Slashdot Mirror

From english.purdue.edu,

2. In comparisons. Comparisons usually follow than or as:[snip]

He is taller than I (am tall).[snip]

NOT: He is taller than me.
(Would you say, "than me am tall"?)

"Paul loves pizza more than I (do)." The word "do" may be omitted.

Hope this helps. Have a nice day.

http://horizon.nserl.purdue.edu/Cligen/

weather / erosion prediction model from the USDA-ARS-NSERL (National Soil Erosion Research Lab)

And does this mean that Slashdor favors a particular endian?

because you KNOW bad news for MS is popular...

and no thanks, don't need the karma nor the flames.

Mirror Here.

NO definition of a virus that I know of, talks about willfully accepting a virus into the host system

The definition of virus has nothing to do with whether it's doing good or bad. Much like the definition of "nuke" has nothing to do with whether it's owned by Iraq or the US.

Look at this article for an example of how a virus could conceivably be good for you. (While I can't vouch for the validity of that site as such, it does describe what a white-hat virus would do.)

A while back, over in Great Britain, a woman complained to the telephone company about her phone. It would sometimes not ring when someone called. The strange part, she said, was that when it *did* ring, the ring was invariably preceded by her dog barking. So she was convinced she had a broken telephone and a psychic dog. Now, in Britain, the ring signal is a high-voltage low-ampere current sent from the local office to the phone. The wire which carries this signal is run from the pole to a large metal spike in the yard, which grounds the circuit. In order to isolate the problem, the phone company sent a repairman out to climb the pole and manually send the signal down the wire. Sure enough, when he did this, nothing happened the first time. The second time, the dog barked just before the phone rang. Investigation revealed that the dog was chained (with an iron chain) to the spike that grounded the circuit. So this is what was happening: the ground was dry, preventing the ring signal from grounding itself easily through the spike, so the current ran down the chain to the dog, paralyzing him. When the current released the dog, he yelped and urinated, which wet the ground, so that the second ring signal made it through and the phone rang. (yes i copied this off the web somewhere.)

The quick on this is that there are nano-scale pores on a membrane surface which allow DNA to pass through them, and can sequence the DNA in real time as it passes through. Once this technology is out there, you could have a seqencer in that would fit in your pocket, that can be hooked up to your computer to download the sequence into it.

Steve

Even the regular Gentoo kernel has a lot of extra patches in it, including the O(1) Scheduler, and Low-latency scheduling; works great for me.

First, I'm happy to say that Safari now works with my bank. Yay! But there's still some problems.

Why haven't they addressed the animated GIF problem yet? To see what I'm talking about, check out this example page of the flaw. Only the last instance of an animated GIF is ever animated.

And why'd they remove the minimum font size? On some sites I visit now I see incredibly tiny fonts that are completely illegible. Sure, it might just be a poorly designed site, but it was never a problem in earlier Safari and looks fine in IE and Mozilla.

Here's another link to side view (I can hear expert melting)

here and here.

Side view available here

Original (.mac site, bandwidth will be exceeded soon probably). Mirror on my machine. Another one (side view) here.

fixed link

What this needs is structured light in order to be able to actually create a 3D model from the scans. Do one scan with the structured light to get the model, then another normal scan to get the texture to map onto it.

caffinated beverages are consumed for their stimulating properties, alcoholic beverages are consumed for their alcoholic properties and water is consumed for its thirst quenching properties. some how i think this shit's here for a reason.

I think people eat chocolate because they like it. Not for its stimulating and blood-sugar elevating properties. Same can be said for coffee.

You joke about alcohol free beer, but folks have made beer seasoning, which could eventually make it into beer flavored chips, for example. Folks really can like something for what it is, rather than its biochemical properties.

Whatever I think the history is, is confirmed by sources...

Source 1
Source 2
Source 3

If you can show me some research or a source that says different, You might gain some credibility.
Think about the POINT of binary, what is the REASON for a base 2 number system? What are its mathematical origins? Learn the PHILOSOPHY behind the idea and get rid of your annoying sig.

First, this isn't a government thing, it's a corporate thing. Second, it IS a privacy violation, because if this is the same technology someone I know at Purdue was working on, a skilled person could tell which pocket you had your wallet in. How's that for scary?

No, this is what Guinness should always come out of. =)

that was a long week...

IMHO any information security professional needs to develop a professional paranoia, being thoughtful of potential risks and failures, and understand what might go wrong.

Reading Bruce Schneier's Secrets and Lies is a really good start in this area. It is a not very technical book, written at the level suitable for an IT manager. This is also useful to help explains risks, vulnerabilities, and failures to IT Management.

The ever so ugly covered Hacking Exposed, which explains the basics of what criminals (or attackers) do commonly to gain unauthorized access to (networked) computer systems. This is so you a) know how easy it is, and b) are familiar with an overview of the basic steps and techniques to gain illicit access.

For online resources, RISKS digest (not focused on malicious activities, but how systems fail - very insightful and low volume), and Bugtraq a full disclosure mailing list will show you recent exploits, and vuln notices, but it is fairly lacking in actual educational content, and there are several other mailing lists at SecurityFocus that could also be useful to developing professional paranoia.

Next you need the language and basics of information/computer security. For this textbooks like Computer Security by Dieter Gollmann, Information Security Management Handbook by Tipton and Krause, Practical Unix & Internet Security by Simson Garfinkel, Gene Spafford, Alan Schwartz, and Security in Computing by Pfleeger and Pfleeger.

For procedures look at CISSP study material, BS 7799 / ISO 17799, and security auditing and incident handling materials. Some knowledge of risk management can also be useful.

From these basics, of the right mindset, the common language of infosec, and procedures and policy you can get into the low-level details of firewalls, VPNs, IDS, and network design. For this you should have a good network/internetworking basics, a very detailed understanding of TCP/IP, and understand firewalls, VPNs, and IPsec.

Firewalls and Internet Security: Repelling the Wily Hacker, 2nd ed. by William R. Cheswick, Steven M. Bellovin, and Aviel D. Rubin is a great place to start, and Building Internet Firewalls by Elizabeth D. Zwicky, Simon Cooper, D. Brent Chapman is a great follow-up. An alternative book on firewalls and VPNs is Inside Network Perimeter Security: The Definitive Guide to Firewalls, VPNs, Routers, and Intrusion Detection Systems by Stephen Northcutt, Karen Frederick, Scott Winters, Lenny Zeltser, Ronald W. Ritchey (crowd from SANS).

For networking basics, a Cisco certification like CCNA could useful in providing knowledge about internetworking and Cisco router's IOS. For the gory details of TCP/IP either TCP/IP Illustrated: Volume 1: The Protocols by Richard Stevens or Internetworking With TCP/IP Volume 1: Principles Protocols, and Architecture, 4th edition by Douglas Comer.

For IDS - Network Intrusion Detection: An Analyst's Handbook by Stephen Northcutt and Intrusion Signatures and Analysis by Matt Fearnow, Stephen Northcutt, Karen Frederick, Mark Cooper are the best IMHO.

I am not sure what to recommend for VPNs, other than you need to know about IPsec.

• set up a network of very cheap boxes with old software you know to be vulnerable, and try using exploits against them.
• Try hardening and patching those boxes so the exploits don't work anymore. (You'll frequently be patching/protecting obsolete boxes in the real world, so this is actually realistic.)
• Try adding tripwire and snort to stop/detect attacks. Configure snort with database logging, with syslog/swatch, etc. Clients will want it done in a variety of ways, so it is good to be able to do it in different ways.
• Familiarize yourself with as many of the tools in Fyodor's list as possible. Using them will be the bread an butter of your work. That includes scanners like nessus.
• Read an ultra paranoid book that will give you an overall view of the field (e.g. John M. Caroll's "Computer Security, Third Edition").
• Practice security. As you install and register software, watch what is happening to the box.
• Pick an area of security that you want to specialize in...there are too many bugs and holes each week to know all of them...just the PHP code injection stuff will keep you swamped.
• Don't be afraid to ask more advanced people security questions, but do your homework first, and make sure that they know you have. They will take your more seriously if you say "I've already read the FAQ and the man page, but I'm not clear on...." than if you say, "Dude, how do I do...". This can make your learning experience far less painful

• set up a network of very cheap boxes with old software you know to be vulnerable, and try using exploits against them.
• Try hardening and patching those boxes so the exploits don't work anymore. (You'll frequently be patching/protecting obsolete boxes in the real world, so this is actually realistic.)
• Try adding tripwire and snort to stop/detect attacks. Configure snort with database logging, with syslog/swatch, etc. Clients will want it done in a variety of ways, so it is good to be able to do it in different ways.
• Familiarize yourself with as many of the tools in Fyodor's list as possible. Using them will be the bread an butter of your work. That includes scanners like nessus.
• Read an ultra paranoid book that will give you an overall view of the field (e.g. John M. Caroll's "Computer Security, Third Edition").
• Practice security. As you install and register software, watch what is happening to the box.
• Pick an area of security that you want to specialize in...there are too many bugs and holes each week to know all of them...just the PHP code injection stuff will keep you swamped.
• Don't be afraid to ask more advanced people security questions, but do your homework first, and make sure that they know you have. They will take your more seriously if you say "I've already read the FAQ and the man page, but I'm not clear on...." than if you say, "Dude, how do I do...". This can make your learning experience far less painful

1. Use a dedicated firewall - I don't believe a fire wall on the machine you are trying to protect is sufficient, especially windows. Get either a router with a built in firewall, or use linux with iptable masquerade firewall. The latter option is more $$ and more trouble than the former, but I think it's untilmately more robust. You should also use a firewall on your PC, just in case.

2. Secure your browser and mail reader - these are the primary "back doors" into your computer. No firewall will protect you if you download and execute a virus attached to an email message. Sorry, no links here, but ask around, and becareful what you download.

3. Read up - Building Internet Firewalls is excellent for the novice. I have their simplest system at home - one dual homed PC that acts as NAT, firewall, and router. Not as secure, but good enough for me. Then just start reading more books as you have time. The O'Rilley series on Ethernet and the various TCP/IP protocols is good, and so are the relavent RFCs. But also consider more academic books like Comer.

Obviously, not everyone who plays violent games is going to go on a rampage. But don't pretend that they have no effect whatsoever...

I grabbed the UHH from the MIT guy and threw it on a Purdue server. Download away.

http://web.ics.purdue.edu/~anthontj/random/ugh.pdf

My father has been a Mac fan my entire life, and he was disappointed to find that I was a DOS and later Windows user. But it was to be expected; I wanted to play games and I wanted the BBS software of the time.

Once I got into college and started studying computer science, my respect for unix grew. I played with an ancient laptop installed with Linux over the summer and really learned a lot about this exciting area. But due to (in my opinion) poor applications, it would not be a desktop OS to me. All it really took to switch me to the Mac was a few evenings on my dad's Powerbook playing with OS X.

The interface was intuitive and clever. The whole thing looked professional and yet beautiful at the same time, not much like the previous Mac OS I'd remembered. The apps worked together, had really cool features, and were generally more pleasant to use and look at than on Windows; plus, most of them actually came with the machine as standard. Mail's junk mail filtering and simple interface had me entranced. The way iTunes automatically sorted and managed all of your mp3s based on their id3, while providing ripping and burning support, amazed me (I can stick an audio CD in my computer, it'll rip it in iTunes, add it to the library appropriately, and eject it automatically). For some reason, even Microsoft apps such as Office and IE look and feel much nicer, and even have added functionality! And, of course, I could access a unix terminal at any time.

On the unix side, there's plenty to be done. You can load an entire KDE installation and run it on top of Aqua. While in Cocoa-based apps such as Safari -- where I type this -- I can use emacs-style keys like ctrl-a, ctrl-e, ctrl-k, ctrl-y in this comment field. And I was finally free of the registry.

And it's all packaged. It's all so easy. It removes a huge portion of the headaches, the real currency of computers. There are a huge number of "little things" I could say I prefer about the Mac that add up to a really pleasant overall experience. If I was a gamer or multimedia expert I might be disappointed with the recent hardware speed issues, but don't be mistaken. The 1 Ghz G4 is fast as hell, and I can play Warcraft III (and many other mainstream games) or use Photoshop very smoothly.

I don't think it's perfect. I've had crashes and have been frustrated by a lack of some Windows app I wanted. But I will say I do think it is better. At this point, I'm fairly certain my next machine will be a Mac. Ideologically, it appeals to me more than Microsoft. I genuinely feel that Apple is out to make good stuff and change things for the better, while Microsoft seems more purely capitalist.

OK, this has way too long, but it's helped me put off studying for a test ;)

For those who don't bother to read the article, here's a picture of the thing.

Minus the banners (for those that can see them ;) and the crappy blog aspect

http://news.uns.purdue.edu/html4ever/030411.Mudawa r.cooling.html

I would argue that the school's mascot - the boilermakers - would probably have a lot more to do with the idea for the technology.

Great stuff!

Hail Hail to old Purdue,
All Hail to our old Gold and Black
Hail Hail to old Purdue,
Our friendship may she never lack
Ever gratefull Ever True
May we raise our song a new
Of the days we spent with you
All hail our old purdue

I love when my school shows up on a slashdot post for research it has done!

http://www.purdue.edu/Admissions/

Not sure if you can do that, but by using Fink and Apple X11 you can run a ton of stuff, including a complete KDE 3.1 implementation inside Aqua. Here's a screenshot of what it can look like.

I know this wasn't what you were asking for, but if you didn't know about this stuff, hopefully you can find it helpful.

I bet this professor likes Cowboy Bebop!

While there has been an upsurge in bilateral and global agreements on trade in goods, the liberalisation of services and labour markets have proceeded much more slowly. Nearly twenty years ago Hamilton and Whalley (1984) suggested that the liberalisation of world labour markets could double world income and imply proportionately even larger gains for the developing countries. Thus allowing labour to move between countries would seem to be an important tool for growth and development. Far from seeking to exploit such opportunities, however, the developed world became less open to both migration and to temporary labour flows. Recently, however, the temporary movement of workers has moved back onto the agenda. It was recognised as one of four modes of delivering services abroad by the Uruguay Round's General Agreement on Trade in Services (GATS), where it became known as 'Mode 4' liberalisation - the Temporary Movement of Natural Persons (TMNP). ...
We estimate that by increasing developed economies' quotas on inward movements of both skilled and unskilled labour by just 3% of their labour forces, world welfare would rise by $US156billion - about 0.6% of world income. This figure is half as large again as the gains expected from the liberalisation of all remaining goods trade restrictions ($US104billion). In general, developing countries gain most from the increase in quotas, with higher gains from the increase in quotas on unskilled labour than on skilled labour. Developed economies generally experience falling wages, but their returns to capital and overall welfare increase in most cases.

That thing has got to make some horrible sounds when squished.

I wouldn't want to run into a swarm of them migrating, like the Mormon Crickets in Idaho. More here, or here.

But serriously, I don't have them scanned in, but I took some pictures of the warnign signs on the highway because of the cricket migration. They cover the highway an inch think in places. IT makes the road too slick to drive at 65!

robi

Well, there is a shadow client for kazza called NEO
Also there is Limewire, Direct Connect, Aquisition, etc.. so there are lots of P2P file shareing options.

Purdue has a similar salvage yard. Finding stuff there often involves climbing through stacks of 386s.

Is a crazy 70 year old Japanese professor that only wears Anime T-shirts.

Easily.. Our school uses a Cisco VPN solution to authenticate students accross the wireless network. Your MAC address is then attached to your student ID. I would imagine they could easily record bandwidth that way. And yes, they have Linux clients for this configuration :)

Bah. I thought about finding links to back up my statements, but it's in the middle of the workday and I need to cut down on my slashdotting. A semi-well-known security prof stated in his class that most security break-ins are due to a company's own employees, or something like that. As far as hard evidence, I'm pretty sure anyone could find it if they looked.

I forgot what we were talking about

Nothing in particular, actually.

the current corporate mindset seems to be `patent everything, let the courts sort it out'

Absolutely. Ever since the big Kodak v Polaroid case, that's how they've acted. Kodak learned from their expensive defeat (the $925,000,000 settlement was just a fraction of their losses), and today it patents anything it can think of, without any consideration of them ever being workable or useful. (The bottom of this page gives the top 20 patenters, Kodak is one)

The authors of ICQ had at least as good a chance of getting a patent as any silly one-click shopping `inventors'.

Not really. Getting patents effectively requires thousands of dollars for lawyers. One-Click was "invented" by Amazon.com, a major corporation that, while not profitable, had barrels of funding to burn.

Mirabilis was four 20-something guys with a good idea. Much less likely they could've afforded to push through a patent on a software idea (especially since the patent would've been flimsy anyway, with so many programs resembling prior art already well known)

Do your realize how pathic this sounds?

(Huh? Do my what? Pathic?) Aww, the truth hurts, eh?

The issue is real and it effects only certian machines. Namely dual G4's. Apparenly newer ones.

It effects them? A dual G4's what? Hehe...

I have a dual G4. No problems with the update. I don't know whether it's because I'm the superior user with so much knowledge etc..., but I obviously have much more knowledge of the English language than you. And computers are less forgiving of errors than people are--I understood you, despite your atrocious grammar and spelling. I'm not surprised your OS is hosed--you probably make as many errors when giving commands to your Mac as you do when writing,

Do your realize how pathic this sounds?

(Huh? Do my what? Pathic?) Aww, the truth hurts, eh?

The issue is real and it effects only certian machines. Namely dual G4's. Apparenly newer ones.

It effects them? A dual G4's what? Hehe...

I have a dual G4. No problems with the update. I don't know whether it's because I'm the superior user with so much knowledge etc..., but I obviously have much more knowledge of the English language than you. And computers are less forgiving of errors than people are--I understood you, despite your atrocious grammar and spelling. I'm not surprised your OS is hosed--you probably make as many errors when giving commands to your Mac as you do when writing,

I found this running a search on google. Nothing too exciting, but might answer some questions.

Ummm.... Purdue students can get microsoft software (including WIn XP Pro) for $5 thru MSCA. I'm sure other universities have similar programs. Last time I checked, they didn't sell NAV or McAfee at the Union. So it is quite easy to get IIS LEGALLY for $5. Not to mention the pirated copies floating around....

Actually, as I understand it, it may not be a good idea to use milorganite on edible crops, because the stuff is composted from municipal sewage and contains more heavy metals and dioxins than, say, cow manure. There used to be actively dangerous levels of contaminants, but a great stink was raised (sorry) and now Milwaukee claims the stuff is much safer.

Seems your neighbors tend to dump all manner of evil stuff down the drain. Probably smarter to do your own recycling, if you're going to use manure on your garden.

George Goble's home page.

General background. Applicants must have a four-year bachelor's or equivalent degree. We place great weight on the quality of the institution.
http://www.cs.purdue.edu/grad-info/gradinfo/2003/a d.html

Acquisition is great! Supports all the new gnutella updates such as ultrapeers. Much faster than Limewire, much nicer looking, and I've had better results with it as well.

Neo is a shadow client to Kazaa. It unfortunately doesn't actually log you into Kazaa, but rather is used to query ranges of IP's looking for Kazaa clients. It then sends searches to these clients directly, rather than to the nodes. Still, it can be very useful.