Domain: uk.net
Stories and comments across the archive that link to uk.net.
Comments · 21
-
abercrombie
abercrombie pas cher plenty of choices may be, in all reality, not with the certified men's make although a lot of your Abercrombie Process adjusted upon to secure unfathomable accomplishments due to specialized douleur items or actors.| abercrombie and fitch uk .
hollister uk|hollister. -
Re:How do people pay eachother?
Technically yes. In practice no. As an example, look at this form. Authorisation consists of ticking the boxes and entering an address.
-
Re:Hah.
Follow the links and you can find out that religious education is a statutory subject in English schools. So teaching about ID is quite possible, just not in science lessons.
-
A bit like Visual BasicI can liken this to Visual Basic. There are so many crappy visual basic applications out there designed by 14 year olds with no understanding of HCI and it's just got to a point where people go "vb? erk!" and avoid it completely.
Which is a shame really because you should be judging the quality of the application - and not what it was written in. Seriously, if it does x and it does it quickly and well with a nice user interface - does it really matter that it was written in Algol 68?
As a by no-means perfect example, check out this site which is, I think, a reasonably nice looking application written in Visual Basic (it acts as a GUI to the free SMS gateways out there). I don't claim to have it perfect, but the feedback I've had from people indicate that they don't think it's the usual run-of-the-mill-vb-application.
Disclaimer: I wrote it and the preference section is a little nasty, but I'm working on it. Also, I know that VB is only really for doing RAD but I don't have the time or inclination to learn Visual C++.
-
Re:banning
The National Curriculum for English does not specify reading material that rigidly. However, exam boards may well require that literature essays submitted for their exams are written about works from a very limited list, and there are now only a small number of independent exam boards.
(I am now wondering WTF a government web site is doing on a uk.net domain.)
-
Re:banning
The National Curriculum for English does not specify reading material that rigidly. However, exam boards may well require that literature essays submitted for their exams are written about works from a very limited list, and there are now only a small number of independent exam boards.
(I am now wondering WTF a government web site is doing on a uk.net domain.)
-
Woody Guthrie and the "folk process"
Much has been said about Guthrie's standard copyright notice to do whatever you want with his music, but I haven't read anything yet about the "folk process" to which Guthrie and his contemporaries such as Pete Seeger (who was in the folk group "The Weavers" and is still alive) depended on.
What was the folk process?
In short, it was the age-old practice Guthrie and others used of taking old music and writing new words. Just like a folk-tale is a story that has been told and changed as time goes on.
When the Weavers took [Guthrie's] 'So Long (It's Been Good To Know Yuh)' into the pop charts '51, the song had been written originally to cheer up migrant workers, adapted as a patriotic war song and as a jingle for selling pipe tobacco; far from being outraged, Woody was there in the studio, helping the Weavers adapt it yet again: 'For better or worse,' wrote Colin Irwin in Mojo '97, 'this was the folk process at work.'
As Seeger says,
"My father was more sensible. He said to think of the folk process as something that has gone on through the ages. The folk process occurs in cooking, with cooks rearranging recipes. And lawyers rearrange old laws to fit new citizens. If you look at it this way, then the true importance of folk music is to let ordinary folks change things."
W -
Re:Albums are already a thing of the past!
Name the last album you listend to that had a theme, thematic or musical, through the whole album...soundtacks don't count!
Why the hell shouldn't soundtracks count? They're a legitimate musical form that many people happen to enjoy a great deal. It so happens that not only do I personally listen to soundtracks more than any other kind of album (I have two large racks of CDs, each of which holds music belonging into one or the other of the two basic categories of music in my personal organizational scheme, "soundtracks" and "everything else"), but I also know a number of people with similar interests; I know people who have CD counts into four or five digits, where 80% or more of the titles are soundtrack and score albums (I personally have a rather paltry collection by comparison - perhaps 300 CDs total, about half of them soundtracks, but someday I'll have more...
:)That said, I do find myself largely in agreement with your other observations, though, but it's not complete agreement; what you said doesn't apply to everything out there. These things aren't absolutes.
-
[OT] How can I do my part?I hate spam as much as the next man (assuming the next man isn't a spammer) so I've decided to run Jackpot on an old laptop.
(Yeah, I could do it with $oss_os_of_your_choice but knowing my luck I'd end up with a real open relay!).
It's sat inside the NAT box with port 25 directed to it. Any other ports I should crack open? The other problem is how to maximise it's effects. At whom should I direct my emails/phone calls/bricks through windows when the hits start rolling in?I'm in the postion where I my work can't come home with me so I'm looking for a project to get my teeth into....
-
Re:Not as far fetched as it would seem
-
Re:You're wrong, but so is everyone else :)You can read a handy tech note from GE about nicad memory here . As the parent poster points out, it essentially doesn't exist in real life.
I've been using nicads since they were invented and have never seen any "memory" effect. I have packs that are over TEN YEARS OLD that are in heavy use and still work. All I do is make sure that I don't overcharge them or run them flat.
-
Jackpot!
-
relay honeypots are betterIf more people would run relay honeypots such as jackpot that might make a dent in the economics of spam.
I'm not saying that the recipient server tar-pitting is a bad idea, but I think that there are more effective ways of raising the cost for spammers. Blacklisting the entire
/24 of anything supporting spam would pressure providers to nuke spammers (or at least pass on costs to spammers). -
AddendaThe material above was originally posted as a comment on Slashdot, before being pasted into journal entries on Slashdot and use.perl.org. Each version of the writeup has attracted comments & emails, for which I thank you. A couple of corrections have come up, and I don't want the eventual archived versions of this not to reflect those contributions (hello, future Google spelunkers!), so here's a general cross-linked addendum:
- http://use.perl.org/~babbage/journal/10069:
Chrysflame posted detailed minutes for the proceedings, as pasted from Oliver Schmelzle's TechBlog.Readers may find it useful to cross-check my notes against his times when looking for talks they would like to listen to.
Matt Sergeant politely replied as well, noting that the impressive claims about CRM114's accuracy were yet to be thoroughly tested, that in other tests CRM114 had not been significantly more accurate than other Bayesian strategies, and that the current performance of CRM114 is so much slower than many of the alternatives that any gains it may have to offer are more than offset by the low volume it can currently handle. Grain of salt taken
:) - http://slashdot.org/~babbage/journal/21771/:
No comments as of this writing.
- http://slashdot.org/comments.pl?sid=51208&cid=511
2 383:An anonymous coward added a couple of corrections which are worth noting:
-
Jon Praed was questioning IP spoofing, not message header spoofing. It is relatively easy to fake at least some of the headers on an email, but when tracked down & brought before a judge, no spammer has ever been able to explain a credible technique for spoofing IP data in any trial Praed was aware of. When this comment was made to the audience, ESR spoke up saying that he could show Praed how to do it, but I don't know what if anything came of any conversation they had after the talk.
-
The AC also expanded on Michael Salib's talk & how much mileage Salib was seeing out of a comically non-buzzword compliant filtering strategy, but came back to the point that his results were "probably unrepeatable and it would probably be best if we all just treated them as outright lies." As the AC noted, Salib seems to have played a big role in organizing the conference -- I think I read somewhere that when the attendee list swelled to 500+ people, he helped to find a last minute venue big enough to accomodate everyone. So not only do we have to thank Salib for an entertaining spiel of quackery, but also for bringing everyone together in the first place.
:)
I never said my notes were perfect
:) -
- Emails sent to me directly:
- Brad Spencer wrote to me asking if anyone had mentioned relay spam honeypots, citing http://jackpot.uk.net/ as an example, and claiming that they are "100% accurate and can be devastating.". Respectfully Brad, I'm not sure that the speakers gathered together last week would agree that any approach is "100% accurate" unless you have a very generous definition of "accurate" (as in, "delete everything as spam" is 100% accurate, but 100% useless
:). More fairly though, Brad claims that "if you deal with spam at the relay level you can be dumb -- it is the spammers who are forced to be smart. If they make an incremental move towards being smart you move beyond them." I won't argue with that, it sounds like a fine idea. I suggest taking ideas like this to Barry Shein et al, who would probably love to discuss these ideas & implement anything that works well.In his email, Spencer went on to expand on the value of honeypots, and how they seem like a very promising tactic for handling the spam problem. I agree, and maybe my writeup didn't give this enough attention, but I think many or all of the conference speakers would have agreed as well. Ken Schneider made it clear that Brightmail in particular seems to make heavy use of honeypot addresses: it sounded like when they set up service for an organization, they plant one or more dummy addresses at that organization as data points for spam collection efforts, and have mechanisms in place to gather & analyze this data in real time. Spencer suggests that honeypot addresses would be very hard for spammers to detect if they resemble legit MTAs as much as possible, and I have the impression that this is exactly what Brightmail is doing. I'm sure that others are using tactics like this as well, but Schneider was the most vocal user of the tactic that I noticed.
-
John Hanna wrote to me saying that he runs an anti-spam project at http://assp.sf.net, and noticed a surge in traffic after the conference. To answer John's question, I did not notice anyone mentioning ASSP [caps?] during any of the talks, but it could well be that people were discussing it amongst themselves off stage. *shrug*
- Ashley Pomeroy wrote to a mailing list where I posted my notes, asking:It may have been raised before, but does the specific use of 'ham' to mean 'good' and 'spam' to mean 'bad' leave all these good people open to abuse from the people who make Spam, the nutritious meat-based food?
I assume that Spam(r) is cool about the use of the term 'spam' to mean junk e-mail, but adding a converse makes it explicitly clear that 'spam=bad'.
And what do the pigs think about all this? Its their flesh we're talking about. The ultimate expression of love is to consume the flesh of another being; we are sending out a mixed message as to whether we love pigs or not, which will surely effect the quality of the eggs they lay.
By this token eating one's fingernails/bogies/earwax is a form of self-love, which is perfectly natural.
To which I have no comment
:)
- Brad Spencer wrote to me asking if anyone had mentioned relay spam honeypots, citing http://jackpot.uk.net/ as an example, and claiming that they are "100% accurate and can be devastating.". Respectfully Brad, I'm not sure that the speakers gathered together last week would agree that any approach is "100% accurate" unless you have a very generous definition of "accurate" (as in, "delete everything as spam" is 100% accurate, but 100% useless
If I get any other material relevant to the conference, I may add it to the Slashdot or use.perl journals, but in any case I wanted to get this up while the pages are still getting traffic, so readers of one variation of the page are not missing out on what may be added to other variations. Thanks all for the feedback!
:) - http://use.perl.org/~babbage/journal/10069:
-
Re:SighMy idea is to setup what *APPEARS* to be an open relay.
Check out Jackpot. It's a dedicated SMTP relay honeypot written in Java.
Mine ate spam addressed to about 25,000 distinct addresses last Sunday.
--
Jack. -
Relays (was: Re:Just a note)You can download Jackpot, a free relay honeypot written in Java, from my site.
Runs out-of-the-box, and provides hours of childish entertainment. It's easy to use on Windows,
unlike most honeypots, which are usually built on top of *n*x mailservers. In fact it doesn't work
(yet) on Linux.(Anyone know why
/. munged "[uk.net]" into my post? I couldn't get rid of it.) -
Re:Do I have to be afraid?
You mean something like the cool Java based Jackpot honeypot that fools spambags into thinking they found open relays, proxies, etc, sucks up all their spam and can even print a "reciept?" (post logs to HTML page)
-
Re:filtering not the answer - maybe this isI've written a relay honeypot in Java. It's a real relay, that relays messages only if:
- there's less than recipients (configurable);
- the relay request arrived not less than seconds after the previous request.
It can bounce messages addressed to the local machine, in case the spammer checks for bounces (buggy, at the moment).
It whitelists relay test-addresses, as specified by its operator, and relays to those addresses even if it thinks it's in a spam-run. It adds any address to which it relays to its whitelist (i.e. it collects relay-test addresses).
It also posts all the data it collects to a website, which it can serve itself (i.e., it's a webserver too).
It has quite a number of other frills (not all of which are documented yet - it's still in test, but it's getting more stable every day).
It is a valid objection to a honeypot that does relay test-messages, that it is sending spam. There is a risk of the program being subverted by a spammer. Honeypotting this way isn't for children - you could get complaints for running this program.
Having said that, you can download the current Beta build at My site. (Damn, how do you get rid of that crap in square brackets???) It's highly configurable, but it runs out-of-the-box on Win NT/2K/ME systems (it needs a JVM, of course).
Jack.
-
Removing email addressesI used a very nifty bit of javascript which masks your mailto address. Provided the person has javascript on (and lets face it, nearly everyone who doesn't read
/. does) then it works well.You can generate the code for your own email address here or, if you want some source code, then you can find an implementation of it here.
-
Galeon
It's nice to see that so far more projects have been hilighted for being open than for not. I'd like to add Galeon to the list. The devel list happily accepts patches, even my poor attempts to produce graphics for it.
-
And bike lights too ?
Also of interest may be this project to build a white LED front light for your bicycle