesn't describe what happens between 1 and 4 CPUs.

    Linux kernel compilation benchmark, showing that 4 CPUs each crunch about 94% of what 1 cpu can crunch

    Now, 94% is some serious CPU utilization. The best results from Sun's marketing brochures don't quite touch that. More recently IBM has taken scalability in linux up to a much larger number of processors (no barriers existed in source code, the developers just didn't have 128 CPU machines to play with).

    So, no, I don't think SMP scalability has any relevance to choosing Sun/IBM/HP/Tru64 linux. It is strictly a hardware issue.

    There are SOME things big iron has - like better logical volume management (I am familiar with Tru64 resizeable file systems and domains). I am beginning to think, however, the niche for which big iron UNIX has an advantage over linux is fairly small, and growing smaller and smaller by the year.

  23. Re:Support Public Radio by Crispin+Cowan · · Score: 4, Insightful · on Why (FM, Not XM) Radio Sucks
    You are forgetting the never-ending stream of annoying, worthless, tax-payer funded, left-wing drivel.

    Ah, yes, what I refer to as "the truth." That's my favorite part of NPR. Quite the refreshing change from all that right-wing propaganda about how we have to destroy "Saaddam Huusayn" before he destroys us.

    NPR is the only thing worth listening to on radio. If I can't get NPR, I switch to "off." I sure as hell am not going to pay XM $10/month for muzak.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  24. Yes, SMS Is Unreliable by Crispin+Cowan · · Score: 3, Informative · on SMS Messaging Unreliable
    I have AT&T cellular, and my SMS is unreliable. Messages can take 12 hours to arrive, and they can fail to arrive all together.

    AT&T got me started on SMS with a "free for now ..." package, then switched to one where incoming is free, and outgoing costs 10 cents each. So I adapted and basically never send a text message from my phone. However, it is handy that you can e-mail messages to an AT&T cell phone at 5055551234@mobile.att.net (i.e. insert appropriate phone number) for no cost. So I regularly e-mail my wife's cell phone from my desktop.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  25. Re:Changes nothing by Crispin+Cowan · · Score: 3, Interesting · on Honeymoon Over For Google?
    Isn't this kind of ideology exactly what let to the 'dot-com crash'. People invested lots of capital in companies that people enjoyed but weren't necessarily very profitable. I think google is the latest subject to this phenomenon. Although I could be,and hope that I am, wrong.
    IIRC, in his keynote address to USENIX LISA 2002, Jim Reese, Google's Chief Operations Engineer, claimed that Google is profitable.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  26. Re:In university settings.. by Crispin+Cowan · · Score: 2 · on Scientists Don't Read the Papers They Cite
    When a professor is first accepted to the faculty of a university, he/she must "publish or perish" for the first 5(+[?]) years. If you do not publish often enough in those first years, you are not retained.
    That is done so that only productive researchers are retained. And it is not strictly volume: both the number and the quality of publications are measured. Some schools actually use citation counts: how often are your papers cited?

    I personally think the requirements of universities should change so that we are not searching through a glut of papers,
    It is not the university standards that are the problem, it is the standards of reviewers at journals and conferences that lead to the glut of papers. To improve the quality and decrease the quantity of research generated, 2/3 of journals and conferences should be shut down.

    I suppose univeritiy policy could marginally affect this by having the university library summarily unsubscribe from 2/3 of the journals & conferences they receive.

    Be careful what you wish for; you might get it :-)

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  27. Re:Buffer overflow yet again by Anonymous Coward · · Score: 0 · on WinXP and WinAmp Vulnerable to Malicious MP3s

    There are a few kernel patches or custom packages that do this.
    StackGuard is one, and GrSecurity is another.

    They will break any apps that depend on insecure behavior to function, but said apps can be either fixed or abandoned for alternatives.

  28. Re:Dissent by Crispin+Cowan · · Score: 2 · on Truth, Ownership, and the Scientific Tradition
    I disagree with the author's basic assumption: that the purpose of science is to find a higher truth, for its own sake, and that benefits to humanity are merely tangential spinoffs. I think science's purpose should be to create things that will improve the human condition, especially in fields of inquiry such as biology, where the results of scientific research can have almost immediate, tangible results on people.
    Science is the former: the search for knowledge for it's own sake. The latter (applying knowledge to make people's lives better) is known as "engineering."

    Heard at a conference 10 years ago:

    • Scientists build stuff in order to learn stuff.
    • Engineers learn stuff in order to build stuff.
    Crispin, who is a little of each
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase
  29. Re:[ Cached Version ] by Crispin+Cowan · · Score: 2 · on MacAddict Tracks Down eBay Scam Artist
    Seriously, since you're the THIRD person posting this, *and* the site is performing fine, I assure you, down moderations are *extremely* necessary for your karma-whoring ass.
    Except now the site is not responding, so take your sanctimonious attitude and moderate it. Your post was mostly useful to lead me to the actually useful post with a cached copy of the article :-)

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  30. Biodiesel in America by Crispin+Cowan · · Score: 2 · on 239 MPG Car
    For all the haughtiness in the article quote, biodiesel fuel is available in America. It is sold out of the pump at the corner gas station two blocks from my house. They charge approx. $1.80/gal. instead of the $1.40/gal. they charge for regular diesel.

    Kudos to Albina Fuel.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  31. Opportunity to Crack the Desktop by Crispin+Cowan · · Score: 3, Insightful · on Bricklin on Tablet PCs
    Tablet PCs strike me as an opportunity for Linux to crack the desktop market. From what I've read of initial impressions of Tablet PCs, the thing that sucks the most is the crappy Microsoft inking software, that is neither easy to learn to write for (sucks worse than Graffiti) nor will it learn your writing style (sucks worse than Newton).

    So, if an open source project were to arise that did a better job of writing recognition, it could be a "killer app" that gets more of the mainstream PC users interested in Linux desktops.

    Caveat: no, I'm not going to do it. My research area is security, not HCI.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  32. Optical Communications to Keep Bombs Away by Crispin+Cowan · · Score: 5, Insightful · on Optical Cellphones
    This kind of technology is particularly important to the Army for men in the field. The reason is that in the near future, any kind of broadcast RF will result in a bomb down your shorts in a big hurry: smart weapons will home in on any radio frequency they can find, and destroy it. Thus talking on the cell phone, walkie-talkie, whatever, will mean instant death to a soldier.

    Thus the Army must have some kind of non-broadcast communications system. I have no direct knowledge of how they would do it, but it isn't hard to imagine. For example, suppose low-flying satelites broadcast a signal. Handsets on the ground listen for that signal, and then point a highly directional antenna (LASER, focussed RF or microwave, whatever) at the satelite, and then starts transmitting a narrow beam.

    There is not enough economic motive to develop this for purely commercial purposes. But once it is developed for the military, the commercial benefits are there to deploy it. Directional signalling means much less interference, and therefore much less consumption of precious spectrum, and less need for those pesky and expensive cell towers.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  33. When to Patch by Crispin+Cowan · · Score: 5, Interesting · on Due Diligence?
    Readers interested in this topic may be interested in this paper that we presented last week at USENIX LISA 2002:
    Timing the Application of Security Patches for Optimal Uptime

    Steve Beattie, Seth Arnold, Crispin Cowan, Perry Wagle, and Chris Wright
    WireX Communications, Inc. http://wirex.com
    and
    Adam Shostack
    Informed Security http://www.informedsecurity.com
    Security vulnerabilities are discovered, become publicly known, get exploited by attackers, and patches come out. When should one apply security patches? Patch too soon, and you may suffer from instability induced by bugs in the patches. Patch too late, and you get hacked by attackers exploiting the vulnerability. We explore the factors affecting when it is best to apply security patches, providing both mathematical models of the factors affecting when to patch, and collecting empirical data to give the model practical value. We conclude with a model that we hope will help provide a formal foundation for when the practitioner should apply security updates.
    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase
  34. Re:This is new? by Crispin+Cowan · · Score: 2 · on Hard Drive of the Future: Ram Drive
    The "recycle your old SIMs" has a problem induced by the exponential growth of memory sizes. Following Moore's Law, memory doubles in capacity every 18 months. The mathematics of a pile of things that double every 18 months is that the current 18-month generation is larger than the entire pile of everything that came before it.

    So while you can putz around and try to integrate a bunch of differently-timed old memory cards onto a single mobo, or you can just go spend $50 on a new stick for the same benefit. The choice is pretty clear.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  35. Re:Adult Swim has always been frustrating. by Crispin+Cowan · · Score: 2 · on Adult Swim Revamps; Removes Most Anime
    There are countless people in the American animation world with adult stories they'd like to tell, but the only new work Cartoon Network is willing to fund is stuff about on the same intellectual and graphical level as South Park.
    That's nice ... South Park is the best animated American TV series in 20 years. It is far more "intellectual" than even the Simpsons. South Park is not about fart jokes: it is about sarcastically puncturing the hypocracy of modern society, punctuated with fart jokes :-)

    So while your point about Adult Swim being unwilling to undertake new adult animation, you can get down off your high horse about South Park: it is far better than what most wanna-be's produce.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  36. Re:Fascinating by Crispin+Cowan · · Score: 3, Funny · on Microsoft Antitrust Judgement
    On the contrary, this is great progress for /. This is the first time that I recall /. actually breaking a story. Normally /. only reports that someone else has actually gone and published a story, and /. is acting only as a (very convenient) news clipping service.

    But this is different: /. posted the story before anyone else posted anything (I just went and looked at a bunch of sources, and the story isn't out yet as of this writing). OMG: /. doing actual journalism!

    Must be a sign of the Apocalypse :-)

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  37. Re:Obvioulsy you've never used Exchange by Crispin+Cowan · · Score: 5, Insightful · on Yet Another Exchange Killer?
    You wish. For that matter, I wish, but it just isn't so. More likely scenario:

    • User: I want to be able to share my schedule contacts and project info.
    • admin: sure we can install exchange it will cost $$$$$$, ohh yea it also runs on Win2k.
    • User: Fine, whatever, just tell me when it's done and don't bug me with details.
    • admin: what about all of that mimlinda, in lisa and melissa and code red stuff?
    • User: Which part of 'don't bug me with details' was unclear? Just do it.
    The open source/free software world desperately needs a drop-in replacement for Exchange, where "drop-in" means "will work with Outlook without having to explain stuff to Outlook users." There are open source functional replacements, and there are proprietary drop-in replacements, but no open source drop-in replacements.

    For that matter, we could use an open source drop-in replacement for Outlook, where "drop-in" means "works with Exchange." I've heard that Evolution does it, but I've also heard that Evolution employs a proprietary module to get to the Exchange Calendaring functionality.

    If I'm wrong here, I'd love to be corrected. Preferably with URLs pointing to code :-)

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  38. Re:Wait a second... by Crispin+Cowan · · Score: 1, Informative · on Tetris Is Hard: NP-Hard
    How is it Nintendo et. al. can program an incredibly skilled Tetris AI, but scientists at MIT cannot?
    "NP-hard" means that they have a proof that the computational complexity of tetris is exponential in the number of blocks to be placed. But since there are only 4 blocks in each piece, "exponential" is not that big, so the computer can easily compute an optimal placement without breaking a sweat. "NP-hard" does not mean that that the problem is unsolvable, or even particularly difficult to solve, just that you can't scale it up to a zillion blocks without having approximately 2^zillion compute cycles.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  39. Duh by Crispin+Cowan · · Score: 3, Informative · on Tetris Is Hard: NP-Hard
    Well, duh. Tetris is based on bin packing, a classic NP-hard optimization problem. That's what makes it such a compelling game: you have to solve a really hard problem in real time.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  40. Re:Diameter of a Black Hole by Crispin+Cowan · · Score: 2 · on There's a Hole in the Middle of It All
    Indeed. But amazingly, Hal Clement is still writing.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  41. Re:Diameter of a Black Hole by Crispin+Cowan · · Score: 2 · on There's a Hole in the Middle of It All
    Yes, time dialation approaches infinity as you approach the event horizon, so you can never actually enter a black hole, only mosey up to it :-)

    What intrigues me about the globular cluster black hole (or a galactic black hole) is that the black hole can form around you, rather than you having to enter it. This gets you around the problem of infinite time dialation approaching the event horizon, as well as the hellacious hard radiation and gravitational tides that exist near black holes. So you could postulate fairly normal things like planets, cities, space ships, etc. being trapped inside a black hole that formed around them. Might be a spiffy basis for an SF novel, in the tradition of Dragon's Egg and Mission of Gravity.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  42. Diameter of a Black Hole by Crispin+Cowan · · Score: 4, Informative · on There's a Hole in the Middle of It All
    So what is up here? Since when do black holes occupy so much space (I thought they were points)?
    Black holes are not points. The edge of a black hole is the point at which the escape velocity (velocity required to escape the gravitational field of the object) exceeds the speed of light, and thus light can no longer escape from the object. This is called the "event horizon."

    This would seem to imply that, in theory, a very large black hole could have rather low density inside the event horizon. It seems to me that a black hole could spontaneously form around a particularly dense cluster of stars if it was large enough and they all happened to clump together.

    But my head starts to hurt thinking about what happens to physics when a region of normal space suddenly finds itself inside a black hole like that. I am definitely not a physicist, so I can't explain what goes on inside a black hole, or if my globular cluster black hole is even possible.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  43. Re:And this is helpful how? by Crispin+Cowan · · Score: 2, Insightful · on Microsoft PR Rep is the Switcher
    I guess because the CNN editors thought the line "Apparently, Jedi mind tricks didn't work" was cute enought to put on the air, and the AP article helpfully pointed to /.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  44. Re:And this is helpful how? by Crispin+Cowan · · Score: 5, Interesting · on Microsoft PR Rep is the Switcher
    I doubt any national TV stations other than TechTV read slashdot,...
    I was just watching CNN Headline News on TV, and the woman reading the story on the guy busted for pirating AotC actually quoted and attributed the Slashdot story.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  45. Re:Flourescent Pickle by Crispin+Cowan · · Score: 1 · on Surprising Science Demonstrations?
    Good idea!

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  46. Flourescent Pickle by Crispin+Cowan · · Score: 5, Informative · on Surprising Science Demonstrations?
    Pickles flouresce (glow) when subjected to 120VAC. To demonstrate:

    1. Get a lightweight, 2-prong extension cord.
    2. Do not plug it in yet.
    3. Bare the ends, and wrap them around two medium-large nails.
    4. Insert the nails into the pickle.
    5. With all hands off the pickle and the bare metal, plug in the cord.
    6. Observe that the pickle glows around the contact points with the nails.
    Caution:

    • Never tough the pickle or the bare metal while the cord is plugged in: shock hazard (duh :-)
    • Put the pickle on a non-conductive surface, e.g. sheet of wood.
    • Consider doing it out doors, as it smokes and is smelly.
    • Adult supervision required. You assume all risk.
    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase
  47. Re:Who started this? by Crispin+Cowan · · Score: 3, Insightful · on MS/Waterloo Curriculum Deal On Hold
    ... Clegg states quite frankly that it was Waterloo who first proposed the idea of C# as a teaching language. So this initiative did not come from MS.
    And of course, everything that a Microsoft PR flak says must be true :-)

    I have been corresponding with some Waterloo faculty (I am a UW alum) and learned that the University Administration sprang it on the departments as a surprise, without consulting with the curriculum committees. Computer Science (in the Math Faculty) was adroit enough to avoid getting caught in this meat grinder, but ECE (part of the Engineering Faculty) was not so lucky, and had this agreement announced on top of them.

    So whether it came from Microsoft or not, it did not come from the faculty, and thus was fundamentally motivated by money.

    Crispin, U.Waterloo BMath/CS class of 1988
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  48. Re:What is so good about C Octothorpe anyway? by Crispin+Cowan · · Score: 2 · on MS/Waterloo Curriculum Deal On Hold
    C++ has a weak type system? C++?
    You apparently don't know what a "weak typesystem" means. "Strong typing" means that the compiler proves that all arguments are of a suitable type to participate in the operations they are used for. As a result, seg faults are impossible.

    C++ has a cute "typesystem", in that there are class libraries that do some checking (such as the string class you allude to) but this is not strong typing.

    C++: The safety of C, with the performance of Smalltalk.

    Crispin, Waterloo class of '88, and not particularly proud of it any more :-(
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  49. Re:won't work by Crispin+Cowan · · Score: 2 · on Are Video Phones Back From The Dead?
    With video phones, it would immediately become clear that we busy 21st century people don't have the time or patience to be attentive throughout an electronic conversation. It also would make answering the phone in one's underwear riskier, and might make people feel like they needed to be made up and dressed well when in their own homes.
    So what's so tough about building a videophone that has a button for "answer with video" and a separate button for"answer audio only"? Having a capability doesn't necessarily mean you need to use it.

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase

  50. Re:Some Say it Has Already Happened ... by Crispin+Cowan · · Score: 2 · on How to Build a Time Machine
    [read-only backward time travel] To get this effect:
    1. Go waaaaay far out in space.
    2. Get a really powerful telescope.
    3. Point it back at Earth.
    Limitation: no audio :-)

    Crispin
    ----
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc.
    Immunix: Security Hardened Linux Distribution
    Available for purchase